$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/_JBqYkN_Tdxe8Zm-zPSOwQ32iUo.roa File: _JBqYkN_Tdxe8Zm-zPSOwQ32iUo.roa (raw, json) Hash identifier: wAkFTboa+uHLbROV/IIGNsivXLKJp+7n4edEl4odcDk= Subject key identifier: FC:90:6A:62:43:7F:4D:DC:5E:F1:99:BE:CC:F4:8E:C1:0D:F6:89:4A Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 19BA Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/_JBqYkN_Tdxe8Zm-zPSOwQ32iUo.roa Signing time: Fri 22 Aug 2025 08:53:18 +0000 ROA not before: Fri 22 Aug 2025 08:53:18 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131602 IP address blocks: 106.105.160.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6586 (0x19ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FC906A62437F4DDC5EF199BECCF48EC10DF6894A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:31:10:ba:95:83:76:88:c5:82:20:6c:b5:f1: 5f:62:fa:2a:d8:b5:ef:73:a4:46:25:72:36:69:3b: 10:24:1e:de:8c:9a:90:77:80:b7:51:43:82:0b:0a: 3e:0d:42:ab:df:4f:f3:8a:c9:d9:b0:bf:62:9d:28: 95:7b:bc:88:73:3f:d3:8a:eb:3e:6b:6c:28:0b:2b: 68:b8:2d:3f:f3:65:a7:0c:34:aa:1b:d8:ae:63:f6: 05:67:0e:2e:e5:5f:cf:8d:2c:2e:43:80:70:d9:b8: 91:13:bb:56:19:c6:d8:c8:44:85:ef:76:9c:6c:6d: 21:4e:20:c0:a8:34:83:a8:26:eb:fa:f1:a9:7b:87: dc:5c:1e:8d:6f:e2:d7:61:e1:93:23:15:db:76:96: e9:45:0f:67:5d:46:74:5e:36:ac:62:40:dd:b9:a0: d7:b7:5f:87:36:d1:3d:64:c9:7e:c3:b4:8f:df:ae: 8d:40:86:7f:cf:86:37:67:5f:62:d1:b2:e2:73:20: 4a:43:5c:8b:34:cd:13:1c:90:a0:3e:c3:a9:58:ab: e3:4d:a3:e4:c2:f5:6e:51:b1:8a:a7:91:48:ff:d5: c7:22:1d:81:91:a4:ab:8a:8c:d9:1c:dc:1c:8a:75: 3c:6e:30:54:86:29:86:c1:23:41:4c:fb:e9:52:d8: d7:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:90:6A:62:43:7F:4D:DC:5E:F1:99:BE:CC:F4:8E:C1:0D:F6:89:4A X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/_JBqYkN_Tdxe8Zm-zPSOwQ32iUo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.160.0/22 Signature Algorithm: sha256WithRSAEncryption 32:57:21:ca:27:8d:c1:ca:41:1c:73:ec:65:b6:ac:3a:3b:5a: 59:2c:ce:8c:33:5d:4e:7b:ba:30:15:f6:66:3c:48:98:86:e8: 31:d6:b9:f3:a8:86:3a:97:f0:7a:96:58:ea:27:f4:6d:de:c5: 50:32:8d:25:eb:72:f3:08:7b:bc:3e:a6:dc:e9:33:58:5a:06: 74:9d:7c:ca:de:62:23:97:37:d7:ad:86:89:91:66:53:3c:df: 8b:a7:13:1e:26:33:41:9d:b6:a5:9c:6b:97:db:b3:4b:11:b0: ca:57:a2:4c:21:74:43:fb:a3:c3:fb:ea:84:fa:f1:35:80:38: 00:74:94:db:23:89:3b:d9:73:62:eb:bd:65:be:2a:24:c9:7b: ba:a2:9a:d1:0b:eb:d3:39:08:23:55:0e:9f:1f:e2:ab:5e:81: 41:ff:26:cb:c0:89:f2:a3:49:a9:4a:cb:b5:8a:2e:06:f0:8f: 47:3a:4f:44:b2:94:9c:fc:da:6e:45:72:d2:02:bb:91:cc:7b: 0f:d9:20:c7:f5:05:8d:69:db:7f:b4:a4:0d:07:7d:69:01:ec: 66:20:4d:5c:dd:50:41:7f:64:a3:ab:4a:59:27:fc:e7:76:b6: dc:a5:5b:dd:2c:7d:84:c9:ca:c0:da:43:37:ce:b8:c1:a2:fa: d8:29:49:99 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGbowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZDOTA2QTYyNDM3RjRE REM1RUYxOTlCRUNDRjQ4RUMxMERGNjg5NEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIMRC6lYN2iMWCIGy18V9i+irYte9zpEYlcjZpOxAkHt6MmpB3 gLdRQ4ILCj4NQqvfT/OKydmwv2KdKJV7vIhzP9OK6z5rbCgLK2i4LT/zZacMNKob 2K5j9gVnDi7lX8+NLC5DgHDZuJETu1YZxtjIRIXvdpxsbSFOIMCoNIOoJuv68al7 h9xcHo1v4tdh4ZMjFdt2lulFD2ddRnReNqxiQN25oNe3X4c20T1kyX7DtI/fro1A hn/PhjdnX2LRsuJzIEpDXIs0zRMckKA+w6lYq+NNo+TC9W5RsYqnkUj/1cciHYGR pKuKjNkc3ByKdTxuMFSGKYbBI0FM++lS2NeVAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU/JBqYkN/Tdxe8Zm+zPSOwQ32iUowHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvX0pCcVlrTl9UZHhlOFptLXpQU093 UTMyaVVvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmppoDAN BgkqhkiG9w0BAQsFAAOCAQEAMlchyieNwcpBHHPsZbasOjtaWSzOjDNdTnu6MBX2 ZjxImIboMda586iGOpfwepZY6if0bd7FUDKNJety8wh7vD6m3OkzWFoGdJ18yt5i I5c3162GiZFmUzzfi6cTHiYzQZ22pZxrl9uzSxGwyleiTCF0Q/ujw/vqhPrxNYA4 AHSU2yOJO9lzYuu9Zb4qJMl7uqKa0Qvr0zkII1UOnx/iq16BQf8my8CJ8qNJqUrL tYouBvCPRzpPRLKUnPzabkVy0gK7kcx7D9kgx/UFjWnbf7SkDQd9aQHsZiBNXN1Q QX9ko6tKWSf853a23KVb3Sx9hMnKwNpDN864waL62ClJmQ== -----END CERTIFICATE-----Generated at Sun Aug 24 13:51:14 2025 by rpki-client