$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCREE/aoCWMpsnJlxGVgYTo5eKVxrONMw.roa File: aoCWMpsnJlxGVgYTo5eKVxrONMw.roa (raw, json) Hash identifier: fnlUiKyutHjmzMA5ysK7pd75qboQLdU1ymUxPVf3zqA= Subject key identifier: 6A:80:96:32:9B:27:26:5C:46:56:06:13:A3:97:8A:57:1A:CE:34:CC Certificate issuer: /CN=3B49B87A3FF389634C7D090D76DAEAA96FEEFD90 Certificate serial: 0D81 Authority key identifier: 3B:49:B8:7A:3F:F3:89:63:4C:7D:09:0D:76:DA:EA:A9:6F:EE:FD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O0m4ej_ziWNMfQkNdtrqqW_u_ZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCREE/aoCWMpsnJlxGVgYTo5eKVxrONMw.roa Signing time: Fri 22 Aug 2025 08:44:31 +0000 ROA not before: Fri 22 Aug 2025 08:44:31 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18183 IP address blocks: 2400:85a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCREE/O0m4ej_ziWNMfQkNdtrqqW_u_ZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCREE/O0m4ej_ziWNMfQkNdtrqqW_u_ZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O0m4ej_ziWNMfQkNdtrqqW_u_ZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3457 (0xd81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B49B87A3FF389634C7D090D76DAEAA96FEEFD90 Validity Not Before: Aug 22 08:44:31 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6A8096329B27265C46560613A3978A571ACE34CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a0:f9:fd:74:25:5f:62:ac:1f:c7:e3:29:e5: 79:51:93:cc:57:ed:35:19:d5:fb:71:1c:b0:1d:d9: 50:c8:12:0e:39:84:60:4b:94:94:9f:82:9e:9e:de: 6a:ca:45:ce:6b:11:f1:b9:fc:d8:ce:d6:59:ba:da: b6:d9:b3:cb:66:82:ff:7c:d5:cd:37:e1:4c:3f:fa: 8a:2e:74:0b:1c:56:8d:34:37:81:04:c6:46:02:78: 05:57:e8:b7:3a:a9:5c:76:82:8a:f1:2e:83:8b:dd: e6:07:db:fe:c6:f6:d6:bc:58:9e:c6:2b:0b:dd:65: 42:cc:8a:18:85:a6:dc:d3:85:95:af:d4:c2:1c:65: d6:69:a5:bb:68:9d:53:b5:16:93:ed:97:ef:8a:69: 15:07:63:ea:95:30:74:72:60:c7:95:ba:e9:03:5c: 5a:28:78:8c:cd:45:f7:86:37:70:78:22:2a:77:34: 1d:ad:a6:60:b0:d2:f2:9c:da:3c:53:67:99:b2:15: 69:95:b1:f4:ac:c8:6e:85:7d:7f:34:14:17:26:35: 05:3d:cc:e7:f8:a4:70:44:89:af:98:51:2c:6d:dc: 7e:04:6a:b5:2c:39:b7:c8:ec:72:d0:a9:12:6e:27: b3:29:86:9d:25:16:3c:1e:10:bd:02:f0:4b:66:0d: 4a:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:80:96:32:9B:27:26:5C:46:56:06:13:A3:97:8A:57:1A:CE:34:CC X509v3 Authority Key Identifier: keyid:3B:49:B8:7A:3F:F3:89:63:4C:7D:09:0D:76:DA:EA:A9:6F:EE:FD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCREE/O0m4ej_ziWNMfQkNdtrqqW_u_ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O0m4ej_ziWNMfQkNdtrqqW_u_ZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCREE/aoCWMpsnJlxGVgYTo5eKVxrONMw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:85a0::/32 