$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/JIqoeEBJ0htJuq6Jr6FbYFZYS3k.roa File: JIqoeEBJ0htJuq6Jr6FbYFZYS3k.roa (raw, json) Hash identifier: Smgg8CGqtlyZI+vSpSH29vF+XdXY+Kfm8zLV8qqJ7mU= Subject key identifier: 24:8A:A8:78:40:49:D2:1B:49:BA:AE:89:AF:A1:5B:60:56:58:4B:79 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3A2A Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/JIqoeEBJ0htJuq6Jr6FbYFZYS3k.roa Signing time: Fri 22 Aug 2025 08:47:05 +0000 ROA not before: Fri 22 Aug 2025 08:47:05 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.233.232.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14890 (0x3a2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:05 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=248AA8784049D21B49BAAE89AFA15B6056584B79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:95:83:8a:6c:4b:be:9c:37:68:49:fa:bf:e7: f1:81:6d:0f:cd:a7:65:e5:4d:19:c4:26:e1:4c:b6: c0:50:74:35:6b:cf:41:fb:f3:7e:70:e8:b8:90:4d: a9:5f:c1:45:e2:85:29:6d:63:16:a3:fe:97:a1:cb: fb:fa:a1:f8:d3:09:3b:0c:2a:48:07:de:c5:e0:1f: 65:88:ae:14:37:43:f8:f0:93:c7:0b:56:58:ed:92: 6e:b8:d7:2e:60:86:99:01:56:2a:9e:d4:80:8b:60: 46:90:b2:89:d8:40:8f:a2:97:4e:10:ff:02:ca:be: 11:a2:09:07:d5:e0:4b:78:bb:e2:26:7e:af:63:0e: 4a:e7:26:e4:89:39:af:2d:49:a1:88:c1:7b:48:2e: 88:0a:72:15:43:db:b7:6d:58:06:91:41:98:5f:7d: 7a:75:33:b6:71:77:3e:fa:d0:5f:e3:10:01:fd:e3: ae:46:1f:27:ed:32:ea:fe:80:07:f4:85:e9:36:df: 3a:bf:12:47:d0:20:ab:3b:28:e7:1c:8b:94:b4:72: b6:26:77:14:08:5b:e8:be:36:c0:b0:36:cb:49:e9: 96:6f:d1:fc:c8:b0:83:6a:2d:e5:a3:fb:05:e6:c1: ad:65:c9:a6:1a:d8:12:b7:10:c8:c9:ba:4a:6e:78: 85:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:8A:A8:78:40:49:D2:1B:49:BA:AE:89:AF:A1:5B:60:56:58:4B:79 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/JIqoeEBJ0htJuq6Jr6FbYFZYS3k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.232.0/23 Signature Algorithm: sha256WithRSAEncryption 42:1e:a8:db:a5:80:52:4f:61:59:6d:99:3d:84:8c:71:d4:2d: d8:ce:fd:f1:a1:b7:e8:85:82:b7:f0:48:32:b2:14:e4:52:18: fe:ce:f7:d6:f2:cd:14:90:e5:a8:23:b6:4f:cd:88:42:24:b0: 13:a1:a2:0d:0c:61:4f:59:62:df:fd:4f:55:1e:8b:96:c9:89: d1:59:9e:ee:5b:7c:04:95:9f:08:27:1d:62:d9:b9:d9:25:3f: 6c:4b:f1:1b:72:3d:de:20:ed:ac:47:39:19:4d:e9:b5:3a:f2: 9d:ec:39:29:a3:62:b4:bc:f6:50:53:5c:e8:64:f9:24:3e:4e: c1:37:7f:42:2a:c7:08:5a:5b:a7:74:b6:23:6c:2b:7a:bf:5f: dc:77:35:5d:9a:22:3b:72:97:80:be:8b:82:d5:50:0c:b3:b9: ef:fd:a4:9b:25:28:1a:74:51:ed:d8:79:05:de:50:37:54:73: dc:7a:12:4d:73:8a:36:40:6c:ba:d7:a0:24:0f:a6:0e:93:47: 89:2f:fe:99:bb:fb:24:07:d6:7e:42:5f:2f:bb:de:ed:7a:c3: 51:c8:c6:c4:d0:4f:8c:46:95:f6:28:1f:aa:cc:11:dd:9a:e4: a6:31:ca:f9:1a:d9:6f:51:9e:93:8c:d1:ec:71:d5:e2:eb:cd: 20:1e:45:86 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOiowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3MDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI0OEFBODc4NDA0OUQy MUI0OUJBQUU4OUFGQTE1QjYwNTY1ODRCNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDElYOKbEu+nDdoSfq/5/GBbQ/Np2XlTRnEJuFMtsBQdDVrz0H7 835w6LiQTalfwUXihSltYxaj/pehy/v6ofjTCTsMKkgH3sXgH2WIrhQ3Q/jwk8cL Vljtkm641y5ghpkBViqe1ICLYEaQsonYQI+il04Q/wLKvhGiCQfV4Et4u+Imfq9j DkrnJuSJOa8tSaGIwXtILogKchVD27dtWAaRQZhffXp1M7Zxdz760F/jEAH9465G HyftMur+gAf0hek23zq/EkfQIKs7KOcci5S0crYmdxQIW+i+NsCwNstJ6ZZv0fzI sINqLeWj+wXmwa1lyaYa2BK3EMjJukpueIWFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUJIqoeEBJ0htJuq6Jr6FbYFZYS3kwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0pJcW9lRUJKMGh0SnVxNkpy NkZiWUZaWVMzay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF2 6egwDQYJKoZIhvcNAQELBQADggEBAEIeqNulgFJPYVltmT2EjHHULdjO/fGht+iF grfwSDKyFORSGP7O99byzRSQ5agjtk/NiEIksBOhog0MYU9ZYt/9T1Uei5bJidFZ nu5bfASVnwgnHWLZudklP2xL8RtyPd4g7axHORlN6bU68p3sOSmjYrS89lBTXOhk +SQ+TsE3f0IqxwhaW6d0tiNsK3q/X9x3NV2aIjtyl4C+i4LVUAyzue/9pJslKBp0 Ue3YeQXeUDdUc9x6Ek1zijZAbLrXoCQPpg6TR4kv/pm7+yQH1n5CXy+73u16w1HI xsTQT4xGlfYoH6rMEd2a5KYxyvka2W9RnpOM0exx1eLrzSAeRYY= -----END CERTIFICATE-----Generated at Sun Aug 24 07:26:33 2025 by rpki-client