$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3kClhGXsq7F_z7gte8vFkzxTdzM.roa File: 3kClhGXsq7F_z7gte8vFkzxTdzM.roa (raw, json) Hash identifier: r6GDHWtreXtdDjm3bwred33YYdhRwJBJZAgVXaSJ9eQ= Subject key identifier: DE:40:A5:84:65:EC:AB:B1:7F:CF:B8:2D:7B:CB:C5:93:3C:53:77:33 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3B10 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3kClhGXsq7F_z7gte8vFkzxTdzM.roa Signing time: Fri 22 Aug 2025 08:48:02 +0000 ROA not before: Fri 22 Aug 2025 08:48:02 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.232.52.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15120 (0x3b10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:48:02 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DE40A58465ECABB17FCFB82D7BCBC5933C537733 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fa:e7:c8:e9:e1:de:6f:65:ea:3f:2c:75:a3: 44:23:14:85:3a:ab:cc:6b:20:76:48:c5:af:8a:a5: d6:37:ec:55:86:6f:ba:40:b5:90:c9:ee:68:99:2a: b5:ae:0f:a5:d6:1c:a8:19:61:d1:03:78:1c:4f:8e: 22:de:a1:0a:7f:c1:f9:33:b9:49:6e:01:67:30:b4: 84:db:da:fc:f0:66:33:ba:7c:0c:10:89:4a:8b:52: 8f:51:f1:96:b2:35:e3:13:14:51:4e:9c:32:83:e6: 46:9e:9c:42:56:d1:a6:09:29:98:21:0b:fa:2b:4d: 01:d1:2e:e3:e5:48:ca:b4:55:9c:2e:b1:7c:e2:54: f0:37:fd:fd:67:b3:45:d5:b7:19:b9:1d:34:4c:94: 56:42:2c:96:1d:a2:3b:32:51:99:b2:1e:4a:15:e2: 0c:46:84:97:bb:9b:8f:ef:95:bd:a3:1f:84:aa:b8: 84:d0:42:39:7b:5c:6f:a1:4c:fd:16:a5:bb:f8:ca: 2e:92:03:55:1f:1a:db:b5:2a:64:71:bd:67:4f:c6: 3a:b8:c9:50:c2:00:57:9a:6e:b7:48:2b:79:b9:fb: df:90:c9:0f:5c:92:bb:ca:97:3e:2c:68:83:ef:da: c9:c8:94:ed:18:e0:78:13:bc:ad:48:64:82:8a:8e: 58:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:40:A5:84:65:EC:AB:B1:7F:CF:B8:2D:7B:CB:C5:93:3C:53:77:33 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3kClhGXsq7F_z7gte8vFkzxTdzM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.52.0/22 Signature Algorithm: sha256WithRSAEncryption b9:33:3c:03:b8:97:97:ea:c2:dc:52:a6:00:96:6f:6e:6b:11: a9:59:cb:6a:e4:3c:d3:46:83:64:25:c7:c8:8e:0a:eb:3c:55: 79:aa:e5:05:39:76:ee:19:8a:81:89:c1:b8:d0:f8:47:02:68: 56:83:f4:94:7e:13:19:9e:3f:34:fb:53:0e:db:f8:d0:46:99: de:18:a3:4c:04:99:91:65:1d:a8:c9:16:fc:e9:ad:b9:da:67: d7:70:61:d7:98:20:d6:98:2c:10:01:ae:96:99:10:e7:38:0f: f6:82:6e:73:58:d0:a5:c8:ff:20:69:cd:f6:22:fc:8f:f9:37: a6:19:e8:9c:db:d9:73:9d:91:c1:41:c5:eb:67:13:6c:39:f9: 61:7e:8a:b1:f9:db:99:11:88:57:76:94:60:c8:89:9c:94:67: 36:7d:c8:aa:6a:49:0d:30:f6:fe:37:9f:72:90:62:a4:5a:5b: 80:ef:66:45:46:91:2c:0e:33:de:56:9a:85:e1:02:4b:a3:fe: 68:2c:6b:ec:a4:97:38:db:c2:3d:61:54:c6:33:fb:d5:74:f7: e2:1d:30:59:c8:1f:dd:d5:b8:91:bc:e6:f1:80:75:33:6d:92: 41:31:e3:02:a6:8d:94:28:7b:59:ec:5b:5d:ee:92:fd:ac:d2: 46:1e:1c:d8 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOxAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ4MDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKERFNDBBNTg0NjVFQ0FC QjE3RkNGQjgyRDdCQ0JDNTkzM0M1Mzc3MzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4+ufI6eHeb2XqPyx1o0QjFIU6q8xrIHZIxa+KpdY37FWGb7pA tZDJ7miZKrWuD6XWHKgZYdEDeBxPjiLeoQp/wfkzuUluAWcwtITb2vzwZjO6fAwQ iUqLUo9R8ZayNeMTFFFOnDKD5kaenEJW0aYJKZghC/orTQHRLuPlSMq0VZwusXzi VPA3/f1ns0XVtxm5HTRMlFZCLJYdojsyUZmyHkoV4gxGhJe7m4/vlb2jH4SquITQ Qjl7XG+hTP0Wpbv4yi6SA1UfGtu1KmRxvWdPxjq4yVDCAFeabrdIK3m5+9+QyQ9c krvKlz4saIPv2snIlO0Y4HgTvK1IZIKKjlhJAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU3kClhGXsq7F/z7gte8vFkzxTdzMwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzNrQ2xoR1hzcTdGX3o3Z3Rl OHZGa3p4VGR6TS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6DQwDQYJKoZIhvcNAQELBQADggEBALkzPAO4l5fqwtxSpgCWb25rEalZy2rkPNNG g2Qlx8iOCus8VXmq5QU5du4ZioGJwbjQ+EcCaFaD9JR+ExmePzT7Uw7b+NBGmd4Y o0wEmZFlHajJFvzprbnaZ9dwYdeYINaYLBABrpaZEOc4D/aCbnNY0KXI/yBpzfYi /I/5N6YZ6Jzb2XOdkcFBxetnE2w5+WF+irH525kRiFd2lGDIiZyUZzZ9yKpqSQ0w 9v43n3KQYqRaW4DvZkVGkSwOM95WmoXhAkuj/mgsa+yklzjbwj1hVMYz+9V09+Id MFnIH93VuJG85vGAdTNtkkEx4wKmjZQoe1nsW13ukv2s0kYeHNg= -----END CERTIFICATE-----Generated at Sun Aug 24 07:33:20 2025 by rpki-client