$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ydo0i-OyJsNg9fnm5p7QSu32WVA.roa File: ydo0i-OyJsNg9fnm5p7QSu32WVA.roa (raw, json) Hash identifier: Pki7U1uqDuzpu3jSBdsJ66UyVJrSUVHMYFg7yIXDZJM= Subject key identifier: C9:DA:34:8B:E3:B2:26:C3:60:F5:F9:E6:E6:9E:D0:4A:ED:F6:59:50 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 107B Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ydo0i-OyJsNg9fnm5p7QSu32WVA.roa Signing time: Fri 22 Aug 2025 08:54:18 +0000 ROA not before: Fri 22 Aug 2025 08:54:18 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 192.72.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4219 (0x107b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 22 08:54:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C9DA348BE3B226C360F5F9E6E69ED04AEDF65950 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:09:8d:b1:9d:30:5a:15:29:02:e3:e4:59:b4: e4:04:fe:82:3b:e9:e4:54:91:ff:e7:fb:2f:72:4f: 9a:a3:b0:bc:bb:d0:ac:e8:6c:f0:3e:cf:2c:9e:1d: 83:9e:a5:08:71:ff:63:1f:fc:0c:ee:c7:de:2a:05: d6:d8:a3:6e:89:60:60:7a:bf:79:63:ec:c4:a7:64: 6d:ea:10:37:0b:e4:dd:e8:88:8b:0a:a6:e3:e8:1d: d9:7c:a1:89:7b:2f:d5:41:e0:61:62:8d:39:c9:b6: 70:8e:d0:66:dd:ef:fe:58:21:47:0b:e7:c2:b1:3f: 89:f5:ae:e8:ce:06:da:b1:6d:23:ba:dd:77:42:5c: 79:fa:75:50:6c:e0:f5:b7:47:84:8a:ec:1c:89:04: cc:74:c3:46:e6:71:3e:26:b2:29:86:9c:e5:6b:37: e0:a6:40:81:c2:55:56:e7:a1:6d:d6:d1:40:4e:af: 10:2d:d3:29:40:0d:66:7d:ce:16:bc:8c:13:db:e7: 61:ec:67:e6:6a:e5:aa:f0:ee:30:a4:6b:f2:43:b1: 32:88:83:03:c0:b0:27:ed:27:96:d1:cf:ad:f8:12: af:51:c4:b6:02:7c:35:19:4f:51:fd:de:5a:93:d4: da:eb:49:6c:1d:cf:0f:96:db:c5:01:14:24:b3:1d: d4:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:DA:34:8B:E3:B2:26:C3:60:F5:F9:E6:E6:9E:D0:4A:ED:F6:59:50 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ydo0i-OyJsNg9fnm5p7QSu32WVA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.3.0/24 Signature Algorithm: sha256WithRSAEncryption 76:ee:71:4d:1b:18:76:7a:db:c5:5b:d8:d0:a7:6f:fe:de:fc: 4a:38:42:b4:56:85:08:ea:15:9a:58:86:0f:e9:a9:57:f3:e0: 7b:91:60:ae:fa:fe:96:f3:d8:e6:60:8f:f7:28:4c:09:38:05: 58:62:47:86:a4:3b:0d:44:67:cb:7a:e4:bd:29:cf:1d:29:51: f0:6b:7c:9f:fb:d5:7b:02:41:53:18:0c:77:d8:07:3a:ee:d1: 44:8c:9c:36:bc:02:c6:94:0a:9f:eb:9a:15:a4:76:93:b7:88: d4:ca:b3:46:6b:ff:5b:09:70:9d:cc:b1:be:24:4c:01:2e:87: c4:05:a2:24:ae:31:11:98:d9:8f:f4:89:06:da:a5:46:65:22: d7:08:03:ef:54:1d:81:c9:00:26:e8:33:74:26:06:f4:c5:03: 18:b3:ad:7d:41:e1:a8:7a:b7:76:a1:58:4c:64:ba:84:52:2c: 68:1e:33:ad:2e:b0:7a:ae:22:b2:b8:ee:d5:2d:06:37:38:c1: 5d:b5:69:fe:73:81:d9:72:8f:03:3d:55:cc:f6:98:7b:f9:18: 34:25:4f:7c:ee:86:ef:f4:23:49:0e:88:e1:04:f4:f7:95:46: ee:a5:c8:74:34:6b:c4:85:68:7a:af:79:ec:3a:d6:b2:af:73: 3f:33:fb:45 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEHswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNTA4MjIw ODU0MThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM5REEzNDhCRTNCMjI2 QzM2MEY1RjlFNkU2OUVEMDRBRURGNjU5NTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3CY2xnTBaFSkC4+RZtOQE/oI76eRUkf/n+y9yT5qjsLy70Kzo bPA+zyyeHYOepQhx/2Mf/Azux94qBdbYo26JYGB6v3lj7MSnZG3qEDcL5N3oiIsK puPoHdl8oYl7L9VB4GFijTnJtnCO0Gbd7/5YIUcL58KxP4n1rujOBtqxbSO63XdC XHn6dVBs4PW3R4SK7ByJBMx0w0bmcT4msimGnOVrN+CmQIHCVVbnoW3W0UBOrxAt 0ylADWZ9zha8jBPb52HsZ+Zq5arw7jCka/JDsTKIgwPAsCftJ5bRz634Eq9RxLYC fDUZT1H93lqT1NrrSWwdzw+W28UBFCSzHdQ9AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUydo0i+OyJsNg9fnm5p7QSu32WVAwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMveWRvMGktT3lKc05nOWZubTVwN1FT dTMyV1ZBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMBIAzAN BgkqhkiG9w0BAQsFAAOCAQEAdu5xTRsYdnrbxVvY0Kdv/t78SjhCtFaFCOoVmliG D+mpV/Pge5Fgrvr+lvPY5mCP9yhMCTgFWGJHhqQ7DURny3rkvSnPHSlR8Gt8n/vV ewJBUxgMd9gHOu7RRIycNrwCxpQKn+uaFaR2k7eI1MqzRmv/WwlwncyxviRMAS6H xAWiJK4xEZjZj/SJBtqlRmUi1wgD71QdgckAJugzdCYG9MUDGLOtfUHhqHq3dqFY TGS6hFIsaB4zrS6weq4isrju1S0GNzjBXbVp/nOB2XKPAz1VzPaYe/kYNCVPfO6G 7/QjSQ6I4QT095VG7qXIdDRrxIVoeq957DrWsq9zPzP7RQ== -----END CERTIFICATE-----Generated at Sun Aug 24 09:45:18 2025 by rpki-client