$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/XlPfNH0vbfjGxMUcCxSTUILyWrg.roa File: XlPfNH0vbfjGxMUcCxSTUILyWrg.roa (raw, json) Hash identifier: x6MKR85Bu5GxCIyC76TYdv2YvJq6JpI8g5PjH2xmj4c= Subject key identifier: 5E:53:DF:34:7D:2F:6D:F8:C6:C4:C5:1C:0B:14:93:50:82:F2:5A:B8 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 19F9 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XlPfNH0vbfjGxMUcCxSTUILyWrg.roa Signing time: Fri 22 Aug 2025 08:53:35 +0000 ROA not before: Fri 22 Aug 2025 08:53:35 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18049 IP address blocks: 175.183.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6649 (0x19f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:35 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5E53DF347D2F6DF8C6C4C51C0B14935082F25AB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:0d:44:61:b4:15:b8:c1:12:85:e2:6f:ff:3e: df:0e:4e:a0:77:14:45:39:e8:9a:96:8f:fc:81:2f: 6b:a8:4e:82:31:a9:1f:c4:26:21:2f:62:51:e6:35: a4:57:89:81:7d:f5:1c:42:3d:5d:d8:7a:69:f9:6f: 48:f0:09:13:9e:c4:20:bd:cb:29:38:18:8f:43:81: ad:96:f9:2e:d7:70:1f:91:b7:77:e7:9d:86:d7:f5: 5a:11:00:6b:ca:2b:d5:42:a0:32:a0:91:a1:41:1a: 91:3a:ec:ec:d5:ac:c4:86:6e:69:1e:e0:0b:5d:5c: 7e:aa:7f:db:06:8f:ae:71:c6:14:c1:2f:d6:55:62: fc:c0:f8:52:5b:50:4a:0b:83:b8:a3:76:05:57:08: a3:7d:16:89:e8:b1:13:79:02:29:05:98:cc:ad:70: fc:a0:b9:6a:e8:f5:15:50:50:1a:27:35:67:65:fd: ab:03:08:3e:98:e1:ba:7b:92:12:2a:e3:b4:fe:ee: 34:b4:1c:63:93:ec:8d:3b:b9:55:7e:4a:39:0c:53: ab:16:70:50:71:f7:94:51:4d:0d:f1:d0:02:87:8e: d3:bc:22:b9:dd:ad:8d:a9:a3:49:e5:63:4a:a3:27: f2:18:3b:64:5d:3d:c3:d6:41:88:af:c1:97:14:06: 7d:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:53:DF:34:7D:2F:6D:F8:C6:C4:C5:1C:0B:14:93:50:82:F2:5A:B8 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XlPfNH0vbfjGxMUcCxSTUILyWrg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.183.0.0/19 Signature Algorithm: sha256WithRSAEncryption 0a:57:c7:8c:e3:15:74:1d:bf:ab:79:db:c5:c7:3d:e7:88:63: 72:a4:40:e7:5e:98:02:7f:99:f6:62:52:9e:1d:70:0f:55:50: 2c:8e:3a:b9:ae:b3:6e:7c:af:24:1b:52:bb:fb:c0:92:f6:42: 33:f5:18:0b:67:b8:2b:b3:2b:a6:57:12:10:e7:63:63:74:b2: ce:60:c7:45:32:13:26:c1:29:97:55:18:56:d7:5e:f9:e0:b5: 68:d8:6b:dd:bd:cc:71:c9:f2:7d:c0:ba:8e:b5:29:1b:ce:be: 06:e8:7e:3e:1e:56:63:1c:d5:46:70:ff:09:d9:cb:dd:4e:aa: 0a:5f:b3:ff:2b:2a:0c:85:6e:08:8d:21:54:6f:d7:2b:da:94: 41:00:a2:19:f5:cf:34:db:3c:d0:dd:02:27:ce:70:08:5d:e0: d0:0f:ae:f8:d8:ad:d6:01:54:2a:60:db:b8:9e:3a:3b:09:6b: 1e:d1:57:24:21:8a:18:26:88:40:0d:9c:17:a5:63:3f:29:f1: 1e:02:14:6b:94:3e:16:49:75:bc:e3:cc:90:1b:5b:7e:8b:b0: 8a:6d:ba:a3:2b:f8:e7:1d:88:ec:fc:19:c7:02:8d:00:42:ae: ba:95:38:ad:4c:a5:6f:7b:b1:ca:c0:c9:cc:ca:63:e6:11:b1: a9:ba:7b:b4 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGfkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMzVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDVFNTNERjM0N0QyRjZE RjhDNkM0QzUxQzBCMTQ5MzUwODJGMjVBQjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGDURhtBW4wRKF4m//Pt8OTqB3FEU56JqWj/yBL2uoToIxqR/E JiEvYlHmNaRXiYF99RxCPV3Yemn5b0jwCROexCC9yyk4GI9Dga2W+S7XcB+Rt3fn nYbX9VoRAGvKK9VCoDKgkaFBGpE67OzVrMSGbmke4AtdXH6qf9sGj65xxhTBL9ZV YvzA+FJbUEoLg7ijdgVXCKN9FonosRN5AikFmMytcPyguWro9RVQUBonNWdl/asD CD6Y4bp7khIq47T+7jS0HGOT7I07uVV+SjkMU6sWcFBx95RRTQ3x0AKHjtO8Irnd rY2po0nlY0qjJ/IYO2RdPcPWQYivwZcUBn2dAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUXlPfNH0vbfjGxMUcCxSTUILyWrgwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvWGxQZk5IMHZiZmpHeE1VY0N4U1RV SUx5V3JnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBa+3ADAN BgkqhkiG9w0BAQsFAAOCAQEAClfHjOMVdB2/q3nbxcc954hjcqRA516YAn+Z9mJS nh1wD1VQLI46ua6zbnyvJBtSu/vAkvZCM/UYC2e4K7MrplcSEOdjY3SyzmDHRTIT JsEpl1UYVtde+eC1aNhr3b3MccnyfcC6jrUpG86+Buh+Ph5WYxzVRnD/CdnL3U6q Cl+z/ysqDIVuCI0hVG/XK9qUQQCiGfXPNNs80N0CJ85wCF3g0A+u+Nit1gFUKmDb uJ46OwlrHtFXJCGKGCaIQA2cF6VjPynxHgIUa5Q+Fkl1vOPMkBtbfouwim26oyv4 5x2I7PwZxwKNAEKuupU4rUylb3uxysDJzMpj5hGxqbp7tA== -----END CERTIFICATE-----Generated at Sun Aug 24 13:50:08 2025 by rpki-client