$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/sXMoc_WHbcaV0haB_7Aw1bJn7K0.roa File: sXMoc_WHbcaV0haB_7Aw1bJn7K0.roa (raw, json) Hash identifier: +Am0J/CRMHQSKWsxPEos6r+asMM7hp5+QLfR4GTuIPE= Subject key identifier: B1:73:28:73:F5:87:6D:C6:95:D2:16:81:FF:B0:30:D5:B2:67:EC:AD Certificate issuer: /CN=1C7073A6066C765842FDF07169E43518A0BB0235 Certificate serial: 022C Authority key identifier: 1C:70:73:A6:06:6C:76:58:42:FD:F0:71:69:E4:35:18:A0:BB:02:35 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/sXMoc_WHbcaV0haB_7Aw1bJn7K0.roa Signing time: Fri 22 Aug 2025 09:01:19 +0000 ROA not before: Fri 22 Aug 2025 09:01:19 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 150755 IP address blocks: 2401:4e60::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 556 (0x22c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1C7073A6066C765842FDF07169E43518A0BB0235 Validity Not Before: Aug 22 09:01:19 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B1732873F5876DC695D21681FFB030D5B267ECAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:24:5c:97:e0:4e:72:81:6a:ef:cd:c7:93:f9: a8:39:f8:1d:c6:70:c0:01:93:3e:58:f5:65:6b:df: 22:5a:93:17:1f:e0:50:3d:78:83:ee:af:16:cf:e9: 9c:b0:c7:5b:e3:ee:ac:e7:6c:f6:bf:42:10:a3:1e: 99:9c:e1:bb:97:f2:30:b8:2a:11:9f:67:81:71:83: f7:78:4b:e5:16:b3:9f:9c:54:e3:64:04:1f:1b:b0: b8:26:dc:94:20:2d:d6:dd:76:c9:3b:19:a3:74:97: 09:93:78:b3:f6:56:93:aa:55:e0:12:8c:67:0c:83: 85:4b:a1:00:93:ee:57:40:da:52:97:77:3d:33:c1: 1d:d1:9e:80:73:8f:28:0e:e2:45:69:19:1e:c3:f1: 16:1f:7d:44:5f:58:68:ab:86:be:11:1c:cf:37:d8: d4:98:4f:ee:50:b0:9a:d0:a3:4d:ca:da:cf:79:8d: 1b:5f:82:64:f1:79:49:0e:17:eb:eb:26:ef:3d:64: 93:66:09:3a:30:d1:87:7b:0c:45:52:c9:e8:0a:cd: 48:84:63:d4:89:c6:28:62:3c:c4:81:12:0b:3b:92: 67:92:08:98:7c:9a:c6:80:97:d1:65:cf:1b:9a:5f: aa:8b:48:0d:88:10:a1:58:bc:61:bd:fc:2b:0b:3b: fd:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:73:28:73:F5:87:6D:C6:95:D2:16:81:FF:B0:30:D5:B2:67:EC:AD X509v3 Authority Key Identifier: keyid:1C:70:73:A6:06:6C:76:58:42:FD:F0:71:69:E4:35:18:A0:BB:02:35 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/sXMoc_WHbcaV0haB_7Aw1bJn7K0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:4e60::/32 Signature Algorithm: sha256WithRSAEncryption 0c:01:51:29:6f:db:4d:0b:0d:2d:58:55:52:70:13:5b:ed:68: 56:52:c3:46:b9:3f:60:75:4f:6b:7b:91:36:9c:94:ab:df:75: 5b:0e:c9:e4:49:79:6e:b1:e8:6f:04:55:de:75:4b:1b:84:1f: 04:6d:0a:9b:50:d6:ed:f7:64:68:84:7b:7d:e2:29:6a:2c:5e: 9e:69:bb:ac:59:ac:da:55:df:88:ae:cd:f7:09:3e:c3:bd:c7: 51:77:dc:4e:c3:21:37:f0:2b:35:df:36:f9:e2:f6:31:c0:0c: f5:93:0b:88:55:4b:3f:c2:87:17:19:5d:0a:e2:17:af:db:13: b7:6e:d3:94:d5:6c:8e:2c:f6:12:23:c2:35:9f:ac:fe:d7:70: 18:4c:cc:0a:11:0e:30:b5:ed:5b:a9:ca:a6:ce:23:68:83:b3: dd:5a:f8:08:1a:fd:e1:40:cc:61:14:63:77:f2:6b:ac:2c:1c: b5:9d:b4:0c:d2:1e:a4:b0:40:42:3e:5f:51:55:30:b5:82:4a: 91:5d:5b:df:51:3c:d8:06:b8:a4:3a:b0:19:62:f9:3b:1e:41: 9e:81:f7:cb:3b:02:43:75:39:46:68:43:69:3b:f2:c1:08:a8: 3e:a8:c4:ab:98:ba:87:63:2e:83:8d:0d:02:52:97:38:2e:36: 18:d0:b3:69 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICAiwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUM3 MDczQTYwNjZDNzY1ODQyRkRGMDcxNjlFNDM1MThBMEJCMDIzNTAeFw0yNTA4MjIw OTAxMTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEIxNzMyODczRjU4NzZE QzY5NUQyMTY4MUZGQjAzMEQ1QjI2N0VDQUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGJFyX4E5ygWrvzceT+ag5+B3GcMABkz5Y9WVr3yJakxcf4FA9 eIPurxbP6Zywx1vj7qznbPa/QhCjHpmc4buX8jC4KhGfZ4Fxg/d4S+UWs5+cVONk BB8bsLgm3JQgLdbddsk7GaN0lwmTeLP2VpOqVeASjGcMg4VLoQCT7ldA2lKXdz0z wR3RnoBzjygO4kVpGR7D8RYffURfWGirhr4RHM832NSYT+5QsJrQo03K2s95jRtf gmTxeUkOF+vrJu89ZJNmCTow0Yd7DEVSyegKzUiEY9SJxihiPMSBEgs7kmeSCJh8 msaAl9FlzxuaX6qLSA2IEKFYvGG9/CsLO/37AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUsXMoc/WHbcaV0haB/7Aw1bJn7K0wHwYDVR0jBBgwFoAUHHBzpgZsdlhC/fBx aeQ1GKC7AjUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTlVOTElO RS9ISEJ6cGdac2RsaENfZkJ4YWVRMUdLQzdBalUuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0hIQnpwZ1pzZGxoQ19mQnhhZVExR0tDN0FqVS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05VTkxJTkUvc1hNb2NfV0hiY2FWMGhh Ql83QXcxYkpuN0swLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF ACQBTmAwDQYJKoZIhvcNAQELBQADggEBAAwBUSlv200LDS1YVVJwE1vtaFZSw0a5 P2B1T2t7kTaclKvfdVsOyeRJeW6x6G8EVd51SxuEHwRtCptQ1u33ZGiEe33iKWos Xp5pu6xZrNpV34iuzfcJPsO9x1F33E7DITfwKzXfNvni9jHADPWTC4hVSz/ChxcZ XQriF6/bE7du05TVbI4s9hIjwjWfrP7XcBhMzAoRDjC17VupyqbOI2iDs91a+Aga /eFAzGEUY3fya6wsHLWdtAzSHqSwQEI+X1FVMLWCSpFdW99RPNgGuKQ6sBli+Tse QZ6B98s7AkN1OUZoQ2k78sEIqD6oxKuYuodjLoONDQJSlzguNhjQs2k= -----END CERTIFICATE-----Generated at Sun Aug 24 05:32:16 2025 by rpki-client