$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/kt_Auk2TsBaMxTK-AtAaTp5Qbko.roa File: kt_Auk2TsBaMxTK-AtAaTp5Qbko.roa (raw, json) Hash identifier: 7fEDVnHFxPFbp1QxdTJpeTZNOukIiodtVIGe6pwaD1Q= Subject key identifier: 92:DF:C0:BA:4D:93:B0:16:8C:C5:32:BE:02:D0:1A:4E:9E:50:6E:4A Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A68 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/kt_Auk2TsBaMxTK-AtAaTp5Qbko.roa Signing time: Fri 22 Aug 2025 08:54:03 +0000 ROA not before: Fri 22 Aug 2025 08:54:03 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131584 IP address blocks: 106.105.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6760 (0x1a68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:54:03 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=92DFC0BA4D93B0168CC532BE02D01A4E9E506E4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2d:a5:81:9d:4e:51:91:04:05:ad:03:65:b8: 1a:ad:db:4f:01:78:e0:9c:6c:5f:4e:0b:c2:53:91: b2:a4:5e:44:9d:4e:8a:49:85:bb:34:34:cd:7d:5f: bf:70:ee:8a:98:a8:d5:b5:be:29:ca:f8:ea:de:0e: 1f:aa:b2:30:a9:1e:73:09:26:21:b7:31:4f:28:83: d0:8f:ea:54:dc:cf:3f:54:23:26:38:44:18:1f:71: 89:1c:c3:5e:8f:f4:1c:6c:a7:7e:9f:e2:33:23:16: 27:9b:08:55:f0:b9:a2:fa:5c:53:65:f5:49:cd:b9: 2e:49:9d:06:b9:0a:61:5b:2d:23:4d:f7:cc:00:75: ed:bb:01:76:7b:3a:5a:37:10:82:d4:ef:e2:cf:76: 19:63:79:35:2e:53:b2:f6:6f:03:d4:92:5d:70:19: a7:39:7b:09:89:47:12:c4:64:a7:02:c1:c2:4d:a4: 30:af:23:fb:9b:50:13:94:8f:d4:fd:ae:a2:f5:74: 44:3d:00:62:70:af:22:a4:90:3b:ab:c4:11:c1:8b: fd:d7:13:26:4b:55:59:da:0f:fa:5b:89:c4:33:e3: 68:12:eb:93:32:b6:74:39:45:cd:95:e5:c6:24:72: 3a:33:6e:b0:ce:ab:da:bd:dc:39:19:bf:5e:29:82: 3b:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:DF:C0:BA:4D:93:B0:16:8C:C5:32:BE:02:D0:1A:4E:9E:50:6E:4A X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/kt_Auk2TsBaMxTK-AtAaTp5Qbko.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.180.0/24 Signature Algorithm: sha256WithRSAEncryption 90:37:b4:a4:06:54:36:fd:8e:cf:af:bb:71:f2:84:98:58:f0: 0f:b2:0f:bf:07:01:c0:5d:c2:71:e6:08:bc:84:ab:f4:74:cd: b8:8e:4e:17:7b:b5:8b:91:78:97:8e:5f:53:f5:0f:4c:85:4d: d6:cb:42:4d:1f:43:7c:f9:fa:35:e5:93:61:37:79:aa:0d:7c: f4:17:33:d2:78:6a:53:a2:48:0c:e1:82:07:bf:9f:14:8d:37: 7d:6c:5b:50:a5:4e:9e:b8:07:a8:02:33:de:76:6d:89:9d:e0: 76:cb:92:f6:df:e5:4d:65:65:6b:64:96:cf:49:1f:09:1f:99: 25:6f:52:08:fe:8c:c6:b0:43:18:08:1e:1e:cd:c8:93:4a:c7: 32:20:e3:6d:03:4a:88:8e:f4:10:f8:9b:2a:01:1c:4e:63:c5: 75:59:e3:bb:99:7e:21:20:c8:3a:95:79:06:4e:b5:3d:f7:3d: 71:91:6e:b1:74:b8:fd:07:ce:73:b8:d1:29:3c:cc:84:1c:37: 0e:69:1e:31:53:51:d5:6b:b7:e2:39:76:3e:28:b1:81:20:3b: 7e:ca:ca:e9:9a:47:75:61:bc:10:de:85:76:d8:14:a7:92:d2: 7c:a7:93:1f:86:ee:7d:14:5c:38:f3:3d:7f:da:6a:86:5e:ee: 2b:08:10:4c -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGmgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODU0MDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDkyREZDMEJBNEQ5M0Iw MTY4Q0M1MzJCRTAyRDAxQTRFOUU1MDZFNEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/LaWBnU5RkQQFrQNluBqt208BeOCcbF9OC8JTkbKkXkSdTopJ hbs0NM19X79w7oqYqNW1vinK+OreDh+qsjCpHnMJJiG3MU8og9CP6lTczz9UIyY4 RBgfcYkcw16P9Bxsp36f4jMjFiebCFXwuaL6XFNl9UnNuS5JnQa5CmFbLSNN98wA de27AXZ7Olo3EILU7+LPdhljeTUuU7L2bwPUkl1wGac5ewmJRxLEZKcCwcJNpDCv I/ubUBOUj9T9rqL1dEQ9AGJwryKkkDurxBHBi/3XEyZLVVnaD/pbicQz42gS65My tnQ5Rc2V5cYkcjozbrDOq9q93DkZv14pgjtfAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUkt/Auk2TsBaMxTK+AtAaTp5QbkowHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMva3RfQXVrMlRzQmFNeFRLLUF0QWFU cDVRYmtvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGpptDAN BgkqhkiG9w0BAQsFAAOCAQEAkDe0pAZUNv2Oz6+7cfKEmFjwD7IPvwcBwF3CceYI vISr9HTNuI5OF3u1i5F4l45fU/UPTIVN1stCTR9DfPn6NeWTYTd5qg189Bcz0nhq U6JIDOGCB7+fFI03fWxbUKVOnrgHqAIz3nZtiZ3gdsuS9t/lTWVla2SWz0kfCR+Z JW9SCP6MxrBDGAgeHs3Ik0rHMiDjbQNKiI70EPibKgEcTmPFdVnju5l+ISDIOpV5 Bk61Pfc9cZFusXS4/QfOc7jRKTzMhBw3DmkeMVNR1Wu34jl2PiixgSA7fsrK6ZpH dWG8EN6FdtgUp5LSfKeTH4bufRRcOPM9f9pqhl7uKwgQTA== -----END CERTIFICATE-----Generated at Sun Aug 24 16:09:13 2025 by rpki-client