$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/TTiz9UaPgKVOETFOKrGTb-r2azs.roa File: TTiz9UaPgKVOETFOKrGTb-r2azs.roa (raw, json) Hash identifier: fuwiYvLZh3Kik8ffbss8bUFNmDxTKwmFObh6mWlWlHs= Subject key identifier: 4D:38:B3:F5:46:8F:80:A5:4E:11:31:4E:2A:B1:93:6F:EA:F6:6B:3B Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 106A Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/TTiz9UaPgKVOETFOKrGTb-r2azs.roa Signing time: Fri 22 Aug 2025 08:54:13 +0000 ROA not before: Fri 22 Aug 2025 08:54:13 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 192.72.240.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4202 (0x106a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 22 08:54:13 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4D38B3F5468F80A54E11314E2AB1936FEAF66B3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ee:56:bc:b4:c5:a2:1f:9c:88:86:10:ff:99: 73:ac:16:8f:e4:3a:28:52:23:2c:d7:fc:5a:30:b0: 00:f5:4d:da:ba:27:cf:48:c5:55:31:36:f7:31:2a: ef:de:05:a5:ad:c5:61:57:f9:ab:3b:4f:de:90:c7: f0:54:9b:5d:1e:4e:bd:71:3c:62:82:de:56:ae:1d: f2:1e:38:7c:6f:a4:7c:48:a7:26:6d:ee:84:bc:94: 60:0e:9f:0d:2c:b0:4b:19:76:e8:3b:a9:3a:05:4f: 50:2d:f0:71:a0:b7:7e:5c:4a:ff:2c:69:76:f7:51: 6f:ef:70:f8:d6:d9:12:8c:35:91:f5:f6:de:c8:84: ac:ab:31:4a:e7:86:b2:d5:d7:aa:ae:4d:d1:30:10: 01:74:70:fa:61:74:ee:0f:de:02:6d:f3:c7:8a:b3: 18:ce:bf:a8:95:8e:50:46:b2:54:12:b8:98:bd:7b: 7b:53:3e:a0:b4:6e:dd:b6:b8:54:b3:e0:d0:2c:55: 4f:1b:b3:07:37:25:67:68:78:4c:2c:be:9a:2c:cf: 4a:36:ed:02:1f:7f:82:44:1b:02:7a:1b:d2:a1:47: b6:37:fa:95:c1:30:bd:28:6b:d3:24:ba:ff:68:6e: 05:01:e7:46:b2:0d:3e:dc:ce:44:51:ac:44:a0:bb: 18:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:38:B3:F5:46:8F:80:A5:4E:11:31:4E:2A:B1:93:6F:EA:F6:6B:3B X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/TTiz9UaPgKVOETFOKrGTb-r2azs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.240.0/21 Signature Algorithm: sha256WithRSAEncryption 54:aa:1f:ca:f8:71:8b:58:81:40:67:b7:e6:4a:39:1d:dd:ec: a4:6f:2d:6a:16:05:33:33:23:b1:32:6b:ae:f9:87:e9:d6:95: 2b:13:14:10:fd:53:53:35:e0:5a:31:28:d1:6a:19:e6:20:b4: 0c:ae:41:d5:ba:c6:f3:b1:46:b2:2b:de:ac:df:e9:49:4c:53: 9b:31:15:64:36:83:a7:b3:a7:c6:d9:a4:ef:9a:10:71:b9:c2: ba:6f:e3:96:ee:9a:4e:d6:23:51:93:02:54:72:31:8e:98:af: 78:ac:e2:b6:32:e6:c9:49:3c:c1:e7:ca:07:53:cc:e2:0a:6f: be:16:26:d9:78:33:df:65:57:d4:f3:ac:8c:89:a2:00:2d:b2: 88:dd:ce:e4:04:47:21:47:93:4d:8c:a5:a6:dd:8e:5f:d0:a7: 40:40:ef:03:c5:88:9f:08:3e:a9:9f:ec:4f:46:7d:dc:48:3b: d1:79:83:28:e4:1a:b4:34:55:66:7b:ce:c4:37:3c:bb:77:17: c1:1d:df:8a:af:85:26:bf:6c:45:6b:59:76:21:0f:47:f5:3d: a4:7c:5a:70:02:d0:63:1f:f4:db:06:b1:25:e2:0c:10:88:05: 83:42:a0:8f:63:9a:f3:b3:32:09:a8:c4:4a:5a:d4:95:90:c1: 25:a7:c6:84 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEGowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNTA4MjIw ODU0MTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDREMzhCM0Y1NDY4Rjgw QTU0RTExMzE0RTJBQjE5MzZGRUFGNjZCM0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDa7la8tMWiH5yIhhD/mXOsFo/kOihSIyzX/FowsAD1Tdq6J89I xVUxNvcxKu/eBaWtxWFX+as7T96Qx/BUm10eTr1xPGKC3lauHfIeOHxvpHxIpyZt 7oS8lGAOnw0ssEsZdug7qToFT1At8HGgt35cSv8saXb3UW/vcPjW2RKMNZH19t7I hKyrMUrnhrLV16quTdEwEAF0cPphdO4P3gJt88eKsxjOv6iVjlBGslQSuJi9e3tT PqC0bt22uFSz4NAsVU8bswc3JWdoeEwsvposz0o27QIff4JEGwJ6G9KhR7Y3+pXB ML0oa9Mkuv9obgUB50ayDT7czkRRrESguxjXAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUTTiz9UaPgKVOETFOKrGTb+r2azswHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvVFRpejlVYVBnS1ZPRVRGT0tyR1Ri LXIyYXpzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8BI8DAN BgkqhkiG9w0BAQsFAAOCAQEAVKofyvhxi1iBQGe35ko5Hd3spG8tahYFMzMjsTJr rvmH6daVKxMUEP1TUzXgWjEo0WoZ5iC0DK5B1brG87FGsiverN/pSUxTmzEVZDaD p7Onxtmk75oQcbnCum/jlu6aTtYjUZMCVHIxjpiveKzitjLmyUk8wefKB1PM4gpv vhYm2Xgz32VX1POsjImiAC2yiN3O5ARHIUeTTYylpt2OX9CnQEDvA8WInwg+qZ/s T0Z93Eg70XmDKOQatDRVZnvOxDc8u3cXwR3fiq+FJr9sRWtZdiEPR/U9pHxacALQ Yx/02waxJeIMEIgFg0Kgj2Oa87MyCajESlrUlZDBJafGhA== -----END CERTIFICATE-----Generated at Sun Aug 24 07:43:41 2025 by rpki-client