$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/yLF0PyhsUR1bFZGoMDV7DGGXFDM.roa File: yLF0PyhsUR1bFZGoMDV7DGGXFDM.roa (raw, json) Hash identifier: QjoKV5tDOI31w+pZ2L5+zoRheQRxMAZsR8oHNBxF83Q= Subject key identifier: C8:B1:74:3F:28:6C:51:1D:5B:15:91:A8:30:35:7B:0C:61:97:14:33 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 1076 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/yLF0PyhsUR1bFZGoMDV7DGGXFDM.roa Signing time: Fri 22 Aug 2025 08:54:17 +0000 ROA not before: Fri 22 Aug 2025 08:54:17 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 139.175.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4214 (0x1076) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 22 08:54:17 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C8B1743F286C511D5B1591A830357B0C61971433 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:21:b0:d2:5c:cf:f1:a5:ab:82:c1:9a:7b:c9: 31:70:1a:ab:12:a1:21:18:85:a9:48:c1:72:87:b7: c1:f6:8f:1a:25:64:20:d6:fd:cb:47:09:f2:d6:6d: 9f:1a:bc:f7:a0:64:c9:f5:b3:fc:5a:e4:9f:a4:f5: 72:9b:33:5d:c4:d4:9e:1e:5a:34:0e:5d:50:fa:10: 74:8f:9e:ef:a6:9c:0d:81:6d:a1:33:f7:1d:7b:28: d3:31:e1:53:8c:4b:10:e5:04:30:8e:c8:dc:c6:cd: cc:d0:48:fb:ad:5d:57:df:15:38:e8:10:db:fe:94: b0:0b:49:f0:e2:96:29:6c:96:b9:95:8c:38:a6:6a: b0:34:48:14:f7:5e:05:36:11:ec:52:10:0a:59:1b: b4:a2:d6:c3:eb:d6:cb:48:d0:f3:c9:31:dc:09:78: ee:fb:da:ea:f9:3f:c7:76:3f:48:7f:80:1e:07:bd: 78:dd:19:a1:c2:71:43:72:3e:00:ad:09:ce:19:da: 4f:0a:d1:dc:94:a0:7c:04:df:bf:6b:79:98:73:2c: ea:06:ec:b6:86:ad:db:36:59:41:8c:d2:15:3c:39: 7c:d4:aa:20:e6:03:06:6e:11:0a:0c:de:c7:63:cd: 0c:27:1c:d2:55:40:e6:05:ae:a8:3b:21:19:14:65: 0a:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:B1:74:3F:28:6C:51:1D:5B:15:91:A8:30:35:7B:0C:61:97:14:33 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/yLF0PyhsUR1bFZGoMDV7DGGXFDM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 139.175.0.0/16 Signature Algorithm: sha256WithRSAEncryption 68:8e:39:d1:07:e3:ad:66:45:dd:10:ad:48:9a:f9:4b:c3:83: 46:e6:71:ef:c4:35:bb:2d:3b:df:5f:34:68:73:65:75:5d:f8: 9c:5a:e1:1b:ea:ae:10:5e:99:27:08:c8:61:ef:24:ce:2b:58: f0:3e:5a:a5:06:2c:ab:e0:d3:c4:62:7c:0e:7e:1f:30:9e:87: 76:72:b8:93:35:21:4c:15:8f:d8:e8:1b:c7:66:3d:0b:84:1c: 75:d2:89:43:b0:1c:02:69:06:71:d8:f1:62:5b:3f:60:ea:90: 91:2d:bf:29:3c:6c:af:16:38:53:67:3f:64:a7:63:59:bf:89: 8d:89:b9:77:df:7b:85:04:f8:03:1a:a9:5a:2a:3c:42:5d:87: 09:d3:06:ec:12:9e:04:bb:c4:7c:b9:d0:b2:1c:04:7e:2f:ee: 8d:4c:e7:93:e3:19:f6:79:90:50:c5:3f:bc:b6:02:05:54:e6: ef:91:a3:08:e7:eb:ad:ff:92:b1:f6:cf:b9:65:f2:6e:dd:d9: cb:08:82:1e:3c:86:d7:9a:62:84:79:2d:0b:1c:aa:17:b8:55: d2:3c:82:fb:41:b1:89:32:28:66:f6:67:0e:df:aa:b9:9b:ba: 78:69:9a:21:4b:87:7f:16:9c:9e:9c:d6:eb:da:d9:ce:46:ec: 81:82:cd:3a -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICEHYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNTA4MjIw ODU0MTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM4QjE3NDNGMjg2QzUx MUQ1QjE1OTFBODMwMzU3QjBDNjE5NzE0MzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnIbDSXM/xpauCwZp7yTFwGqsSoSEYhalIwXKHt8H2jxolZCDW /ctHCfLWbZ8avPegZMn1s/xa5J+k9XKbM13E1J4eWjQOXVD6EHSPnu+mnA2BbaEz 9x17KNMx4VOMSxDlBDCOyNzGzczQSPutXVffFTjoENv+lLALSfDililslrmVjDim arA0SBT3XgU2EexSEApZG7Si1sPr1stI0PPJMdwJeO772ur5P8d2P0h/gB4HvXjd GaHCcUNyPgCtCc4Z2k8K0dyUoHwE379reZhzLOoG7LaGrds2WUGM0hU8OXzUqiDm AwZuEQoM3sdjzQwnHNJVQOYFrqg7IRkUZQqhAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUyLF0PyhsUR1bFZGoMDV7DGGXFDMwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMveUxGMFB5aHNVUjFiRlpHb01EVjdE R0dYRkRNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAIuvMA0G CSqGSIb3DQEBCwUAA4IBAQBojjnRB+OtZkXdEK1ImvlLw4NG5nHvxDW7LTvfXzRo c2V1XficWuEb6q4QXpknCMhh7yTOK1jwPlqlBiyr4NPEYnwOfh8wnod2criTNSFM FY/Y6BvHZj0LhBx10olDsBwCaQZx2PFiWz9g6pCRLb8pPGyvFjhTZz9kp2NZv4mN ibl333uFBPgDGqlaKjxCXYcJ0wbsEp4Eu8R8udCyHAR+L+6NTOeT4xn2eZBQxT+8 tgIFVObvkaMI5+ut/5Kx9s+5ZfJu3dnLCIIePIbXmmKEeS0LHKoXuFXSPIL7QbGJ Mihm9mcO36q5m7p4aZohS4d/FpyenNbr2tnORuyBgs06 -----END CERTIFICATE-----Generated at Sun Aug 24 09:35:56 2025 by rpki-client