$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/J9h0mnCVEHPs6i9G-6I3Yied9ms.roa File: J9h0mnCVEHPs6i9G-6I3Yied9ms.roa (raw, json) Hash identifier: bHnkRE3zlsrbl6DwTPq7WDi0YJnmF9I+frYIwbFnLe0= Subject key identifier: 27:D8:74:9A:70:95:10:73:EC:EA:2F:46:FB:A2:37:62:27:9D:F6:6B Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 37D0 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/J9h0mnCVEHPs6i9G-6I3Yied9ms.roa Signing time: Fri 22 Aug 2025 08:44:40 +0000 ROA not before: Fri 22 Aug 2025 08:44:40 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 180.176.160.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14288 (0x37d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:44:40 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=27D8749A70951073ECEA2F46FBA23762279DF66B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:26:c6:93:12:e6:08:02:26:78:37:e9:ee:28: 17:54:59:5a:a4:bb:6b:70:03:c0:07:6d:05:07:50: 7f:70:ed:a6:db:46:69:e2:35:22:19:90:5f:ab:10: 81:72:f9:51:d8:e1:1e:ff:49:82:e9:41:de:4f:90: d5:f3:a6:a5:f7:61:91:44:74:de:ec:f5:24:20:a9: 2b:64:4a:b7:ca:70:7e:a3:03:c1:a0:c4:67:e7:bf: e9:94:f9:d6:26:95:52:5e:2d:e2:0c:d2:88:32:bd: bc:2b:b2:fe:48:5f:6a:6a:81:a9:79:59:90:81:c2: 8c:d9:0f:fd:4f:1c:4b:7d:2a:38:84:c1:27:ba:aa: 87:b7:95:74:2b:4b:06:0e:a8:f2:d8:0d:92:95:12: 5f:a3:66:e8:f1:4d:a3:35:1c:3a:86:fd:5f:3a:c1: 09:f5:20:5c:ea:79:0a:ac:b4:c2:d5:c4:d5:85:d4: cb:15:55:63:ad:39:8f:d8:2d:d7:33:9b:d9:35:1e: 72:fa:63:ec:b9:35:8b:b3:46:b9:0a:56:d8:5d:13: ad:2c:44:f6:d1:10:aa:70:ef:df:ec:b1:0b:06:f4: 11:ec:b8:77:19:df:b7:18:36:0b:e6:b3:a0:91:ae: 05:20:0c:1e:3c:f9:be:54:58:db:ab:40:38:ad:4f: 08:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:D8:74:9A:70:95:10:73:EC:EA:2F:46:FB:A2:37:62:27:9D:F6:6B X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/J9h0mnCVEHPs6i9G-6I3Yied9ms.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.176.160.0/21 Signature Algorithm: sha256WithRSAEncryption 49:dc:16:19:55:8e:a2:44:28:69:e4:1f:92:4d:b5:58:dd:c8: 1b:d1:66:e3:36:14:df:46:90:81:55:0f:8a:a2:9f:dd:24:ff: 06:6f:37:bb:6a:35:c3:e8:0e:43:63:2a:39:3b:70:6a:68:98: 4a:62:1a:28:08:c9:ce:98:07:26:46:e1:16:c6:f1:bb:18:67: 6f:c2:b2:f9:89:2c:01:8c:72:4f:24:8a:10:60:9f:29:7f:96: b7:fd:b0:d1:24:70:3a:f1:b7:12:a2:65:70:3b:28:df:e5:ae: 10:25:93:4b:85:bb:60:56:b8:29:de:48:d5:6b:3d:f3:fb:dc: 98:e3:e2:c3:11:43:d1:9d:18:c6:73:d2:71:f6:dc:5c:d6:cb: 58:45:b5:6f:95:e9:ed:49:29:5f:18:de:18:f4:14:57:20:9a: 8d:7e:9f:25:81:11:b1:6e:0a:86:ae:0a:62:33:1d:17:67:b4: 06:99:5d:ac:48:6f:1c:ca:23:73:8d:57:ac:41:a0:49:87:dd: 28:b5:3f:c9:f9:6f:56:42:21:6c:4a:d2:af:9e:5e:3f:1f:24: f4:c0:e6:38:81:83:e3:96:fc:cc:72:15:fb:d5:81:43:f2:32: d5:54:48:07:ee:fe:78:ba:e2:18:d1:88:de:89:b6:bb:9a:14: 12:16:a8:22 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICN9AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ0NDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI3RDg3NDlBNzA5NTEw NzNFQ0VBMkY0NkZCQTIzNzYyMjc5REY2NkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4JsaTEuYIAiZ4N+nuKBdUWVqku2twA8AHbQUHUH9w7abbRmni NSIZkF+rEIFy+VHY4R7/SYLpQd5PkNXzpqX3YZFEdN7s9SQgqStkSrfKcH6jA8Gg xGfnv+mU+dYmlVJeLeIM0ogyvbwrsv5IX2pqgal5WZCBwozZD/1PHEt9KjiEwSe6 qoe3lXQrSwYOqPLYDZKVEl+jZujxTaM1HDqG/V86wQn1IFzqeQqstMLVxNWF1MsV VWOtOY/YLdczm9k1HnL6Y+y5NYuzRrkKVthdE60sRPbREKpw79/ssQsG9BHsuHcZ 37cYNgvms6CRrgUgDB48+b5UWNurQDitTwjVAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUJ9h0mnCVEHPs6i9G+6I3Yied9mswHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0o5aDBtbkNWRUhQczZpOUct NkkzWWllZDltcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 sKAwDQYJKoZIhvcNAQELBQADggEBAEncFhlVjqJEKGnkH5JNtVjdyBvRZuM2FN9G kIFVD4qin90k/wZvN7tqNcPoDkNjKjk7cGpomEpiGigIyc6YByZG4RbG8bsYZ2/C svmJLAGMck8kihBgnyl/lrf9sNEkcDrxtxKiZXA7KN/lrhAlk0uFu2BWuCneSNVr PfP73Jjj4sMRQ9GdGMZz0nH23FzWy1hFtW+V6e1JKV8Y3hj0FFcgmo1+nyWBEbFu CoauCmIzHRdntAaZXaxIbxzKI3ONV6xBoEmH3Si1P8n5b1ZCIWxK0q+eXj8fJPTA 5jiBg+OW/MxyFfvVgUPyMtVUSAfu/ni64hjRiN6JtruaFBIWqCI= -----END CERTIFICATE-----Generated at Sun Aug 24 07:28:22 2025 by rpki-client