$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NICA8gSiFxapdMz4O_zyCdcehg8.roa File: NICA8gSiFxapdMz4O_zyCdcehg8.roa (raw, json) Hash identifier: cgTSplpjNRqYEdwWDS3LXNArD7jhCYpKUc+V5kqNMJ4= Subject key identifier: 34:80:80:F2:04:A2:17:16:A9:74:CC:F8:3B:FC:F2:09:D7:1E:86:0F Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 264A Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NICA8gSiFxapdMz4O_zyCdcehg8.roa Signing time: Fri 22 Aug 2025 08:42:47 +0000 ROA not before: Fri 22 Aug 2025 08:42:47 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4662 IP address blocks: 61.61.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9802 (0x264a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=348080F204A21716A974CCF83BFCF209D71E860F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:6f:ba:51:37:16:83:cf:dd:97:7b:e6:16:ef: ec:03:4a:97:db:c3:2a:0b:58:09:47:87:72:89:94: f9:67:54:06:2a:51:99:50:13:ed:6b:1b:c2:bc:2f: e9:64:b2:96:ca:32:18:b3:f7:92:5e:f2:5e:7f:18: 64:1f:92:8a:63:6f:e1:4a:42:09:2c:52:a6:03:af: 55:36:26:70:54:84:42:b8:00:59:65:83:c1:e8:6a: de:8c:2a:33:8d:c8:96:3d:68:e5:41:07:45:1e:78: f0:b9:5e:08:ad:81:56:a7:d9:e4:8b:f4:f1:e3:ab: 3b:d1:85:02:f9:1a:77:3d:a2:e0:3e:68:6d:4d:94: c6:18:96:19:95:03:b8:c6:e4:78:3d:0f:e1:25:69: fa:e8:fa:e4:0c:d2:13:c8:d1:af:a3:02:05:86:ef: a0:56:a7:45:ba:f5:11:8b:14:19:51:0d:39:3b:21: 0c:53:cd:e9:ba:e4:51:17:d4:a5:78:d2:d3:1d:cc: c9:08:16:9d:93:64:72:2d:bb:93:f9:39:38:47:1d: 6b:56:51:71:1c:ea:07:ce:b8:c0:b5:ad:d1:8e:38: 21:6a:f7:67:d7:71:5d:8a:3d:1c:fb:13:2d:a9:83: 87:24:8f:15:95:dd:12:eb:0d:e5:c9:fa:ce:9c:7a: 56:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:80:80:F2:04:A2:17:16:A9:74:CC:F8:3B:FC:F2:09:D7:1E:86:0F X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NICA8gSiFxapdMz4O_zyCdcehg8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.208.0/20 Signature Algorithm: sha256WithRSAEncryption 5e:0b:85:c1:9d:f2:81:98:2b:fc:4f:02:6c:31:ed:ea:f6:bb: 1a:04:65:7c:de:b2:ac:74:a9:8f:04:03:c5:ce:fe:cf:b6:0c: 96:0f:00:b5:79:b7:2a:9d:9d:2e:46:ca:33:18:b2:a1:58:34: 44:b4:4a:59:23:fe:c1:79:e1:19:7b:42:35:d8:b8:c2:b8:a5: 1d:3a:21:84:9d:af:66:ed:96:16:cd:e3:39:24:37:bb:4c:87: 91:56:bb:50:8c:5c:59:c9:74:db:c9:cd:9e:9f:bd:54:38:24: c0:1e:a2:07:97:f2:30:8b:c2:ee:be:6a:8d:b7:c8:fa:54:70: 69:80:d4:3a:21:7f:c2:3c:7a:08:34:ba:00:1c:b5:cd:8f:89: bf:61:a5:01:d5:1c:41:4c:be:c0:a7:21:b4:de:90:f4:ef:01: ff:cd:01:f5:2f:42:f4:a5:d3:28:7a:4e:fd:ae:54:59:7d:24: 21:3a:57:8c:0e:2c:32:a6:68:7c:0e:d7:d8:3a:8b:6f:f2:2c: 83:b7:b5:5a:ca:7d:1f:77:66:0b:83:cb:bf:a3:be:33:7a:a6: 24:13:0c:37:a9:f4:6b:1b:8a:b9:c1:86:e5:d0:c3:30:d7:30: 10:ac:d9:f6:51:15:9e:1c:db:40:7e:a9:32:bc:fa:33:07:7a: c8:4d:23:a9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJkowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyNDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM0ODA4MEYyMDRBMjE3 MTZBOTc0Q0NGODNCRkNGMjA5RDcxRTg2MEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSb7pRNxaDz92Xe+YW7+wDSpfbwyoLWAlHh3KJlPlnVAYqUZlQ E+1rG8K8L+lkspbKMhiz95Je8l5/GGQfkopjb+FKQgksUqYDr1U2JnBUhEK4AFll g8Hoat6MKjONyJY9aOVBB0UeePC5XgitgVan2eSL9PHjqzvRhQL5Gnc9ouA+aG1N lMYYlhmVA7jG5Hg9D+Elafro+uQM0hPI0a+jAgWG76BWp0W69RGLFBlRDTk7IQxT zem65FEX1KV40tMdzMkIFp2TZHItu5P5OThHHWtWUXEc6gfOuMC1rdGOOCFq92fX cV2KPRz7Ey2pg4ckjxWV3RLrDeXJ+s6celYfAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUNICA8gSiFxapdMz4O/zyCdcehg8wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL05JQ0E4Z1NpRnhhcGRNejRP X3p5Q2RjZWhnOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 PdAwDQYJKoZIhvcNAQELBQADggEBAF4LhcGd8oGYK/xPAmwx7er2uxoEZXzesqx0 qY8EA8XO/s+2DJYPALV5tyqdnS5GyjMYsqFYNES0Slkj/sF54Rl7QjXYuMK4pR06 IYSdr2btlhbN4zkkN7tMh5FWu1CMXFnJdNvJzZ6fvVQ4JMAeogeX8jCLwu6+ao23 yPpUcGmA1Dohf8I8egg0ugActc2Pib9hpQHVHEFMvsCnIbTekPTvAf/NAfUvQvSl 0yh6Tv2uVFl9JCE6V4wOLDKmaHwO19g6i2/yLIO3tVrKfR93ZguDy7+jvjN6piQT DDep9GsbirnBhuXQwzDXMBCs2fZRFZ4c20B+qTK8+jMHeshNI6k= -----END CERTIFICATE-----Generated at Sun Aug 24 11:39:31 2025 by rpki-client