$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ecmr5yzeNsrG95DrIt6VIM5Wcp0.roa File: ecmr5yzeNsrG95DrIt6VIM5Wcp0.roa (raw, json) Hash identifier: kv62vCdZ77B2XLiakLimtHAAEiZwtjikOsz/UnoF0OA= Subject key identifier: 79:C9:AB:E7:2C:DE:36:CA:C6:F7:90:EB:22:DE:95:20:CE:56:72:9D Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 1065 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ecmr5yzeNsrG95DrIt6VIM5Wcp0.roa Signing time: Fri 22 Aug 2025 08:54:12 +0000 ROA not before: Fri 22 Aug 2025 08:54:12 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 192.72.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4197 (0x1065) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 22 08:54:12 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=79C9ABE72CDE36CAC6F790EB22DE9520CE56729D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f2:e3:5e:f0:8b:89:ab:22:40:92:b9:b5:10: 5e:69:30:1c:85:32:7f:35:0a:34:a0:b5:b2:4c:0e: 6f:c0:d0:2d:d8:67:fa:ab:e1:bb:b7:43:25:96:cd: de:d9:8c:ef:d9:0f:85:19:5a:28:3a:be:b5:f7:fe: ad:69:c0:b6:73:98:fe:4e:ba:d7:95:f2:a8:fc:01: b0:ac:7c:9c:3b:d3:90:7a:62:1f:a0:57:f9:ba:18: f8:36:1b:9c:ce:9a:7c:a0:6b:ee:c8:24:d8:f9:3b: 54:19:90:1c:84:17:60:a3:92:be:05:17:4c:a5:8e: 21:c9:fb:12:9d:90:c1:b2:40:a0:f5:54:69:30:63: 3d:cd:29:52:82:9a:24:60:17:ec:36:de:f5:42:53: 46:18:24:22:c0:9c:89:13:fe:f6:27:c8:ce:1c:cc: 17:82:40:7e:a7:ba:e2:b1:f7:9a:8a:40:33:bf:23: 32:a1:be:0e:7f:49:54:f6:9d:a7:73:e7:d6:38:fb: 95:fc:64:b1:17:f7:ba:a1:46:15:99:0e:99:11:13: 68:e4:84:b7:9e:56:61:ae:c5:97:90:e4:83:65:00: 4f:c6:74:ac:4a:de:f0:17:86:14:a3:49:4f:93:86: ae:e8:25:f0:08:71:5b:0b:f1:20:64:0c:a1:4d:83: 64:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:C9:AB:E7:2C:DE:36:CA:C6:F7:90:EB:22:DE:95:20:CE:56:72:9D X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ecmr5yzeNsrG95DrIt6VIM5Wcp0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.224.0/20 Signature Algorithm: sha256WithRSAEncryption 16:57:c1:b0:d7:10:1b:91:69:db:f9:50:10:be:01:e7:05:72: 13:03:d8:a9:52:dd:96:fd:f8:98:2b:eb:a4:cb:73:99:39:08: 57:c9:2c:35:b3:98:1d:19:56:6e:a2:31:23:4f:c2:36:59:7a: ed:c4:ac:d7:76:8b:19:fd:9a:93:7d:d2:b2:e0:60:db:7f:de: 6e:8a:bd:d8:fc:12:69:33:99:84:01:ef:9d:31:7e:6f:71:20: d2:cb:53:8c:e0:36:57:76:ee:cc:e9:58:5b:36:32:12:9b:9e: 87:be:8d:7c:f9:14:47:f7:25:09:5f:d1:a4:36:f2:4a:57:38: 29:8f:6a:04:47:33:c9:89:53:11:60:f6:e7:75:29:da:91:23: cb:a3:2f:ac:0e:5c:b5:55:c1:e4:29:23:22:15:ea:85:e5:94: 81:0c:bc:18:cc:aa:aa:8f:0c:e4:9e:67:d4:57:e9:67:88:84: 36:29:fe:45:16:3c:75:7a:ff:e7:78:e4:af:a7:e1:6d:c6:49: ce:30:7b:eb:08:3e:61:84:bf:7f:98:9d:f6:49:bd:f2:14:d2: e0:69:a4:23:3f:37:cf:7b:fc:70:31:6e:4b:10:c8:0d:84:f4: 9d:04:55:90:12:c9:73:16:c3:32:02:b8:fd:8f:52:25:8a:f1: d8:af:59:80 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEGUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNTA4MjIw ODU0MTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc5QzlBQkU3MkNERTM2 Q0FDNkY3OTBFQjIyREU5NTIwQ0U1NjcyOUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCw8uNe8IuJqyJAkrm1EF5pMByFMn81CjSgtbJMDm/A0C3YZ/qr 4bu3QyWWzd7ZjO/ZD4UZWig6vrX3/q1pwLZzmP5OuteV8qj8AbCsfJw705B6Yh+g V/m6GPg2G5zOmnyga+7IJNj5O1QZkByEF2Cjkr4FF0yljiHJ+xKdkMGyQKD1VGkw Yz3NKVKCmiRgF+w23vVCU0YYJCLAnIkT/vYnyM4czBeCQH6nuuKx95qKQDO/IzKh vg5/SVT2nadz59Y4+5X8ZLEX97qhRhWZDpkRE2jkhLeeVmGuxZeQ5INlAE/GdKxK 3vAXhhSjSU+Thq7oJfAIcVsL8SBkDKFNg2S1AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUecmr5yzeNsrG95DrIt6VIM5Wcp0wHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvZWNtcjV5emVOc3JHOTVEckl0NlZJ TTVXY3AwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMBI4DAN BgkqhkiG9w0BAQsFAAOCAQEAFlfBsNcQG5Fp2/lQEL4B5wVyEwPYqVLdlv34mCvr pMtzmTkIV8ksNbOYHRlWbqIxI0/CNll67cSs13aLGf2ak33SsuBg23/eboq92PwS aTOZhAHvnTF+b3Eg0stTjOA2V3buzOlYWzYyEpueh76NfPkUR/clCV/RpDbySlc4 KY9qBEczyYlTEWD253Up2pEjy6MvrA5ctVXB5CkjIhXqheWUgQy8GMyqqo8M5J5n 1FfpZ4iENin+RRY8dXr/53jkr6fhbcZJzjB76wg+YYS/f5id9km98hTS4GmkIz83 z3v8cDFuSxDIDYT0nQRVkBLJcxbDMgK4/Y9SJYrx2K9ZgA== -----END CERTIFICATE-----Generated at Sun Aug 24 07:42:15 2025 by rpki-client