$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7UrRVhVoJYMAiLbei5RjPq4Bajc.roa File: 7UrRVhVoJYMAiLbei5RjPq4Bajc.roa (raw, json) Hash identifier: X3hWv/VqK4sOnufnFlUrvxs21osSnQlNZasXYRLq2UY= Subject key identifier: ED:4A:D1:56:15:68:25:83:00:88:B6:DE:8B:94:63:3E:AE:01:6A:37 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 383F Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7UrRVhVoJYMAiLbei5RjPq4Bajc.roa Signing time: Fri 22 Aug 2025 08:45:06 +0000 ROA not before: Fri 22 Aug 2025 08:45:06 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.233.108.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14399 (0x383f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:06 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=ED4AD156156825830088B6DE8B94633EAE016A37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:5a:5d:22:40:2c:81:7f:e3:c5:7d:82:11:4a: aa:81:23:67:5c:85:68:53:f6:8d:e5:dd:6e:77:ee: ac:95:4a:a5:8c:52:61:8f:f8:ac:3d:6a:63:28:9b: 3b:72:b2:96:58:9f:f8:71:4f:da:5e:60:d6:66:5e: 9a:c6:15:6f:aa:e1:79:eb:94:61:f6:c9:04:5f:ad: de:19:45:39:be:73:40:e7:7b:94:84:02:97:a4:b5: f1:eb:b9:eb:03:34:15:d0:67:79:8e:44:58:c4:55: 76:5e:ce:46:a7:86:73:f8:44:c4:99:a0:fe:eb:08: 5f:23:44:53:d4:17:bc:23:f9:54:e7:da:66:c6:15: 4c:e1:49:45:82:64:5c:50:9a:f7:ce:ff:38:d3:48: ba:d0:03:d1:bc:5c:d1:20:06:98:ea:cd:a0:0b:60: 01:75:7f:a0:6e:d7:c2:37:a7:85:01:71:3d:63:f0: 48:42:66:bc:d2:c6:61:aa:3c:87:1c:de:93:08:76: 76:14:25:aa:53:39:5b:58:3b:ee:03:c1:fb:ff:6e: 19:19:85:8d:2e:95:c5:80:20:00:86:94:40:a4:d1: bb:cc:da:80:d6:95:13:03:b0:7d:04:c6:fe:d1:c2: dd:9c:64:6f:e5:64:2d:cf:41:22:31:bd:17:5d:7a: 2d:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:4A:D1:56:15:68:25:83:00:88:B6:DE:8B:94:63:3E:AE:01:6A:37 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7UrRVhVoJYMAiLbei5RjPq4Bajc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.108.0/22 Signature Algorithm: sha256WithRSAEncryption 3a:47:f3:25:fe:80:27:c2:b0:31:8b:34:f1:6f:7c:84:59:cb: e4:eb:77:47:fa:fe:fb:91:82:0d:13:fa:d5:9c:6d:3a:00:d5: ae:da:53:12:aa:27:38:7b:88:a5:c5:d6:4d:1d:2f:00:61:aa: b1:36:3e:9f:51:1c:ff:d2:93:3b:fc:1d:5c:44:9e:ac:41:fc: 3a:41:54:f6:d9:56:54:74:60:69:e7:31:d4:56:44:c0:52:6c: fb:d9:11:fe:30:b5:6e:05:58:73:00:56:49:3f:5e:1f:cd:e6: 21:33:4d:e2:d3:ee:9d:ea:e7:01:87:ed:5b:88:81:1d:f7:5e: eb:f0:f2:e4:f9:6f:12:18:4f:22:a4:64:8a:09:2f:78:07:2f: a7:40:87:29:7c:ba:85:24:9c:9f:9e:ae:56:6e:d7:c8:7c:e7: 88:f7:66:22:40:16:b9:6e:41:a1:cf:cf:dd:a5:74:a5:aa:3d: b7:2d:63:97:eb:50:81:bc:c7:47:b5:47:cb:b0:ff:79:0a:fd: 94:13:f2:56:15:3e:e7:61:94:e0:05:b9:02:fc:c9:c0:63:fd: 93:a3:56:a3:fe:a2:18:51:41:e3:b7:84:1b:58:fd:4f:c1:b5: c4:fb:4b:4c:be:b8:6b:9e:46:b8:99:73:da:59:e0:b8:42:f5: 4d:d7:71:e6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOD8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1MDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVENEFEMTU2MTU2ODI1 ODMwMDg4QjZERThCOTQ2MzNFQUUwMTZBMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRWl0iQCyBf+PFfYIRSqqBI2dchWhT9o3l3W537qyVSqWMUmGP +Kw9amMomztyspZYn/hxT9peYNZmXprGFW+q4XnrlGH2yQRfrd4ZRTm+c0Dne5SE ApektfHruesDNBXQZ3mORFjEVXZezkanhnP4RMSZoP7rCF8jRFPUF7wj+VTn2mbG FUzhSUWCZFxQmvfO/zjTSLrQA9G8XNEgBpjqzaALYAF1f6Bu18I3p4UBcT1j8EhC ZrzSxmGqPIcc3pMIdnYUJapTOVtYO+4Dwfv/bhkZhY0ulcWAIACGlECk0bvM2oDW lRMDsH0Exv7Rwt2cZG/lZC3PQSIxvRddei3hAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU7UrRVhVoJYMAiLbei5RjPq4BajcwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzdVclJWaFZvSllNQWlMYmVp NVJqUHE0QmFqYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6WwwDQYJKoZIhvcNAQELBQADggEBADpH8yX+gCfCsDGLNPFvfIRZy+Trd0f6/vuR gg0T+tWcbToA1a7aUxKqJzh7iKXF1k0dLwBhqrE2Pp9RHP/Skzv8HVxEnqxB/DpB VPbZVlR0YGnnMdRWRMBSbPvZEf4wtW4FWHMAVkk/Xh/N5iEzTeLT7p3q5wGH7VuI gR33Xuvw8uT5bxIYTyKkZIoJL3gHL6dAhyl8uoUknJ+erlZu18h854j3ZiJAFrlu QaHPz92ldKWqPbctY5frUIG8x0e1R8uw/3kK/ZQT8lYVPudhlOAFuQL8ycBj/ZOj VqP+ohhRQeO3hBtY/U/BtcT7S0y+uGueRriZc9pZ4LhC9U3XceY= -----END CERTIFICATE-----Generated at Sun Aug 24 07:23:14 2025 by rpki-client