$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ImKg_8c0qv-k9dDiQakFGaVbFc4.roa File: ImKg_8c0qv-k9dDiQakFGaVbFc4.roa (raw, json) Hash identifier: Grag/Bcf5WjtMt+j86vSSxJOvc9DVcykMxMNaHq0pUM= Subject key identifier: 22:62:A0:FF:C7:34:AA:FF:A4:F5:D0:E2:41:A9:05:19:A5:5B:15:CE Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 199C Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ImKg_8c0qv-k9dDiQakFGaVbFc4.roa Signing time: Fri 22 Aug 2025 08:53:11 +0000 ROA not before: Fri 22 Aug 2025 08:53:11 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18049 IP address blocks: 106.107.144.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6556 (0x199c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:11 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2262A0FFC734AAFFA4F5D0E241A90519A55B15CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:63:96:84:88:c7:ec:4f:16:a7:8c:31:50:fe: 05:73:66:fa:88:cf:99:a8:04:55:95:b8:86:63:2f: b5:6d:e8:21:4f:60:3f:e9:6a:8e:07:73:75:67:0c: 4b:6f:97:ff:09:7c:79:fc:7c:dc:89:f3:48:56:72: df:7e:f6:2b:78:9c:23:f7:f0:a1:58:01:33:8d:0a: cf:43:63:6d:cd:52:87:71:66:cc:d2:8a:ee:31:db: 1b:03:17:19:94:51:e8:03:2d:33:c1:30:82:d1:9d: 80:14:9d:13:7e:e8:01:3c:98:c7:3f:e9:f8:62:2d: 5e:7b:8f:90:d8:e0:2a:59:35:e6:11:78:1f:be:5b: 8a:eb:1f:11:b2:26:10:de:5f:f7:96:d2:d2:61:78: 74:63:2b:b7:e6:ea:7f:9e:4a:fa:0e:86:1c:a2:ca: 05:b0:0d:71:a5:6d:ae:c7:83:ae:74:d6:27:40:c4: 52:6e:81:9e:e6:ba:44:95:a1:00:02:3a:34:ad:7a: ba:a4:6b:dd:ea:56:57:39:d2:65:f7:fc:ca:2f:88: 48:b3:c8:83:2a:dc:66:a7:d2:f3:09:be:a6:2b:39: 30:49:1b:dd:06:6d:30:31:44:ae:cc:9d:2c:15:a6: 23:e6:da:ca:b2:4f:41:52:6a:4b:f6:73:31:0b:60: e0:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:62:A0:FF:C7:34:AA:FF:A4:F5:D0:E2:41:A9:05:19:A5:5B:15:CE X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ImKg_8c0qv-k9dDiQakFGaVbFc4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.107.144.0/21 Signature Algorithm: sha256WithRSAEncryption 47:cc:d0:e2:d3:18:43:ee:a8:25:df:6e:75:90:c6:05:fc:f3: 3a:65:c8:e2:55:f2:e5:7b:fe:d5:06:c3:c9:f6:05:83:1d:6a: ed:16:05:31:85:7f:47:de:92:10:5b:4e:61:e3:9f:11:c9:13: f6:c3:43:65:dd:f9:e5:5e:80:17:df:e1:b8:43:49:63:1f:4d: 03:eb:17:d6:0d:f1:a6:35:8b:c0:ff:73:1c:27:12:01:bd:e7: e2:d7:ff:37:e8:a8:60:b8:19:3d:1c:ab:d2:92:bc:51:b0:be: f6:d1:64:17:0d:eb:51:24:7a:c3:9c:fb:fd:ee:c9:ac:ea:9f: f5:0a:24:c0:34:cd:42:fb:96:28:1d:05:c7:81:76:f1:a5:d0: 1a:1c:fd:86:08:08:b7:19:69:dc:36:69:ce:36:d1:c4:07:4e: b8:32:d6:5f:1d:c2:eb:9a:92:df:cb:b7:25:17:f1:96:aa:78: a5:c2:39:1b:61:8e:7e:05:9f:a6:79:a9:6f:05:6e:c0:e5:61: 60:a1:65:a1:61:c8:5d:ee:4e:fc:ab:0a:1a:6e:5e:bd:80:20: 42:11:1d:0e:14:1c:39:23:19:68:06:69:67:67:61:2d:ec:c3: 6d:12:96:3c:99:79:8c:58:8d:36:56:c7:d1:e4:af:61:4b:c0: 6d:dc:0d:ba -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGZwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDIyNjJBMEZGQzczNEFB RkZBNEY1RDBFMjQxQTkwNTE5QTU1QjE1Q0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCVY5aEiMfsTxanjDFQ/gVzZvqIz5moBFWVuIZjL7Vt6CFPYD/p ao4Hc3VnDEtvl/8JfHn8fNyJ80hWct9+9it4nCP38KFYATONCs9DY23NUodxZszS iu4x2xsDFxmUUegDLTPBMILRnYAUnRN+6AE8mMc/6fhiLV57j5DY4CpZNeYReB++ W4rrHxGyJhDeX/eW0tJheHRjK7fm6n+eSvoOhhyiygWwDXGlba7Hg6501idAxFJu gZ7mukSVoQACOjSterqka93qVlc50mX3/MoviEizyIMq3Gan0vMJvqYrOTBJG90G bTAxRK7MnSwVpiPm2sqyT0FSakv2czELYODzAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUImKg/8c0qv+k9dDiQakFGaVbFc4wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvSW1LZ184YzBxdi1rOWREaVFha0ZH YVZiRmM0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA2prkDAN BgkqhkiG9w0BAQsFAAOCAQEAR8zQ4tMYQ+6oJd9udZDGBfzzOmXI4lXy5Xv+1QbD yfYFgx1q7RYFMYV/R96SEFtOYeOfEckT9sNDZd355V6AF9/huENJYx9NA+sX1g3x pjWLwP9zHCcSAb3n4tf/N+ioYLgZPRyr0pK8UbC+9tFkFw3rUSR6w5z7/e7JrOqf 9QokwDTNQvuWKB0Fx4F28aXQGhz9hggItxlp3DZpzjbRxAdOuDLWXx3C65qS38u3 JRfxlqp4pcI5G2GOfgWfpnmpbwVuwOVhYKFloWHIXe5O/KsKGm5evYAgQhEdDhQc OSMZaAZpZ2dhLezDbRKWPJl5jFiNNlbH0eSvYUvAbdwNug== -----END CERTIFICATE-----Generated at Sun Aug 24 13:49:37 2025 by rpki-client