$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NSSIT/gE9BJBqbDT_2Mu-zorC_y7mtN3A.roa File: gE9BJBqbDT_2Mu-zorC_y7mtN3A.roa (raw, json) Hash identifier: 9M693VogswcAUpc/q2JBxK7pMkVCiE7OJ9l0YDNr3Kk= Subject key identifier: 80:4F:41:24:1A:9B:0D:3F:F6:32:EF:B3:A2:B0:BF:CB:B9:AD:37:70 Certificate issuer: /CN=AA11250A67BB9825B6EA1FA9A124A1FEC96701DA Certificate serial: 0ADC Authority key identifier: AA:11:25:0A:67:BB:98:25:B6:EA:1F:A9:A1:24:A1:FE:C9:67:01:DA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/qhElCme7mCW26h-poSSh_slnAdo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/gE9BJBqbDT_2Mu-zorC_y7mtN3A.roa Signing time: Fri 22 Aug 2025 08:58:46 +0000 ROA not before: Fri 22 Aug 2025 08:58:46 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131626 IP address blocks: 2405:63c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/qhElCme7mCW26h-poSSh_slnAdo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/qhElCme7mCW26h-poSSh_slnAdo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/qhElCme7mCW26h-poSSh_slnAdo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2780 (0xadc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA11250A67BB9825B6EA1FA9A124A1FEC96701DA Validity Not Before: Aug 22 08:58:46 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=804F41241A9B0D3FF632EFB3A2B0BFCBB9AD3770 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:12:37:0a:eb:89:3e:ee:cf:a7:6d:80:5b:65: 9e:fd:b7:b6:46:22:b8:60:6d:a5:8c:2b:f4:c0:d8: 35:aa:21:1d:38:aa:14:b2:85:4f:77:59:83:c8:02: e1:84:50:03:83:73:99:11:41:d9:e7:1e:cd:13:7c: 4d:86:23:04:66:a1:cc:1d:5d:87:bf:dc:36:e8:a2: ae:d9:15:65:4b:5c:c8:18:93:97:81:5d:e5:49:bd: d2:c2:ec:bd:44:b6:da:04:9f:c4:36:69:01:d3:e6: 65:8e:05:48:44:a6:35:18:68:01:13:29:ca:35:24: de:3a:39:e7:36:f3:da:3d:9e:75:d2:1d:c8:73:e5: ae:19:ee:fa:32:86:5b:23:39:45:7d:ec:4b:fa:2a: ee:f5:e9:fd:9e:14:80:2e:4a:da:c8:12:12:aa:96: 4c:66:b6:d8:f9:13:d9:ba:3a:bf:df:80:eb:c3:a9: a6:17:70:04:3a:1b:b3:53:08:e3:65:cb:cb:c8:5c: 92:93:8a:0c:9f:79:34:07:fa:cf:df:47:53:5e:ea: 0b:ed:71:ec:b4:59:41:49:aa:0b:c1:16:ee:10:d4: cf:a9:17:8f:af:d1:47:29:bc:e3:db:5f:60:66:de: ee:61:ce:02:2d:b8:d3:a8:2f:d6:e9:4e:7d:73:59: cf:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:4F:41:24:1A:9B:0D:3F:F6:32:EF:B3:A2:B0:BF:CB:B9:AD:37:70 X509v3 Authority Key Identifier: keyid:AA:11:25:0A:67:BB:98:25:B6:EA:1F:A9:A1:24:A1:FE:C9:67:01:DA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/qhElCme7mCW26h-poSSh_slnAdo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/qhElCme7mCW26h-poSSh_slnAdo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/gE9BJBqbDT_2Mu-zorC_y7mtN3A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:63c0::/32 