$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/JMwDbmsyrornqS3_N4jHGg8-b7w.roa File: JMwDbmsyrornqS3_N4jHGg8-b7w.roa (raw, json) Hash identifier: 9dxpwdYd3elgA8DSdYmkyKb3pxthcv2Hu9JC49GSrtQ= Subject key identifier: 24:CC:03:6E:6B:32:AE:8A:E7:A9:2D:FF:37:88:C7:1A:0F:3E:6F:BC Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3A37 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/JMwDbmsyrornqS3_N4jHGg8-b7w.roa Signing time: Fri 22 Aug 2025 08:47:08 +0000 ROA not before: Fri 22 Aug 2025 08:47:08 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.232.0.0/15 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14903 (0x3a37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:08 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=24CC036E6B32AE8AE7A92DFF3788C71A0F3E6FBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:c1:16:59:2c:26:1d:5c:0d:c1:9e:1b:da:de: 24:cf:ff:de:ca:d1:3f:98:9d:8c:80:ee:11:a2:5d: 03:3a:8e:20:5b:4f:1f:ad:5d:32:91:41:5e:3e:0f: 1f:80:bb:25:6d:63:93:11:d2:84:9c:84:31:49:4e: 56:39:6b:6f:da:c4:16:f7:17:40:3a:62:50:4c:8c: 6a:0b:d3:9c:9b:68:37:29:e5:58:6d:c8:4d:04:1d: 74:d5:29:32:d0:ed:76:23:d9:bc:c4:5e:f3:27:7d: a8:45:ac:bc:ca:ca:be:36:43:f2:ac:f0:b6:b1:6c: c2:7b:bd:57:3d:65:c8:d0:60:65:54:02:fa:ab:7c: ff:06:2b:c2:64:b4:70:3b:c3:13:fd:a3:df:34:41: 65:a1:68:1f:83:51:2c:4b:b2:79:7b:fb:d0:75:d5: 36:e0:47:32:2a:62:a7:d4:1b:88:d8:8a:8e:d7:36: a7:2b:0a:84:1e:f9:fd:fa:c6:71:94:9c:ac:d7:d1: f8:1f:7f:5f:88:59:60:62:65:10:6e:d9:bf:ec:ab: 37:f9:cb:01:ce:35:e1:b9:b8:51:ee:c3:48:ce:24: 70:0a:06:00:9b:e4:0b:1f:32:fd:8b:59:a7:5c:8a: 1d:c4:8a:a7:01:b4:ca:0a:32:6f:c1:cf:3c:90:e4: 6b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:CC:03:6E:6B:32:AE:8A:E7:A9:2D:FF:37:88:C7:1A:0F:3E:6F:BC X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/JMwDbmsyrornqS3_N4jHGg8-b7w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.0.0/15 Signature Algorithm: sha256WithRSAEncryption a5:b2:5a:0e:2d:85:13:de:77:70:5f:d0:8a:54:5a:41:3d:65: df:09:dd:f9:a2:3b:89:b0:ea:6f:33:c8:fa:8f:d2:c1:00:38: 01:ad:40:67:b7:27:b3:30:0f:74:22:a9:18:1b:8f:a1:d8:78: 55:87:11:28:85:41:e2:03:81:25:84:20:77:41:85:a5:5e:62: 53:a2:bd:ed:29:90:df:78:31:d9:f7:3f:5c:64:cd:6d:ca:39: 2a:54:b9:f6:60:03:99:81:8e:be:44:f9:b9:8e:0c:7e:e0:26: 92:b2:5f:30:e0:8a:7c:3a:4f:74:f1:c8:1c:fb:1f:4f:a7:08: 10:0f:2e:ec:35:56:e8:4e:66:e8:29:a5:65:55:03:96:69:db: 45:22:81:31:5f:2b:ad:4c:76:b3:ff:5c:58:fc:3b:41:12:44: e8:92:47:b2:b9:78:b4:46:85:a3:ad:17:0a:08:e1:e3:28:e2: 90:35:1c:ae:75:b6:0d:d2:a3:58:4e:97:09:ad:f9:b3:22:5f: 42:cd:dc:f3:9f:8c:08:d8:85:9e:4f:4b:c8:58:89:40:a1:91: 71:14:14:ff:3a:97:38:7a:db:dc:7d:9b:20:47:69:72:04:54: e0:e3:cf:8b:24:9c:e5:6a:f2:4b:97:2a:0e:9c:bc:89:b4:59: 22:9c:97:e7 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICOjcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3MDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI0Q0MwMzZFNkIzMkFF OEFFN0E5MkRGRjM3ODhDNzFBMEYzRTZGQkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDowRZZLCYdXA3Bnhva3iTP/97K0T+YnYyA7hGiXQM6jiBbTx+t XTKRQV4+Dx+AuyVtY5MR0oSchDFJTlY5a2/axBb3F0A6YlBMjGoL05ybaDcp5Vht yE0EHXTVKTLQ7XYj2bzEXvMnfahFrLzKyr42Q/Ks8LaxbMJ7vVc9ZcjQYGVUAvqr fP8GK8JktHA7wxP9o980QWWhaB+DUSxLsnl7+9B11TbgRzIqYqfUG4jYio7XNqcr CoQe+f36xnGUnKzX0fgff1+IWWBiZRBu2b/sqzf5ywHONeG5uFHuw0jOJHAKBgCb 5AsfMv2LWadcih3EiqcBtMoKMm/BzzyQ5GvnAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUJMwDbmsyrornqS3/N4jHGg8+b7wwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0pNd0RibXN5cm9ybnFTM19O NGpIR2c4LWI3dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwF2 6DANBgkqhkiG9w0BAQsFAAOCAQEApbJaDi2FE953cF/QilRaQT1l3wnd+aI7ibDq bzPI+o/SwQA4Aa1AZ7cnszAPdCKpGBuPodh4VYcRKIVB4gOBJYQgd0GFpV5iU6K9 7SmQ33gx2fc/XGTNbco5KlS59mADmYGOvkT5uY4MfuAmkrJfMOCKfDpPdPHIHPsf T6cIEA8u7DVW6E5m6CmlZVUDlmnbRSKBMV8rrUx2s/9cWPw7QRJE6JJHsrl4tEaF o60XCgjh4yjikDUcrnW2DdKjWE6XCa35syJfQs3c85+MCNiFnk9LyFiJQKGRcRQU /zqXOHrb3H2bIEdpcgRU4OPPiySc5WryS5cqDpy8ibRZIpyX5w== -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:37 2025 by rpki-client