$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/9KCkmDUpOvvLzVsBa6UlyNN_Ca8.roa File: 9KCkmDUpOvvLzVsBa6UlyNN_Ca8.roa (raw, json) Hash identifier: Ijxuu8+YuwyuD7diSFT7Hgq+wnPmQuPGEEha3Ks7bkk= Subject key identifier: F4:A0:A4:98:35:29:3A:FB:CB:CD:5B:01:6B:A5:25:C8:D3:7F:09:AF Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 39B3 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/9KCkmDUpOvvLzVsBa6UlyNN_Ca8.roa Signing time: Fri 22 Aug 2025 08:46:34 +0000 ROA not before: Fri 22 Aug 2025 08:46:34 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 211.76.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14771 (0x39b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:34 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F4A0A49835293AFBCBCD5B016BA525C8D37F09AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:71:03:8b:ec:fd:b5:76:4e:2c:aa:5f:60:bb: 1c:a1:12:09:72:69:9b:96:87:64:66:e1:84:53:23: e9:a2:12:81:72:28:d0:af:93:ed:12:50:51:1b:21: 95:3c:25:4b:c2:82:29:f2:0b:3b:25:ef:93:09:96: e4:38:1e:a4:73:b0:25:26:2e:56:3d:5a:66:7a:b2: a7:37:c2:51:8a:88:ca:6a:1e:94:5e:d9:5f:ae:e8: 34:33:d2:92:6e:61:cc:5c:a0:17:a8:2f:a1:eb:36: 6b:ba:87:a8:6f:03:97:22:59:d6:d2:17:e2:52:56: b1:ab:8c:79:a3:8e:8f:15:81:8c:f2:09:52:dc:76: 6e:3f:1c:d8:61:83:b6:c5:52:55:88:23:b8:a5:8a: 1f:4f:bc:cb:3a:c5:21:d8:d9:c1:bc:13:88:05:84: 7f:5d:b5:d6:08:35:8c:0c:66:d2:6c:15:2f:4d:eb: 1f:c2:72:5b:03:22:17:d1:dc:df:59:85:d7:43:45: 8b:63:17:83:58:db:b9:9f:8d:2c:b6:f6:8f:bd:a1: ce:23:71:ff:3b:c3:ce:51:48:2e:88:52:ee:47:7d: c5:8e:2e:db:17:e3:98:da:e2:30:c1:70:6b:23:57: 18:c8:d4:d4:16:91:48:18:21:1b:47:8d:5b:05:67: d7:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:A0:A4:98:35:29:3A:FB:CB:CD:5B:01:6B:A5:25:C8:D3:7F:09:AF X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/9KCkmDUpOvvLzVsBa6UlyNN_Ca8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.121.0/24 Signature Algorithm: sha256WithRSAEncryption b4:f8:ad:32:76:9e:bf:ac:8e:f5:f0:b0:ca:da:7c:25:67:01: 73:94:5b:a5:c1:43:c3:4d:99:f7:18:6f:05:e5:7c:63:3d:a9: 78:8e:72:4b:be:b1:d1:67:0c:24:e1:03:e0:69:53:bc:7a:3a: bd:0c:59:d8:30:db:26:95:a4:97:03:53:ad:41:fb:7b:1c:3e: b0:c1:63:75:27:bd:6f:bc:06:0b:f5:8f:3a:d1:26:97:1c:ae: f5:01:9b:32:41:ae:86:3c:07:7c:12:6d:b5:6f:8a:66:3f:a6: ed:1d:67:ab:4c:04:e7:81:ed:ea:cb:48:87:f2:f0:3f:a0:1d: f2:3c:a6:6d:1f:10:ea:6a:f9:a1:45:4e:fd:23:34:45:d5:82: 42:5b:96:cb:d3:10:bd:78:e0:0d:ac:9d:4e:06:38:b0:ac:17: af:48:90:8e:fa:82:b5:a8:20:35:28:30:4d:8e:99:78:66:22: a2:10:12:b2:04:71:16:e2:f7:bb:81:cb:64:97:e1:b2:cd:76: 71:db:36:c8:2f:e3:e3:e1:fd:87:fb:ae:9b:8f:e8:22:fc:20: 86:cf:55:3f:cc:0f:50:47:a2:99:dd:f8:cc:e4:7f:d0:d2:59: a5:57:85:8b:91:eb:86:2d:7a:81:c2:7e:a9:9e:09:c9:f6:c6: 42:41:ae:45 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICObMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MzRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEY0QTBBNDk4MzUyOTNB RkJDQkNENUIwMTZCQTUyNUM4RDM3RjA5QUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRcQOL7P21dk4sql9guxyhEglyaZuWh2Rm4YRTI+miEoFyKNCv k+0SUFEbIZU8JUvCginyCzsl75MJluQ4HqRzsCUmLlY9WmZ6sqc3wlGKiMpqHpRe 2V+u6DQz0pJuYcxcoBeoL6HrNmu6h6hvA5ciWdbSF+JSVrGrjHmjjo8VgYzyCVLc dm4/HNhhg7bFUlWII7ilih9PvMs6xSHY2cG8E4gFhH9dtdYINYwMZtJsFS9N6x/C clsDIhfR3N9ZhddDRYtjF4NY27mfjSy29o+9oc4jcf87w85RSC6IUu5HfcWOLtsX 45ja4jDBcGsjVxjI1NQWkUgYIRtHjVsFZ9epAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU9KCkmDUpOvvLzVsBa6UlyNN/Ca8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzlLQ2ttRFVwT3Z2THpWc0Jh NlVseU5OX0NhOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADT THkwDQYJKoZIhvcNAQELBQADggEBALT4rTJ2nr+sjvXwsMrafCVnAXOUW6XBQ8NN mfcYbwXlfGM9qXiOcku+sdFnDCThA+BpU7x6Or0MWdgw2yaVpJcDU61B+3scPrDB Y3UnvW+8Bgv1jzrRJpccrvUBmzJBroY8B3wSbbVvimY/pu0dZ6tMBOeB7erLSIfy 8D+gHfI8pm0fEOpq+aFFTv0jNEXVgkJblsvTEL144A2snU4GOLCsF69IkI76grWo IDUoME2OmXhmIqIQErIEcRbi97uBy2SX4bLNdnHbNsgv4+Ph/Yf7rpuP6CL8IIbP VT/MD1BHopnd+Mzkf9DSWaVXhYuR64YteoHCfqmeCcn2xkJBrkU= -----END CERTIFICATE-----Generated at Sun Aug 24 07:25:25 2025 by rpki-client