$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/knQ2NEUYtucQ0Bf4fAE0XPXOyac.roa File: knQ2NEUYtucQ0Bf4fAE0XPXOyac.roa (raw, json) Hash identifier: hSiKAXxphPk1wgWVzG6QIrCTl+S6YX/yHZtjN7o60aM= Subject key identifier: 92:74:36:34:45:18:B6:E7:10:D0:17:F8:7C:01:34:5C:F5:CE:C9:A7 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 19AE Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/knQ2NEUYtucQ0Bf4fAE0XPXOyac.roa Signing time: Fri 22 Aug 2025 08:53:15 +0000 ROA not before: Fri 22 Aug 2025 08:53:15 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18049 IP address blocks: 106.104.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6574 (0x19ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:15 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=927436344518B6E710D017F87C01345CF5CEC9A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:82:a0:a9:bd:eb:6c:43:08:b9:64:f6:a3:50: f2:0e:db:30:1f:76:aa:c4:a9:90:67:3e:d6:1d:fe: 12:14:28:39:c9:17:9f:4b:8c:aa:3a:85:64:e7:b3: 89:9c:f8:e2:b4:ce:ca:e7:cb:b7:c3:41:a1:21:e1: 43:25:8e:7c:40:d8:4f:c8:a6:1e:8a:ee:9a:33:b5: 12:a8:27:69:d7:25:fa:e4:90:09:bf:73:42:65:99: 33:2d:7e:0b:1b:88:c3:fb:e5:b0:18:98:28:64:65: 4a:0e:b6:5a:97:91:d9:1e:c5:fd:87:36:72:41:a6: 87:a2:63:7e:52:14:59:73:5e:03:9e:c8:cd:e4:cd: 91:4f:6a:fc:95:5a:dc:9a:b3:57:c3:bd:e2:37:6d: a2:11:7d:8b:3a:06:da:ab:09:64:77:c0:2a:b1:d1: 7a:8d:80:9e:43:f4:84:35:92:fd:1a:b6:34:bd:d4: 88:61:d5:a5:32:a4:46:2a:54:4d:01:69:e1:7b:4d: 06:73:b2:c5:76:d9:01:60:a6:72:c4:9a:85:b7:16: db:44:c3:f2:64:aa:dc:57:6d:11:26:ec:4b:98:c3: 6e:32:45:a9:a6:f2:f8:87:d0:46:01:ac:8a:2f:23: f0:5e:97:71:60:95:9d:72:9d:86:ec:b6:5f:a3:db: 61:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:74:36:34:45:18:B6:E7:10:D0:17:F8:7C:01:34:5C:F5:CE:C9:A7 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/knQ2NEUYtucQ0Bf4fAE0XPXOyac.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.104.224.0/22 Signature Algorithm: sha256WithRSAEncryption 19:7b:a3:2a:08:b7:c6:9d:2f:9f:86:0a:52:d6:3f:3b:ae:0c: 10:ec:9a:e2:8c:73:0d:67:01:fe:ab:90:d7:f8:57:9a:b2:08: b5:b3:de:e2:2a:67:e9:c3:0a:ef:75:dd:50:3d:85:45:31:e8: 21:48:be:09:83:bf:89:d3:d0:ea:86:3b:d0:88:54:0d:40:b4: e1:5c:e1:f1:94:14:d0:0c:15:be:5f:a3:d5:4f:b6:8b:b4:b1: a3:e4:22:c7:c9:ce:31:77:52:ad:56:33:91:54:1b:29:41:f9: e4:0e:3f:d4:39:68:5a:45:8b:98:d6:31:65:e4:8c:36:a3:a5: ba:ed:7b:e8:d6:f2:c2:51:c4:a9:60:f9:ad:b1:41:0a:69:10: 93:83:4c:22:5e:c0:f9:80:7c:35:19:41:38:96:19:ff:6e:a6: 2b:ea:6f:a1:4e:63:7b:06:55:6a:62:b1:bf:f6:a9:39:4e:d8: 16:5c:83:df:da:c1:8c:c7:dd:2c:ad:18:d2:d7:51:28:84:4f: b6:08:cb:6c:f7:60:fc:22:10:2d:70:b2:73:0a:73:0e:20:a7: 55:38:45:6f:3a:b4:4c:d1:35:c7:dc:07:bd:6a:2a:8a:3a:6a: 29:58:df:19:7a:30:36:72:f3:fa:74:48:71:df:d9:1a:33:b6: 52:07:af:d9 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGa4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDkyNzQzNjM0NDUxOEI2 RTcxMEQwMTdGODdDMDEzNDVDRjVDRUM5QTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxgqCpvetsQwi5ZPajUPIO2zAfdqrEqZBnPtYd/hIUKDnJF59L jKo6hWTns4mc+OK0zsrny7fDQaEh4UMljnxA2E/Iph6K7poztRKoJ2nXJfrkkAm/ c0JlmTMtfgsbiMP75bAYmChkZUoOtlqXkdkexf2HNnJBpoeiY35SFFlzXgOeyM3k zZFPavyVWtyas1fDveI3baIRfYs6BtqrCWR3wCqx0XqNgJ5D9IQ1kv0atjS91Ihh 1aUypEYqVE0BaeF7TQZzssV22QFgpnLEmoW3FttEw/JkqtxXbREm7EuYw24yRamm 8viH0EYBrIovI/Bel3FglZ1ynYbstl+j22FjAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUknQ2NEUYtucQ0Bf4fAE0XPXOyacwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMva25RMk5FVVl0dWNRMEJmNGZBRTBY UFhPeWFjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmpo4DAN BgkqhkiG9w0BAQsFAAOCAQEAGXujKgi3xp0vn4YKUtY/O64MEOya4oxzDWcB/quQ 1/hXmrIItbPe4ipn6cMK73XdUD2FRTHoIUi+CYO/idPQ6oY70IhUDUC04Vzh8ZQU 0AwVvl+j1U+2i7Sxo+Qix8nOMXdSrVYzkVQbKUH55A4/1DloWkWLmNYxZeSMNqOl uu176NbywlHEqWD5rbFBCmkQk4NMIl7A+YB8NRlBOJYZ/26mK+pvoU5jewZVamKx v/apOU7YFlyD39rBjMfdLK0Y0tdRKIRPtgjLbPdg/CIQLXCycwpzDiCnVThFbzq0 TNE1x9wHvWoqijpqKVjfGXowNnLz+nRIcd/ZGjO2Ugev2Q== -----END CERTIFICATE-----Generated at Sun Aug 24 13:52:45 2025 by rpki-client