$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/gVYK8ddcSLrgF8wTeR7FIjHBsIA.roa File: gVYK8ddcSLrgF8wTeR7FIjHBsIA.roa (raw, json) Hash identifier: +ayNlFLPRJjckRB3RVDavmOPCqkDJvK+an8NydZisNE= Subject key identifier: 81:56:0A:F1:D7:5C:48:BA:E0:17:CC:13:79:1E:C5:22:31:C1:B0:80 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A63 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gVYK8ddcSLrgF8wTeR7FIjHBsIA.roa Signing time: Fri 22 Aug 2025 08:54:01 +0000 ROA not before: Fri 22 Aug 2025 08:54:01 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131611 IP address blocks: 218.32.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6755 (0x1a63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:54:01 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=81560AF1D75C48BAE017CC13791EC52231C1B080 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:90:ec:a1:ef:69:a3:1c:87:9d:20:18:02:fa: 47:13:5b:17:c3:3c:9b:21:d1:66:ad:d2:55:da:bf: 59:3e:b2:99:c1:d2:4d:ee:aa:da:91:a4:82:39:40: 46:b6:c4:a0:a1:0a:96:80:99:be:4e:90:b0:71:25: 64:cd:60:c4:83:d9:87:65:98:cb:d5:ae:de:b5:60: 07:2a:28:b8:c0:60:df:3e:72:04:72:12:44:53:4e: 54:06:5f:c2:68:80:ad:25:33:30:03:a8:81:c6:ba: f3:ee:2b:cf:34:c5:2a:c5:46:1b:bb:b7:c3:82:7d: c3:b3:a5:35:b2:3e:66:93:50:c8:65:53:c4:5c:92: 08:32:10:0f:cb:03:fb:d1:41:0c:cd:d1:9e:5e:bb: f0:35:64:05:f0:de:e4:39:8c:d8:e9:c1:94:cd:f5: 05:44:85:a8:a7:6c:ef:e1:16:cf:b6:5a:a9:ef:91: f0:b7:7a:2b:3d:7e:23:3a:ee:0a:fa:f7:33:1f:8c: ae:b5:f1:7e:dc:51:4c:ed:62:f9:71:f3:b0:09:52: 38:30:b1:56:21:23:a6:1c:e1:7a:1c:c8:c7:06:d3: 81:2d:1d:ed:47:03:65:78:22:81:2f:5f:2c:36:08: 64:e1:a9:35:d1:d5:ab:9b:82:ce:4d:b0:dc:3c:8d: 69:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:56:0A:F1:D7:5C:48:BA:E0:17:CC:13:79:1E:C5:22:31:C1:B0:80 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gVYK8ddcSLrgF8wTeR7FIjHBsIA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.32.96.0/19 Signature Algorithm: sha256WithRSAEncryption ba:6e:44:27:20:0c:99:0f:a9:e9:1a:b9:d9:d8:42:71:a4:9c: ef:63:d4:f4:3a:cc:7b:4f:f6:68:28:3c:96:27:d4:53:ea:b6: f0:48:20:73:8c:3d:cc:8c:fd:7f:ba:5c:d4:bb:a6:7f:16:17: 5f:07:a3:cb:6a:20:a7:a4:45:99:cf:6b:d4:d7:93:58:c0:a8: 08:a6:be:1f:53:44:04:8b:42:b3:67:9d:45:27:18:72:c5:8f: 42:51:8c:68:f0:58:d7:ec:36:98:74:89:60:0a:c8:e5:3e:ad: 93:73:2c:78:b2:69:e2:29:76:8b:9a:83:7c:38:af:d7:a9:e5: b5:5d:11:fc:69:c9:03:68:c5:c7:33:a8:56:fc:d2:5f:93:d9: 37:f2:29:35:5b:80:65:37:5a:d1:0e:ea:48:0f:7a:76:82:90: 0b:aa:fd:a3:b8:be:41:ed:61:80:fd:8d:95:39:c4:21:21:8f: 1f:6e:9d:d4:70:ba:d3:b8:1d:81:f1:0c:3c:50:53:a0:21:d8: ea:42:5e:8c:57:e8:f7:20:6e:91:94:d6:96:b9:da:79:55:06: f0:68:97:47:10:95:c8:17:7d:78:3e:9c:77:89:d2:1b:40:9a: d7:0b:f3:82:9d:73:de:7e:a4:12:67:36:b7:f8:cd:5a:3e:28: f6:10:f5:ee -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGmMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODU0MDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDgxNTYwQUYxRDc1QzQ4 QkFFMDE3Q0MxMzc5MUVDNTIyMzFDMUIwODAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDwkOyh72mjHIedIBgC+kcTWxfDPJsh0Wat0lXav1k+spnB0k3u qtqRpII5QEa2xKChCpaAmb5OkLBxJWTNYMSD2YdlmMvVrt61YAcqKLjAYN8+cgRy EkRTTlQGX8JogK0lMzADqIHGuvPuK880xSrFRhu7t8OCfcOzpTWyPmaTUMhlU8Rc kggyEA/LA/vRQQzN0Z5eu/A1ZAXw3uQ5jNjpwZTN9QVEhainbO/hFs+2WqnvkfC3 eis9fiM67gr69zMfjK618X7cUUztYvlx87AJUjgwsVYhI6Yc4XocyMcG04EtHe1H A2V4IoEvXyw2CGThqTXR1aubgs5NsNw8jWlFAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUgVYK8ddcSLrgF8wTeR7FIjHBsIAwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvZ1ZZSzhkZGNTTHJnRjh3VGVSN0ZJ akhCc0lBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBdogYDAN BgkqhkiG9w0BAQsFAAOCAQEAum5EJyAMmQ+p6Rq52dhCcaSc72PU9DrMe0/2aCg8 lifUU+q28Eggc4w9zIz9f7pc1LumfxYXXwejy2ogp6RFmc9r1NeTWMCoCKa+H1NE BItCs2edRScYcsWPQlGMaPBY1+w2mHSJYArI5T6tk3MseLJp4il2i5qDfDiv16nl tV0R/GnJA2jFxzOoVvzSX5PZN/IpNVuAZTda0Q7qSA96doKQC6r9o7i+Qe1hgP2N lTnEISGPH26d1HC607gdgfEMPFBToCHY6kJejFfo9yBukZTWlrnaeVUG8GiXRxCV yBd9eD6cd4nSG0Ca1wvzgp1z3n6kEmc2t/jNWj4o9hD17g== -----END CERTIFICATE-----Generated at Sun Aug 24 13:50:07 2025 by rpki-client