$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FgtbN1YzxI3bM0HoBgvisEwuTp0.roa File: FgtbN1YzxI3bM0HoBgvisEwuTp0.roa (raw, json) Hash identifier: 5i1exjKFFba0QUW/fyAxn3a/CRcW0ve0eTDnEvrP9Sg= Subject key identifier: 16:0B:5B:37:56:33:C4:8D:DB:33:41:E8:06:0B:E2:B0:4C:2E:4E:9D Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 38E5 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FgtbN1YzxI3bM0HoBgvisEwuTp0.roa Signing time: Fri 22 Aug 2025 08:45:45 +0000 ROA not before: Fri 22 Aug 2025 08:45:44 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.233.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14565 (0x38e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:44 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=160B5B375633C48DDB3341E8060BE2B04C2E4E9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:38:38:33:5f:47:62:79:f0:d6:d3:83:65:c5: 38:16:19:ca:2f:e1:04:43:30:9f:21:ae:c0:38:b8: 55:bc:a3:be:b3:9c:a5:1a:b6:61:c4:a2:aa:b0:ac: a4:2f:bc:f1:f8:9f:2c:62:14:bb:c2:61:25:ce:bc: 57:0c:53:f3:24:f6:8f:b5:c0:b4:82:bc:46:81:b6: 34:b9:17:4f:7f:f7:d3:ac:b6:5a:42:8f:08:b8:eb: 68:18:94:7d:7d:d2:45:0c:de:ae:53:a3:33:f6:e5: 92:86:f7:10:25:9d:91:21:21:97:c2:24:5b:4d:34: 79:eb:5e:d8:de:a1:ee:89:0e:8e:b9:0f:44:e8:4c: 9b:d1:48:02:f7:c6:ff:72:ef:1c:a3:82:3b:00:31: 2f:48:f6:4c:d6:83:53:24:36:5d:f0:22:aa:4a:c4: fd:c3:d4:54:6a:90:45:73:dc:8f:db:98:77:e2:2a: dc:c8:9a:ef:14:d6:40:af:36:7e:5d:39:5a:12:58: 33:05:e9:f5:33:d3:11:ed:7b:84:af:34:b9:53:5e: 82:4c:1e:06:db:f9:13:fe:3b:c0:52:de:62:6a:80: 3e:ee:32:8b:9a:79:1d:29:ee:7b:b9:5f:29:55:c0: da:23:34:88:c6:bb:cc:0e:77:5e:8b:0a:24:a9:34: 74:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:0B:5B:37:56:33:C4:8D:DB:33:41:E8:06:0B:E2:B0:4C:2E:4E:9D X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FgtbN1YzxI3bM0HoBgvisEwuTp0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.102.0/24 Signature Algorithm: sha256WithRSAEncryption 83:65:38:d5:2a:ce:4e:eb:20:66:1e:1b:e5:08:9a:55:5a:bf: 9b:67:81:91:9f:71:a3:51:16:ea:f9:c9:f0:8c:0e:c0:13:1e: 9f:7c:8b:f1:39:88:dc:cd:16:61:a4:19:6a:23:db:18:d7:c1: bf:d7:93:00:19:28:4b:2d:78:c0:ac:1c:79:a6:99:d8:91:77: b3:78:32:c4:ea:b5:0a:53:5f:5f:3a:2a:a2:dd:69:a4:17:c5: 26:3a:10:7f:69:9e:3d:b7:aa:b7:d4:62:75:bb:79:5e:1c:83: 82:bb:1d:71:b0:5e:96:3b:01:47:4a:ea:f0:23:b8:e4:d8:75: 46:22:95:f6:6e:fc:84:5e:b3:5b:cc:84:7f:0a:8a:78:e1:37: f4:c2:be:ea:c0:29:14:48:dc:2c:65:79:69:fb:6f:a0:d4:2e: 4a:42:4e:84:35:71:7b:99:94:6b:83:5d:b0:27:82:e4:32:cc: 45:41:54:a1:4f:c2:af:78:a4:75:0f:51:3f:01:55:b5:af:66: 66:01:07:c4:76:fc:25:da:2d:89:7e:80:e5:76:5e:f0:ab:be: f2:9d:91:69:40:34:a6:a0:db:ad:65:d8:fc:8d:6e:fa:44:41: 87:5d:76:0f:a8:ba:a5:e9:11:47:ed:30:00:b9:98:ae:72:e6: ac:00:c6:15 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOOUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1NDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE2MEI1QjM3NTYzM0M0 OEREQjMzNDFFODA2MEJFMkIwNEMyRTRFOUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpODgzX0diefDW04NlxTgWGcov4QRDMJ8hrsA4uFW8o76znKUa tmHEoqqwrKQvvPH4nyxiFLvCYSXOvFcMU/Mk9o+1wLSCvEaBtjS5F09/99OstlpC jwi462gYlH190kUM3q5TozP25ZKG9xAlnZEhIZfCJFtNNHnrXtjeoe6JDo65D0To TJvRSAL3xv9y7xyjgjsAMS9I9kzWg1MkNl3wIqpKxP3D1FRqkEVz3I/bmHfiKtzI mu8U1kCvNn5dOVoSWDMF6fUz0xHte4SvNLlTXoJMHgbb+RP+O8BS3mJqgD7uMoua eR0p7nu5XylVwNojNIjGu8wOd16LCiSpNHTzAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUFgtbN1YzxI3bM0HoBgvisEwuTp0wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0ZndGJOMVl6eEkzYk0wSG9C Z3Zpc0V3dVRwMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB2 6WYwDQYJKoZIhvcNAQELBQADggEBAINlONUqzk7rIGYeG+UImlVav5tngZGfcaNR Fur5yfCMDsATHp98i/E5iNzNFmGkGWoj2xjXwb/XkwAZKEsteMCsHHmmmdiRd7N4 MsTqtQpTX186KqLdaaQXxSY6EH9pnj23qrfUYnW7eV4cg4K7HXGwXpY7AUdK6vAj uOTYdUYilfZu/IRes1vMhH8KinjhN/TCvurAKRRI3CxleWn7b6DULkpCToQ1cXuZ lGuDXbAnguQyzEVBVKFPwq94pHUPUT8BVbWvZmYBB8R2/CXaLYl+gOV2XvCrvvKd kWlANKag261l2PyNbvpEQYdddg+ouqXpEUftMAC5mK5y5qwAxhU= -----END CERTIFICATE-----Generated at Sun Aug 24 07:31:00 2025 by rpki-client