$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4KfI-nGsJhVHDIRabxpMHvf0R1g.roa File: 4KfI-nGsJhVHDIRabxpMHvf0R1g.roa (raw, json) Hash identifier: l7EUC4cCTv/+sv6uBBCch4T3h9svQjdGCHTJbPGComQ= Subject key identifier: E0:A7:C8:FA:71:AC:26:15:47:0C:84:5A:6F:1A:4C:1E:F7:F4:47:58 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 39F9 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4KfI-nGsJhVHDIRabxpMHvf0R1g.roa Signing time: Fri 22 Aug 2025 08:46:52 +0000 ROA not before: Fri 22 Aug 2025 08:46:52 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.233.118.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14841 (0x39f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:52 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E0A7C8FA71AC2615470C845A6F1A4C1EF7F44758 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:7c:d0:0f:ad:64:97:b0:cb:00:4e:70:04:62: bc:e4:81:8b:c6:02:f6:2b:42:b7:1d:50:d2:58:77: 14:6e:e2:cc:f5:45:07:a0:df:ff:3f:25:be:04:79: 66:77:d9:88:15:d5:cc:e1:a2:4a:84:b6:2c:1c:f8: ec:dd:10:13:03:a8:ca:db:b8:e1:5a:b0:96:5b:8c: 6d:74:90:23:7f:3c:93:5c:50:38:a4:54:69:e9:3e: 07:f4:a8:81:ef:46:85:36:a6:55:57:77:cf:e9:16: b1:6f:88:dd:10:8f:f6:dc:ff:14:c0:a9:f2:96:dc: b2:60:e9:6f:78:2f:45:16:81:e7:47:e7:97:5c:08: 95:bc:7c:91:5c:f4:48:40:00:6d:07:fc:c2:ee:6f: 2b:2e:41:1a:bd:e2:bd:d0:80:da:93:e7:b4:3d:5f: fb:2a:2a:d0:71:0a:34:85:2b:17:4e:38:7a:14:ab: 6c:1d:34:cc:18:95:4e:43:4c:f8:18:a6:42:3c:64: 8d:81:78:d4:78:2b:3d:32:96:ed:2c:61:28:ea:21: 4a:bf:f4:83:78:1c:f0:7b:a7:ea:2f:bf:de:79:fc: d0:9d:7b:6f:a4:51:e1:f1:f1:b1:78:4e:c3:79:12: 2f:80:58:ba:18:6c:63:d5:d3:16:6b:1d:e1:2a:4a: 28:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:A7:C8:FA:71:AC:26:15:47:0C:84:5A:6F:1A:4C:1E:F7:F4:47:58 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4KfI-nGsJhVHDIRabxpMHvf0R1g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.118.0/23 Signature Algorithm: sha256WithRSAEncryption 04:64:e6:c1:c9:db:2c:6c:be:f0:fa:1a:3d:a4:35:f7:9e:43: 16:0c:58:88:77:b1:e8:0b:4c:74:1d:00:87:8e:07:62:93:a4: a1:79:04:34:a8:c3:86:7b:e0:63:a5:94:4c:f6:26:29:41:44: c6:e8:26:01:74:43:98:e5:0f:e9:e0:b8:13:f2:31:2f:ae:07: b2:cd:4b:ff:13:aa:0d:f5:e9:15:be:2a:d4:0a:6f:c2:77:46: 03:49:3a:f6:5a:54:bf:ab:f9:d3:51:33:7e:c3:08:07:1d:b2: d5:ef:05:d8:d4:8b:b5:6b:85:76:84:6a:9d:ee:5c:64:c7:21: 36:c4:cf:0f:2f:d0:af:8b:ff:22:34:a3:0a:be:1e:24:44:6a: 4b:b0:63:af:84:e3:ac:34:d5:e8:9c:a4:16:ce:cf:5e:ee:76: c4:99:b0:7e:7d:77:1b:28:7a:8e:03:fa:fd:8b:09:20:ec:b1: 58:aa:05:7f:55:59:7a:a5:e3:48:3d:41:84:07:6c:ef:6c:5a: 4c:1f:35:27:18:b7:2b:43:8a:99:7a:0c:5b:3a:d0:74:c2:b7: 53:a6:b9:82:0f:5a:27:60:35:e6:9e:cc:60:2d:9a:19:25:bd: 8a:a3:79:dd:f5:86:68:b2:76:13:b3:77:6d:65:cd:24:a6:55: 03:7e:5e:66 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOfkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2NTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUwQTdDOEZBNzFBQzI2 MTU0NzBDODQ1QTZGMUE0QzFFRjdGNDQ3NTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyfNAPrWSXsMsATnAEYrzkgYvGAvYrQrcdUNJYdxRu4sz1RQeg 3/8/Jb4EeWZ32YgV1czhokqEtiwc+OzdEBMDqMrbuOFasJZbjG10kCN/PJNcUDik VGnpPgf0qIHvRoU2plVXd8/pFrFviN0Qj/bc/xTAqfKW3LJg6W94L0UWgedH55dc CJW8fJFc9EhAAG0H/MLubysuQRq94r3QgNqT57Q9X/sqKtBxCjSFKxdOOHoUq2wd NMwYlU5DTPgYpkI8ZI2BeNR4Kz0ylu0sYSjqIUq/9IN4HPB7p+ovv955/NCde2+k UeHx8bF4TsN5Ei+AWLoYbGPV0xZrHeEqSijVAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU4KfI+nGsJhVHDIRabxpMHvf0R1gwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzRLZkktbkdzSmhWSERJUmFi eHBNSHZmMFIxZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF2 6XYwDQYJKoZIhvcNAQELBQADggEBAARk5sHJ2yxsvvD6Gj2kNfeeQxYMWIh3segL THQdAIeOB2KTpKF5BDSow4Z74GOllEz2JilBRMboJgF0Q5jlD+nguBPyMS+uB7LN S/8Tqg316RW+KtQKb8J3RgNJOvZaVL+r+dNRM37DCAcdstXvBdjUi7VrhXaEap3u XGTHITbEzw8v0K+L/yI0owq+HiREakuwY6+E46w01eicpBbOz17udsSZsH59dxso eo4D+v2LCSDssViqBX9VWXql40g9QYQHbO9sWkwfNScYtytDipl6DFs60HTCt1Om uYIPWidgNeaezGAtmhklvYqjed31hmiydhOzd21lzSSmVQN+XmY= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:28 2025 by rpki-client