$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/AkU0ddCa2RmpdU1L9uB0HQmKrBE.roa File: AkU0ddCa2RmpdU1L9uB0HQmKrBE.roa (raw, json) Hash identifier: MPeFkQWDqjOLLqjhIBZcIKViWzrSc/pTWTG/NvDjA5s= Subject key identifier: 02:45:34:75:D0:9A:D9:19:A9:75:4D:4B:F6:E0:74:1D:09:8A:AC:11 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A1A Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/AkU0ddCa2RmpdU1L9uB0HQmKrBE.roa Signing time: Fri 22 Aug 2025 08:53:43 +0000 ROA not before: Fri 22 Aug 2025 08:53:43 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131586 IP address blocks: 175.183.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6682 (0x1a1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:43 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=02453475D09AD919A9754D4BF6E0741D098AAC11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:c5:fb:94:9e:43:6f:32:b3:7e:d5:f1:74:5d: 10:3f:a3:f6:51:23:f2:77:50:a6:24:7a:81:42:c0: b3:ac:89:6f:ed:b4:92:41:50:e2:36:a9:6b:38:0c: de:e7:ba:2d:87:97:5c:b4:a8:43:26:44:b9:11:45: ba:59:dd:e6:9d:52:2a:d3:a4:e6:c2:ec:8f:c0:9d: 3c:62:f9:fc:f1:60:bc:b6:c6:3e:af:a6:ce:07:60: c4:69:48:34:f5:9a:51:8e:ba:12:b0:2d:37:14:d8: e8:75:48:35:20:10:80:6b:81:9e:b1:36:a8:3b:32: fd:58:60:7e:be:d6:6a:f0:e3:28:d8:1e:7e:a0:41: 30:e4:2e:f9:fa:a8:6f:8d:7b:d4:d8:ef:9d:92:84: 93:28:97:8b:43:4a:56:84:03:02:3b:70:81:a8:69: 85:a0:c1:fc:01:09:70:44:80:a1:a1:8b:fd:05:7e: 55:d3:2a:ff:c5:f4:6e:c1:3b:9f:0e:22:be:fd:12: d4:cd:23:68:a4:0c:f0:9a:7e:5a:04:e1:36:eb:d7: 09:44:fc:da:32:ff:e9:97:23:6f:cc:e6:7c:54:48: 55:95:1f:30:d3:c6:b7:57:e3:56:52:39:5a:a0:61: 31:a2:85:b1:6c:a2:78:d9:bd:3c:10:5f:d9:5d:49: 38:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:45:34:75:D0:9A:D9:19:A9:75:4D:4B:F6:E0:74:1D:09:8A:AC:11 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/AkU0ddCa2RmpdU1L9uB0HQmKrBE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.183.136.0/24 Signature Algorithm: sha256WithRSAEncryption 63:32:52:f7:d8:3a:35:74:c6:f0:ab:d7:f6:b2:66:7c:65:39: 7c:25:4a:f7:2a:f5:d8:86:99:f8:b9:42:69:40:48:9b:ac:ff: bd:f5:df:a2:ff:f2:0f:7f:bb:ab:19:1b:7c:bb:05:43:a1:72: de:dd:b1:06:29:72:32:d8:de:84:72:a6:d4:d9:67:e3:e2:39: c9:02:d2:da:9f:b7:f1:52:75:4d:77:5a:80:5a:13:bb:dc:19: 2c:40:6a:c3:0e:dc:7d:37:39:be:ad:1d:a2:17:f7:b8:d3:a0: 63:4e:da:87:12:0d:8d:17:28:0c:9b:8d:44:2b:f7:6f:99:90: 91:3e:55:37:04:4c:62:65:ba:60:5f:2b:a0:ff:ac:64:4f:fe: 4b:c0:a4:ce:cd:4e:3e:3e:00:d9:68:71:92:98:51:31:72:39: 26:d5:e0:f1:c3:15:ce:a0:c5:d9:47:04:78:bb:8b:40:b6:3e: 0a:34:5e:a4:27:ab:c0:f2:7c:8a:39:b4:6c:a6:7f:b7:c5:a9: 61:37:ee:40:59:d4:3a:2a:0f:f9:ce:7c:e7:ba:c5:39:aa:a8: c4:cc:a2:42:2d:2b:1e:23:a4:61:b2:ae:6c:93:f7:be:36:0e: b2:43:60:73:3a:52:6c:60:23:cc:7b:46:d7:e8:be:97:14:df: 02:bc:f4:f5 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGhowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzNDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDAyNDUzNDc1RDA5QUQ5 MTlBOTc1NEQ0QkY2RTA3NDFEMDk4QUFDMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfxfuUnkNvMrN+1fF0XRA/o/ZRI/J3UKYkeoFCwLOsiW/ttJJB UOI2qWs4DN7nui2Hl1y0qEMmRLkRRbpZ3eadUirTpObC7I/AnTxi+fzxYLy2xj6v ps4HYMRpSDT1mlGOuhKwLTcU2Oh1SDUgEIBrgZ6xNqg7Mv1YYH6+1mrw4yjYHn6g QTDkLvn6qG+Ne9TY752ShJMol4tDSlaEAwI7cIGoaYWgwfwBCXBEgKGhi/0FflXT Kv/F9G7BO58OIr79EtTNI2ikDPCafloE4Tbr1wlE/Noy/+mXI2/M5nxUSFWVHzDT xrdX41ZSOVqgYTGihbFsonjZvTwQX9ldSTibAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUAkU0ddCa2RmpdU1L9uB0HQmKrBEwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvQWtVMGRkQ2EyUm1wZFUxTDl1QjBI UW1LckJFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAK+3iDAN BgkqhkiG9w0BAQsFAAOCAQEAYzJS99g6NXTG8KvX9rJmfGU5fCVK9yr12IaZ+LlC aUBIm6z/vfXfov/yD3+7qxkbfLsFQ6Fy3t2xBilyMtjehHKm1Nln4+I5yQLS2p+3 8VJ1TXdagFoTu9wZLEBqww7cfTc5vq0dohf3uNOgY07ahxINjRcoDJuNRCv3b5mQ kT5VNwRMYmW6YF8roP+sZE/+S8Ckzs1OPj4A2WhxkphRMXI5JtXg8cMVzqDF2UcE eLuLQLY+CjRepCerwPJ8ijm0bKZ/t8WpYTfuQFnUOioP+c5857rFOaqoxMyiQi0r HiOkYbKubJP3vjYOskNgczpSbGAjzHtG1+i+lxTfArz09Q== -----END CERTIFICATE-----Generated at Sun Aug 24 11:53:16 2025 by rpki-client