$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KzShoUTBT9-37UTUuGyVOXgUlc4.roa File: KzShoUTBT9-37UTUuGyVOXgUlc4.roa (raw, json) Hash identifier: FGFWQVJ0NhiKeqnMPIZFeYPcpegD4vUQkwikWKXBpiU= Subject key identifier: 2B:34:A1:A1:44:C1:4F:DF:B7:ED:44:D4:B8:6C:95:39:78:14:95:CE Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3809 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KzShoUTBT9-37UTUuGyVOXgUlc4.roa Signing time: Fri 22 Aug 2025 08:44:53 +0000 ROA not before: Fri 22 Aug 2025 08:44:53 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.233.212.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14345 (0x3809) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:44:53 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2B34A1A144C14FDFB7ED44D4B86C9539781495CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:10:be:ec:a3:ae:6a:48:a9:b7:6b:d8:4e:6e: 57:6c:52:75:1f:33:28:a9:9b:6e:d9:9e:84:d0:c3: 39:6c:b2:25:64:b3:af:d4:cf:23:93:f4:20:95:96: 31:25:ad:c5:7f:7a:da:69:3a:a3:be:c7:8c:f6:bf: 73:81:75:97:a2:46:e2:4d:3b:d4:a4:f7:f6:8a:5b: 0c:38:8b:08:29:42:07:b2:94:dc:9e:32:5b:6e:8e: 9b:b9:49:c8:ad:9a:ea:3f:25:d4:98:7f:a8:2c:dd: e3:3c:07:b5:6d:f3:02:af:fa:ac:c1:cc:18:28:dd: b0:fa:0c:0a:50:1c:de:f7:f9:0e:73:fb:26:ba:43: 89:c5:52:d1:81:5b:98:5d:7e:9e:f9:4c:1d:4d:d8: 5c:64:fa:5f:f5:c4:c4:36:e0:30:84:12:f8:fb:89: 5a:ac:98:8f:21:2d:02:79:2a:90:3a:73:d5:02:11: 97:bc:cc:c2:f3:4b:e8:98:71:f3:b3:6f:e6:02:76: e5:70:14:9a:77:bf:9c:4e:a7:50:fe:7e:41:6b:c8: 11:5c:fa:d4:01:8f:90:4c:38:88:15:7d:34:d4:83: 7f:1f:7a:e4:72:5d:62:b5:ad:77:dd:26:a6:d3:5d: 99:72:9a:0c:f1:e0:a8:e8:25:11:9c:40:4d:ea:63: a1:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:34:A1:A1:44:C1:4F:DF:B7:ED:44:D4:B8:6C:95:39:78:14:95:CE X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KzShoUTBT9-37UTUuGyVOXgUlc4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.212.0/22 Signature Algorithm: sha256WithRSAEncryption 00:1b:c5:cd:12:d4:f7:92:3f:7b:41:eb:0c:87:24:18:22:7f: 28:8e:76:04:89:c1:c2:3b:b8:c4:37:32:91:1d:6a:34:a5:8f: 65:24:c9:82:76:5e:30:9b:46:c9:14:31:98:9e:5e:0f:39:e4: 63:7c:1e:df:ad:1f:cf:e8:81:20:3a:0c:27:e2:ef:ca:6c:f4: b5:7d:b0:18:17:38:a3:36:8f:10:42:27:de:bf:1d:22:70:65: 70:b8:ee:23:0b:e6:50:c7:94:e6:10:d8:99:c6:71:60:26:8b: 23:49:7e:42:d0:be:e8:14:be:9c:3f:66:7a:91:b8:49:0d:79: 7d:0e:52:78:bb:67:d5:1e:e6:13:6f:fb:a5:6e:7a:08:9f:1e: 78:e8:2e:f1:01:68:6c:46:f6:e3:6a:58:a2:8f:f3:c2:f1:1f: 94:71:a8:80:cd:93:61:f5:91:d3:d2:fd:61:ed:ca:36:aa:41: 0e:07:39:77:40:53:67:2a:05:a0:84:82:94:d4:25:5b:a9:57: 4f:93:ee:f5:37:b9:14:da:08:a7:77:a1:4b:13:95:4c:99:6c: ac:f7:34:3e:2a:eb:f5:55:3f:49:be:b8:36:93:16:a3:70:72: 44:29:ba:fb:52:4a:50:96:b6:13:07:95:34:54:83:5c:51:ef: 80:4e:cd:12 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOAkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ0NTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJCMzRBMUExNDRDMTRG REZCN0VENDRENEI4NkM5NTM5NzgxNDk1Q0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSEL7so65qSKm3a9hObldsUnUfMyipm27ZnoTQwzlssiVks6/U zyOT9CCVljElrcV/etppOqO+x4z2v3OBdZeiRuJNO9Sk9/aKWww4iwgpQgeylNye Mltujpu5Scitmuo/JdSYf6gs3eM8B7Vt8wKv+qzBzBgo3bD6DApQHN73+Q5z+ya6 Q4nFUtGBW5hdfp75TB1N2Fxk+l/1xMQ24DCEEvj7iVqsmI8hLQJ5KpA6c9UCEZe8 zMLzS+iYcfOzb+YCduVwFJp3v5xOp1D+fkFryBFc+tQBj5BMOIgVfTTUg38feuRy XWK1rXfdJqbTXZlymgzx4KjoJRGcQE3qY6FrAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUKzShoUTBT9+37UTUuGyVOXgUlc4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0t6U2hvVVRCVDktMzdVVFV1 R3lWT1hnVWxjNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6dQwDQYJKoZIhvcNAQELBQADggEBAAAbxc0S1PeSP3tB6wyHJBgifyiOdgSJwcI7 uMQ3MpEdajSlj2UkyYJ2XjCbRskUMZieXg855GN8Ht+tH8/ogSA6DCfi78ps9LV9 sBgXOKM2jxBCJ96/HSJwZXC47iML5lDHlOYQ2JnGcWAmiyNJfkLQvugUvpw/ZnqR uEkNeX0OUni7Z9Ue5hNv+6VuegifHnjoLvEBaGxG9uNqWKKP88LxH5RxqIDNk2H1 kdPS/WHtyjaqQQ4HOXdAU2cqBaCEgpTUJVupV0+T7vU3uRTaCKd3oUsTlUyZbKz3 ND4q6/VVP0m+uDaTFqNwckQpuvtSSlCWthMHlTRUg1xR74BOzRI= -----END CERTIFICATE-----Generated at Sun Aug 24 07:23:15 2025 by rpki-client