$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/tyU_Bi838SkcIgptGk9hz-4P1Hg.roa File: tyU_Bi838SkcIgptGk9hz-4P1Hg.roa (raw, json) Hash identifier: RIsH6RhgNRKRoJpmZ340Lz5Eqe+puO0XtDeOrEqs3ss= Subject key identifier: B7:25:3F:06:2F:37:F1:29:1C:22:0A:6D:1A:4F:61:CF:EE:0F:D4:78 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 106F Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tyU_Bi838SkcIgptGk9hz-4P1Hg.roa Signing time: Fri 22 Aug 2025 08:54:15 +0000 ROA not before: Fri 22 Aug 2025 08:54:15 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 192.72.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4207 (0x106f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 22 08:54:15 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B7253F062F37F1291C220A6D1A4F61CFEE0FD478 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:34:9b:5a:cb:7c:62:9a:d0:10:c8:a9:8d:91: df:09:7b:41:5c:c0:71:c9:b9:3c:51:ab:01:ac:5c: 34:6b:6e:90:7f:9e:b5:9f:37:d6:3c:74:6c:30:dc: 45:15:a8:b2:12:ca:0f:d5:65:8d:94:9e:50:bb:c2: 03:9a:fb:f5:b7:ef:1d:76:78:02:29:66:44:a3:45: 22:86:22:39:ae:6d:4f:25:0d:d7:ba:36:89:bb:f7: 2e:d7:9c:e0:56:84:4b:a5:5f:8d:02:1e:8d:2b:21: f1:1a:32:d5:5d:71:c6:e8:7b:0f:92:5c:c5:84:c3: f2:98:25:9e:3e:ef:c2:c1:58:d9:de:6c:13:63:bd: b5:69:32:9f:c8:e7:91:5b:af:3e:9a:db:34:7a:16: c2:bc:a1:58:d0:3a:1d:f3:d0:37:de:dc:a8:2f:d7: 98:78:ab:ab:b3:e6:69:b1:64:d4:bb:7e:98:d3:91: e5:9d:12:45:ed:d8:ff:0c:ed:ec:fa:2b:0f:17:8a: 5e:7c:e7:95:d7:50:8d:c5:5d:6d:d7:f3:27:e5:f6: 57:dc:d7:c2:83:ad:c4:fc:21:d1:ca:d3:6c:8e:ab: a3:c8:a7:95:de:ea:92:70:d3:82:d3:01:25:40:07: 99:a6:9e:94:8e:7d:11:ad:a9:ad:d7:b6:81:9e:78: ef:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:25:3F:06:2F:37:F1:29:1C:22:0A:6D:1A:4F:61:CF:EE:0F:D4:78 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tyU_Bi838SkcIgptGk9hz-4P1Hg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.248.0/22 Signature Algorithm: sha256WithRSAEncryption 9a:30:3b:c9:44:df:47:76:c9:4a:86:76:be:27:0a:5b:31:0e: cc:2e:4d:d1:b2:91:41:1b:64:6b:e4:82:61:3b:e3:d5:24:e7: 63:41:e4:d1:42:04:37:6c:70:02:ad:8d:12:16:2e:8e:cc:9b: 74:8e:ab:d0:6d:23:4c:96:d3:8e:02:de:20:5f:bc:b8:dc:29: db:84:21:03:00:ee:92:78:e5:d5:92:55:0c:94:84:40:89:f5: 43:21:d5:fd:02:2d:dd:92:27:2b:51:81:12:66:d5:48:a1:30: a0:00:76:7b:fe:00:dd:3e:14:99:3f:8b:4c:0c:57:1d:10:2b: 7b:84:a1:46:03:d3:9e:af:2c:ca:30:57:ea:a1:a9:bf:6f:cf: 50:8c:30:cc:dc:6f:bb:be:5d:f9:65:8b:1a:6f:c6:c6:10:06: bc:83:9e:92:10:9a:90:e1:30:30:b6:bf:bf:5e:c4:45:b1:0e: 53:64:b0:6b:fa:28:e6:6c:b7:3b:e6:70:10:8d:fb:f3:a0:f7: 1f:b1:d2:63:ce:d2:f4:49:24:e9:dd:bf:f4:72:f8:50:e9:61: 1c:01:19:80:34:4e:c0:f9:1a:0e:fc:18:28:54:6e:07:f5:e8: 2d:94:06:de:09:88:c6:d2:12:e3:be:12:23:56:67:a0:a2:17: 3d:67:94:90 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEG8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNTA4MjIw ODU0MTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI3MjUzRjA2MkYzN0Yx MjkxQzIyMEE2RDFBNEY2MUNGRUUwRkQ0NzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/NJtay3ximtAQyKmNkd8Je0FcwHHJuTxRqwGsXDRrbpB/nrWf N9Y8dGww3EUVqLISyg/VZY2UnlC7wgOa+/W37x12eAIpZkSjRSKGIjmubU8lDde6 Nom79y7XnOBWhEulX40CHo0rIfEaMtVdccboew+SXMWEw/KYJZ4+78LBWNnebBNj vbVpMp/I55Fbrz6a2zR6FsK8oVjQOh3z0Dfe3Kgv15h4q6uz5mmxZNS7fpjTkeWd EkXt2P8M7ez6Kw8Xil5855XXUI3FXW3X8yfl9lfc18KDrcT8IdHK02yOq6PIp5Xe 6pJw04LTASVAB5mmnpSOfRGtqa3XtoGeeO/zAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUtyU/Bi838SkcIgptGk9hz+4P1HgwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvdHlVX0JpODM4U2tjSWdwdEdrOWh6 LTRQMUhnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsBI+DAN BgkqhkiG9w0BAQsFAAOCAQEAmjA7yUTfR3bJSoZ2vicKWzEOzC5N0bKRQRtka+SC YTvj1STnY0Hk0UIEN2xwAq2NEhYujsybdI6r0G0jTJbTjgLeIF+8uNwp24QhAwDu knjl1ZJVDJSEQIn1QyHV/QIt3ZInK1GBEmbVSKEwoAB2e/4A3T4UmT+LTAxXHRAr e4ShRgPTnq8syjBX6qGpv2/PUIwwzNxvu75d+WWLGm/GxhAGvIOekhCakOEwMLa/ v17ERbEOU2Swa/oo5my3O+ZwEI3786D3H7HSY87S9Ekk6d2/9HL4UOlhHAEZgDRO wPkaDvwYKFRuB/XoLZQG3gmIxtIS474SI1ZnoKIXPWeUkA== -----END CERTIFICATE-----Generated at Sun Aug 24 09:40:20 2025 by rpki-client