$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/JmebWfmh_F7fyTP3BazR2440lws.roa File: JmebWfmh_F7fyTP3BazR2440lws.roa (raw, json) Hash identifier: tA8LNO+tD6COEX2QJhHo7C9j+8EqNYG/9YeiYCExF+o= Subject key identifier: 26:67:9B:59:F9:A1:FC:5E:DF:C9:33:F7:05:AC:D1:DB:8E:34:97:0B Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3A4A Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/JmebWfmh_F7fyTP3BazR2440lws.roa Signing time: Fri 22 Aug 2025 08:47:12 +0000 ROA not before: Fri 22 Aug 2025 08:47:12 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 106.1.172.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14922 (0x3a4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:12 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=26679B59F9A1FC5EDFC933F705ACD1DB8E34970B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:47:09:f0:40:79:af:13:f6:fe:48:e5:2f:92: 60:19:d7:f5:cc:1f:5f:e3:51:c2:46:b7:f7:ad:64: 37:c0:80:73:57:03:37:af:3a:86:a5:e8:9f:fe:54: 88:f7:9e:bf:23:19:4f:31:40:fe:3a:85:08:f4:15: 4b:45:f0:1a:55:f7:9c:f9:e6:31:21:7d:9a:01:f5: 83:a4:21:c1:6a:d3:05:39:e6:65:61:fe:74:d3:ea: 2b:39:cb:81:14:7e:eb:f3:df:70:74:ce:14:d5:d1: 33:a8:34:dd:fe:73:a7:b0:e6:ec:f7:97:ab:0f:0e: fb:20:e3:79:50:15:44:31:0b:49:b8:67:fb:52:85: 7a:50:6c:5f:69:c4:f4:47:ae:e1:ba:9d:8b:2c:93: 17:36:59:18:ff:ca:c8:eb:1f:90:57:9b:13:3a:46: ef:ff:76:67:e1:1a:14:66:77:6c:42:5c:92:3f:31: 84:9f:ae:63:86:fe:4b:d8:28:03:2f:08:f5:8b:bd: e2:93:3b:3c:37:bb:d6:fd:f3:54:11:f8:cc:97:ed: 96:15:15:94:f7:b2:8b:aa:62:7b:be:40:4f:bd:22: 38:a2:51:49:08:a1:3c:cf:6f:11:45:0a:b7:b2:6b: f5:bf:1a:d5:60:12:68:4c:93:1c:31:ae:a0:2f:a6: d3:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:67:9B:59:F9:A1:FC:5E:DF:C9:33:F7:05:AC:D1:DB:8E:34:97:0B X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/JmebWfmh_F7fyTP3BazR2440lws.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.172.0/22 Signature Algorithm: sha256WithRSAEncryption 5a:aa:a6:7e:bf:83:fb:64:06:97:f0:fb:98:31:04:bf:f9:23: 63:13:c5:26:fa:e7:57:97:22:31:3f:6a:81:a3:d3:8a:72:61: e1:96:a4:a7:c1:f6:24:e9:8a:bf:73:f9:2c:42:4b:7c:08:2b: 95:46:c4:cc:a5:1a:87:fe:0b:fa:60:48:1f:b3:83:3f:32:e0: 96:94:c4:b4:78:05:40:cc:35:8c:8b:5b:e0:e2:f6:8e:22:29: 41:16:46:47:6c:70:11:d5:47:ef:e2:16:1c:c0:bf:cb:2e:32: a8:3f:b3:45:d9:be:71:20:b2:84:71:6d:41:3c:d3:04:a9:82: b1:00:e2:15:54:9e:93:52:21:13:d5:08:01:58:4d:48:5e:e7: 62:ca:19:03:3d:8e:b2:a1:3e:9e:4a:c1:de:d9:fc:cb:45:ec: ff:0f:c4:d2:82:6f:8f:0f:c6:13:84:fe:b2:e0:53:23:e3:fb: 9d:8f:4b:92:c1:52:47:80:ca:88:1a:02:b4:9b:12:a9:63:da: e9:4c:db:e4:b7:03:fe:f4:4c:44:88:58:10:97:12:e0:cd:f8: a5:b6:7d:5b:f9:40:ba:16:1e:10:20:1d:30:60:99:66:40:e1: 14:88:45:7c:87:10:4a:72:95:b1:ab:55:39:03:25:a0:1e:7f: 6c:76:e2:e9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOkowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3MTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI2Njc5QjU5RjlBMUZD NUVERkM5MzNGNzA1QUNEMURCOEUzNDk3MEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfRwnwQHmvE/b+SOUvkmAZ1/XMH1/jUcJGt/etZDfAgHNXAzev Ooal6J/+VIj3nr8jGU8xQP46hQj0FUtF8BpV95z55jEhfZoB9YOkIcFq0wU55mVh /nTT6is5y4EUfuvz33B0zhTV0TOoNN3+c6ew5uz3l6sPDvsg43lQFUQxC0m4Z/tS hXpQbF9pxPRHruG6nYsskxc2WRj/ysjrH5BXmxM6Ru//dmfhGhRmd2xCXJI/MYSf rmOG/kvYKAMvCPWLveKTOzw3u9b981QR+MyX7ZYVFZT3souqYnu+QE+9IjiiUUkI oTzPbxFFCreya/W/GtVgEmhMkxwxrqAvptOzAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUJmebWfmh/F7fyTP3BazR2440lwswHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0ptZWJXZm1oX0Y3ZnlUUDNC YXpSMjQ0MGx3cy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq AawwDQYJKoZIhvcNAQELBQADggEBAFqqpn6/g/tkBpfw+5gxBL/5I2MTxSb651eX IjE/aoGj04pyYeGWpKfB9iTpir9z+SxCS3wIK5VGxMylGof+C/pgSB+zgz8y4JaU xLR4BUDMNYyLW+Di9o4iKUEWRkdscBHVR+/iFhzAv8suMqg/s0XZvnEgsoRxbUE8 0wSpgrEA4hVUnpNSIRPVCAFYTUhe52LKGQM9jrKhPp5Kwd7Z/MtF7P8PxNKCb48P xhOE/rLgUyPj+52PS5LBUkeAyogaArSbEqlj2ulM2+S3A/70TESIWBCXEuDN+KW2 fVv5QLoWHhAgHTBgmWZA4RSIRXyHEEpylbGrVTkDJaAef2x24uk= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:19 2025 by rpki-client