$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Jbpb6O61-OGA_2bBUcqTbRiG-Gg.roa File: Jbpb6O61-OGA_2bBUcqTbRiG-Gg.roa (raw, json) Hash identifier: qTMrqLMJYRRNoDB/igh+KiM9AU0udMnvZ6gLuedxqQk= Subject key identifier: 25:BA:5B:E8:EE:B5:F8:E1:80:FF:66:C1:51:CA:93:6D:18:86:F8:68 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 38E8 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Jbpb6O61-OGA_2bBUcqTbRiG-Gg.roa Signing time: Fri 22 Aug 2025 08:45:45 +0000 ROA not before: Fri 22 Aug 2025 08:45:45 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 106.1.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14568 (0x38e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:45 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=25BA5BE8EEB5F8E180FF66C151CA936D1886F868 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:5d:e0:e0:5e:5e:07:55:55:1c:ec:bb:f8:20: 45:42:31:7d:f3:a5:da:6e:ba:22:23:19:01:ca:70: ed:4d:9a:10:b4:f3:84:9b:87:46:0e:e4:e9:3d:b3: 4f:4f:5d:44:f1:41:5c:be:5a:4f:71:72:23:15:ea: ba:c9:cc:a1:8d:87:19:0e:05:04:f5:2c:5c:a8:bf: 0b:d6:55:09:0d:ae:b2:f4:5b:7b:bc:65:37:1e:34: d5:20:8f:62:4f:70:c2:11:d3:fd:3e:4f:88:0b:fa: d9:ec:7f:5a:5a:33:af:5f:99:1c:8d:c7:97:3b:fa: 20:3d:74:67:ef:1d:91:50:06:08:d3:d7:9d:fe:7e: d7:7a:25:7a:ea:bd:07:a6:39:c3:2e:9f:ee:80:f3: f9:f6:d1:e1:de:3b:a0:4f:f6:11:a1:e0:d0:2f:ba: d9:7c:f9:d4:b2:4f:a5:32:63:7a:ea:f4:c8:fa:4d: 1e:5f:cf:f5:5c:dd:e0:2a:77:e3:1c:8f:35:1e:c9: 95:d7:9c:76:6a:53:2c:56:a2:3f:0b:e8:33:60:7b: 00:6d:44:36:f6:3d:6e:6a:c5:c6:73:4a:d2:fd:d1: 7a:21:32:e2:9c:d9:51:ea:11:cc:9c:ac:78:65:f6: 18:6e:39:a0:c0:01:49:83:89:b5:8a:47:84:0e:28: a6:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:BA:5B:E8:EE:B5:F8:E1:80:FF:66:C1:51:CA:93:6D:18:86:F8:68 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Jbpb6O61-OGA_2bBUcqTbRiG-Gg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.68.0/24 Signature Algorithm: sha256WithRSAEncryption 77:bf:8e:61:0d:32:2d:ec:98:16:23:56:1a:db:fc:76:6f:69: 65:55:59:fe:fc:b2:4a:bf:3d:49:51:43:b9:e3:a7:7c:11:05: 92:1f:0d:0d:3d:e8:0a:51:d5:f1:bf:0c:1e:b8:f0:28:3c:c7: e8:cb:48:5b:4c:b4:0d:09:92:33:6c:5d:f9:af:a7:67:c8:49: b3:f8:ff:1e:04:38:d7:aa:f2:a7:45:b4:72:36:5b:12:66:4f: 8f:4f:53:53:13:79:48:3f:0c:31:be:76:b4:99:db:68:2e:b1: e5:35:f7:56:c9:c2:f7:1b:f4:3e:6e:d6:ce:35:0d:6a:b1:16: 1a:5a:70:9f:2f:1f:03:a7:16:20:22:d9:dd:a6:ba:b5:5e:70: a4:d3:23:c1:bb:5a:34:02:10:b5:51:7e:95:0a:46:8a:dc:47: c9:b0:50:e1:3d:0b:ee:8a:13:34:52:ac:e9:f1:be:47:9e:48: b7:88:f9:ad:1b:e1:9a:4c:7f:66:79:cb:57:23:50:4b:a6:f4: 4b:4a:41:84:eb:2c:d7:17:73:fd:6e:9b:df:a3:04:92:13:2d: b9:e6:1e:27:2a:90:a2:ab:ad:0b:4e:8e:23:b3:64:81:f0:93: e5:94:01:cf:56:2b:ff:4e:7e:ea:0c:54:2e:73:f5:e0:e8:38: 8a:16:38:72 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOOgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1NDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI1QkE1QkU4RUVCNUY4 RTE4MEZGNjZDMTUxQ0E5MzZEMTg4NkY4NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCcXeDgXl4HVVUc7Lv4IEVCMX3zpdpuuiIjGQHKcO1NmhC084Sb h0YO5Ok9s09PXUTxQVy+Wk9xciMV6rrJzKGNhxkOBQT1LFyovwvWVQkNrrL0W3u8 ZTceNNUgj2JPcMIR0/0+T4gL+tnsf1paM69fmRyNx5c7+iA9dGfvHZFQBgjT153+ ftd6JXrqvQemOcMun+6A8/n20eHeO6BP9hGh4NAvutl8+dSyT6UyY3rq9Mj6TR5f z/Vc3eAqd+McjzUeyZXXnHZqUyxWoj8L6DNgewBtRDb2PW5qxcZzStL90XohMuKc 2VHqEcycrHhl9hhuOaDAAUmDibWKR4QOKKa3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUJbpb6O61+OGA/2bBUcqTbRiG+GgwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0picGI2TzYxLU9HQV8yYkJV Y3FUYlJpRy1HZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq AUQwDQYJKoZIhvcNAQELBQADggEBAHe/jmENMi3smBYjVhrb/HZvaWVVWf78skq/ PUlRQ7njp3wRBZIfDQ096ApR1fG/DB648Cg8x+jLSFtMtA0JkjNsXfmvp2fISbP4 /x4EONeq8qdFtHI2WxJmT49PU1MTeUg/DDG+drSZ22guseU191bJwvcb9D5u1s41 DWqxFhpacJ8vHwOnFiAi2d2murVecKTTI8G7WjQCELVRfpUKRorcR8mwUOE9C+6K EzRSrOnxvkeeSLeI+a0b4ZpMf2Z5y1cjUEum9EtKQYTrLNcXc/1um9+jBJITLbnm HicqkKKrrQtOjiOzZIHwk+WUAc9WK/9OfuoMVC5z9eDoOIoWOHI= -----END CERTIFICATE-----Generated at Sun Aug 24 07:26:38 2025 by rpki-client