$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/hKjHJ1ALHpjbeDgejacbSKpwd70.roa File: hKjHJ1ALHpjbeDgejacbSKpwd70.roa (raw, json) Hash identifier: SvKnLGA/IfnVn2xfvdiM1seDlfCQkIQaNQJD6ejCTR8= Subject key identifier: 84:A8:C7:27:50:0B:1E:98:DB:78:38:1E:8D:A7:1B:48:AA:70:77:BD Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1999 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/hKjHJ1ALHpjbeDgejacbSKpwd70.roa Signing time: Fri 22 Aug 2025 08:53:11 +0000 ROA not before: Fri 22 Aug 2025 08:53:11 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131602 IP address blocks: 106.105.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6553 (0x1999) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:11 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=84A8C727500B1E98DB78381E8DA71B48AA7077BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:72:4d:5e:c9:35:10:10:cc:f0:29:09:ae:b6: ea:e1:d3:9c:b8:7d:50:3c:8e:fe:3d:98:06:9e:6b: 07:5f:8e:aa:4a:a5:46:b1:a7:8c:c2:f3:a8:a8:72: fc:b2:9b:f8:43:0e:8e:d3:96:64:0e:26:a6:35:a2: ec:5f:22:67:7f:61:8a:6a:37:27:1c:e0:5a:28:9d: 90:d7:b7:03:3f:3b:58:91:cb:18:3e:40:ed:db:73: 99:0a:a7:5c:48:4f:f3:87:36:8d:a4:25:b3:d9:44: 12:d8:f9:e5:0a:ea:e5:7d:20:66:8e:6f:e7:06:9c: 94:af:ca:85:c7:10:53:7b:15:da:0f:21:b3:5a:86: e0:aa:69:47:15:b9:a2:be:8b:4d:f5:e5:a1:51:ec: e0:a7:66:9f:01:91:ab:28:93:ea:bc:49:72:57:4e: c1:47:3d:80:e0:87:d1:80:db:7b:a3:2f:8e:e2:98: a9:80:58:3f:e1:f3:60:f3:e3:d8:96:a5:9e:01:cb: 95:fa:56:1e:f7:36:2d:23:22:0d:82:68:c0:88:0c: 00:d4:cf:20:41:c2:b3:f9:c2:2b:64:7d:18:3d:b9: b9:ae:7a:4e:20:3d:9e:7a:a0:61:50:2e:71:d3:9d: 10:bc:0f:bf:11:3c:23:a2:19:28:35:d7:30:5b:70: 3b:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:A8:C7:27:50:0B:1E:98:DB:78:38:1E:8D:A7:1B:48:AA:70:77:BD X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/hKjHJ1ALHpjbeDgejacbSKpwd70.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.111.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:bc:ad:06:74:c0:aa:ad:8a:96:24:75:19:15:ee:1b:75:ac: 92:bc:ab:5e:4c:9d:ac:99:db:d2:e3:56:f7:b8:e6:bd:1c:0b: c6:bb:80:ac:b6:7f:e6:d1:d6:b5:3f:f0:e1:0c:d8:a2:e8:18: bf:7c:ff:9b:df:af:16:c4:7c:e1:9e:93:9c:4c:7a:bd:77:8d: f0:46:85:3d:1c:f1:0c:93:ac:8b:f4:77:11:cd:3e:42:a6:38: 20:8b:ef:18:7b:6f:ea:b8:00:b9:68:fb:58:3d:2c:e0:e2:02: 29:f5:ad:22:2b:54:98:33:99:29:77:f9:9e:96:ed:e3:d7:09: f8:7c:2f:d4:64:61:51:ef:1b:5e:55:da:39:1a:ee:e1:20:d2: 52:cf:33:cb:72:0e:6c:9c:b7:95:ae:7e:b5:d5:df:11:f6:a3: 6c:40:dd:7e:22:7b:97:f9:3c:ea:f3:f5:04:f1:c6:b4:bd:8e: 1e:d8:f9:06:c3:59:85:75:4c:f0:5a:43:a8:40:30:a8:54:d0: 15:3c:3d:c4:0e:26:b9:4b:c9:00:d0:22:d3:02:04:1a:e8:0c: a6:ee:f0:81:45:65:a8:cf:da:40:42:4b:c2:ca:a2:42:eb:f9: 00:0b:a1:c1:68:49:77:58:ae:26:51:ab:32:19:c4:c0:34:de: 55:0c:c5:f7 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGZkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDg0QThDNzI3NTAwQjFF OThEQjc4MzgxRThEQTcxQjQ4QUE3MDc3QkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqck1eyTUQEMzwKQmuturh05y4fVA8jv49mAaeawdfjqpKpUax p4zC86iocvyym/hDDo7TlmQOJqY1ouxfImd/YYpqNycc4FoonZDXtwM/O1iRyxg+ QO3bc5kKp1xIT/OHNo2kJbPZRBLY+eUK6uV9IGaOb+cGnJSvyoXHEFN7FdoPIbNa huCqaUcVuaK+i0315aFR7OCnZp8Bkasok+q8SXJXTsFHPYDgh9GA23ujL47imKmA WD/h82Dz49iWpZ4By5X6Vh73Ni0jIg2CaMCIDADUzyBBwrP5witkfRg9ubmuek4g PZ56oGFQLnHTnRC8D78RPCOiGSg11zBbcDt1AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUhKjHJ1ALHpjbeDgejacbSKpwd70wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvaEtqSEoxQUxIcGpiZURnZWphY2JT S3B3ZDcwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGppbzAN BgkqhkiG9w0BAQsFAAOCAQEAX7ytBnTAqq2KliR1GRXuG3WskryrXkydrJnb0uNW 97jmvRwLxruArLZ/5tHWtT/w4QzYougYv3z/m9+vFsR84Z6TnEx6vXeN8EaFPRzx DJOsi/R3Ec0+QqY4IIvvGHtv6rgAuWj7WD0s4OICKfWtIitUmDOZKXf5npbt49cJ +Hwv1GRhUe8bXlXaORru4SDSUs8zy3IObJy3la5+tdXfEfajbEDdfiJ7l/k86vP1 BPHGtL2OHtj5BsNZhXVM8FpDqEAwqFTQFTw9xA4muUvJANAi0wIEGugMpu7wgUVl qM/aQEJLwsqiQuv5AAuhwWhJd1iuJlGrMhnEwDTeVQzF9w== -----END CERTIFICATE-----Generated at Sun Aug 24 13:50:07 2025 by rpki-client