$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/vLvHYAQtod09_k6getbBB1glz3Q.roa File: vLvHYAQtod09_k6getbBB1glz3Q.roa (raw, json) Hash identifier: 3hEJoftMvTnC0RNOftD3eUlQq7Bot2wgBSfwMJoptxU= Subject key identifier: BC:BB:C7:60:04:2D:A1:DD:3D:FE:4E:A0:7A:D6:C1:07:58:25:CF:74 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A1D Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/vLvHYAQtod09_k6getbBB1glz3Q.roa Signing time: Fri 22 Aug 2025 08:53:44 +0000 ROA not before: Fri 22 Aug 2025 08:53:44 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131584 IP address blocks: 106.105.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6685 (0x1a1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:44 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BCBBC760042DA1DD3DFE4EA07AD6C1075825CF74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ba:b0:1c:ec:71:5f:92:83:7e:68:c5:05:90: 4b:92:28:3d:6b:05:2e:d6:f7:15:a9:6e:72:5d:4d: 39:bc:9e:b2:59:87:f9:48:a8:51:fc:56:8a:5d:33: 32:d6:a9:53:e0:21:69:b5:36:df:e0:be:d7:23:5a: 2a:3a:c6:06:29:69:11:85:11:db:2b:ee:9e:6e:e5: 38:f5:92:1e:4b:05:c4:3a:47:64:8a:8d:62:08:1e: 2e:c4:45:60:cb:ea:55:18:34:87:72:c0:18:ec:84: a4:ab:2e:74:a2:fc:f8:c3:d7:20:92:16:a2:78:48: e4:23:1f:d4:ee:2b:eb:6e:37:06:b5:55:68:11:1f: db:d0:fe:d9:ec:cb:d5:5e:8e:36:5e:67:fd:41:8f: 71:10:ba:1d:d9:eb:36:e5:20:cd:c0:0e:c1:99:a9: c9:72:35:1e:ea:7e:61:85:ec:6e:1f:d5:7c:0a:a8: 0a:70:ce:3f:04:9c:24:45:55:f5:9e:9d:f8:35:cf: b6:b3:50:ef:d7:d9:a4:3f:fb:db:4d:ca:40:67:e1: b4:3f:49:02:4b:d3:f5:fc:a3:28:35:98:6a:fc:bb: c6:08:86:1e:a3:15:0b:76:c2:57:68:02:e0:b7:b7: 25:85:50:4c:67:7e:b5:11:85:39:ab:07:1a:b9:51: 19:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:BB:C7:60:04:2D:A1:DD:3D:FE:4E:A0:7A:D6:C1:07:58:25:CF:74 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/vLvHYAQtod09_k6getbBB1glz3Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.182.0/24 Signature Algorithm: sha256WithRSAEncryption 28:69:2f:05:16:b4:db:41:66:6b:96:bc:13:ed:e1:99:e1:c5: ff:32:25:d5:38:1a:20:a1:74:e5:e8:38:2e:51:ce:d2:b2:f0: 35:93:d2:64:2d:4b:da:ad:82:96:bb:36:97:cf:84:36:55:42: 30:39:e6:30:35:3a:35:8e:6b:2a:b1:7a:53:b1:03:d4:7b:c4: c3:f8:a1:31:ea:25:11:89:95:7c:fd:d5:40:58:99:f7:77:7a: e2:d2:95:f8:e3:32:cc:9d:1d:f5:ea:6d:80:3d:9c:f8:53:e9: de:46:ad:24:68:93:71:74:25:d3:83:be:b4:56:3f:62:61:87: b9:d5:50:c2:db:a1:52:eb:fe:a0:80:53:29:b9:e4:34:3f:68: 94:8b:21:0c:c0:ac:8d:b3:eb:cc:16:33:77:97:67:e0:44:89: f6:96:d9:ce:27:c9:a6:d2:96:33:9c:7d:9a:1d:4c:1d:7e:6d: a9:5a:44:db:05:b0:78:42:e5:c7:cc:1b:8b:92:90:f3:b0:d1: 07:40:2f:83:82:2b:f9:98:ac:34:83:cb:f1:9c:3c:6d:2b:e7: 2b:ae:88:39:c7:ae:81:f4:85:d1:8d:0c:6e:f9:83:32:8e:aa: 35:ad:a2:2a:e9:f5:b4:de:25:3b:f9:c8:9f:9b:ba:56:d6:70: 31:8c:6d:a4 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGh0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzNDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJDQkJDNzYwMDQyREEx REQzREZFNEVBMDdBRDZDMTA3NTgyNUNGNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMurAc7HFfkoN+aMUFkEuSKD1rBS7W9xWpbnJdTTm8nrJZh/lI qFH8VopdMzLWqVPgIWm1Nt/gvtcjWio6xgYpaRGFEdsr7p5u5Tj1kh5LBcQ6R2SK jWIIHi7ERWDL6lUYNIdywBjshKSrLnSi/PjD1yCSFqJ4SOQjH9TuK+tuNwa1VWgR H9vQ/tnsy9VejjZeZ/1Bj3EQuh3Z6zblIM3ADsGZqclyNR7qfmGF7G4f1XwKqApw zj8EnCRFVfWenfg1z7azUO/X2aQ/+9tNykBn4bQ/SQJL0/X8oyg1mGr8u8YIhh6j FQt2wldoAuC3tyWFUExnfrURhTmrBxq5URkLAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUvLvHYAQtod09/k6getbBB1glz3QwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvdkx2SFlBUXRvZDA5X2s2Z2V0YkJC MWdsejNRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGpptjAN BgkqhkiG9w0BAQsFAAOCAQEAKGkvBRa020Fma5a8E+3hmeHF/zIl1TgaIKF05eg4 LlHO0rLwNZPSZC1L2q2Clrs2l8+ENlVCMDnmMDU6NY5rKrF6U7ED1HvEw/ihMeol EYmVfP3VQFiZ93d64tKV+OMyzJ0d9eptgD2c+FPp3katJGiTcXQl04O+tFY/YmGH udVQwtuhUuv+oIBTKbnkND9olIshDMCsjbPrzBYzd5dn4ESJ9pbZzifJptKWM5x9 mh1MHX5tqVpE2wWweELlx8wbi5KQ87DRB0Avg4Ir+ZisNIPL8Zw8bSvnK66IOceu gfSF0Y0MbvmDMo6qNa2iKun1tN4lO/nIn5u6VtZwMYxtpA== -----END CERTIFICATE-----Generated at Sun Aug 24 16:09:12 2025 by rpki-client