$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/N__2K8xQY2BdjczN7Pl9htb1jKM.roa File: N__2K8xQY2BdjczN7Pl9htb1jKM.roa (raw, json) Hash identifier: VELD7cAFloGsE403N3bSAf/b1Elhqqmin9H6C8IjWuc= Subject key identifier: 37:FF:F6:2B:CC:50:63:60:5D:8D:CC:CD:EC:F9:7D:86:D6:F5:8C:A3 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 1068 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/N__2K8xQY2BdjczN7Pl9htb1jKM.roa Signing time: Fri 22 Aug 2025 08:54:13 +0000 ROA not before: Fri 22 Aug 2025 08:54:13 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 192.72.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4200 (0x1068) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 22 08:54:13 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=37FFF62BCC5063605D8DCCCDECF97D86D6F58CA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:61:ec:bc:ed:ee:8e:0b:9b:7d:fd:36:1f:5a: 01:3a:b8:79:b5:da:88:61:09:d6:2f:58:ff:aa:77: f5:30:91:74:ae:3b:4a:82:67:b4:86:8f:03:a4:1b: e9:1a:cb:a5:c5:0c:29:0b:65:28:9e:53:ac:b7:ff: 65:1a:68:4a:7c:7a:0f:e3:f2:a3:b4:5b:3a:7b:0d: 14:ff:a9:fd:90:52:0c:2f:2f:26:7a:07:83:de:91: a2:67:c2:f6:9c:1e:6e:e6:7d:02:8d:de:be:e5:f5: 93:89:bb:4a:80:82:9d:5c:b3:f2:66:63:68:10:a1: 9c:7e:ea:d4:6f:ca:43:52:4d:37:63:5c:61:11:47: 3d:93:4d:b4:52:2d:1d:b8:0c:bc:61:f7:1a:0a:6c: 0b:7e:d6:b1:8c:18:bb:22:4a:79:ce:54:13:65:e1: 96:50:e8:2a:8f:32:a2:d8:6e:97:ea:b7:53:09:85: e8:32:82:10:53:76:09:39:fe:78:7b:89:2c:2b:ef: d1:22:4e:4f:2c:14:92:b2:4a:34:f1:b0:23:2c:31: ca:19:e4:25:39:6c:72:41:7e:c3:03:48:8d:b6:4e: b4:4c:8a:e6:d4:28:3e:57:b4:b8:88:3e:e8:d3:ac: 45:04:8b:a1:c6:b6:61:74:98:47:0c:7a:e9:42:aa: 74:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:FF:F6:2B:CC:50:63:60:5D:8D:CC:CD:EC:F9:7D:86:D6:F5:8C:A3 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/N__2K8xQY2BdjczN7Pl9htb1jKM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.32.0/19 Signature Algorithm: sha256WithRSAEncryption 47:6c:5c:b7:00:9b:a2:aa:75:2b:6a:1d:72:16:3e:31:41:d6: bc:52:36:80:4f:00:c5:df:26:3d:2b:9f:66:e5:2a:48:ed:b2: 85:e1:85:5c:99:53:ff:a1:51:1c:36:57:29:85:d4:b4:15:c9: 11:f1:1f:0f:79:86:fd:0f:27:9c:46:32:a4:a7:9a:0f:8d:71: 3c:0d:15:b6:7c:13:0f:9b:5c:f7:56:ef:43:c4:20:9f:cd:0b: 21:cd:bc:b4:dd:17:41:b3:b0:ad:25:63:ad:50:cd:ef:43:7f: 22:4c:e2:30:e4:b2:cc:d3:d1:dc:cd:72:d1:a6:8b:8d:2a:2e: 4d:fc:d1:ba:cf:0e:eb:12:eb:12:ba:37:0e:c9:cf:04:d2:19: e3:82:a3:8a:f4:04:9c:f2:9a:bf:bc:88:6c:01:6e:29:02:53: 64:0a:79:0b:04:2f:1b:66:b4:0e:26:55:c1:e5:dc:7b:c9:7d: 45:c8:87:a9:4f:ce:11:f1:7e:24:dc:25:4f:86:e3:5d:4b:28: c0:7e:77:ba:bf:24:2e:32:56:61:70:6e:21:a6:57:c3:5b:ef: 4e:70:a1:e0:2f:a3:8c:bc:d8:f7:81:86:51:72:58:95:81:b8: a5:7f:eb:08:be:de:46:f4:c7:32:ae:9f:b7:b1:b1:d7:b3:b4: 55:28:b8:5e -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEGgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNTA4MjIw ODU0MTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM3RkZGNjJCQ0M1MDYz NjA1RDhEQ0NDREVDRjk3RDg2RDZGNThDQTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDmYey87e6OC5t9/TYfWgE6uHm12ohhCdYvWP+qd/UwkXSuO0qC Z7SGjwOkG+kay6XFDCkLZSieU6y3/2UaaEp8eg/j8qO0Wzp7DRT/qf2QUgwvLyZ6 B4PekaJnwvacHm7mfQKN3r7l9ZOJu0qAgp1cs/JmY2gQoZx+6tRvykNSTTdjXGER Rz2TTbRSLR24DLxh9xoKbAt+1rGMGLsiSnnOVBNl4ZZQ6CqPMqLYbpfqt1MJhegy ghBTdgk5/nh7iSwr79EiTk8sFJKySjTxsCMsMcoZ5CU5bHJBfsMDSI22TrRMiubU KD5XtLiIPujTrEUEi6HGtmF0mEcMeulCqnT7AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUN//2K8xQY2BdjczN7Pl9htb1jKMwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTl9fMks4eFFZMkJkamN6TjdQbDlo dGIxaktNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcBIIDAN BgkqhkiG9w0BAQsFAAOCAQEAR2xctwCboqp1K2odchY+MUHWvFI2gE8Axd8mPSuf ZuUqSO2yheGFXJlT/6FRHDZXKYXUtBXJEfEfD3mG/Q8nnEYypKeaD41xPA0VtnwT D5tc91bvQ8Qgn80LIc28tN0XQbOwrSVjrVDN70N/IkziMOSyzNPR3M1y0aaLjSou TfzRus8O6xLrEro3DsnPBNIZ44KjivQEnPKav7yIbAFuKQJTZAp5CwQvG2a0DiZV weXce8l9RciHqU/OEfF+JNwlT4bjXUsowH53ur8kLjJWYXBuIaZXw1vvTnCh4C+j jLzY94GGUXJYlYG4pX/rCL7eRvTHMq6ft7Gx17O0VSi4Xg== -----END CERTIFICATE-----Generated at Sun Aug 24 07:42:03 2025 by rpki-client