$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/dZvF-0bsdl6n4-_a-7M1Jy8CjI0.roa File: dZvF-0bsdl6n4-_a-7M1Jy8CjI0.roa (raw, json) Hash identifier: XTLwtUAZ6bABqaO6i6/ZP5JEdnSMF7UcFZVU3ADitqc= Subject key identifier: 75:9B:C5:FB:46:EC:76:5E:A7:E3:EF:DA:FB:B3:35:27:2F:02:8C:8D Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 1074 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/dZvF-0bsdl6n4-_a-7M1Jy8CjI0.roa Signing time: Fri 22 Aug 2025 08:54:16 +0000 ROA not before: Fri 22 Aug 2025 08:54:16 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9919 IP address blocks: 192.72.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4212 (0x1074) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 22 08:54:16 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=759BC5FB46EC765EA7E3EFDAFBB335272F028C8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:bd:e2:4d:5b:11:ee:16:3b:dc:2d:8e:7e:12: 87:47:fa:c5:22:bb:3e:2d:34:9f:8f:08:9e:5b:58: 84:a1:f4:d3:03:06:09:bd:bd:e6:d0:58:04:8e:10: e0:3f:a1:ac:16:fe:17:66:53:a6:11:a5:78:38:c0: b0:87:bc:70:d7:bf:9f:eb:3b:06:cc:61:18:cd:20: 7b:ac:4d:43:0a:9c:f6:56:5f:a5:de:60:33:85:62: 35:91:1c:25:29:1c:0a:1a:42:7f:48:bf:ab:28:12: 14:61:6c:39:89:45:01:6c:d7:ad:ad:23:58:d4:06: c6:93:22:97:0d:7f:5b:bb:64:38:3f:d9:ca:00:ce: 7c:62:7a:f9:05:cb:9d:4f:46:3d:12:a8:f9:6d:a5: ae:47:25:f5:3a:23:ef:3c:1b:5b:48:18:04:d1:b0: af:d7:a3:f9:df:f9:26:46:03:52:17:1b:44:04:d4: 43:f0:28:d7:43:8c:b5:35:7e:bf:e2:e7:d0:a2:da: 4d:41:9c:9a:fc:71:16:c6:62:6d:55:27:00:21:1c: f4:24:30:82:03:e4:ca:3d:50:7e:31:c2:12:40:0f: 72:76:ed:e5:7d:85:49:87:84:37:4c:e5:25:ed:97: 9c:cc:1c:2b:7e:ef:a2:cc:e5:d1:bc:85:5a:72:88: ef:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:9B:C5:FB:46:EC:76:5E:A7:E3:EF:DA:FB:B3:35:27:2F:02:8C:8D X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/dZvF-0bsdl6n4-_a-7M1Jy8CjI0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.128.0/18 Signature Algorithm: sha256WithRSAEncryption 89:e3:71:9a:95:1f:df:10:b4:b5:e2:42:5d:48:b5:cc:27:dc: 46:fb:c9:41:9d:da:25:5a:f1:b5:52:50:75:ec:d5:ac:ac:35: 61:09:de:20:cd:56:7c:33:92:76:7d:ea:62:35:f6:f1:e0:53: 88:62:78:9c:d0:34:55:1a:1a:cd:bd:68:2d:20:3c:f5:b3:16: c3:fc:a4:28:27:fd:41:82:84:1c:82:81:3d:5e:96:f3:87:3e: 40:30:d7:94:7c:c5:87:ce:41:ef:92:fe:b9:36:29:08:f9:f0: 5f:fa:0c:35:f0:fd:e4:08:99:01:7f:5e:e9:e6:40:de:47:4f: 49:6c:4c:12:7f:61:6d:b4:87:3b:09:e3:13:57:fb:43:91:2b: f8:ec:8f:c0:d0:a1:ee:8b:0d:65:ff:ba:dc:c2:6b:4f:74:64: 9b:89:a9:82:7a:66:9b:4f:01:e6:58:1a:fb:c8:6d:c2:98:b3: 31:fd:18:82:4a:cf:84:79:ba:40:b3:3e:fb:28:87:4c:be:a0: 45:89:6d:5b:61:c1:b4:da:c1:f5:eb:c9:c2:66:94:27:40:c8: 68:86:14:52:a7:4a:03:c0:08:3d:27:3b:42:df:5c:e2:c9:2f: 4d:89:c4:60:49:28:d3:c3:70:b1:85:f0:ba:ee:61:8a:23:2d: 1d:ed:4a:2e -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEHQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNTA4MjIw ODU0MTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc1OUJDNUZCNDZFQzc2 NUVBN0UzRUZEQUZCQjMzNTI3MkYwMjhDOEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNveJNWxHuFjvcLY5+EodH+sUiuz4tNJ+PCJ5bWISh9NMDBgm9 vebQWASOEOA/oawW/hdmU6YRpXg4wLCHvHDXv5/rOwbMYRjNIHusTUMKnPZWX6Xe YDOFYjWRHCUpHAoaQn9Iv6soEhRhbDmJRQFs162tI1jUBsaTIpcNf1u7ZDg/2coA znxievkFy51PRj0SqPltpa5HJfU6I+88G1tIGATRsK/Xo/nf+SZGA1IXG0QE1EPw KNdDjLU1fr/i59Ci2k1BnJr8cRbGYm1VJwAhHPQkMIID5Mo9UH4xwhJAD3J27eV9 hUmHhDdM5SXtl5zMHCt+76LM5dG8hVpyiO9dAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUdZvF+0bsdl6n4+/a+7M1Jy8CjI0wHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvZFp2Ri0wYnNkbDZuNC1fYS03TTFK eThDakkwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBsBIgDAN BgkqhkiG9w0BAQsFAAOCAQEAieNxmpUf3xC0teJCXUi1zCfcRvvJQZ3aJVrxtVJQ dezVrKw1YQneIM1WfDOSdn3qYjX28eBTiGJ4nNA0VRoazb1oLSA89bMWw/ykKCf9 QYKEHIKBPV6W84c+QDDXlHzFh85B75L+uTYpCPnwX/oMNfD95AiZAX9e6eZA3kdP SWxMEn9hbbSHOwnjE1f7Q5Er+OyPwNCh7osNZf+63MJrT3Rkm4mpgnpmm08B5lga +8htwpizMf0YgkrPhHm6QLM++yiHTL6gRYltW2HBtNrB9evJwmaUJ0DIaIYUUqdK A8AIPSc7Qt9c4skvTYnEYEko08NwsYXwuu5hiiMtHe1KLg== -----END CERTIFICATE-----Generated at Sun Aug 24 09:38:57 2025 by rpki-client