$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FJdd_XsvaADIPz8bf-Yhj0oWRqI.roa File: FJdd_XsvaADIPz8bf-Yhj0oWRqI.roa (raw, json) Hash identifier: q6fZINW5rPHwxTdQTh/cXSEfLmzrNBUEZaxnHIXMlzg= Subject key identifier: 14:97:5D:FD:7B:2F:68:00:C8:3F:3F:1B:7F:E6:21:8F:4A:16:46:A2 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 37E6 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FJdd_XsvaADIPz8bf-Yhj0oWRqI.roa Signing time: Fri 22 Aug 2025 08:44:45 +0000 ROA not before: Fri 22 Aug 2025 08:44:45 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 106.1.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14310 (0x37e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:44:45 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=14975DFD7B2F6800C83F3F1B7FE6218F4A1646A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:16:07:35:11:7d:23:8b:8d:a3:23:5c:4c:63: ed:df:d6:bf:38:06:b3:fa:84:30:07:68:fb:91:7e: 8e:90:95:4c:17:a1:76:37:fe:70:19:ea:90:cb:13: 51:00:cb:ac:e4:95:de:51:88:0e:ac:aa:62:49:d8: 06:36:39:da:a9:82:8b:1c:c5:b2:a5:c2:72:92:a1: fc:11:54:55:88:64:76:0f:fb:46:c7:e0:46:18:dd: 4c:03:1d:48:79:68:53:65:3d:f6:23:67:f0:cb:16: 85:9c:c5:9a:fd:22:6e:b7:37:94:c1:9a:08:46:6e: 5e:ab:2a:5a:bd:2a:c8:e2:af:b5:e5:c9:c9:ff:11: 4c:29:3a:34:fd:15:6d:68:10:45:2a:d2:e7:6b:56: 0d:9c:fe:23:2a:93:fb:6c:ac:d3:04:6a:f6:d9:9a: 3e:42:0f:3f:2d:71:fd:bd:2f:79:11:a0:73:6e:b3: 9f:e7:67:75:09:23:18:18:af:44:04:9f:74:80:41: e1:c9:c8:71:6b:86:8f:85:bb:a8:73:5c:4c:73:48: b9:69:07:1a:2d:90:2b:b5:8f:96:a5:f8:c2:81:45: 1c:3f:b9:ff:c5:a7:8f:54:60:da:0d:6d:da:7d:23: 0f:fd:77:1f:d7:b3:7f:47:50:6f:8d:95:d1:2e:52: a4:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:97:5D:FD:7B:2F:68:00:C8:3F:3F:1B:7F:E6:21:8F:4A:16:46:A2 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FJdd_XsvaADIPz8bf-Yhj0oWRqI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.220.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:ed:d1:93:d3:62:49:3a:8a:5d:79:73:0c:9f:76:dc:fa:4b: 8e:1e:f3:4a:a7:cf:7b:68:d4:bf:ef:09:36:fc:02:28:c0:cb: 7d:41:60:be:19:f1:88:d4:04:34:35:d3:cd:05:dd:fb:66:02: 5f:36:af:4f:99:84:66:b2:44:2f:af:dc:d5:4c:77:48:29:87: ab:d0:b7:e7:21:93:65:b0:73:33:35:94:86:56:b8:91:47:b5: bd:c7:9f:8a:3b:20:00:1b:61:c0:2a:a0:c2:9c:cc:fc:09:1d: aa:41:1a:69:fe:84:8c:96:bf:26:07:ae:0c:14:d8:e1:82:c5: 7e:22:b4:1f:69:7a:4c:2d:d3:6e:49:f2:49:1b:fe:3e:44:11: 8f:f8:bc:a3:5b:4d:65:18:93:a2:46:16:a9:63:51:5a:68:18: b3:4f:34:44:03:82:7e:ba:b4:de:33:df:e0:7d:0e:5b:54:95: 84:91:75:1e:23:29:37:d1:f0:85:7a:67:f4:b4:51:e8:3d:1c: 17:02:d8:d8:c0:0a:33:9c:92:9e:f0:70:f7:63:64:ac:5d:72: fa:68:46:69:c7:f8:9d:6b:ed:d5:6b:24:a2:08:85:07:60:99: e8:b0:b1:9c:c6:d9:0e:af:11:b5:40:8c:f9:d2:8f:81:34:cf: 51:a1:a0:3b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICN+YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ0NDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE0OTc1REZEN0IyRjY4 MDBDODNGM0YxQjdGRTYyMThGNEExNjQ2QTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrFgc1EX0ji42jI1xMY+3f1r84BrP6hDAHaPuRfo6QlUwXoXY3 /nAZ6pDLE1EAy6zkld5RiA6sqmJJ2AY2OdqpgoscxbKlwnKSofwRVFWIZHYP+0bH 4EYY3UwDHUh5aFNlPfYjZ/DLFoWcxZr9Im63N5TBmghGbl6rKlq9Ksjir7Xlycn/ EUwpOjT9FW1oEEUq0udrVg2c/iMqk/tsrNMEavbZmj5CDz8tcf29L3kRoHNus5/n Z3UJIxgYr0QEn3SAQeHJyHFrho+Fu6hzXExzSLlpBxotkCu1j5al+MKBRRw/uf/F p49UYNoNbdp9Iw/9dx/Xs39HUG+NldEuUqQPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUFJdd/XsvaADIPz8bf+Yhj0oWRqIwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0ZKZGRfWHN2YUFESVB6OGJm LVloajBvV1JxSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq AdwwDQYJKoZIhvcNAQELBQADggEBAHrt0ZPTYkk6il15cwyfdtz6S44e80qnz3to 1L/vCTb8AijAy31BYL4Z8YjUBDQ1080F3ftmAl82r0+ZhGayRC+v3NVMd0gph6vQ t+chk2WwczM1lIZWuJFHtb3Hn4o7IAAbYcAqoMKczPwJHapBGmn+hIyWvyYHrgwU 2OGCxX4itB9pekwt025J8kkb/j5EEY/4vKNbTWUYk6JGFqljUVpoGLNPNEQDgn66 tN4z3+B9DltUlYSRdR4jKTfR8IV6Z/S0Ueg9HBcC2NjACjOckp7wcPdjZKxdcvpo RmnH+J1r7dVrJKIIhQdgmeiwsZzG2Q6vEbVAjPnSj4E0z1GhoDs= -----END CERTIFICATE-----Generated at Sun Aug 24 07:25:23 2025 by rpki-client