$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/p0GXIU6l8lmMfi8Oz8No7GeUW_g.roa File: p0GXIU6l8lmMfi8Oz8No7GeUW_g.roa (raw, json) Hash identifier: L6aYgHnRHgrW3LkBxaL37f6kEtmoEN2V2ieBHHRPNY4= Subject key identifier: A7:41:97:21:4E:A5:F2:59:8C:7E:2F:0E:CF:C3:68:EC:67:94:5B:F8 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 1063 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/p0GXIU6l8lmMfi8Oz8No7GeUW_g.roa Signing time: Fri 22 Aug 2025 08:54:12 +0000 ROA not before: Fri 22 Aug 2025 08:54:12 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9919 IP address blocks: 192.72.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4195 (0x1063) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 22 08:54:12 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A74197214EA5F2598C7E2F0ECFC368EC67945BF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:21:7f:ef:77:64:73:29:8d:d2:8c:9f:63:f0: 90:08:f5:13:8e:ec:b7:b3:8f:34:48:4a:96:de:03: d2:a1:44:fb:81:ee:ac:1d:78:8f:9a:c1:fd:67:3b: cd:5b:fd:e8:17:9c:6c:bd:63:d6:de:e7:01:30:22: e3:7c:3b:bb:52:45:76:f4:6b:5d:82:1f:88:41:1a: b9:f0:fa:69:ec:21:0c:bd:cf:4d:d2:b7:54:7a:55: 6f:93:93:86:06:17:8b:a9:13:f4:f3:ec:7b:93:1e: 6c:88:c8:c1:f4:be:80:a7:7b:d3:2b:a2:14:fc:ae: e8:12:e0:3b:74:30:d2:f3:5a:17:43:52:5c:94:fa: 84:63:1b:3b:04:28:ef:fd:7b:f1:b9:e4:e8:a7:0a: 61:68:14:06:a3:9c:81:a6:7f:bf:49:9b:d4:a4:9d: ed:51:90:41:7b:20:11:75:9d:0b:a2:e8:a9:8f:33: da:18:34:71:38:53:25:37:b4:30:45:be:28:e9:53: 7a:96:5c:05:78:c7:fc:b4:bd:29:eb:65:12:37:59: 31:be:6c:7a:fb:1b:ab:52:61:9e:b8:30:b9:22:8b: 07:58:18:ad:92:fc:5c:df:42:ec:4b:c0:1a:e1:2d: 09:d6:a6:6d:2e:b6:d7:9a:f4:e5:c3:a1:7e:20:70: 66:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:41:97:21:4E:A5:F2:59:8C:7E:2F:0E:CF:C3:68:EC:67:94:5B:F8 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/p0GXIU6l8lmMfi8Oz8No7GeUW_g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.4.0/22 Signature Algorithm: sha256WithRSAEncryption 58:65:49:27:b7:15:ed:86:69:bb:07:3e:fa:94:77:db:4d:00: 7e:de:b2:69:b4:01:42:09:df:66:73:f9:43:b3:35:e1:a2:f4: f8:90:f4:8d:7d:bf:40:a5:8b:d9:61:f2:4d:93:a2:ed:91:25: 8b:ff:6a:0b:a3:46:ec:eb:4c:d5:bb:a7:26:46:a3:e5:9a:df: b4:f6:4b:69:ed:cb:d3:c1:0d:e7:b8:64:52:f0:36:6c:6c:74: 7f:71:24:bf:dc:79:73:56:c9:77:09:39:91:20:fb:76:5a:ca: 62:4a:da:f2:a7:c5:bc:e7:54:ca:d8:f5:43:9d:d3:fa:f9:72: d0:bc:f9:b7:85:7c:2a:c2:b3:9c:95:55:2f:1c:af:98:b2:f2: a1:6b:27:0f:0f:0d:8d:e1:10:5c:eb:1e:16:cc:af:4e:f7:75: d8:ca:15:fe:fc:33:0c:0f:bc:c6:1e:6f:0b:f6:c0:25:8e:a5: ae:a1:bf:60:30:ba:f3:1b:98:2c:51:47:cc:65:7a:53:23:33: e7:32:8d:7c:d4:21:d2:6f:ff:12:22:d0:59:df:3d:d1:b6:05: 0b:11:7e:35:f7:a2:ff:c8:56:02:7f:e6:e2:0c:33:ce:8b:2b: fb:61:c5:2c:07:49:3f:c6:45:66:17:a5:2d:58:ac:97:4c:75: d7:a9:36:25 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEGMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNTA4MjIw ODU0MTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEE3NDE5NzIxNEVBNUYy NTk4QzdFMkYwRUNGQzM2OEVDNjc5NDVCRjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBIX/vd2RzKY3SjJ9j8JAI9ROO7LezjzRISpbeA9KhRPuB7qwd eI+awf1nO81b/egXnGy9Y9be5wEwIuN8O7tSRXb0a12CH4hBGrnw+mnsIQy9z03S t1R6VW+Tk4YGF4upE/Tz7HuTHmyIyMH0voCne9MrohT8rugS4Dt0MNLzWhdDUlyU +oRjGzsEKO/9e/G55OinCmFoFAajnIGmf79Jm9Skne1RkEF7IBF1nQui6KmPM9oY NHE4UyU3tDBFvijpU3qWXAV4x/y0vSnrZRI3WTG+bHr7G6tSYZ64MLkiiwdYGK2S /FzfQuxLwBrhLQnWpm0uttea9OXDoX4gcGb1AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUp0GXIU6l8lmMfi8Oz8No7GeUW/gwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvcDBHWElVNmw4bG1NZmk4T3o4Tm83 R2VVV19nLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsBIBDAN BgkqhkiG9w0BAQsFAAOCAQEAWGVJJ7cV7YZpuwc++pR3200Aft6yabQBQgnfZnP5 Q7M14aL0+JD0jX2/QKWL2WHyTZOi7ZEli/9qC6NG7OtM1bunJkaj5ZrftPZLae3L 08EN57hkUvA2bGx0f3Ekv9x5c1bJdwk5kSD7dlrKYkra8qfFvOdUytj1Q53T+vly 0Lz5t4V8KsKznJVVLxyvmLLyoWsnDw8NjeEQXOseFsyvTvd12MoV/vwzDA+8xh5v C/bAJY6lrqG/YDC68xuYLFFHzGV6UyMz5zKNfNQh0m//EiLQWd890bYFCxF+Nfei /8hWAn/m4gwzzosr+2HFLAdJP8ZFZhelLVisl0x116k2JQ== -----END CERTIFICATE-----Generated at Sun Aug 24 11:44:01 2025 by rpki-client