$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/K6k_JojsMffqTQQNRkAOU6LkcVE.roa File: K6k_JojsMffqTQQNRkAOU6LkcVE.roa (raw, json) Hash identifier: d7kC+M7VIYXkRhySB7VjigryW3Hreik0GJkXcRk3wRE= Subject key identifier: 2B:A9:3F:26:88:EC:31:F7:EA:4D:04:0D:46:40:0E:53:A2:E4:71:51 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A0D Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/K6k_JojsMffqTQQNRkAOU6LkcVE.roa Signing time: Fri 22 Aug 2025 08:53:40 +0000 ROA not before: Fri 22 Aug 2025 08:53:40 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18049 IP address blocks: 123.205.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6669 (0x1a0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:40 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2BA93F2688EC31F7EA4D040D46400E53A2E47151 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:0f:7f:a3:05:06:bf:5a:92:7c:72:8b:fd:3c: d8:78:9d:bf:a4:b8:65:e2:15:99:c2:ad:41:c3:62: e5:18:14:da:3c:3e:6e:90:0e:50:b5:04:39:7f:c2: 31:12:56:98:7f:2e:d4:36:7b:85:64:4c:c3:4f:f7: 5b:23:33:3b:94:3c:81:b5:6b:8e:ee:5c:36:21:22: a4:c3:db:a1:ad:c1:e3:63:83:6a:65:19:9d:2a:5d: 61:b4:57:4a:a1:f0:6f:d4:91:0b:9f:e3:d1:69:90: 7c:84:ae:62:75:ec:f4:50:f8:e1:33:45:87:28:65: b9:e5:7e:28:d1:cf:9b:ac:4b:85:b5:cd:ac:02:85: 6b:11:bc:29:e3:c7:5c:f9:43:78:47:be:b5:6e:19: f5:16:00:1e:29:bc:b4:bd:57:89:e6:32:9a:80:4f: 9a:32:38:89:27:42:9d:9c:cd:2d:ec:e6:88:47:b9: 65:f6:03:09:58:08:1e:2e:39:af:79:c9:62:3f:aa: ee:64:96:f9:50:a1:d1:86:ae:c3:97:c7:0f:a3:68: d6:59:71:2d:47:2d:ad:e7:4a:e5:5b:9b:72:80:b1: 72:38:9d:3f:60:23:58:4d:63:4a:27:c5:e4:04:5a: c0:62:82:5c:5a:d7:72:70:19:58:df:e4:75:0c:4c: a2:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:A9:3F:26:88:EC:31:F7:EA:4D:04:0D:46:40:0E:53:A2:E4:71:51 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/K6k_JojsMffqTQQNRkAOU6LkcVE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.205.0.0/17 Signature Algorithm: sha256WithRSAEncryption 27:e3:d8:c2:2c:de:71:60:be:6a:83:01:e5:00:a3:c0:4b:75: bf:e7:c7:eb:0d:93:8b:1e:4f:38:71:27:d1:44:11:ae:0c:10: d6:cc:69:6b:32:3b:84:02:7d:66:4b:e5:4d:cf:58:24:a5:32: a4:8e:7d:c0:bf:94:3b:1d:5d:4f:a7:14:b3:ae:a8:82:72:d7: 01:41:ee:38:05:68:d9:98:ad:6c:29:9a:28:4d:78:5d:fa:d6: 4f:92:19:fc:65:4b:97:12:f2:86:db:8d:52:ca:f1:cb:01:d5: b9:49:57:e7:93:29:67:bc:9d:58:0f:05:3d:fb:ff:43:b4:75: 34:78:f8:b1:05:db:1a:04:11:3d:7e:5a:31:6b:c4:72:52:69: 90:a8:89:84:d6:a3:cf:8a:76:fb:5f:19:1f:ea:6f:59:ca:aa: 56:ca:1a:8e:57:50:a5:06:8c:be:82:6b:26:4c:b9:49:1b:43: 16:dc:22:50:f8:fc:02:09:dd:07:78:49:db:2e:09:0d:7f:1b: 9d:9d:0c:c6:01:05:37:f5:55:98:95:e2:43:20:62:3a:f3:55: bc:6c:8f:fb:52:6e:5c:98:59:c0:28:97:71:43:ad:a6:1d:3e: d5:3e:d1:74:83:a3:56:1b:7b:8c:9a:79:50:67:7a:66:33:cb: 9b:55:4b:50 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGg0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzNDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJCQTkzRjI2ODhFQzMx RjdFQTREMDQwRDQ2NDAwRTUzQTJFNDcxNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjD3+jBQa/WpJ8cov9PNh4nb+kuGXiFZnCrUHDYuUYFNo8Pm6Q DlC1BDl/wjESVph/LtQ2e4VkTMNP91sjMzuUPIG1a47uXDYhIqTD26GtweNjg2pl GZ0qXWG0V0qh8G/UkQuf49FpkHyErmJ17PRQ+OEzRYcoZbnlfijRz5usS4W1zawC hWsRvCnjx1z5Q3hHvrVuGfUWAB4pvLS9V4nmMpqAT5oyOIknQp2czS3s5ohHuWX2 AwlYCB4uOa95yWI/qu5klvlQodGGrsOXxw+jaNZZcS1HLa3nSuVbm3KAsXI4nT9g I1hNY0onxeQEWsBiglxa13JwGVjf5HUMTKL1AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUK6k/JojsMffqTQQNRkAOU6LkcVEwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvSzZrX0pvanNNZmZxVFFRTlJrQU9V NkxrY1ZFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB3vNADAN BgkqhkiG9w0BAQsFAAOCAQEAJ+PYwizecWC+aoMB5QCjwEt1v+fH6w2Tix5POHEn 0UQRrgwQ1sxpazI7hAJ9ZkvlTc9YJKUypI59wL+UOx1dT6cUs66ognLXAUHuOAVo 2ZitbCmaKE14XfrWT5IZ/GVLlxLyhtuNUsrxywHVuUlX55MpZ7ydWA8FPfv/Q7R1 NHj4sQXbGgQRPX5aMWvEclJpkKiJhNajz4p2+18ZH+pvWcqqVsoajldQpQaMvoJr Jky5SRtDFtwiUPj8AgndB3hJ2y4JDX8bnZ0MxgEFN/VVmJXiQyBiOvNVvGyP+1Ju XJhZwCiXcUOtph0+1T7RdIOjVht7jJp5UGd6ZjPLm1VLUA== -----END CERTIFICATE-----Generated at Sun Aug 24 13:52:15 2025 by rpki-client