$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/_wMToPeVjEc82P9x5_Ob8Bt2Evo.roa File: _wMToPeVjEc82P9x5_Ob8Bt2Evo.roa (raw, json) Hash identifier: 4WGmkQQhWUJ99UnEm4FbbxPAnkLUSpJlD6H8RK3X1lA= Subject key identifier: FF:03:13:A0:F7:95:8C:47:3C:D8:FF:71:E7:F3:9B:F0:1B:76:12:FA Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A91 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/_wMToPeVjEc82P9x5_Ob8Bt2Evo.roa Signing time: Wed 27 Aug 2025 09:12:11 +0000 ROA not before: Wed 27 Aug 2025 09:12:11 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9918 IP address blocks: 211.78.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 17:56:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6801 (0x1a91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 27 09:12:11 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FF0313A0F7958C473CD8FF71E7F39BF01B7612FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f2:7c:d2:96:a3:32:fd:ab:49:78:1d:7a:8c: f8:7f:16:39:05:bd:85:a3:0c:80:ff:40:6d:48:b3: 87:c8:17:17:2c:d3:7b:61:9f:68:fe:22:53:0e:49: e4:a9:77:d7:c3:cc:d0:12:79:d5:2c:30:2c:73:1b: e1:c8:47:82:98:8d:48:80:7a:aa:67:40:42:d3:02: db:e4:8b:dc:91:bb:90:52:05:c6:73:5e:e8:d9:57: a3:98:84:e4:8c:8f:36:62:66:62:ff:2f:ba:0a:4e: f0:23:09:0d:b5:93:20:da:fd:46:59:82:b0:f9:77: 08:8f:57:f0:67:d4:17:e1:52:25:61:82:86:52:06: 77:15:11:f3:26:28:82:7c:33:81:28:f4:b0:9b:c6: 3a:25:be:89:bd:c6:4d:d3:9f:0f:dd:20:0e:8f:db: 33:20:48:f7:5c:91:4c:e5:a4:7e:d1:ba:6d:4a:f1: 74:6a:39:be:1a:f8:9a:71:69:dd:60:c0:80:36:1d: 2e:3e:9b:6d:88:3a:58:7f:f1:06:79:02:6e:3a:30: ba:75:29:a8:83:3c:6e:f3:d6:1e:81:29:f5:92:13: 95:29:5b:ad:f7:36:78:cb:cf:0d:e2:23:df:14:01: 6b:47:b2:a1:9c:6d:9e:7e:99:64:2c:4a:02:7e:b8: 59:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:03:13:A0:F7:95:8C:47:3C:D8:FF:71:E7:F3:9B:F0:1B:76:12:FA X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/_wMToPeVjEc82P9x5_Ob8Bt2Evo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.78.0.0/18 Signature Algorithm: sha256WithRSAEncryption 2c:04:34:ea:4d:88:91:5d:bc:35:6c:c9:3b:d1:e8:5a:61:c9: 22:5a:a2:78:7c:85:f6:c9:d8:00:0c:4b:71:23:42:b6:e6:15: b5:5f:c7:d9:e1:90:c2:ee:91:47:d0:e3:79:9c:53:90:65:d2: 52:aa:78:9f:18:56:76:3b:f9:10:1e:b6:23:84:6e:5c:54:ee: b6:06:ba:63:b8:7e:c9:37:29:f9:2e:0d:e5:42:0c:3d:b2:6e: 24:04:82:aa:3b:e4:48:17:2a:19:c6:12:0b:b6:01:78:bc:4f: e2:75:69:cc:61:af:bb:11:9b:fe:d9:de:c6:5f:d7:33:70:e5: 4d:ef:52:b3:d4:37:f5:aa:b3:aa:ee:2e:5e:89:7f:79:e2:cc: 8b:a9:30:b4:ab:c4:db:fe:0d:54:97:54:43:1b:00:e6:ee:fa: 85:14:12:22:58:e3:d1:51:96:2a:46:da:2d:1c:74:0e:0c:2f: f7:b4:15:30:2b:b2:24:f1:8e:4e:da:26:20:18:b9:8d:3a:68: 74:f3:32:11:e0:be:67:b0:84:63:b0:e7:97:b4:22:6c:54:86: fd:57:7f:5a:6d:3f:b2:52:0c:e7:d7:a4:5a:b1:49:0b:31:bb: df:97:22:b9:1f:26:60:ec:bb:61:b3:5d:92:73:45:16:75:e5: 69:ec:1a:7b -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGpEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4Mjcw OTEyMTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZGMDMxM0EwRjc5NThD NDczQ0Q4RkY3MUU3RjM5QkYwMUI3NjEyRkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDW8nzSlqMy/atJeB16jPh/FjkFvYWjDID/QG1Is4fIFxcs03th n2j+IlMOSeSpd9fDzNASedUsMCxzG+HIR4KYjUiAeqpnQELTAtvki9yRu5BSBcZz XujZV6OYhOSMjzZiZmL/L7oKTvAjCQ21kyDa/UZZgrD5dwiPV/Bn1BfhUiVhgoZS BncVEfMmKIJ8M4Eo9LCbxjolvom9xk3Tnw/dIA6P2zMgSPdckUzlpH7Rum1K8XRq Ob4a+Jpxad1gwIA2HS4+m22IOlh/8QZ5Am46MLp1KaiDPG7z1h6BKfWSE5UpW633 NnjLzw3iI98UAWtHsqGcbZ5+mWQsSgJ+uFlbAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU/wMToPeVjEc82P9x5/Ob8Bt2EvowHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvX3dNVG9QZVZqRWM4MlA5eDVfT2I4 QnQyRXZvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBtNOADAN BgkqhkiG9w0BAQsFAAOCAQEALAQ06k2IkV28NWzJO9HoWmHJIlqieHyF9snYAAxL cSNCtuYVtV/H2eGQwu6RR9DjeZxTkGXSUqp4nxhWdjv5EB62I4RuXFTutga6Y7h+ yTcp+S4N5UIMPbJuJASCqjvkSBcqGcYSC7YBeLxP4nVpzGGvuxGb/tnexl/XM3Dl Te9Ss9Q39aqzqu4uXol/eeLMi6kwtKvE2/4NVJdUQxsA5u76hRQSIljj0VGWKkba LRx0Dgwv97QVMCuyJPGOTtomIBi5jTpodPMyEeC+Z7CEY7Dnl7QibFSG/Vd/Wm0/ slIM59ekWrFJCzG735ciuR8mYOy7YbNdknNFFnXlaewaew== -----END CERTIFICATE-----Generated at Mon Oct 20 14:42:42 2025 by rpki-client