Signature Algorithm: sha256WithRSAEncryption 51:73:c3:de:bb:bf:c3:4d:e0:d3:ab:92:48:69:8e:64:be:18: 43:54:f2:be:cf:6c:20:3f:12:df:7f:61:93:11:7e:9f:10:4f: ae:0a:c9:c0:2c:1b:af:9c:c2:69:66:42:fd:0c:fa:4a:c2:7e: 76:b9:97:4b:4a:c1:13:83:87:fb:d7:de:75:58:8e:08:6f:f1: f6:23:04:99:93:a5:85:30:73:e3:3d:1f:dd:f5:25:c7:4b:79: d2:e1:5b:40:c1:cb:4f:db:fc:c0:c4:5e:d4:f9:e7:e0:c4:fc: 4f:4f:c0:d9:a3:d8:16:dd:b5:b6:84:44:58:87:58:cc:7d:c7: 6d:5a:2a:e7:0e:37:ea:d7:b2:05:a7:fe:5b:11:61:5a:c3:3b: b3:3b:04:e5:10:73:71:99:52:34:25:0c:40:7a:cd:df:81:75: d7:fe:01:c5:03:9d:11:6a:7c:50:fd:b8:58:08:b1:78:71:57: d3:17:cd:34:d4:77:f8:b5:81:a9:0b:b8:ba:03:34:d5:19:5b: 71:4b:96:02:6b:68:29:8d:19:6f:8e:6c:91:1e:1e:71:43:58: 31:54:b1:ad:d9:c9:2f:0d:7f:0f:6e:cd:9c:c3:ea:c2:a7:9e: bc:5e:ce:a2:99:1e:85:52:a9:9b:22:5a:a0:ef:83:4e:18:fd: ea:66:fc:bc -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDYEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0I0 OUI4N0EzRkYzODk2MzRDN0QwOTBENzZEQUVBQTk2RkVFRkQ5MDAeFw0yNTA4MjIw ODQ0MzFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDZBODA5NjMyOUIyNzI2 NUM0NjU2MDYxM0EzOTc4QTU3MUFDRTM0Q0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyoPn9dCVfYqwfx+Mp5XlRk8xX7TUZ1ftxHLAd2VDIEg45hGBL lJSfgp6e3mrKRc5rEfG5/NjO1lm62rbZs8tmgv981c034Uw/+ooudAscVo00N4EE xkYCeAVX6Lc6qVx2gorxLoOL3eYH2/7G9ta8WJ7GKwvdZULMihiFptzThZWv1MIc ZdZppbtonVO1FpPtl++KaRUHY+qVMHRyYMeVuukDXFooeIzNRfeGN3B4Iip3NB2t pmCw0vKc2jxTZ5myFWmVsfSsyG6FfX80FBcmNQU9zOf4pHBEia+YUSxt3H4EarUs ObfI7HLQqRJuJ7Mphp0lFjweEL0C8EtmDUpRAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUaoCWMpsnJlxGVgYTo5eKVxrONMwwHwYDVR0jBBgwFoAUO0m4ej/ziWNMfQkN dtrqqW/u/ZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNSRUUv TzBtNGVqX3ppV05NZlFrTmR0cnFxV191X1pBLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9PMG00ZWpfemlXTk1mUWtOZHRycXFXX3VfWkEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9OQ1JFRS9hb0NXTXBzbkpseEdWZ1lUbzVl S1Z4ck9OTXcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJACF oDANBgkqhkiG9w0BAQsFAAOCAQEAUXPD3ru/w03g06uSSGmOZL4YQ1Tyvs9sID8S 339hkxF+nxBPrgrJwCwbr5zCaWZC/Qz6SsJ+drmXS0rBE4OH+9fedViOCG/x9iME mZOlhTBz4z0f3fUlx0t50uFbQMHLT9v8wMRe1Pnn4MT8T0/A2aPYFt21toREWIdY zH3HbVoq5w436teyBaf+WxFhWsM7szsE5RBzcZlSNCUMQHrN34F11/4BxQOdEWp8 UP24WAixeHFX0xfNNNR3+LWBqQu4ugM01RlbcUuWAmtoKY0Zb45skR4ecUNYMVSx rdnJLw1/D27NnMPqwqeevF7OopkehVKpmyJaoO+DThj96mb8vA== -----END CERTIFICATE-----Generated at Sun Aug 24 06:43:30 2025 by rpki-client