$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/JxwCRgIBoig_xNLGvlrLIL9cwVY.roa File: JxwCRgIBoig_xNLGvlrLIL9cwVY.roa (raw, json) Hash identifier: qVd2GAM+v70eN8s6ZzxHo1X5gO1hVSu+LUtErr8GM/Y= Subject key identifier: 27:1C:02:46:02:01:A2:28:3F:C4:D2:C6:BE:5A:CB:20:BF:5C:C1:56 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 399E Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/JxwCRgIBoig_xNLGvlrLIL9cwVY.roa Signing time: Fri 22 Aug 2025 08:46:28 +0000 ROA not before: Fri 22 Aug 2025 08:46:28 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 2407:4d00:ff0c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14750 (0x399e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:28 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=271C02460201A2283FC4D2C6BE5ACB20BF5CC156 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:87:32:1e:a3:04:46:8e:3f:7d:c0:e7:47:ae: 48:a7:0f:80:fc:24:9d:1b:47:d6:2f:6c:7f:ab:59: e6:1b:42:86:b3:cf:41:0e:23:45:a3:0c:1b:82:7d: c3:c7:32:ab:e3:55:3e:53:92:5a:71:b5:a1:1d:1b: 59:62:bd:c9:ff:10:a7:6d:8b:ac:84:80:16:72:b2: b5:d7:14:a2:33:b9:9b:d9:ce:ec:f4:bb:61:f9:01: c1:1c:4f:0f:5f:b2:ff:c8:f3:ba:a8:36:8e:ef:f5: 0e:9b:9a:39:ab:59:a2:00:2e:0c:ea:c5:c8:c2:a9: c6:78:3b:f0:8f:1a:ba:bd:05:9e:10:51:23:35:5b: 46:19:b6:f8:54:ab:e6:f1:a4:c0:ba:5f:33:3f:ea: ea:ca:4f:f2:a1:98:df:0e:f2:7e:f4:b7:53:7b:8e: 1a:85:e1:c2:72:f2:30:61:23:58:85:2f:54:27:d9: 9e:78:d2:f7:c0:bf:1a:1b:29:0e:62:cc:e7:4b:42: c3:67:23:26:d2:73:a8:0c:3b:a2:64:42:33:8a:5e: ea:bd:84:bc:85:b7:e1:28:9f:25:3b:65:75:ee:94: 28:ee:29:ca:52:fd:24:46:b5:88:b7:61:67:70:6e: 53:19:a7:38:c6:df:57:60:5b:9b:30:ee:99:80:c2: 8f:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:1C:02:46:02:01:A2:28:3F:C4:D2:C6:BE:5A:CB:20:BF:5C:C1:56 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/JxwCRgIBoig_xNLGvlrLIL9cwVY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:4d00:ff0c::/48 Signature Algorithm: sha256WithRSAEncryption 84:3f:83:be:45:79:df:e3:41:6f:2f:b1:1c:ee:e5:fe:09:32: 96:d8:6c:8c:49:3f:4d:a2:f6:fc:f6:c7:45:bb:f7:91:04:d1: 1d:d6:45:82:30:4a:66:c9:ec:5a:c6:0d:49:75:9a:81:84:31: 05:e0:33:f8:16:c2:9c:67:b2:36:83:fb:22:58:09:87:78:a6: 19:0b:83:81:ec:e0:ae:28:6a:2f:75:97:6b:46:85:75:cc:c5: fd:30:0d:a7:26:6d:ad:98:45:13:49:f3:b4:85:0c:0c:55:c5: 78:a2:a4:ee:8f:c2:b3:5a:b1:58:15:75:69:43:bd:c1:06:b1: 69:23:3d:0e:62:df:b1:01:aa:7f:db:2e:bf:e9:22:00:53:9d: f9:94:e4:c2:71:a2:5c:ec:b7:f8:6a:1d:02:28:87:e3:b1:37: 48:5c:e9:55:8c:7a:5f:84:5d:2a:75:14:b3:6f:b7:26:26:e0: 7d:28:b0:dd:68:72:74:36:0e:11:ea:41:c1:28:2b:bc:26:c3: bd:d2:7a:58:4d:46:f8:cd:f3:f4:ac:47:34:e3:a3:89:c9:8b: 79:64:eb:aa:1b:be:df:bc:20:ba:31:67:7f:2c:03:b2:53:9c: 93:b5:2e:8d:a2:59:c0:dc:b6:01:5e:16:24:4b:f2:ec:b0:c6: bd:51:ca:ac -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICOZ4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MjhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI3MUMwMjQ2MDIwMUEy MjgzRkM0RDJDNkJFNUFDQjIwQkY1Q0MxNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOhzIeowRGjj99wOdHrkinD4D8JJ0bR9YvbH+rWeYbQoazz0EO I0WjDBuCfcPHMqvjVT5TklpxtaEdG1livcn/EKdti6yEgBZysrXXFKIzuZvZzuz0 u2H5AcEcTw9fsv/I87qoNo7v9Q6bmjmrWaIALgzqxcjCqcZ4O/CPGrq9BZ4QUSM1 W0YZtvhUq+bxpMC6XzM/6urKT/KhmN8O8n70t1N7jhqF4cJy8jBhI1iFL1Qn2Z54 0vfAvxobKQ5izOdLQsNnIybSc6gMO6JkQjOKXuq9hLyFt+EonyU7ZXXulCjuKcpS /SRGtYi3YWdwblMZpzjG31dgW5sw7pmAwo/jAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUJxwCRgIBoig/xNLGvlrLIL9cwVYwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0p4d0NSZ0lCb2lnX3hOTEd2 bHJMSUw5Y3dWWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk B00A/wwwDQYJKoZIhvcNAQELBQADggEBAIQ/g75Fed/jQW8vsRzu5f4JMpbYbIxJ P02i9vz2x0W795EE0R3WRYIwSmbJ7FrGDUl1moGEMQXgM/gWwpxnsjaD+yJYCYd4 phkLg4Hs4K4oai91l2tGhXXMxf0wDacmba2YRRNJ87SFDAxVxXiipO6PwrNasVgV dWlDvcEGsWkjPQ5i37EBqn/bLr/pIgBTnfmU5MJxolzst/hqHQIoh+OxN0hc6VWM el+EXSp1FLNvtyYm4H0osN1ocnQ2DhHqQcEoK7wmw73SelhNRvjN8/SsRzTjo4nJ i3lk66obvt+8ILoxZ38sA7JTnJO1Lo2iWcDctgFeFiRL8uywxr1Ryqw= -----END CERTIFICATE-----Generated at Sun Aug 24 07:31:57 2025 by rpki-client