$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-4T_YliiMU3u0uXrEOimacgFRYQ.roa File: -4T_YliiMU3u0uXrEOimacgFRYQ.roa (raw, json) Hash identifier: 8dJ+G9X1Mz+AQDbiUMEqW/Gz2DKZd4EQCikgP9hh+eo= Subject key identifier: FB:84:FF:62:58:A2:31:4D:EE:D2:E5:EB:10:E8:A6:69:C8:05:45:84 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3947 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-4T_YliiMU3u0uXrEOimacgFRYQ.roa Signing time: Fri 22 Aug 2025 08:46:08 +0000 ROA not before: Fri 22 Aug 2025 08:46:08 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 106.1.196.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14663 (0x3947) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:08 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FB84FF6258A2314DEED2E5EB10E8A669C8054584 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f3:d7:0d:87:88:0a:29:0b:ef:51:36:c2:77: 48:a6:bb:7d:1c:3b:98:d9:f1:77:9c:43:1a:ff:e3: bf:8b:b2:c8:c3:f3:01:09:7c:b5:0b:f2:44:b8:1c: 7a:aa:ad:6d:cb:16:b5:17:a4:c8:9f:74:ce:cb:5b: 68:80:99:96:5d:04:c3:59:05:e3:a9:a8:8e:04:a1: 58:75:3b:be:c0:7c:36:5a:f3:94:71:f1:f8:1c:60: 48:af:95:db:b1:d1:b0:39:36:cb:0d:c1:58:7b:bd: ba:78:9d:e9:d4:5c:b9:fc:db:7d:66:b7:80:16:9a: fc:2a:6c:b8:4d:20:04:b1:91:92:ea:63:46:dc:d2: 6c:4b:e1:3d:df:6c:73:30:70:73:5d:1a:4e:a0:1a: 06:2b:ed:65:60:a9:1b:80:78:d6:32:e3:5d:01:4f: 13:93:47:91:1b:d6:34:1b:c0:75:39:49:1e:19:de: 21:d1:44:f6:fb:1b:90:37:2f:47:85:d0:c3:09:bf: 0a:58:73:14:fb:ab:7f:51:80:cb:40:19:23:7d:0a: 9c:50:5a:07:52:a7:c7:19:68:9a:7d:03:82:d1:50: df:5d:d1:9d:9f:7b:f5:1a:fe:7f:61:5b:59:4b:09: aa:a3:73:ca:18:fb:59:9b:e9:4e:09:fa:2e:d3:86: 3b:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:84:FF:62:58:A2:31:4D:EE:D2:E5:EB:10:E8:A6:69:C8:05:45:84 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-4T_YliiMU3u0uXrEOimacgFRYQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.196.0/22 Signature Algorithm: sha256WithRSAEncryption 93:83:85:fb:20:41:99:1b:f3:bc:00:d2:ca:68:2b:49:14:c8: 96:1f:35:33:89:46:47:e0:4a:c6:39:c8:2f:c4:f6:b2:94:82: e9:83:0b:42:aa:71:be:22:0e:94:ae:e4:09:51:b0:66:32:2c: 0b:bb:96:55:e7:a9:4e:51:cf:dc:21:e2:9d:c2:b2:73:48:43: 4e:a9:fb:7e:4f:6f:08:49:94:91:6e:d3:2e:01:bf:4b:04:2c: a7:31:eb:57:ad:23:b3:de:a6:a0:45:f3:b9:74:57:09:e8:46: 0e:7e:50:2a:65:db:57:3a:99:87:a8:17:6d:e4:45:b7:59:a0: 03:af:a7:e4:73:64:4a:c2:59:da:75:60:b7:fc:78:69:c3:8f: af:b0:68:7c:6f:36:35:c4:8d:30:a6:bb:3d:86:53:9b:7c:be: 44:9a:20:a9:67:c5:5b:94:82:c2:20:c9:44:95:df:5d:55:c0: f1:88:27:87:a4:84:e3:02:2b:90:78:0c:84:6c:b0:e8:5b:aa: 3c:3b:5c:5a:84:e8:f9:36:75:c8:ba:fe:e0:2a:69:44:97:be: 14:ca:6d:18:b2:78:ea:e4:96:21:96:2b:59:14:2d:ab:e7:16: 52:bb:8c:6c:1e:54:ec:f8:9c:3b:1e:6c:71:c2:96:45:27:5b: ad:40:5b:38 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOUcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZCODRGRjYyNThBMjMx NERFRUQyRTVFQjEwRThBNjY5QzgwNTQ1ODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDW89cNh4gKKQvvUTbCd0imu30cO5jZ8XecQxr/47+LssjD8wEJ fLUL8kS4HHqqrW3LFrUXpMifdM7LW2iAmZZdBMNZBeOpqI4EoVh1O77AfDZa85Rx 8fgcYEivldux0bA5NssNwVh7vbp4nenUXLn8231mt4AWmvwqbLhNIASxkZLqY0bc 0mxL4T3fbHMwcHNdGk6gGgYr7WVgqRuAeNYy410BTxOTR5Eb1jQbwHU5SR4Z3iHR RPb7G5A3L0eF0MMJvwpYcxT7q39RgMtAGSN9CpxQWgdSp8cZaJp9A4LRUN9d0Z2f e/Ua/n9hW1lLCaqjc8oY+1mb6U4J+i7ThjurAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU+4T/YliiMU3u0uXrEOimacgFRYQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLy00VF9ZbGlpTVUzdTB1WHJF T2ltYWNnRlJZUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq AcQwDQYJKoZIhvcNAQELBQADggEBAJODhfsgQZkb87wA0spoK0kUyJYfNTOJRkfg SsY5yC/E9rKUgumDC0Kqcb4iDpSu5AlRsGYyLAu7llXnqU5Rz9wh4p3CsnNIQ06p +35PbwhJlJFu0y4Bv0sELKcx61etI7PepqBF87l0VwnoRg5+UCpl21c6mYeoF23k RbdZoAOvp+RzZErCWdp1YLf8eGnDj6+waHxvNjXEjTCmuz2GU5t8vkSaIKlnxVuU gsIgyUSV311VwPGIJ4ekhOMCK5B4DIRssOhbqjw7XFqE6Pk2dci6/uAqaUSXvhTK bRiyeOrkliGWK1kULavnFlK7jGweVOz4nDsebHHClkUnW61AWzg= -----END CERTIFICATE-----Generated at Sun Aug 24 07:33:13 2025 by rpki-client