$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-cKHqjt9FJLFe5AuT8XobORAFDI.roa File: -cKHqjt9FJLFe5AuT8XobORAFDI.roa (raw, json) Hash identifier: UkRsnol7WXku2Eer3vXpWJvXVH07zzb7Z5fWn/kdb9Q= Subject key identifier: F9:C2:87:AA:3B:7D:14:92:C5:7B:90:2E:4F:C5:E8:6C:E4:40:14:32 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 39ED Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-cKHqjt9FJLFe5AuT8XobORAFDI.roa Signing time: Fri 22 Aug 2025 08:46:49 +0000 ROA not before: Fri 22 Aug 2025 08:46:49 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 106.1.16.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14829 (0x39ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F9C287AA3B7D1492C57B902E4FC5E86CE4401432 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:7d:54:2a:35:03:21:7d:ca:ff:7a:95:43:92: 26:bb:61:d5:a7:5b:f8:ed:9a:97:ca:8e:68:d7:a5: 6a:88:31:94:b4:ef:03:39:b0:a4:97:95:a4:47:82: 6f:36:ee:76:be:21:42:7b:7e:3f:a3:42:76:22:7e: 37:8d:34:22:63:b5:b4:08:d3:f6:ed:cc:a2:55:48: 43:c8:ec:c1:da:57:37:5b:2f:c0:8b:ea:81:ef:bc: ff:cb:92:06:fe:6c:87:4d:83:dd:7f:c9:5b:bd:57: 21:93:1e:a3:e9:b2:a4:21:ad:47:53:ba:78:bc:28: 0c:1a:33:79:17:29:0c:79:3f:1b:90:9a:c7:11:a2: cb:e3:0d:92:1f:93:68:30:9f:43:a7:04:23:e5:02: 62:88:8e:c0:14:fb:8c:ce:cb:09:08:d4:a9:37:cd: 1f:91:5c:ef:56:3d:ce:71:d7:29:b8:c0:84:11:b5: 0b:a3:24:d5:c0:ea:03:9b:36:7a:bd:03:75:25:59: 53:80:e6:eb:51:2c:8d:a6:f0:49:14:ee:f2:3e:49: a6:e7:a7:b1:eb:67:42:a3:1b:23:0f:a5:2e:90:18: d4:64:8a:df:de:41:36:81:cf:15:37:68:1b:35:8b: d7:ee:a9:ba:9d:1c:98:76:b4:9f:66:5c:17:a4:37: be:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:C2:87:AA:3B:7D:14:92:C5:7B:90:2E:4F:C5:E8:6C:E4:40:14:32 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-cKHqjt9FJLFe5AuT8XobORAFDI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.16.0/21 Signature Algorithm: sha256WithRSAEncryption 9a:8e:26:59:c1:7a:7f:e9:37:32:16:ae:1e:b3:29:6b:25:c5: 0a:bf:c1:f9:55:d8:ac:94:a0:a2:19:14:00:18:b8:89:c2:58: 28:a5:06:cc:2d:8e:cf:9e:ad:df:5e:67:3f:24:22:f5:67:aa: 60:5d:21:ed:5d:e3:97:8e:24:da:7e:58:50:0e:82:54:76:44: 04:7e:ac:47:e6:4d:ca:3f:de:42:bf:98:87:50:d5:be:1b:4e: 36:54:79:4b:03:b5:04:7c:aa:75:c9:cf:3f:dd:1a:f7:19:78: b9:59:09:4e:9b:78:c1:80:fd:37:68:8d:c5:cf:fa:7c:23:f3: c2:6e:9e:77:2b:05:57:ee:6d:f2:69:1b:90:7c:cc:10:74:4b: bc:c5:af:58:04:00:18:b5:6e:c0:dc:86:08:3d:a1:99:fe:8b: 22:40:3f:ce:a3:72:35:7a:6c:20:3d:a6:90:66:dc:06:82:52: 33:d9:a6:ba:74:b2:30:b2:42:2a:5d:ed:cb:d0:56:d4:a6:60: dc:50:66:9b:72:98:a8:35:b2:44:61:1c:8b:ae:70:50:ef:d7: fc:14:58:b5:18:82:68:64:8f:4d:f0:ae:65:e6:5e:05:1d:74: 2e:63:66:7a:69:f7:6e:64:42:4c:f9:cd:a1:47:c7:de:f7:03: 7e:2d:f8:d9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOe0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2NDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEY5QzI4N0FBM0I3RDE0 OTJDNTdCOTAyRTRGQzVFODZDRTQ0MDE0MzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrfVQqNQMhfcr/epVDkia7YdWnW/jtmpfKjmjXpWqIMZS07wM5 sKSXlaRHgm827na+IUJ7fj+jQnYifjeNNCJjtbQI0/btzKJVSEPI7MHaVzdbL8CL 6oHvvP/Lkgb+bIdNg91/yVu9VyGTHqPpsqQhrUdTuni8KAwaM3kXKQx5PxuQmscR osvjDZIfk2gwn0OnBCPlAmKIjsAU+4zOywkI1Kk3zR+RXO9WPc5x1ym4wIQRtQuj JNXA6gObNnq9A3UlWVOA5utRLI2m8EkU7vI+Sabnp7HrZ0KjGyMPpS6QGNRkit/e QTaBzxU3aBs1i9fuqbqdHJh2tJ9mXBekN74BAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU+cKHqjt9FJLFe5AuT8XobORAFDIwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLy1jS0hxanQ5RkpMRmU1QXVU OFhvYk9SQUZESS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANq ARAwDQYJKoZIhvcNAQELBQADggEBAJqOJlnBen/pNzIWrh6zKWslxQq/wflV2KyU oKIZFAAYuInCWCilBswtjs+erd9eZz8kIvVnqmBdIe1d45eOJNp+WFAOglR2RAR+ rEfmTco/3kK/mIdQ1b4bTjZUeUsDtQR8qnXJzz/dGvcZeLlZCU6beMGA/TdojcXP +nwj88JunncrBVfubfJpG5B8zBB0S7zFr1gEABi1bsDchgg9oZn+iyJAP86jcjV6 bCA9ppBm3AaCUjPZprp0sjCyQipd7cvQVtSmYNxQZptymKg1skRhHIuucFDv1/wU WLUYgmhkj03wrmXmXgUddC5jZnpp925kQkz5zaFHx973A34t+Nk= -----END CERTIFICATE-----Generated at Sun Aug 24 07:23:17 2025 by rpki-client