$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HpzCR5xaiH-N9EInlJC8CFE6lfI.roa File: HpzCR5xaiH-N9EInlJC8CFE6lfI.roa (raw, json) Hash identifier: cqkYLbMmlahBYH3VrodS9hpQJPV7PnMggjdDhAAL7wM= Subject key identifier: 1E:9C:C2:47:9C:5A:88:7F:8D:F4:42:27:94:90:BC:08:51:3A:95:F2 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3952 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HpzCR5xaiH-N9EInlJC8CFE6lfI.roa Signing time: Fri 22 Aug 2025 08:46:11 +0000 ROA not before: Fri 22 Aug 2025 08:46:11 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.232.216.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14674 (0x3952) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:11 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1E9CC2479C5A887F8DF442279490BC08513A95F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:34:5f:71:21:22:3e:0a:7a:8e:5f:47:0a:89: fc:54:dc:d2:c6:8f:50:db:47:60:18:12:b8:93:5f: 4e:4a:22:3f:c8:d0:d8:99:56:5a:d4:4b:49:11:d4: f2:d3:fa:47:b7:ba:bf:53:e7:61:fc:15:a6:9a:53: c8:46:d7:c5:6e:df:46:03:b7:8a:d4:95:9c:96:d9: 08:b3:83:5c:4f:43:2c:3f:94:cf:89:36:c1:e1:20: 0f:f9:7b:86:4f:23:2f:cd:17:23:f1:a4:1a:3a:17: dd:3f:b9:23:a1:db:45:cc:95:3f:c6:76:59:18:b1: e2:42:94:45:ad:d0:5f:fc:59:96:ee:97:c1:68:3c: 86:80:a5:93:b8:46:85:47:9b:1b:b6:0d:ac:77:42: 8d:a4:54:46:be:90:21:79:29:b1:a0:aa:bb:e8:c9: 7c:8c:7e:9f:9f:7d:ea:ae:70:c1:70:8d:54:3f:1e: bd:26:1b:23:a1:bb:05:1f:b9:c8:6b:88:3a:88:e7: e1:41:c4:72:72:93:94:d9:1d:6e:86:9a:2d:fd:df: 96:fb:f6:2b:96:fa:0c:b2:20:84:ab:a9:3f:56:5d: 9b:5f:3a:86:24:b7:ea:e0:c0:ad:1a:6a:95:30:cf: 61:34:d1:a7:5f:84:30:fe:3c:8d:c5:6d:d7:f2:87: a0:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:9C:C2:47:9C:5A:88:7F:8D:F4:42:27:94:90:BC:08:51:3A:95:F2 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HpzCR5xaiH-N9EInlJC8CFE6lfI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.216.0/21 Signature Algorithm: sha256WithRSAEncryption 14:ba:00:9c:da:5b:32:6b:18:24:b8:98:32:13:9b:2b:b0:90: b2:0d:03:4a:04:ee:04:df:b1:54:54:2e:04:b1:b6:0c:ff:4c: 04:41:1d:3b:39:0f:62:ec:ef:42:83:f2:d8:64:80:77:83:c4: 97:b4:df:7d:bc:a0:71:9a:70:c7:d5:e7:18:2a:48:42:9d:79: 46:a6:8c:92:1e:e3:4e:7b:a5:a1:7d:35:d2:56:60:9e:b7:97: d3:58:2f:d7:b0:b6:e8:d5:cd:e1:87:d8:a2:c0:75:32:7c:31: ac:fb:f5:f4:92:64:3a:9b:9f:88:43:b8:09:3b:3f:5b:50:9d: 0b:20:04:ac:1d:bf:da:c9:95:15:46:5a:33:84:79:73:64:11: 91:73:fb:65:3f:fa:63:65:07:a5:fb:69:d7:45:a9:fe:ff:b7: bb:18:2a:f1:32:a3:7e:16:39:05:18:42:55:03:e6:7e:4b:92: db:68:3a:18:72:ed:97:e3:55:b2:9d:87:cf:28:5a:e6:ac:27: 22:a0:e9:31:41:c8:24:5c:da:4b:aa:51:5b:8f:bc:ff:ba:fa: 8d:d0:b4:76:a1:f2:49:e8:28:15:3c:96:16:1a:31:30:44:a2: 23:40:f9:21:1e:43:14:13:53:59:53:2f:98:58:6f:46:3b:0a: b0:ab:4b:4b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOVIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFFOUNDMjQ3OUM1QTg4 N0Y4REY0NDIyNzk0OTBCQzA4NTEzQTk1RjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXNF9xISI+CnqOX0cKifxU3NLGj1DbR2AYEriTX05KIj/I0NiZ VlrUS0kR1PLT+ke3ur9T52H8FaaaU8hG18Vu30YDt4rUlZyW2Qizg1xPQyw/lM+J NsHhIA/5e4ZPIy/NFyPxpBo6F90/uSOh20XMlT/GdlkYseJClEWt0F/8WZbul8Fo PIaApZO4RoVHmxu2Dax3Qo2kVEa+kCF5KbGgqrvoyXyMfp+ffequcMFwjVQ/Hr0m GyOhuwUfuchriDqI5+FBxHJyk5TZHW6Gmi3935b79iuW+gyyIISrqT9WXZtfOoYk t+rgwK0aapUwz2E00adfhDD+PI3Fbdfyh6A/AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUHpzCR5xaiH+N9EInlJC8CFE6lfIwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0hwekNSNXhhaUgtTjlFSW5s SkM4Q0ZFNmxmSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6NgwDQYJKoZIhvcNAQELBQADggEBABS6AJzaWzJrGCS4mDITmyuwkLINA0oE7gTf sVRULgSxtgz/TARBHTs5D2Ls70KD8thkgHeDxJe03328oHGacMfV5xgqSEKdeUam jJIe4057paF9NdJWYJ63l9NYL9ewtujVzeGH2KLAdTJ8Maz79fSSZDqbn4hDuAk7 P1tQnQsgBKwdv9rJlRVGWjOEeXNkEZFz+2U/+mNlB6X7addFqf7/t7sYKvEyo34W OQUYQlUD5n5LkttoOhhy7ZfjVbKdh88oWuasJyKg6TFByCRc2kuqUVuPvP+6+o3Q tHah8knoKBU8lhYaMTBEoiNA+SEeQxQTU1lTL5hYb0Y7CrCrS0s= -----END CERTIFICATE-----Generated at Sun Aug 24 07:24:13 2025 by rpki-client