$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/aBF3fhVJ-SxzfHLtRPEjyuqa-7A.roa File: aBF3fhVJ-SxzfHLtRPEjyuqa-7A.roa (raw, json) Hash identifier: FhJPZALeO/rzRaGl+GqOeJCyjn9BTDTnh6sbNs6jYhI= Subject key identifier: 68:11:77:7E:15:49:F9:2C:73:7C:72:ED:44:F1:23:CA:EA:9A:FB:B0 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A4D Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/aBF3fhVJ-SxzfHLtRPEjyuqa-7A.roa Signing time: Fri 22 Aug 2025 08:53:55 +0000 ROA not before: Fri 22 Aug 2025 08:53:55 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18049 IP address blocks: 112.105.56.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6733 (0x1a4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:55 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6811777E1549F92C737C72ED44F123CAEA9AFBB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:da:a1:f6:cd:cf:3b:75:8b:59:e0:b4:35:3c: 8a:d9:6a:12:c2:80:ed:70:dd:ab:bf:a0:50:b9:bb: 36:21:10:18:30:a0:4e:64:d8:b8:b6:b6:93:ea:1b: 45:66:49:cd:e2:3e:97:6e:09:9f:a7:1a:dd:93:9e: 29:c3:62:03:f2:0d:6d:15:cc:b6:ef:07:5f:21:35: e8:83:64:be:e0:d6:7a:fd:e2:11:13:87:5c:fd:f4: 31:9e:dd:6d:be:7b:25:cd:46:e1:a1:ca:44:67:c2: f8:c1:25:f0:d0:c0:24:f1:82:dd:ff:16:8a:f9:31: 45:4a:85:ed:ef:5d:fc:da:9b:92:bb:76:17:3f:8a: 16:7c:96:61:bf:f1:be:04:c3:75:25:63:3e:ee:f0: 53:78:9a:bd:de:49:97:1d:8c:5e:3c:a3:df:86:e8: a6:66:28:63:98:a9:a1:52:38:cd:22:58:2a:a2:fa: 11:5e:49:4b:de:c8:9b:6b:48:bf:ec:d4:12:fd:a8: c6:56:72:1e:6f:74:bf:a4:32:a7:ed:4d:a0:e5:83: d2:95:d5:e6:e8:72:f6:8e:d7:56:9c:6d:60:85:b3: 62:c4:bd:a5:0f:68:67:97:c2:72:e1:9a:70:dd:e5: 04:bd:02:5c:72:d1:da:d8:4c:9f:94:8a:05:8e:cc: 1e:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:11:77:7E:15:49:F9:2C:73:7C:72:ED:44:F1:23:CA:EA:9A:FB:B0 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/aBF3fhVJ-SxzfHLtRPEjyuqa-7A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 112.105.56.0/22 Signature Algorithm: sha256WithRSAEncryption b7:fa:88:5c:5f:b7:8c:8a:d8:9a:e6:4c:2a:ae:d4:09:e2:ab: dd:6e:42:02:95:a3:7a:5c:0b:04:c2:6a:0f:b3:eb:20:e5:68: 04:75:eb:dd:a2:2f:2b:83:d3:bd:d1:2d:1e:4c:bc:d2:22:9a: cd:ab:ed:5c:14:ed:bb:5a:93:a0:6c:72:88:f0:e5:0c:71:3c: 6d:1c:70:50:aa:24:99:f8:62:ed:c7:87:a2:f3:55:62:b5:dc: 8a:8f:5a:89:aa:ef:f2:d4:04:f1:f5:64:c7:20:f2:a9:3e:9c: 4f:3d:6c:55:84:94:ef:80:cf:fa:14:bf:dc:95:20:c9:07:08: 95:d6:cb:af:9a:8d:6a:f2:f3:1c:cb:f7:69:de:2f:25:50:ae: 34:4c:0c:40:1e:a5:23:d4:5f:1c:d8:e6:4a:d4:32:3e:fb:91: c5:46:f4:bc:9a:a7:d2:33:0c:07:6b:d4:f0:c1:04:54:8b:42: 2a:fe:6e:91:58:92:f1:19:db:35:66:29:a6:de:e6:5f:09:e8: f3:bd:c8:27:9d:58:a6:cf:6f:4d:19:16:92:88:2d:bb:78:14: 61:e2:a6:93:2b:f4:10:78:56:95:66:65:8e:4d:34:86:76:5c: 97:7f:7c:c1:ce:70:4e:02:02:85:e3:c2:64:30:7f:83:38:40: 9c:52:5d:9c -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGk0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzNTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY4MTE3NzdFMTU0OUY5 MkM3MzdDNzJFRDQ0RjEyM0NBRUE5QUZCQjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC92qH2zc87dYtZ4LQ1PIrZahLCgO1w3au/oFC5uzYhEBgwoE5k 2Li2tpPqG0VmSc3iPpduCZ+nGt2TninDYgPyDW0VzLbvB18hNeiDZL7g1nr94hET h1z99DGe3W2+eyXNRuGhykRnwvjBJfDQwCTxgt3/For5MUVKhe3vXfzam5K7dhc/ ihZ8lmG/8b4Ew3UlYz7u8FN4mr3eSZcdjF48o9+G6KZmKGOYqaFSOM0iWCqi+hFe SUveyJtrSL/s1BL9qMZWch5vdL+kMqftTaDlg9KV1ebocvaO11acbWCFs2LEvaUP aGeXwnLhmnDd5QS9Alxy0drYTJ+UigWOzB7PAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUaBF3fhVJ+SxzfHLtRPEjyuqa+7AwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvYUJGM2ZoVkotU3h6ZkhMdFJQRWp5 dXFhLTdBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnBpODAN BgkqhkiG9w0BAQsFAAOCAQEAt/qIXF+3jIrYmuZMKq7UCeKr3W5CApWjelwLBMJq D7PrIOVoBHXr3aIvK4PTvdEtHky80iKazavtXBTtu1qToGxyiPDlDHE8bRxwUKok mfhi7ceHovNVYrXcio9aiarv8tQE8fVkxyDyqT6cTz1sVYSU74DP+hS/3JUgyQcI ldbLr5qNavLzHMv3ad4vJVCuNEwMQB6lI9RfHNjmStQyPvuRxUb0vJqn0jMMB2vU 8MEEVItCKv5ukViS8RnbNWYppt7mXwno873IJ51Yps9vTRkWkogtu3gUYeKmkyv0 EHhWlWZljk00hnZcl398wc5wTgIChePCZDB/gzhAnFJdnA== -----END CERTIFICATE-----Generated at Sun Aug 24 13:49:37 2025 by rpki-client