$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-u04ttyjcQRg9tsQFux3bTthIR0.roa File: -u04ttyjcQRg9tsQFux3bTthIR0.roa (raw, json) Hash identifier: qmJIYhDC0oAd7ioXUXYMmgJ0o6uqsc/IYzaf2Kd08qU= Subject key identifier: FA:ED:38:B6:DC:A3:71:04:60:F6:DB:10:16:EC:77:6D:3B:61:21:1D Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3924 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-u04ttyjcQRg9tsQFux3bTthIR0.roa Signing time: Fri 22 Aug 2025 08:46:00 +0000 ROA not before: Fri 22 Aug 2025 08:46:00 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.232.248.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14628 (0x3924) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:00 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FAED38B6DCA3710460F6DB1016EC776D3B61211D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d0:e4:2d:db:64:96:5a:00:3d:36:0d:7a:88: b1:17:96:52:4e:5d:33:46:9f:bc:0b:67:58:43:c6: fa:03:1b:5a:bc:6f:a0:70:a1:bf:39:c6:74:ad:91: 91:52:cb:61:8c:d4:77:58:d4:af:15:73:e8:92:0c: 64:3c:e3:47:2f:6b:c7:94:c7:b3:d6:87:b6:37:3e: 93:33:4c:15:e9:d3:3d:bf:e1:21:85:95:85:13:4e: be:ec:d2:3e:e2:e0:5b:9c:0a:b5:60:c7:89:7c:3a: 76:63:76:7f:7d:a3:b5:13:35:0a:94:1c:19:36:d1: 09:b1:6e:6a:40:ac:18:d6:8c:33:29:f2:b7:5d:ee: 0f:6f:d0:1e:a7:6c:bd:3c:41:9b:b5:f1:c0:62:0f: 1c:1b:a2:08:8e:cc:ff:eb:33:bc:46:8d:3d:34:99: c3:47:d4:57:c9:8f:44:2c:b0:7d:7a:2b:c7:55:cb: 7f:17:34:67:d8:0b:ff:44:08:11:af:d0:09:34:6f: fe:53:26:ca:aa:40:85:c4:b2:d7:3d:9a:85:20:eb: d6:66:d1:64:5a:3e:18:93:70:7d:33:82:a8:8e:69: 92:28:c0:d2:9a:1f:7b:bd:87:f5:08:0c:bd:5d:9e: 3e:dd:39:0a:5e:72:64:fb:98:d9:ae:23:b7:d0:b9: 1d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:ED:38:B6:DC:A3:71:04:60:F6:DB:10:16:EC:77:6D:3B:61:21:1D X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-u04ttyjcQRg9tsQFux3bTthIR0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.248.0/22 Signature Algorithm: sha256WithRSAEncryption ab:ec:d9:98:b9:a3:f9:91:c5:0d:43:dd:63:14:dd:c3:5e:53: 44:cc:bb:c7:6c:f2:3f:1e:6c:af:81:d2:7a:ab:d5:b3:7a:34: c1:89:1c:a0:33:6e:b9:5b:5d:ca:68:eb:eb:f6:b5:f7:33:77: b8:4d:03:4c:b9:34:04:26:fb:3a:2d:2b:81:d5:ad:ca:82:c2: 22:0f:1e:c9:a0:d9:11:0d:a2:f8:6c:9b:03:6b:e1:2a:04:3b: fa:c7:28:f4:82:69:79:27:01:7a:32:f4:fe:d5:07:75:34:2c: 1c:9f:5d:e3:0d:1a:79:c7:41:54:d9:21:bc:24:04:18:a4:da: ee:62:2d:c7:af:b6:b9:56:47:eb:e0:15:71:3e:10:6f:97:28: eb:93:55:6e:04:34:a6:72:c5:1d:47:58:ea:9b:f7:98:18:62: e6:3f:37:80:04:5b:34:91:d0:03:9f:55:76:63:ee:4c:56:8c: 12:7e:2d:b4:01:d0:b9:41:73:2d:df:d8:cb:b3:d2:75:50:cc: db:3c:ad:e7:6e:2c:f6:1c:59:00:23:6c:fd:33:40:d2:7f:a3: ad:72:af:6e:58:35:5f:3e:34:64:a1:1e:33:32:90:a5:5b:24: e0:0a:fe:58:56:99:1e:a2:0b:33:5c:ca:cf:47:06:31:60:75: 80:63:ca:ac -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOSQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZBRUQzOEI2RENBMzcx MDQ2MEY2REIxMDE2RUM3NzZEM0I2MTIxMUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDD0OQt22SWWgA9Ng16iLEXllJOXTNGn7wLZ1hDxvoDG1q8b6Bw ob85xnStkZFSy2GM1HdY1K8Vc+iSDGQ840cva8eUx7PWh7Y3PpMzTBXp0z2/4SGF lYUTTr7s0j7i4FucCrVgx4l8OnZjdn99o7UTNQqUHBk20QmxbmpArBjWjDMp8rdd 7g9v0B6nbL08QZu18cBiDxwbogiOzP/rM7xGjT00mcNH1FfJj0QssH16K8dVy38X NGfYC/9ECBGv0Ak0b/5TJsqqQIXEstc9moUg69Zm0WRaPhiTcH0zgqiOaZIowNKa H3u9h/UIDL1dnj7dOQpecmT7mNmuI7fQuR0XAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU+u04ttyjcQRg9tsQFux3bTthIR0wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLy11MDR0dHlqY1FSZzl0c1FG dXgzYlR0aElSMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6PgwDQYJKoZIhvcNAQELBQADggEBAKvs2Zi5o/mRxQ1D3WMU3cNeU0TMu8ds8j8e bK+B0nqr1bN6NMGJHKAzbrlbXcpo6+v2tfczd7hNA0y5NAQm+zotK4HVrcqCwiIP Hsmg2RENovhsmwNr4SoEO/rHKPSCaXknAXoy9P7VB3U0LByfXeMNGnnHQVTZIbwk BBik2u5iLcevtrlWR+vgFXE+EG+XKOuTVW4ENKZyxR1HWOqb95gYYuY/N4AEWzSR 0AOfVXZj7kxWjBJ+LbQB0LlBcy3f2Muz0nVQzNs8reduLPYcWQAjbP0zQNJ/o61y r25YNV8+NGShHjMykKVbJOAK/lhWmR6iCzNcys9HBjFgdYBjyqw= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:45 2025 by rpki-client