$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/B_xVvNfEsMk8op57D-2t77GrOqk.roa File: B_xVvNfEsMk8op57D-2t77GrOqk.roa (raw, json) Hash identifier: GwdRWpD8xv5FKjMPkMFeI4VcIIYvWFGlF0bfXC28MXs= Subject key identifier: 07:FC:55:BC:D7:C4:B0:C9:3C:A2:9E:7B:0F:ED:AD:EF:B1:AB:3A:A9 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 106E Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/B_xVvNfEsMk8op57D-2t77GrOqk.roa Signing time: Fri 22 Aug 2025 08:54:15 +0000 ROA not before: Fri 22 Aug 2025 08:54:15 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9919 IP address blocks: 192.72.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4206 (0x106e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 22 08:54:15 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=07FC55BCD7C4B0C93CA29E7B0FEDADEFB1AB3AA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:53:00:94:41:7b:95:d3:ab:e4:ff:96:75:1a: 06:3b:16:94:71:c4:39:74:b2:ee:c1:b5:25:92:47: 11:a5:ed:1d:4e:7f:fe:a8:3d:7b:76:f7:9d:91:d8: d2:4e:b7:c3:8a:ca:33:05:5b:a0:e2:5d:e6:a8:10: 5c:cc:0a:aa:78:99:3e:4f:80:c0:71:a3:d2:30:be: b7:aa:15:ec:e1:0e:81:41:8b:5a:34:3f:8e:7d:7b: 89:c4:61:87:9d:c3:34:8d:e3:d2:f4:24:a3:e0:cd: 7a:62:f2:a4:1d:d1:74:83:61:25:2c:f1:5b:17:97: 12:8e:58:ea:3a:27:0b:ad:df:b9:7e:01:25:8f:6f: c1:7a:02:bc:f8:d0:3d:9b:48:92:d3:90:8a:a9:43: 93:e9:fa:7b:03:00:8e:30:18:eb:f0:bb:d8:48:56: dd:e9:28:ca:37:05:b8:88:6a:87:52:66:17:e4:78: 90:36:e6:42:e7:89:9a:bc:67:cd:68:f1:2d:62:a0: df:ef:20:79:56:af:46:53:a4:7e:84:96:27:7a:d7: ba:e0:84:b2:6f:4b:40:33:c5:b5:36:12:64:4f:89: 30:d8:d2:e9:5b:be:17:56:9f:7c:60:b9:12:06:c5: 80:2f:f1:6a:f2:d1:02:f1:37:a0:2d:6d:0f:44:61: 73:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:FC:55:BC:D7:C4:B0:C9:3C:A2:9E:7B:0F:ED:AD:EF:B1:AB:3A:A9 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/B_xVvNfEsMk8op57D-2t77GrOqk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.252.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:c6:50:a5:18:03:c3:01:48:eb:b4:5f:fb:67:28:e0:5f:ee: 6b:ad:9a:af:e5:d0:cc:4f:3c:27:72:ec:0d:53:ea:ad:a9:2c: e2:69:b6:4c:3a:56:b2:2f:4c:95:7b:95:9b:0b:38:b2:0c:bf: 13:e1:64:76:3f:cf:4d:95:06:fc:05:e3:6d:e9:03:fc:77:11: 0f:ca:51:2b:9d:8c:23:1c:e4:ac:e7:44:83:5b:2e:1c:5c:a9: 1d:69:b4:e4:c0:96:b3:70:28:2a:87:df:e9:0e:57:ae:e5:af: 3c:ee:83:f0:24:2e:12:e3:7a:5e:c1:68:9e:4d:ec:c6:88:4f: 5e:ce:c5:3d:5e:cc:4d:ec:e7:5c:33:28:f9:48:60:f0:bc:f4: 6b:c0:f8:ce:c1:df:c7:4a:74:98:67:84:6e:cc:5f:1b:8d:5f: c4:0a:4d:a7:17:21:dd:7c:a3:dc:e2:d0:89:c6:2f:2a:85:90: 6c:84:a9:e5:73:56:f9:94:54:94:52:55:eb:6c:c3:6d:57:be: be:cd:69:0e:40:5d:3f:d1:8a:f4:2d:d4:58:46:57:8f:cb:ed: 76:bb:ff:83:f0:1f:88:f9:af:29:fc:7b:76:f1:6e:cc:07:15: 9c:78:61:4f:ce:a1:09:0f:a1:75:13:62:96:9d:16:e1:56:2e: 68:29:59:e1 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEG4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNTA4MjIw ODU0MTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDA3RkM1NUJDRDdDNEIw QzkzQ0EyOUU3QjBGRURBREVGQjFBQjNBQTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDrUwCUQXuV06vk/5Z1GgY7FpRxxDl0su7BtSWSRxGl7R1Of/6o PXt2952R2NJOt8OKyjMFW6DiXeaoEFzMCqp4mT5PgMBxo9IwvreqFezhDoFBi1o0 P459e4nEYYedwzSN49L0JKPgzXpi8qQd0XSDYSUs8VsXlxKOWOo6Jwut37l+ASWP b8F6Arz40D2bSJLTkIqpQ5Pp+nsDAI4wGOvwu9hIVt3pKMo3BbiIaodSZhfkeJA2 5kLniZq8Z81o8S1ioN/vIHlWr0ZTpH6Elid617rghLJvS0AzxbU2EmRPiTDY0ulb vhdWn3xguRIGxYAv8Wry0QLxN6AtbQ9EYXP/AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUB/xVvNfEsMk8op57D+2t77GrOqkwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvQl94VnZOZkVzTWs4b3A1N0QtMnQ3 N0dyT3FrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMBI/DAN BgkqhkiG9w0BAQsFAAOCAQEALMZQpRgDwwFI67Rf+2co4F/ua62ar+XQzE88J3Ls DVPqraks4mm2TDpWsi9MlXuVmws4sgy/E+Fkdj/PTZUG/AXjbekD/HcRD8pRK52M IxzkrOdEg1suHFypHWm05MCWs3AoKoff6Q5XruWvPO6D8CQuEuN6XsFonk3sxohP Xs7FPV7MTeznXDMo+Uhg8Lz0a8D4zsHfx0p0mGeEbsxfG41fxApNpxch3Xyj3OLQ icYvKoWQbISp5XNW+ZRUlFJV62zDbVe+vs1pDkBdP9GK9C3UWEZXj8vtdrv/g/Af iPmvKfx7dvFuzAcVnHhhT86hCQ+hdRNilp0W4VYuaClZ4Q== -----END CERTIFICATE-----Generated at Sun Aug 24 09:45:03 2025 by rpki-client