$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/x-tL674xD1dWPgeSdw33g1oqVeU.roa File: x-tL674xD1dWPgeSdw33g1oqVeU.roa (raw, json) Hash identifier: YsYhE8//iNzkrrs9EsTw8yAkP2bfWvQEIGAacN2R3vo= Subject key identifier: C7:EB:4B:EB:BE:31:0F:57:56:3E:07:92:77:0D:F7:83:5A:2A:55:E5 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 19B8 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/x-tL674xD1dWPgeSdw33g1oqVeU.roa Signing time: Fri 22 Aug 2025 08:53:17 +0000 ROA not before: Fri 22 Aug 2025 08:53:17 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131586 IP address blocks: 2401:a040::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6584 (0x19b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:17 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C7EB4BEBBE310F57563E0792770DF7835A2A55E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4e:00:3a:83:25:10:26:38:32:7e:12:82:0b: f9:77:e5:65:e0:cd:d9:66:a5:59:c1:65:23:71:21: 80:5d:1c:85:f8:47:0f:27:76:5c:39:a5:9c:a7:6a: 3c:2b:c8:be:6a:a7:88:ec:5c:16:e5:3a:6e:2e:74: 5c:21:f9:3a:2c:ad:e5:b5:b1:7a:bf:bc:48:5b:76: 4f:85:52:98:0b:65:56:fc:84:7f:9a:c3:23:e5:48: 4a:4f:8d:8c:5c:a4:d9:07:9c:ca:ba:7e:35:b1:3a: ce:8f:0a:1c:7d:ec:85:1b:21:e8:ba:7a:3a:2f:3d: d4:e2:07:34:a0:ed:b9:27:56:5f:30:45:2b:0a:de: f7:dd:26:bf:7a:d9:f6:a6:6f:d6:f5:f9:37:56:73: 35:e9:35:ba:df:83:8c:d3:f6:4a:9c:ff:ac:50:69: 51:1c:fe:09:22:f2:29:7a:cb:88:52:4d:24:b5:5c: fd:f6:33:43:ff:ef:e5:ad:01:81:f7:9b:bd:1e:2e: 05:53:15:13:30:03:47:c7:a0:21:19:e8:7d:8a:29: d2:29:3f:b8:f3:58:c1:97:61:70:28:a8:4b:db:25: de:1d:5a:17:bd:7d:8a:86:2c:77:3d:d2:2e:c7:2f: 92:f5:6a:b8:24:dc:6e:5a:84:3f:70:70:c8:38:c6: 0c:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:EB:4B:EB:BE:31:0F:57:56:3E:07:92:77:0D:F7:83:5A:2A:55:E5 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/x-tL674xD1dWPgeSdw33g1oqVeU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:a040::/32 Signature Algorithm: sha256WithRSAEncryption 8d:60:7a:ca:f6:f9:ff:45:65:70:66:45:92:94:51:f6:b4:97: 1a:10:a1:14:11:ed:cb:d2:be:14:43:ab:5d:2f:f9:81:ac:42: f6:09:c6:ab:e2:18:43:69:f5:f7:0e:db:c4:5b:89:f5:57:b4: ee:84:c5:e3:97:2e:7e:ff:90:c0:c1:db:24:8c:57:7c:a6:34: ec:dd:3b:49:ed:7f:60:91:50:cd:d4:14:cc:c4:53:f4:92:99: 2e:00:d3:df:be:55:35:42:3b:88:d4:ea:d5:5d:ad:5f:69:51: af:e2:ad:89:e0:0a:7f:05:d9:58:b7:88:bb:61:1d:f8:85:cd: 2a:7c:30:28:6d:37:ef:e2:99:94:92:d4:c2:a6:a3:ba:2e:bd: 61:15:18:e3:4e:01:db:ab:95:38:99:de:55:09:92:d3:fc:48: 52:aa:bc:cd:db:cc:b1:e4:30:44:ec:8b:72:2e:29:1b:93:fd: 35:57:37:bf:fd:9a:5d:97:4a:b4:9f:cd:cb:f7:7e:a1:30:b8: 2b:fd:05:e1:a4:08:fe:e9:92:20:53:76:44:00:c7:89:e6:aa: 15:19:43:c8:09:33:29:65:a4:3e:4a:59:d0:18:80:99:a3:1c: ef:9f:24:72:a2:65:c4:13:41:99:ba:b4:14:a8:71:e0:5b:ba: 04:2f:97:8e -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICGbgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM3RUI0QkVCQkUzMTBG NTc1NjNFMDc5Mjc3MERGNzgzNUEyQTU1RTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9TgA6gyUQJjgyfhKCC/l35WXgzdlmpVnBZSNxIYBdHIX4Rw8n dlw5pZynajwryL5qp4jsXBblOm4udFwh+TosreW1sXq/vEhbdk+FUpgLZVb8hH+a wyPlSEpPjYxcpNkHnMq6fjWxOs6PChx97IUbIei6ejovPdTiBzSg7bknVl8wRSsK 3vfdJr962famb9b1+TdWczXpNbrfg4zT9kqc/6xQaVEc/gki8il6y4hSTSS1XP32 M0P/7+WtAYH3m70eLgVTFRMwA0fHoCEZ6H2KKdIpP7jzWMGXYXAoqEvbJd4dWhe9 fYqGLHc90i7HL5L1argk3G5ahD9wcMg4xgwjAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUx+tL674xD1dWPgeSdw33g1oqVeUwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMveC10TDY3NHhEMWRXUGdlU2R3MzNn MW9xVmVVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBoEAw DQYJKoZIhvcNAQELBQADggEBAI1gesr2+f9FZXBmRZKUUfa0lxoQoRQR7cvSvhRD q10v+YGsQvYJxqviGENp9fcO28RbifVXtO6ExeOXLn7/kMDB2ySMV3ymNOzdO0nt f2CRUM3UFMzEU/SSmS4A09++VTVCO4jU6tVdrV9pUa/irYngCn8F2Vi3iLthHfiF zSp8MChtN+/imZSS1MKmo7ouvWEVGONOAdurlTiZ3lUJktP8SFKqvM3bzLHkMETs i3IuKRuT/TVXN7/9ml2XSrSfzcv3fqEwuCv9BeGkCP7pkiBTdkQAx4nmqhUZQ8gJ MyllpD5KWdAYgJmjHO+fJHKiZcQTQZm6tBSoceBbugQvl44= -----END CERTIFICATE-----Generated at Sun Aug 24 11:54:13 2025 by rpki-client