$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Jowt1T3kWmoqLOKabDy5AMo-6Gg.roa File: Jowt1T3kWmoqLOKabDy5AMo-6Gg.roa (raw, json) Hash identifier: I74OMRZK2p1gWwm/C85zo9Naeaz0in4r6CvMcRQ5HnM= Subject key identifier: 26:8C:2D:D5:3D:E4:5A:6A:2A:2C:E2:9A:6C:3C:B9:00:CA:3E:E8:68 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A72 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Jowt1T3kWmoqLOKabDy5AMo-6Gg.roa Signing time: Fri 22 Aug 2025 08:54:05 +0000 ROA not before: Fri 22 Aug 2025 08:54:05 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18049 IP address blocks: 106.105.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6770 (0x1a72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:54:05 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=268C2DD53DE45A6A2A2CE29A6C3CB900CA3EE868 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:4a:1f:d8:8b:c5:7f:2a:78:20:e2:49:73:ce: 36:c4:14:2c:1b:67:67:62:4d:e2:0a:3d:1b:d4:86: bc:34:08:d2:ab:c4:45:b1:4e:7c:c7:69:63:77:94: 74:3b:6e:a8:0d:cd:f9:66:c2:6a:8e:7d:c9:74:26: 2f:62:5e:f0:8c:7b:c1:31:1a:c5:14:61:61:8f:73: 1b:57:ea:85:41:f3:d4:42:7b:f3:5b:1f:8d:79:55: 6b:23:51:20:52:b2:fd:fe:4d:8b:ff:79:16:ca:fc: 51:50:5e:01:3b:6c:bc:4e:10:43:3c:0d:4d:17:43: 95:3b:e9:ba:ad:0f:27:84:c3:81:e8:9a:f7:96:f3: 54:f1:dd:ed:1d:c8:77:29:2f:87:00:b9:54:12:61: ea:ba:42:b0:71:2d:df:80:d3:b7:20:36:09:94:a4: 70:8c:46:a6:1f:60:fd:d8:36:7b:bc:9f:d2:a4:8a: 47:37:d7:4d:fa:c1:0a:02:19:33:f9:1f:0f:0b:90: dc:9a:27:6a:65:70:34:09:1f:d2:0e:e4:de:07:32: de:6f:2b:d9:a9:79:1c:a5:1a:4a:5e:e9:e1:78:ca: 02:1f:fd:c5:71:3a:46:88:81:c2:9c:2e:c0:e2:2b: 5c:f6:87:59:30:36:ae:a3:f8:47:88:1e:27:94:b6: db:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:8C:2D:D5:3D:E4:5A:6A:2A:2C:E2:9A:6C:3C:B9:00:CA:3E:E8:68 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Jowt1T3kWmoqLOKabDy5AMo-6Gg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.112.0/20 Signature Algorithm: sha256WithRSAEncryption 6b:fb:11:08:ba:11:2c:5c:a3:4b:21:b4:b9:7e:8c:7d:1f:e1: ef:58:0a:11:b1:1d:98:72:29:ee:d7:85:a1:e9:45:72:bc:f1: 39:16:46:24:f3:69:a4:f8:63:ca:ec:0f:28:d5:c9:ae:97:36: 90:77:30:eb:83:83:b7:e6:a5:1b:56:5a:77:5a:20:43:1d:30: e7:b8:ce:6c:a7:ea:65:18:21:0e:7e:5e:ac:ff:c5:33:54:0f: 39:7b:35:13:d4:69:9e:3e:2e:5b:78:e8:40:e8:84:0e:d0:6f: 24:59:1e:fc:ef:b9:f3:68:06:5f:34:b6:d8:df:88:48:1b:76: cf:1d:3d:70:8f:f7:cb:79:fe:49:b7:e1:c4:a7:1e:13:13:cb: 83:74:d3:16:83:e1:81:97:e9:05:52:dd:4d:5f:32:28:a6:95: 6c:f1:c0:5b:75:79:2b:a9:78:2f:43:78:48:8a:4b:0c:9e:11: 55:3c:7a:d6:22:9a:20:b7:41:8b:b7:5e:71:6d:12:86:e6:a9: 39:d6:77:57:1b:cc:40:59:fb:4d:24:00:af:7e:2b:60:61:c8: 03:a8:7b:24:52:14:e3:ec:4b:c3:1b:bd:f1:40:5f:3e:e0:0b: 1d:2f:8b:00:39:7a:4e:19:50:0d:bd:1e:74:bf:24:64:9c:77: 16:54:1d:8c -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGnIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODU0MDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI2OEMyREQ1M0RFNDVB NkEyQTJDRTI5QTZDM0NCOTAwQ0EzRUU4NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYSh/Yi8V/Kngg4klzzjbEFCwbZ2diTeIKPRvUhrw0CNKrxEWx TnzHaWN3lHQ7bqgNzflmwmqOfcl0Ji9iXvCMe8ExGsUUYWGPcxtX6oVB89RCe/Nb H415VWsjUSBSsv3+TYv/eRbK/FFQXgE7bLxOEEM8DU0XQ5U76bqtDyeEw4HomveW 81Tx3e0dyHcpL4cAuVQSYeq6QrBxLd+A07cgNgmUpHCMRqYfYP3YNnu8n9Kkikc3 1036wQoCGTP5Hw8LkNyaJ2plcDQJH9IO5N4HMt5vK9mpeRylGkpe6eF4ygIf/cVx OkaIgcKcLsDiK1z2h1kwNq6j+EeIHieUttvLAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUJowt1T3kWmoqLOKabDy5AMo+6GgwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvSm93dDFUM2tXbW9xTE9LYWJEeTVB TW8tNkdnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBGppcDAN BgkqhkiG9w0BAQsFAAOCAQEAa/sRCLoRLFyjSyG0uX6MfR/h71gKEbEdmHIp7teF oelFcrzxORZGJPNppPhjyuwPKNXJrpc2kHcw64ODt+alG1Zad1ogQx0w57jObKfq ZRghDn5erP/FM1QPOXs1E9Rpnj4uW3joQOiEDtBvJFke/O+582gGXzS22N+ISBt2 zx09cI/3y3n+SbfhxKceExPLg3TTFoPhgZfpBVLdTV8yKKaVbPHAW3V5K6l4L0N4 SIpLDJ4RVTx61iKaILdBi7decW0ShuapOdZ3VxvMQFn7TSQAr34rYGHIA6h7JFIU 4+xLwxu98UBfPuALHS+LADl6ThlQDb0edL8kZJx3FlQdjA== -----END CERTIFICATE-----Generated at Sun Aug 24 13:51:18 2025 by rpki-client