$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3vLUt4nCb8p0G0_ZwXu1kyg8L60.roa File: 3vLUt4nCb8p0G0_ZwXu1kyg8L60.roa (raw, json) Hash identifier: 1DbZveAPGkfuQJ20I1IRSnVEFpzwSPdWB8gi4z4JQZw= Subject key identifier: DE:F2:D4:B7:89:C2:6F:CA:74:1B:4F:D9:C1:7B:B5:93:28:3C:2F:AD Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3873 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3vLUt4nCb8p0G0_ZwXu1kyg8L60.roa Signing time: Fri 22 Aug 2025 08:45:18 +0000 ROA not before: Fri 22 Aug 2025 08:45:18 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 106.1.64.0/21 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14451 (0x3873) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DEF2D4B789C26FCA741B4FD9C17BB593283C2FAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:40:19:e5:78:c3:04:d2:bc:ec:b9:af:13:00: 1e:cf:48:7e:ff:1a:24:43:02:ad:7b:58:08:9d:5d: b8:4f:dc:f7:a3:e2:da:2c:48:5c:68:d9:cf:3d:4c: 22:e6:a3:f3:c2:f0:8a:1b:77:af:b5:2e:88:46:a0: a4:9b:c0:5c:f3:24:7d:3d:67:f9:40:e9:f8:83:41: ac:92:ed:72:2c:2b:b5:37:ad:ba:a8:86:f5:66:ed: 5d:30:92:f8:76:dd:96:f8:2e:a9:b4:a3:a9:b0:6f: 84:20:a8:30:50:72:9a:49:ba:95:a7:e4:f1:3f:2f: dc:63:0c:1e:50:f3:59:69:34:3a:04:b3:fe:ba:d9: fe:c8:0a:76:61:50:c3:e8:22:70:ee:d3:ff:d2:95: 98:47:2a:78:00:9e:76:74:62:e1:2b:94:d1:40:eb: db:b3:9b:80:7b:71:23:0f:05:f0:f7:a6:bb:ae:93: 6e:1f:70:3d:c6:90:b4:5a:7e:6a:58:4e:19:58:ff: 2e:88:87:56:f1:12:2c:38:97:75:ab:c3:a3:72:9a: 17:7a:3c:c1:ab:7b:8c:d3:53:9c:39:f8:ad:36:6d: 8f:00:3a:82:17:52:5f:2b:02:ea:7c:ad:a2:dd:e5: 1c:2d:2e:db:19:0c:89:df:4f:19:c9:a4:a2:bf:9e: a1:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:F2:D4:B7:89:C2:6F:CA:74:1B:4F:D9:C1:7B:B5:93:28:3C:2F:AD X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3vLUt4nCb8p0G0_ZwXu1kyg8L60.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.64.0/21 Signature Algorithm: sha256WithRSAEncryption 45:96:ff:f8:0e:a4:eb:30:f4:95:c3:fe:5e:ae:9f:38:92:d0: 9c:56:00:01:d1:d3:87:26:44:d3:c8:0f:8a:e2:50:9b:3a:79: 3f:ba:d6:1a:66:a5:11:90:c9:f0:ac:12:e9:d3:48:8d:ee:73: 07:a9:79:07:4a:ee:34:4f:c9:5e:e3:54:3d:5a:b7:ec:8f:25: 14:56:92:9d:84:ff:d3:a1:17:e3:03:1e:87:2d:44:c5:0d:a6: 9e:44:54:e7:04:07:2a:7a:61:96:32:d0:22:0c:bf:c3:bc:2b: a5:89:1b:3e:0e:74:65:c4:2b:91:47:39:b2:17:dd:54:41:d7: e4:e1:90:7d:55:e3:9f:49:a8:e8:ac:00:7b:98:ba:c6:f8:4f: 40:89:eb:2c:48:db:95:9e:d4:4c:71:99:90:0f:bf:18:59:b4: 32:04:71:07:b9:96:32:24:ac:d1:e2:19:b8:54:70:b0:08:1e: 07:ce:cc:ca:2b:de:37:87:ad:7e:55:d6:10:33:8a:3f:83:43: 4b:17:3a:7f:1e:65:59:ec:28:c1:71:b4:75:9c:2b:78:28:73: a3:20:93:be:a3:1e:c1:be:34:73:f3:2f:cd:21:1a:d0:bc:b3: 1d:cb:04:f3:d3:c4:98:89:ca:30:f1:08:44:3c:23:fa:f2:54: 6b:e6:04:7e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOHMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1MThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKERFRjJENEI3ODlDMjZG Q0E3NDFCNEZEOUMxN0JCNTkzMjgzQzJGQUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCiQBnleMME0rzsua8TAB7PSH7/GiRDAq17WAidXbhP3Pej4tos SFxo2c89TCLmo/PC8Iobd6+1LohGoKSbwFzzJH09Z/lA6fiDQayS7XIsK7U3rbqo hvVm7V0wkvh23Zb4Lqm0o6mwb4QgqDBQcppJupWn5PE/L9xjDB5Q81lpNDoEs/66 2f7ICnZhUMPoInDu0//SlZhHKngAnnZ0YuErlNFA69uzm4B7cSMPBfD3pruuk24f cD3GkLRafmpYThlY/y6Ih1bxEiw4l3Wrw6Nymhd6PMGre4zTU5w5+K02bY8AOoIX Ul8rAup8raLd5RwtLtsZDInfTxnJpKK/nqHlAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU3vLUt4nCb8p0G0/ZwXu1kyg8L60wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzN2TFV0NG5DYjhwMEcwX1p3 WHUxa3lnOEw2MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANq AUAwDQYJKoZIhvcNAQELBQADggEBAEWW//gOpOsw9JXD/l6unziS0JxWAAHR04cm RNPID4riUJs6eT+61hpmpRGQyfCsEunTSI3ucwepeQdK7jRPyV7jVD1at+yPJRRW kp2E/9OhF+MDHoctRMUNpp5EVOcEByp6YZYy0CIMv8O8K6WJGz4OdGXEK5FHObIX 3VRB1+ThkH1V459JqOisAHuYusb4T0CJ6yxI25We1ExxmZAPvxhZtDIEcQe5ljIk rNHiGbhUcLAIHgfOzMor3jeHrX5V1hAzij+DQ0sXOn8eZVnsKMFxtHWcK3goc6Mg k76jHsG+NHPzL80hGtC8sx3LBPPTxJiJyjDxCEQ8I/ryVGvmBH4= -----END CERTIFICATE-----Generated at Sun Aug 24 07:24:10 2025 by rpki-client