$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/qqJf8FnvaLKBXyEUmcgLk7sKOEw.roa File: qqJf8FnvaLKBXyEUmcgLk7sKOEw.roa (raw, json) Hash identifier: RRzrdnT5aIYfzFOufq8kiIry3QA2UjCeIFgggRUgv2Y= Subject key identifier: AA:A2:5F:F0:59:EF:68:B2:81:5F:21:14:99:C8:0B:93:BB:0A:38:4C Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 19FA Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qqJf8FnvaLKBXyEUmcgLk7sKOEw.roa Signing time: Fri 22 Aug 2025 08:53:35 +0000 ROA not before: Fri 22 Aug 2025 08:53:35 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131602 IP address blocks: 106.105.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6650 (0x19fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:35 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=AAA25FF059EF68B2815F211499C80B93BB0A384C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ef:e4:c4:21:7f:d3:b7:0c:86:9b:ba:86:25: a9:3e:bf:0b:5f:f4:43:94:65:f4:c2:c9:59:be:1b: 3d:0e:4f:a8:8a:c0:61:cc:89:76:81:1d:8d:f9:7a: ab:e4:d2:64:b6:09:91:0c:b8:21:57:4d:74:8e:d4: ad:eb:cc:c9:73:b8:90:f3:d8:92:de:e3:4c:7d:83: f9:02:0d:68:b3:9b:b3:65:74:86:d6:10:4b:1a:70: 40:f2:d8:e5:96:da:81:6a:38:bd:ca:f4:bb:92:86: f6:8d:35:04:71:2a:dc:bc:50:21:5e:51:31:0d:15: 1b:54:d6:48:6d:17:79:23:37:ce:61:a8:b2:ea:43: 30:2b:50:9c:96:42:d2:cd:ff:15:7f:1e:84:70:a2: 97:38:b7:08:22:a1:5a:8b:a3:1d:9a:8d:ad:f2:5e: 9a:04:80:a9:34:7d:dc:63:e8:ed:7a:ad:19:0d:fe: 4e:79:4f:17:9b:4f:b6:32:63:f4:78:06:c7:11:fb: 4b:da:d2:81:d3:7f:52:44:bc:1a:45:b3:15:cb:63: 7e:c5:95:70:46:a2:0f:f6:0e:9f:bc:3c:c8:4b:03: cd:7d:ca:a0:e7:fe:92:dc:59:89:cc:f0:e9:15:f7: ae:f8:ed:1b:49:5e:73:fb:2d:ea:b3:bb:ec:22:73: fb:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:A2:5F:F0:59:EF:68:B2:81:5F:21:14:99:C8:0B:93:BB:0A:38:4C X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qqJf8FnvaLKBXyEUmcgLk7sKOEw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.168.0/21 Signature Algorithm: sha256WithRSAEncryption 28:97:80:6d:a7:8a:3f:42:a7:d8:b5:70:dd:99:28:53:20:30: e1:fa:d5:28:77:3a:07:48:5d:68:6f:a7:4e:05:8a:ac:db:d7: 0d:b4:3e:1d:05:51:2a:83:88:3a:f0:34:8e:bb:01:0d:39:ed: 57:79:07:e3:c1:01:6b:fb:d5:60:98:48:77:52:fa:7e:c6:80: 3a:28:11:81:09:55:cd:ed:c3:1c:d3:98:77:de:cd:e4:05:60: 15:83:25:e6:ee:9a:2f:61:90:10:a6:f3:d9:2f:3c:7a:7e:ce: 7b:22:8b:70:3f:6e:ed:7e:24:e8:8f:4b:0f:00:9c:9d:33:a6: 4e:40:2e:e0:2b:90:95:87:6d:c3:36:0b:67:d1:31:56:b3:8c: 79:40:08:10:25:4e:a9:24:e4:8a:c9:87:93:c7:53:95:90:95: ba:41:d9:35:5e:53:a5:d7:74:b8:43:3e:ce:f5:24:b0:17:57: 4b:d1:a8:cf:ba:07:44:44:4b:aa:a3:8d:b3:6d:aa:ae:2e:a8: 45:d9:6c:9b:d5:ed:f9:70:4d:17:0d:2f:34:77:2f:e2:56:2b: 4b:cc:e4:9d:47:ac:9b:1f:b5:45:c2:31:81:da:64:a3:31:3e: 93:69:03:39:99:96:fb:0a:61:e2:92:1f:06:d2:f1:3d:72:a2: 32:b0:56:41 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGfowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMzVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEFBQTI1RkYwNTlFRjY4 QjI4MTVGMjExNDk5QzgwQjkzQkIwQTM4NEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDR7+TEIX/TtwyGm7qGJak+vwtf9EOUZfTCyVm+Gz0OT6iKwGHM iXaBHY35eqvk0mS2CZEMuCFXTXSO1K3rzMlzuJDz2JLe40x9g/kCDWizm7NldIbW EEsacEDy2OWW2oFqOL3K9LuShvaNNQRxKty8UCFeUTENFRtU1khtF3kjN85hqLLq QzArUJyWQtLN/xV/HoRwopc4twgioVqLox2aja3yXpoEgKk0fdxj6O16rRkN/k55 TxebT7YyY/R4BscR+0va0oHTf1JEvBpFsxXLY37FlXBGog/2Dp+8PMhLA819yqDn /pLcWYnM8OkV96747RtJXnP7Leqzu+wic/slAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUqqJf8FnvaLKBXyEUmcgLk7sKOEwwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvcXFKZjhGbnZhTEtCWHlFVW1jZ0xr N3NLT0V3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA2ppqDAN BgkqhkiG9w0BAQsFAAOCAQEAKJeAbaeKP0Kn2LVw3ZkoUyAw4frVKHc6B0hdaG+n TgWKrNvXDbQ+HQVRKoOIOvA0jrsBDTntV3kH48EBa/vVYJhId1L6fsaAOigRgQlV ze3DHNOYd97N5AVgFYMl5u6aL2GQEKbz2S88en7OeyKLcD9u7X4k6I9LDwCcnTOm TkAu4CuQlYdtwzYLZ9ExVrOMeUAIECVOqSTkismHk8dTlZCVukHZNV5Tpdd0uEM+ zvUksBdXS9Goz7oHRERLqqONs22qri6oRdlsm9Xt+XBNFw0vNHcv4lYrS8zknUes mx+1RcIxgdpkozE+k2kDOZmW+wph4pIfBtLxPXKiMrBWQQ== -----END CERTIFICATE-----Generated at Sun Aug 24 13:49:37 2025 by rpki-client