$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/OmykwDqKo_OhIj-e_WNN4PvU710.roa File: OmykwDqKo_OhIj-e_WNN4PvU710.roa (raw, json) Hash identifier: GBxL+xWYxc6wJ7cON+ySkKW27QmejcUQNNq0YHEMlgw= Subject key identifier: 3A:6C:A4:C0:3A:8A:A3:F3:A1:22:3F:9E:FD:63:4D:E0:FB:D4:EF:5D Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 1078 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/OmykwDqKo_OhIj-e_WNN4PvU710.roa Signing time: Fri 22 Aug 2025 08:54:18 +0000 ROA not before: Fri 22 Aug 2025 08:54:18 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9919 IP address blocks: 192.72.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4216 (0x1078) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 22 08:54:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3A6CA4C03A8AA3F3A1223F9EFD634DE0FBD4EF5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:7d:e4:aa:ca:dc:65:65:2b:c5:ef:91:76:cd: 9f:d6:a4:1d:2c:32:35:b2:b9:8a:aa:83:91:3f:0c: cd:a5:ce:16:da:a7:52:99:f5:8b:3d:c9:bf:6c:ee: 3f:a6:84:61:1e:63:47:ae:f3:c0:36:d5:ed:44:a6: fb:f0:de:54:48:eb:4c:9b:33:b0:1e:8b:23:86:1a: f6:d3:3e:db:8e:70:e0:11:2b:36:33:5a:4d:9b:78: 32:46:af:0e:0a:eb:88:10:84:f4:45:b5:7c:54:a0: 00:88:74:34:0c:f9:5b:b2:3c:e2:3a:bc:ef:75:09: 35:63:20:0b:ab:75:49:6d:5a:d3:44:73:1a:74:4d: 17:0c:db:91:5d:c2:e4:ec:bf:76:0b:f7:b8:50:6e: 9b:b6:13:31:73:62:4e:1d:1d:5a:19:6d:62:51:3c: bf:ad:f5:f7:53:e3:e2:11:75:f0:e8:f7:d2:50:27: 54:70:d7:7d:99:c5:96:5c:35:68:ff:4c:1b:89:58: 3b:aa:d8:cf:19:07:d1:28:d9:d6:e5:97:2a:fa:03: 66:32:b3:9d:59:43:95:36:77:59:03:9d:93:d5:2a: 13:d8:55:54:e4:2d:ba:a9:00:16:d1:67:76:41:3c: 8e:96:26:40:5f:a0:e6:bf:7b:e4:47:ec:31:77:a3: 9a:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:6C:A4:C0:3A:8A:A3:F3:A1:22:3F:9E:FD:63:4D:E0:FB:D4:EF:5D X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/OmykwDqKo_OhIj-e_WNN4PvU710.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.32.0/19 Signature Algorithm: sha256WithRSAEncryption 62:86:3d:ef:57:02:c6:d9:16:79:78:51:a6:83:62:47:83:c6: e8:d3:e2:b3:f3:43:c0:5c:b4:00:2c:1a:6e:8c:be:b4:db:9e: db:d2:82:a8:57:5d:8b:52:fd:33:25:39:d6:7e:07:4b:d4:33: bc:07:07:f2:9f:1a:ef:91:24:41:b8:88:d4:39:bb:f9:ed:22: bb:13:68:01:53:c4:5c:71:e9:04:62:71:06:ea:6f:df:24:7b: f9:34:2e:5d:99:fe:58:bb:93:fa:a6:5f:17:97:cd:8b:4d:ec: f7:90:b9:39:ca:68:26:d0:6b:0b:fb:b5:93:7b:ee:72:f4:9c: f7:ba:2e:79:92:84:d4:65:25:13:4d:06:47:92:da:a8:63:62: 1e:4d:53:92:5c:89:5b:a8:42:f4:a8:78:b1:7d:35:a2:70:8f: 29:5c:8d:98:a3:e4:ef:1f:d2:eb:c6:19:77:cd:4a:ac:d8:28: f8:15:1d:f1:8e:60:2b:75:9b:d1:81:10:23:55:68:1a:88:d9: 6a:9a:31:aa:5c:12:a1:d6:2d:09:bc:10:4d:c4:1a:60:c4:61: fe:a8:00:0c:26:51:79:0f:ac:e8:ca:fd:a6:8f:eb:84:99:cd: b2:72:6a:55:46:14:4c:7e:14:b3:27:0c:93:15:6b:f2:d8:c1: 8d:78:31:69 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEHgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNTA4MjIw ODU0MThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNBNkNBNEMwM0E4QUEz RjNBMTIyM0Y5RUZENjM0REUwRkJENEVGNUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDafeSqytxlZSvF75F2zZ/WpB0sMjWyuYqqg5E/DM2lzhbap1KZ 9Ys9yb9s7j+mhGEeY0eu88A21e1Epvvw3lRI60ybM7AeiyOGGvbTPtuOcOARKzYz Wk2beDJGrw4K64gQhPRFtXxUoACIdDQM+VuyPOI6vO91CTVjIAurdUltWtNEcxp0 TRcM25FdwuTsv3YL97hQbpu2EzFzYk4dHVoZbWJRPL+t9fdT4+IRdfDo99JQJ1Rw 132ZxZZcNWj/TBuJWDuq2M8ZB9Eo2dbllyr6A2Yys51ZQ5U2d1kDnZPVKhPYVVTk LbqpABbRZ3ZBPI6WJkBfoOa/e+RH7DF3o5pnAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUOmykwDqKo/OhIj+e/WNN4PvU710wHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvT215a3dEcUtvX09oSWotZV9XTk40 UHZVNzEwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcBIIDAN BgkqhkiG9w0BAQsFAAOCAQEAYoY971cCxtkWeXhRpoNiR4PG6NPis/NDwFy0ACwa boy+tNue29KCqFddi1L9MyU51n4HS9QzvAcH8p8a75EkQbiI1Dm7+e0iuxNoAVPE XHHpBGJxBupv3yR7+TQuXZn+WLuT+qZfF5fNi03s95C5OcpoJtBrC/u1k3vucvSc 97oueZKE1GUlE00GR5LaqGNiHk1TklyJW6hC9Kh4sX01onCPKVyNmKPk7x/S68YZ d81KrNgo+BUd8Y5gK3Wb0YEQI1VoGojZapoxqlwSodYtCbwQTcQaYMRh/qgADCZR eQ+s6Mr9po/rhJnNsnJqVUYUTH4UsycMkxVr8tjBjXgxaQ== -----END CERTIFICATE-----Generated at Sun Aug 24 09:45:02 2025 by rpki-client