$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4tpJxoxT2rNl_R7JInW8_AG6ivU.roa File: 4tpJxoxT2rNl_R7JInW8_AG6ivU.roa (raw, json) Hash identifier: woGFriXznTkGC+rCE3DpbDwMCUezoVf6UtIsBX0LrlE= Subject key identifier: E2:DA:49:C6:8C:53:DA:B3:65:FD:1E:C9:22:75:BC:FC:01:BA:8A:F5 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3B1F Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4tpJxoxT2rNl_R7JInW8_AG6ivU.roa Signing time: Fri 22 Aug 2025 08:48:05 +0000 ROA not before: Fri 22 Aug 2025 08:48:05 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 106.1.104.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15135 (0x3b1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:48:05 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E2DA49C68C53DAB365FD1EC92275BCFC01BA8AF5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ff:c7:2d:95:4a:d3:43:d5:df:70:4d:a0:4b: de:5c:80:9b:b0:4a:e9:8e:c8:ce:36:ba:32:7e:44: 83:53:a0:69:db:fa:4e:e3:cb:4f:71:26:2e:a3:75: 41:9a:ce:33:b4:2f:ad:6f:60:4d:dc:d1:e3:18:d7: 04:76:14:91:a7:d9:d7:d1:57:51:4c:e4:59:e9:22: 95:e3:5d:14:d4:26:15:75:f2:69:a6:5c:7f:c0:7d: bf:6c:94:2b:8a:33:96:8a:1c:13:79:f9:a6:e4:9c: 6f:19:32:49:45:f6:02:d0:e7:40:26:a5:7c:9e:21: 2e:a2:55:fe:05:25:b5:38:96:eb:33:ab:c2:c2:36: 79:fd:4b:b2:7a:70:c2:80:43:da:b0:c2:1b:67:34: ac:82:5d:de:36:0c:ea:fb:f2:74:a2:48:89:b3:1a: 6f:2f:28:6c:6b:e1:f0:20:c8:30:2a:02:6e:b1:b8: b0:7a:ed:10:63:32:2e:32:9a:6d:c6:dc:b1:59:ab: 21:e1:f1:d0:17:04:07:83:2e:d1:06:12:19:a0:3d: 69:05:cb:f9:b1:20:74:7f:ea:2d:e5:f7:d8:34:cc: 0b:46:3d:26:7d:1e:fd:4b:e7:fc:c3:3d:0f:2b:e1: 9b:13:0b:4d:fd:0f:f8:d4:15:e8:81:d3:89:c1:16: d9:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:DA:49:C6:8C:53:DA:B3:65:FD:1E:C9:22:75:BC:FC:01:BA:8A:F5 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4tpJxoxT2rNl_R7JInW8_AG6ivU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.104.0/22 Signature Algorithm: sha256WithRSAEncryption 4c:64:fc:4d:4f:e6:f3:1f:34:9c:cd:f5:c0:b9:eb:e5:79:7c: 9b:06:88:7a:37:f0:db:5e:3b:5d:be:8d:88:c4:ac:17:89:cb: 86:cd:0a:98:f5:ad:a7:7f:8e:17:03:2f:d9:8c:06:62:74:b5: 6b:58:5f:59:a8:be:5b:d2:17:a9:73:94:a3:52:6e:ab:5a:b6: 2d:26:20:95:0f:3f:cc:bc:c3:9b:3d:9e:48:77:0e:c2:1c:e6: 1a:3a:54:58:13:40:dc:9d:1e:10:9d:28:9d:f0:2e:a3:1f:0c: 24:c5:00:ac:85:85:bf:97:80:68:f3:97:9d:ac:ba:f5:72:73: 16:5d:23:ef:1e:9d:63:a8:5d:32:db:f4:8a:d9:2c:07:1d:63: 6d:45:53:6d:99:b6:08:79:c5:89:6b:a7:97:e8:6b:1d:3e:79: ea:66:9f:e2:65:93:15:7d:b0:3a:a1:9c:8c:43:c3:87:f0:c6: 66:7e:c4:da:1a:46:f1:3d:79:ac:ae:ed:7e:4e:5a:13:5c:8e: f2:cb:13:42:58:7d:f9:4f:9d:e3:b7:6d:ca:f4:e3:a8:0a:99: b2:54:ea:de:77:08:66:26:a5:f2:32:de:e4:8c:30:96:2c:b9: 22:ab:f8:07:09:7c:74:50:a6:39:81:4f:45:cb:87:6f:ae:c3: 8f:58:06:13 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOx8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ4MDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUyREE0OUM2OEM1M0RB QjM2NUZEMUVDOTIyNzVCQ0ZDMDFCQThBRjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDi/8ctlUrTQ9XfcE2gS95cgJuwSumOyM42ujJ+RINToGnb+k7j y09xJi6jdUGazjO0L61vYE3c0eMY1wR2FJGn2dfRV1FM5FnpIpXjXRTUJhV18mmm XH/Afb9slCuKM5aKHBN5+abknG8ZMklF9gLQ50AmpXyeIS6iVf4FJbU4luszq8LC Nnn9S7J6cMKAQ9qwwhtnNKyCXd42DOr78nSiSImzGm8vKGxr4fAgyDAqAm6xuLB6 7RBjMi4ymm3G3LFZqyHh8dAXBAeDLtEGEhmgPWkFy/mxIHR/6i3l99g0zAtGPSZ9 Hv1L5/zDPQ8r4ZsTC039D/jUFeiB04nBFtkbAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU4tpJxoxT2rNl/R7JInW8/AG6ivUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzR0cEp4b3hUMnJObF9SN0pJ blc4X0FHNml2VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq AWgwDQYJKoZIhvcNAQELBQADggEBAExk/E1P5vMfNJzN9cC56+V5fJsGiHo38Nte O12+jYjErBeJy4bNCpj1rad/jhcDL9mMBmJ0tWtYX1movlvSF6lzlKNSbqtati0m IJUPP8y8w5s9nkh3DsIc5ho6VFgTQNydHhCdKJ3wLqMfDCTFAKyFhb+XgGjzl52s uvVycxZdI+8enWOoXTLb9IrZLAcdY21FU22Ztgh5xYlrp5foax0+eepmn+JlkxV9 sDqhnIxDw4fwxmZ+xNoaRvE9eayu7X5OWhNcjvLLE0JYfflPneO3bcr046gKmbJU 6t53CGYmpfIy3uSMMJYsuSKr+AcJfHRQpjmBT0XLh2+uw49YBhM= -----END CERTIFICATE-----Generated at Sun Aug 24 07:29:36 2025 by rpki-client