$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/uSOpWaDYDKNRQH8bXTnBj84KDi0.roa File: uSOpWaDYDKNRQH8bXTnBj84KDi0.roa (raw, json) Hash identifier: Xiz8rVYW5XrAQx/lMik8ZpbJiMiuTO1nVXHiJQpNOVw= Subject key identifier: B9:23:A9:59:A0:D8:0C:A3:51:40:7F:1B:5D:39:C1:8F:CE:0A:0E:2D Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 19A0 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/uSOpWaDYDKNRQH8bXTnBj84KDi0.roa Signing time: Fri 22 Aug 2025 08:53:12 +0000 ROA not before: Fri 22 Aug 2025 08:53:12 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18049 IP address blocks: 112.105.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6560 (0x19a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:12 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B923A959A0D80CA351407F1B5D39C18FCE0A0E2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:26:d5:62:47:03:06:44:04:ce:1e:94:f0:c4: 0f:3c:dd:de:2d:45:a8:52:14:53:b9:2e:b7:90:d5: bc:8f:34:76:4f:46:8b:a2:48:c3:2e:1d:44:5f:48: c0:ca:13:a4:8f:de:57:86:94:cd:3b:a7:a1:a6:7d: 5c:c3:fc:73:87:cc:f3:54:54:3d:ef:ef:e6:eb:0c: 34:0e:55:47:63:ac:5b:a3:22:9a:f4:c2:1b:eb:62: e9:c3:1a:0c:5b:e4:a2:61:a2:ca:3d:67:3c:bb:f5: f5:bc:5c:dc:e9:ea:da:46:56:49:26:9d:1e:43:4d: 9a:55:ce:cc:0e:39:53:6c:9f:91:2f:0f:56:9b:af: ab:46:6b:98:7f:f1:57:11:a8:f6:f5:3d:2c:f3:f7: 05:e9:31:c5:35:c4:47:b2:c2:34:55:0d:09:94:6a: 59:8f:3f:15:19:94:85:a4:d7:8e:04:61:35:31:b9: c0:e3:37:c6:81:66:07:58:ff:7e:14:dd:7a:a2:8b: 3c:a0:1f:05:1d:36:db:71:0b:67:67:bd:6f:a6:c6: 44:bb:91:05:c9:f5:03:ca:dd:58:59:d9:be:7e:5e: 0a:f6:6f:4d:d9:ee:85:6e:27:28:36:50:95:cb:10: 89:ea:0d:0d:ef:95:20:e3:4f:49:40:27:f0:47:d7: 09:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:23:A9:59:A0:D8:0C:A3:51:40:7F:1B:5D:39:C1:8F:CE:0A:0E:2D X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/uSOpWaDYDKNRQH8bXTnBj84KDi0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 112.105.0.0/19 Signature Algorithm: sha256WithRSAEncryption 28:ce:de:bc:c4:0b:31:19:8c:fd:21:f3:72:ad:4f:7f:10:8d: 02:94:74:4a:ca:70:d0:85:32:67:2c:04:98:24:46:6c:2a:8d: bc:d5:06:1a:1f:3d:c3:72:c4:ba:40:ce:64:66:14:15:ad:15: 03:e7:0f:c5:b1:b1:4c:01:eb:ce:ad:ac:64:0e:ae:0a:0f:d5: 1d:f4:16:18:14:b1:22:a6:41:fc:bc:e4:8e:ff:e4:ec:e4:48: 86:b9:9c:49:5a:45:88:8a:b0:46:14:f5:11:a0:f5:d8:27:41: 0b:c8:9d:3d:3a:ad:86:8a:eb:3a:81:a4:92:00:27:60:73:44: 2c:ce:b5:b8:6b:78:0c:fd:0a:45:f6:05:49:5f:07:26:22:bf: 21:ce:7e:c1:94:f1:88:40:f3:43:8f:f6:42:a4:d3:10:a8:64: 5b:d7:52:88:4a:0e:0d:4f:5b:5f:c1:c8:2a:08:6e:ee:a0:27: ab:84:1f:a5:47:77:6f:19:23:1c:ed:c3:26:b2:cb:e2:0e:64: 19:c0:ad:0b:a4:2e:33:39:2f:12:6e:18:d9:26:2a:4a:53:a2: b7:04:dc:cd:f7:6c:ab:76:5b:f5:d9:4b:b2:b3:2d:7e:02:9c: e1:6a:24:30:83:91:7f:63:5f:9a:c2:01:6c:31:a2:46:7b:08: 92:7b:2f:a3 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGaAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI5MjNBOTU5QTBEODBD QTM1MTQwN0YxQjVEMzlDMThGQ0UwQTBFMkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHJtViRwMGRATOHpTwxA883d4tRahSFFO5LreQ1byPNHZPRoui SMMuHURfSMDKE6SP3leGlM07p6GmfVzD/HOHzPNUVD3v7+brDDQOVUdjrFujIpr0 whvrYunDGgxb5KJhoso9Zzy79fW8XNzp6tpGVkkmnR5DTZpVzswOOVNsn5EvD1ab r6tGa5h/8VcRqPb1PSzz9wXpMcU1xEeywjRVDQmUalmPPxUZlIWk144EYTUxucDj N8aBZgdY/34U3XqiizygHwUdNttxC2dnvW+mxkS7kQXJ9QPK3VhZ2b5+Xgr2b03Z 7oVuJyg2UJXLEInqDQ3vlSDjT0lAJ/BH1wlPAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUuSOpWaDYDKNRQH8bXTnBj84KDi0wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvdVNPcFdhRFlES05SUUg4YlhUbkJq ODRLRGkwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXBpADAN BgkqhkiG9w0BAQsFAAOCAQEAKM7evMQLMRmM/SHzcq1PfxCNApR0Sspw0IUyZywE mCRGbCqNvNUGGh89w3LEukDOZGYUFa0VA+cPxbGxTAHrzq2sZA6uCg/VHfQWGBSx IqZB/Lzkjv/k7ORIhrmcSVpFiIqwRhT1EaD12CdBC8idPTqthorrOoGkkgAnYHNE LM61uGt4DP0KRfYFSV8HJiK/Ic5+wZTxiEDzQ4/2QqTTEKhkW9dSiEoODU9bX8HI Kghu7qAnq4QfpUd3bxkjHO3DJrLL4g5kGcCtC6QuMzkvEm4Y2SYqSlOitwTczfds q3Zb9dlLsrMtfgKc4WokMIORf2NfmsIBbDGiRnsIknsvow== -----END CERTIFICATE-----Generated at Sun Aug 24 13:49:38 2025 by rpki-client