$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DV0sGgJQSVZLNepjYFUlFOOO5fw.roa File: DV0sGgJQSVZLNepjYFUlFOOO5fw.roa (raw, json) Hash identifier: lkDuqVHsfv7GNV8SsKXABhLFQ/Emnm2PjlkESrz0eIA= Subject key identifier: 0D:5D:2C:1A:02:50:49:56:4B:35:EA:63:60:55:25:14:E3:8E:E5:FC Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 399A Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DV0sGgJQSVZLNepjYFUlFOOO5fw.roa Signing time: Fri 22 Aug 2025 08:46:27 +0000 ROA not before: Fri 22 Aug 2025 08:46:27 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.233.234.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14746 (0x399a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:27 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0D5D2C1A025049564B35EA6360552514E38EE5FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:71:21:64:ae:f3:04:d7:a3:1e:bb:88:00:37: 95:14:3a:50:1d:cf:a1:0f:8d:92:ac:5a:b7:dd:a1: 84:da:0d:5d:b3:bc:7d:0c:93:ea:48:7f:62:74:50: fe:3c:54:ce:69:14:91:b3:78:5d:3a:cf:38:aa:f2: b1:37:08:98:fd:1b:6a:1a:37:a2:b9:ec:16:49:c9: cc:a6:cb:5d:fe:87:13:6a:98:ab:0f:fc:e5:f5:e7: a8:ee:f6:10:89:3f:a0:d6:78:f6:e6:0e:59:43:37: 5d:9d:0a:c0:e2:53:aa:fc:41:df:38:9f:66:c3:0a: bc:0a:24:38:ce:01:26:00:cc:59:b5:c7:b3:31:a1: d4:bc:90:0a:f6:58:05:c7:67:fa:51:5a:c9:95:65: 6f:66:2a:8e:3a:c6:41:fe:6d:8f:8e:5f:f7:1e:f2: 9a:11:65:0f:24:57:e8:1e:85:9e:1b:93:26:3f:82: 52:00:34:1a:af:ed:21:2f:7e:54:8e:f3:8f:78:d4: 9c:0f:87:52:02:2d:55:1e:a3:53:3d:7a:d2:81:78: ee:5e:7b:23:e8:91:5b:5a:34:8c:a7:84:e1:19:a7: 95:ba:d1:24:a0:53:c0:15:86:22:a4:a0:02:a0:1d: 73:82:38:55:7b:44:5e:db:4b:4e:55:fd:48:99:b9: 40:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:5D:2C:1A:02:50:49:56:4B:35:EA:63:60:55:25:14:E3:8E:E5:FC X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DV0sGgJQSVZLNepjYFUlFOOO5fw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.234.0/23 Signature Algorithm: sha256WithRSAEncryption 64:c1:87:8b:f7:a2:02:f6:79:64:ab:8d:c6:40:32:87:4f:cb: b1:9e:ea:f5:8a:4b:5e:70:1c:f2:35:53:47:25:a9:ac:dd:50: e5:62:0e:88:08:17:fb:f8:49:51:4d:f4:00:0c:90:55:ba:61: 43:bd:2c:69:af:3d:62:66:66:9f:e4:a6:47:44:53:9c:40:9f: 9c:8d:2a:c9:b0:cf:6a:9b:8e:89:6d:37:3b:b6:d0:dc:5e:4c: cc:5b:a9:79:9b:9d:0e:f9:c0:08:a7:62:75:e1:32:40:ee:94: d4:1c:8d:01:94:ce:41:50:66:b1:98:ca:07:5f:e9:6a:84:3c: f4:ad:b7:b3:1c:7c:01:2b:ee:1b:0f:14:74:e5:1d:0c:3a:7c: fe:6f:e7:42:81:84:22:d0:d9:70:d6:f6:a8:bd:fd:30:a9:ff: 8e:4e:59:10:22:75:c6:d5:59:e4:13:75:2b:bb:2d:fe:04:15: c4:69:1c:ec:2b:a3:9e:2f:b6:ff:a1:41:79:b3:b8:18:4a:f2: 2e:33:2b:45:cc:26:8d:d5:de:c6:19:76:61:4c:14:81:cd:f5: 6a:c4:8b:91:0a:f1:99:39:23:f2:a9:a3:4c:c3:6c:1c:4b:72: 32:fe:0c:d3:42:f5:cf:b5:0f:42:50:6c:43:96:62:8b:21:95: d0:27:c1:50 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOZowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MjdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDBENUQyQzFBMDI1MDQ5 NTY0QjM1RUE2MzYwNTUyNTE0RTM4RUU1RkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdcSFkrvME16Meu4gAN5UUOlAdz6EPjZKsWrfdoYTaDV2zvH0M k+pIf2J0UP48VM5pFJGzeF06zziq8rE3CJj9G2oaN6K57BZJycymy13+hxNqmKsP /OX156ju9hCJP6DWePbmDllDN12dCsDiU6r8Qd84n2bDCrwKJDjOASYAzFm1x7Mx odS8kAr2WAXHZ/pRWsmVZW9mKo46xkH+bY+OX/ce8poRZQ8kV+gehZ4bkyY/glIA NBqv7SEvflSO84941JwPh1ICLVUeo1M9etKBeO5eeyPokVtaNIynhOEZp5W60SSg U8AVhiKkoAKgHXOCOFV7RF7bS05V/UiZuUA9AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUDV0sGgJQSVZLNepjYFUlFOOO5fwwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0RWMHNHZ0pRU1ZaTE5lcGpZ RlVsRk9PTzVmdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF2 6eowDQYJKoZIhvcNAQELBQADggEBAGTBh4v3ogL2eWSrjcZAModPy7Ge6vWKS15w HPI1U0clqazdUOViDogIF/v4SVFN9AAMkFW6YUO9LGmvPWJmZp/kpkdEU5xAn5yN Ksmwz2qbjoltNzu20NxeTMxbqXmbnQ75wAinYnXhMkDulNQcjQGUzkFQZrGYygdf 6WqEPPStt7McfAEr7hsPFHTlHQw6fP5v50KBhCLQ2XDW9qi9/TCp/45OWRAidcbV WeQTdSu7Lf4EFcRpHOwro54vtv+hQXmzuBhK8i4zK0XMJo3V3sYZdmFMFIHN9WrE i5EK8Zk5I/Kpo0zDbBxLcjL+DNNC9c+1D0JQbEOWYoshldAnwVA= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:32 2025 by rpki-client