$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Lnt7jinZixzJj-mBOuGxZ9nGJZU.roa File: Lnt7jinZixzJj-mBOuGxZ9nGJZU.roa (raw, json) Hash identifier: AZXi/ZbhcWyT1oP040Omu/2tCMdKTLlGcBrpcn/SMLA= Subject key identifier: 2E:7B:7B:8E:29:D9:8B:1C:C9:8F:E9:81:3A:E1:B1:67:D9:C6:25:95 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3A8C Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Lnt7jinZixzJj-mBOuGxZ9nGJZU.roa Signing time: Fri 22 Aug 2025 08:47:28 +0000 ROA not before: Fri 22 Aug 2025 08:47:28 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 106.1.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14988 (0x3a8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:28 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2E7B7B8E29D98B1CC98FE9813AE1B167D9C62595 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:02:40:56:95:df:e0:28:39:0d:11:0c:95:94: f6:d9:1e:16:fb:45:57:16:48:ac:94:ad:71:79:e8: 4d:5c:66:ae:d3:e5:57:d0:ae:68:05:38:04:c7:80: a3:fd:e5:9c:4d:14:02:87:7e:85:b0:8d:15:ec:d8: 48:d4:b4:0a:10:96:ee:0b:db:1b:a9:91:1d:bc:2d: b8:a3:bf:b4:8a:62:e0:25:8b:ab:95:be:c0:a6:98: b4:c8:54:a3:2a:80:9c:3a:3f:90:1e:ff:9e:c8:cf: ac:5d:3d:b8:b3:b0:5d:62:7e:89:bd:7a:87:86:24: 42:a3:b9:38:64:86:ad:f8:c2:93:3f:a6:b1:e5:99: 85:5f:ea:a9:cd:76:36:35:ae:59:07:49:ab:a4:10: c1:de:7f:b7:87:6d:aa:31:a2:ea:6e:2b:20:f7:23: 88:07:78:77:04:35:80:4f:3c:15:bd:a2:91:6f:18: f5:16:80:f2:03:40:a2:74:ad:39:8b:7f:e0:03:61: c7:ed:78:2b:8b:ce:c9:ad:71:d8:75:fb:03:31:68: c3:9f:f1:51:ad:36:8b:17:8d:11:7e:be:e2:15:e2: dc:6b:62:c1:83:18:1d:25:4f:28:45:e0:65:8a:f5: 30:3a:7b:44:1e:4c:77:a8:b6:d7:33:f2:ab:fa:a7: cc:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:7B:7B:8E:29:D9:8B:1C:C9:8F:E9:81:3A:E1:B1:67:D9:C6:25:95 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Lnt7jinZixzJj-mBOuGxZ9nGJZU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.131.0/24 Signature Algorithm: sha256WithRSAEncryption 93:9d:9d:eb:a2:ba:d8:a9:d6:7f:17:09:de:cc:94:9c:73:f6: 9d:6c:4f:84:eb:85:ff:10:c8:c8:e4:74:ec:f5:a4:24:63:39: c1:fd:b1:8c:48:d2:05:3f:ff:9d:85:45:78:3d:01:f1:f9:7f: cd:3e:61:b5:b3:9c:b8:46:9d:23:a9:c2:99:91:a6:e5:05:25: 11:2a:40:6c:7b:1a:13:43:c9:de:9a:47:20:d7:d4:aa:6d:ec: 01:6a:80:c4:a5:77:94:81:d1:b8:ec:dd:c2:4c:3b:46:cc:4d: 92:8c:77:d4:33:99:6b:e6:16:75:b5:49:65:2e:31:bb:fc:9a: a7:a9:03:d1:c8:5e:15:ef:df:92:93:cc:d3:06:1e:6a:1b:32: f8:52:66:1e:ee:06:a2:5d:be:46:31:63:cb:fd:45:21:ce:b7: 43:33:48:b6:79:34:c8:54:45:e8:af:b4:d8:3f:f8:60:5f:78: 47:4a:ab:3d:55:1c:9e:54:99:39:4f:73:ad:ad:d2:77:66:fa: b6:bd:9e:1b:f0:87:f0:2d:e0:fe:d4:4a:f9:d7:cf:26:ec:68: 82:f3:7c:b2:e8:e6:a5:4a:fc:3c:09:4c:f7:31:f9:e2:2d:d3: 3b:1b:d7:d1:f0:a9:82:4b:0b:9c:4f:fb:44:f5:28:16:77:48: 2f:3c:30:2c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOowwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3MjhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJFN0I3QjhFMjlEOThC MUNDOThGRTk4MTNBRTFCMTY3RDlDNjI1OTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDAkBWld/gKDkNEQyVlPbZHhb7RVcWSKyUrXF56E1cZq7T5VfQ rmgFOATHgKP95ZxNFAKHfoWwjRXs2EjUtAoQlu4L2xupkR28Lbijv7SKYuAli6uV vsCmmLTIVKMqgJw6P5Ae/57Iz6xdPbizsF1ifom9eoeGJEKjuThkhq34wpM/prHl mYVf6qnNdjY1rlkHSaukEMHef7eHbaoxoupuKyD3I4gHeHcENYBPPBW9opFvGPUW gPIDQKJ0rTmLf+ADYcfteCuLzsmtcdh1+wMxaMOf8VGtNosXjRF+vuIV4txrYsGD GB0lTyhF4GWK9TA6e0QeTHeottcz8qv6p8wVAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQULnt7jinZixzJj+mBOuGxZ9nGJZUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0xudDdqaW5aaXh6SmotbUJP dUd4WjluR0paVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq AYMwDQYJKoZIhvcNAQELBQADggEBAJOdneuiutip1n8XCd7MlJxz9p1sT4Trhf8Q yMjkdOz1pCRjOcH9sYxI0gU//52FRXg9AfH5f80+YbWznLhGnSOpwpmRpuUFJREq QGx7GhNDyd6aRyDX1Kpt7AFqgMSld5SB0bjs3cJMO0bMTZKMd9QzmWvmFnW1SWUu Mbv8mqepA9HIXhXv35KTzNMGHmobMvhSZh7uBqJdvkYxY8v9RSHOt0MzSLZ5NMhU ReivtNg/+GBfeEdKqz1VHJ5UmTlPc62t0ndm+ra9nhvwh/At4P7USvnXzybsaILz fLLo5qVK/DwJTPcx+eIt0zsb19HwqYJLC5xP+0T1KBZ3SC88MCw= -----END CERTIFICATE-----Generated at Sun Aug 24 07:26:35 2025 by rpki-client