$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/m7DhiFhAPZoIqr4BHoHXpao14gg.roa File: m7DhiFhAPZoIqr4BHoHXpao14gg.roa (raw, json) Hash identifier: QJZbn+/p5A8gX8009rNNtxvt4K4wqcXdkOuZbFAakEg= Subject key identifier: 9B:B0:E1:88:58:40:3D:9A:08:AA:BE:01:1E:81:D7:A5:AA:35:E2:08 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 1062 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/m7DhiFhAPZoIqr4BHoHXpao14gg.roa Signing time: Fri 22 Aug 2025 08:54:12 +0000 ROA not before: Fri 22 Aug 2025 08:54:12 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 192.72.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4194 (0x1062) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 22 08:54:12 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9BB0E18858403D9A08AABE011E81D7A5AA35E208 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4f:3d:e8:9a:cf:fd:d0:e6:9e:15:e0:ae:89: 4c:5a:11:ea:85:00:f0:7a:fe:33:9d:09:63:84:a9: e3:de:22:1b:d2:05:8f:82:c3:bc:de:b5:21:b0:ca: 25:83:74:b7:23:b1:34:fc:2b:88:65:59:a8:27:b5: 91:5b:84:f7:52:f9:53:c0:74:89:54:6a:6f:9b:e8: 94:bf:8b:dd:ba:e6:7b:df:1e:c3:75:99:a1:41:0d: f4:40:23:ed:2e:20:69:4b:82:9d:ba:96:87:8f:01: ca:97:e1:34:84:aa:07:12:70:9e:a5:ec:22:fa:6d: c7:fd:90:58:1d:04:08:37:cd:1c:71:d0:3f:db:7c: f3:fd:01:ca:fb:35:16:3b:83:eb:09:3f:1b:82:e9: f9:c7:60:c7:6f:85:4d:48:05:7c:d5:51:17:d3:39: c3:33:79:b9:0b:7c:0d:4e:cf:58:7a:02:98:56:38: 2d:3d:02:c7:57:9a:d3:a8:b3:a7:a7:48:f0:89:3e: cc:f9:4a:31:2d:a8:f3:e9:c3:cb:00:d7:0e:85:3d: 0f:75:a2:92:37:06:47:9e:64:af:36:f0:c6:26:7e: 4d:37:55:82:fa:42:10:b5:93:a2:65:d5:50:20:e7: 81:b6:f3:fd:70:7d:fd:7d:d7:29:7c:ca:09:93:93: 61:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:B0:E1:88:58:40:3D:9A:08:AA:BE:01:1E:81:D7:A5:AA:35:E2:08 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/m7DhiFhAPZoIqr4BHoHXpao14gg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.64.0/18 Signature Algorithm: sha256WithRSAEncryption 1a:05:e0:c9:b0:61:e9:cb:0b:8d:4c:51:63:d6:7e:2a:bc:0a: c0:87:d4:4f:b6:41:d6:87:93:68:03:97:c7:51:af:07:15:07: 7e:f1:81:a3:0b:ad:65:98:ff:9c:43:20:86:4b:0e:fd:93:12: ec:fc:71:9e:59:d4:0a:cf:8e:2e:f7:bb:67:bd:41:93:da:e9: 9c:b6:76:46:bd:37:f2:57:f0:81:ae:89:7e:0d:cf:ae:1a:c8: 7b:75:d5:c0:db:5e:96:4f:40:e5:18:18:65:e0:e6:d1:d7:7e: d9:b8:cc:d2:70:33:81:a0:89:60:f6:44:d7:32:e8:63:d6:68: e3:b1:f0:02:32:38:4d:3b:e1:1c:cf:df:5c:cf:68:cf:55:d3: f7:76:7b:ec:0d:6f:31:63:2b:66:94:c5:7c:f0:4a:98:ef:02: e6:ca:d1:65:bb:d4:b0:59:4e:7b:16:f7:65:92:00:cc:25:b7: 5d:6d:03:9e:0d:44:3b:4c:81:6e:f3:e3:8f:54:98:cc:08:c9: 8e:93:67:59:dc:8f:a4:15:cc:be:ca:29:0f:e7:7e:d4:a2:7e: b7:ef:77:c0:01:6d:68:02:0e:05:73:92:2d:70:6a:1c:8e:57: c9:c5:65:d3:4d:b1:a0:7f:d2:12:32:ad:da:9d:a8:92:9c:79: c3:c5:dd:d0 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEGIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNTA4MjIw ODU0MTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlCQjBFMTg4NTg0MDNE OUEwOEFBQkUwMTFFODFEN0E1QUEzNUUyMDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpTz3oms/90OaeFeCuiUxaEeqFAPB6/jOdCWOEqePeIhvSBY+C w7zetSGwyiWDdLcjsTT8K4hlWagntZFbhPdS+VPAdIlUam+b6JS/i9265nvfHsN1 maFBDfRAI+0uIGlLgp26loePAcqX4TSEqgcScJ6l7CL6bcf9kFgdBAg3zRxx0D/b fPP9Acr7NRY7g+sJPxuC6fnHYMdvhU1IBXzVURfTOcMzebkLfA1Oz1h6AphWOC09 AsdXmtOos6enSPCJPsz5SjEtqPPpw8sA1w6FPQ91opI3BkeeZK828MYmfk03VYL6 QhC1k6Jl1VAg54G28/1wff191yl8ygmTk2HbAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUm7DhiFhAPZoIqr4BHoHXpao14ggwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvbTdEaGlGaEFQWm9JcXI0QkhvSFhw YW8xNGdnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBsBIQDAN BgkqhkiG9w0BAQsFAAOCAQEAGgXgybBh6csLjUxRY9Z+KrwKwIfUT7ZB1oeTaAOX x1GvBxUHfvGBowutZZj/nEMghksO/ZMS7PxxnlnUCs+OLve7Z71Bk9rpnLZ2Rr03 8lfwga6Jfg3PrhrIe3XVwNtelk9A5RgYZeDm0dd+2bjM0nAzgaCJYPZE1zLoY9Zo 47HwAjI4TTvhHM/fXM9oz1XT93Z77A1vMWMrZpTFfPBKmO8C5srRZbvUsFlOexb3 ZZIAzCW3XW0Dng1EO0yBbvPjj1SYzAjJjpNnWdyPpBXMvsopD+d+1KJ+t+93wAFt aAIOBXOSLXBqHI5XycVl002xoH/SEjKt2p2okpx5w8Xd0A== -----END CERTIFICATE-----Generated at Sun Aug 24 09:45:07 2025 by rpki-client