Signature Algorithm: sha256WithRSAEncryption a3:de:1b:7e:6a:12:cd:47:3d:ff:4b:02:5f:f5:e5:2b:1c:ca: bf:19:2b:df:67:86:4e:5d:ff:c1:18:7f:19:fd:94:e0:0e:bc: 68:32:11:5b:54:07:9c:0e:d4:31:ce:5c:fa:bd:dc:7b:0b:52: 49:2e:f4:a8:23:55:69:94:67:f6:3f:d9:d9:9c:1f:b6:5e:68: 22:d5:b9:cb:ff:fa:20:fa:d5:f1:78:a0:4d:5f:37:fb:4e:41: f2:8b:ff:e3:01:12:14:0b:6e:10:7d:fc:6c:d8:4c:a5:30:ce: f8:99:2d:1e:fc:79:87:68:17:f5:23:83:32:02:53:1b:72:47: 61:0f:44:97:f8:8f:d5:ae:3a:22:a5:4c:51:2e:cc:91:1d:07: c7:19:23:b3:28:32:f4:f8:15:32:31:d0:3d:f1:7b:8f:08:fc: 1f:a1:c1:aa:4b:76:ca:86:66:4f:16:1e:12:7a:60:e3:55:80: 0f:34:4e:9c:6b:b3:9a:a3:d0:5d:76:9c:07:1f:fd:99:02:3d: 61:44:cb:d6:65:22:1e:7d:15:4f:f1:3e:35:ff:e8:80:c8:01: c8:1c:af:6a:a1:2d:f5:b5:40:c9:04:51:d0:e4:54:ea:80:25: f7:53:92:c8:24:11:be:11:23:ae:d7:81:67:87:2e:12:43:4b: 32:bb:77:51 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICCtwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUEx MTI1MEE2N0JCOTgyNUI2RUExRkE5QTEyNEExRkVDOTY3MDFEQTAeFw0yNTA4MjIw ODU4NDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDgwNEY0MTI0MUE5QjBE M0ZGNjMyRUZCM0EyQjBCRkNCQjlBRDM3NzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkEjcK64k+7s+nbYBbZZ79t7ZGIrhgbaWMK/TA2DWqIR04qhSy hU93WYPIAuGEUAODc5kRQdnnHs0TfE2GIwRmocwdXYe/3Dbooq7ZFWVLXMgYk5eB XeVJvdLC7L1EttoEn8Q2aQHT5mWOBUhEpjUYaAETKco1JN46Oec289o9nnXSHchz 5a4Z7voyhlsjOUV97Ev6Ku716f2eFIAuStrIEhKqlkxmttj5E9m6Or/fgOvDqaYX cAQ6G7NTCONly8vIXJKTigyfeTQH+s/fR1Ne6gvtcey0WUFJqgvBFu4Q1M+pF4+v 0UcpvOPbX2Bm3u5hzgItuNOoL9bpTn1zWc91AgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUgE9BJBqbDT/2Mu+zorC/y7mtN3AwHwYDVR0jBBgwFoAUqhElCme7mCW26h+p oSSh/slnAdowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTlNTSVQv cWhFbENtZTdtQ1cyNmgtcG9TU2hfc2xuQWRvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9xaEVsQ21lN21DVzI2aC1wb1NTaF9zbG5BZG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9OU1NJVC9nRTlCSkJxYkRUXzJNdS16b3JD X3k3bXROM0Eucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAVj wDANBgkqhkiG9w0BAQsFAAOCAQEAo94bfmoSzUc9/0sCX/XlKxzKvxkr32eGTl3/ wRh/Gf2U4A68aDIRW1QHnA7UMc5c+r3cewtSSS70qCNVaZRn9j/Z2Zwftl5oItW5 y//6IPrV8XigTV83+05B8ov/4wESFAtuEH38bNhMpTDO+JktHvx5h2gX9SODMgJT G3JHYQ9El/iP1a46IqVMUS7MkR0Hxxkjsygy9PgVMjHQPfF7jwj8H6HBqkt2yoZm TxYeEnpg41WADzROnGuzmqPQXXacBx/9mQI9YUTL1mUiHn0VT/E+Nf/ogMgByByv aqEt9bVAyQRR0ORU6oAl91OSyCQRvhEjrteBZ4cuEkNLMrt3UQ== -----END CERTIFICATE-----Generated at Sun Aug 24 13:36:50 2025 by rpki-client