$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/zHgv9UTH7pUAkHHmynN2MKStSZ8.roa File: zHgv9UTH7pUAkHHmynN2MKStSZ8.roa (raw, json) Hash identifier: 9B0xhRNfyD5e1vHZ0CZV0psSUHYgj+RMrYJqPc3arN8= Subject key identifier: CC:78:2F:F5:44:C7:EE:95:00:90:71:E6:CA:73:76:30:A4:AD:49:9F Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 1073 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/zHgv9UTH7pUAkHHmynN2MKStSZ8.roa Signing time: Fri 22 Aug 2025 08:54:16 +0000 ROA not before: Fri 22 Aug 2025 08:54:16 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 192.72.8.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4211 (0x1073) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 22 08:54:16 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=CC782FF544C7EE95009071E6CA737630A4AD499F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:75:35:6c:8d:8e:77:e2:2e:6e:e7:f1:8b:7f: bf:d2:a9:d9:7a:2d:28:7e:a5:0f:e2:61:8b:c3:da: 64:29:e1:e8:2f:cb:76:b2:2a:b6:2d:5c:d5:5f:eb: c3:4e:32:72:60:67:30:4f:8d:94:18:80:78:50:ff: ff:2b:98:5f:31:0f:f5:9c:77:95:3b:2a:de:f6:84: 52:e9:ac:c0:8d:47:ed:ed:ab:7d:c0:8a:5e:ea:49: 61:61:f5:a5:ff:a3:73:69:31:32:92:95:8e:81:63: 59:61:a4:54:cd:4e:91:87:92:35:94:e6:78:d3:27: c8:89:a2:74:57:b7:62:8e:85:74:13:e0:64:82:43: 2f:28:ab:c6:4e:52:b9:4e:a5:e3:16:16:9b:c0:f1: 5a:50:b3:84:de:b1:20:61:46:4f:f3:47:04:c3:39: 0d:91:df:fc:0c:33:fc:da:3b:f1:44:7a:bc:ee:ae: 56:f8:c7:3a:00:df:33:0d:6c:94:7b:a6:ba:6d:9f: 78:a5:c6:b0:e9:c5:f5:bf:eb:f5:fe:64:5f:45:17: ae:5c:5c:40:7a:0e:b0:48:eb:85:3c:92:69:f3:7d: 04:94:3c:1f:e5:cb:f5:1a:2b:71:25:2c:69:bc:bd: 95:b5:19:d6:63:7a:86:25:85:42:04:41:12:1f:e7: e2:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:78:2F:F5:44:C7:EE:95:00:90:71:E6:CA:73:76:30:A4:AD:49:9F X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/zHgv9UTH7pUAkHHmynN2MKStSZ8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.8.0/21 Signature Algorithm: sha256WithRSAEncryption 01:34:02:f8:80:ed:09:ac:5e:0b:b1:3b:15:0a:df:4b:d3:62: a9:a8:2c:90:a7:1e:9b:30:34:82:7f:52:44:50:f1:1b:d7:06: 36:20:3a:2c:6a:58:e9:59:b9:e4:37:d1:11:c6:5f:cb:01:f5: a3:07:19:4e:b5:cc:a1:5f:9b:76:b7:37:bd:6f:24:7b:a0:6a: e5:08:3e:0e:f2:e5:33:6c:c0:7d:e5:98:7b:e6:ee:a0:db:0f: 8c:e5:e6:ec:c0:fd:d3:b5:f6:00:63:91:67:36:ba:96:6d:3e: 75:54:40:19:cc:fe:30:be:ab:03:5f:5e:3e:b6:84:d9:d9:c8: b6:e5:04:08:94:07:9b:0d:54:b9:b2:3d:e2:5b:85:e1:dc:19: 0c:f9:12:36:25:fd:0f:fa:6e:4b:70:da:b8:9c:82:85:ae:01: 94:16:63:ed:2f:f2:17:ac:7a:43:d2:b0:c7:1f:3a:e1:fc:b3: 46:87:2a:ec:24:6c:dc:c0:dd:6b:7a:c3:83:c1:bf:9d:ea:bf: fa:45:10:05:95:90:28:3d:c6:4f:6d:f7:41:25:da:c3:89:25: a1:0a:a1:15:39:a9:9d:34:e8:47:b5:e9:e9:6e:a7:c2:3f:be: af:02:97:c6:ca:c1:7f:56:64:da:71:22:f1:0b:1d:f1:01:c3: 3d:77:e8:2c -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEHMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNTA4MjIw ODU0MTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKENDNzgyRkY1NDRDN0VF OTUwMDkwNzFFNkNBNzM3NjMwQTRBRDQ5OUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZdTVsjY534i5u5/GLf7/Sqdl6LSh+pQ/iYYvD2mQp4egvy3ay KrYtXNVf68NOMnJgZzBPjZQYgHhQ//8rmF8xD/Wcd5U7Kt72hFLprMCNR+3tq33A il7qSWFh9aX/o3NpMTKSlY6BY1lhpFTNTpGHkjWU5njTJ8iJonRXt2KOhXQT4GSC Qy8oq8ZOUrlOpeMWFpvA8VpQs4TesSBhRk/zRwTDOQ2R3/wMM/zaO/FEerzurlb4 xzoA3zMNbJR7prptn3ilxrDpxfW/6/X+ZF9FF65cXEB6DrBI64U8kmnzfQSUPB/l y/UaK3ElLGm8vZW1GdZjeoYlhUIEQRIf5+LtAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUzHgv9UTH7pUAkHHmynN2MKStSZ8wHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvekhndjlVVEg3cFVBa0hIbXluTjJN S1N0U1o4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8BICDAN BgkqhkiG9w0BAQsFAAOCAQEAATQC+IDtCaxeC7E7FQrfS9NiqagskKcemzA0gn9S RFDxG9cGNiA6LGpY6Vm55DfREcZfywH1owcZTrXMoV+bdrc3vW8ke6Bq5Qg+DvLl M2zAfeWYe+buoNsPjOXm7MD907X2AGORZza6lm0+dVRAGcz+ML6rA19ePraE2dnI tuUECJQHmw1UubI94luF4dwZDPkSNiX9D/puS3DauJyCha4BlBZj7S/yF6x6Q9Kw xx864fyzRocq7CRs3MDda3rDg8G/neq/+kUQBZWQKD3GT233QSXaw4kloQqhFTmp nTToR7Xp6W6nwj++rwKXxsrBf1Zk2nEi8Qsd8QHDPXfoLA== -----END CERTIFICATE-----Generated at Sun Aug 24 09:45:16 2025 by rpki-client