$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/M4R87X6w8leAc_hGMHLtLXF0hEM.roa File: M4R87X6w8leAc_hGMHLtLXF0hEM.roa (raw, json) Hash identifier: IrjHNsuzqCEXeR8AOQh0fYavxRbaGnLaNljEFPP1w/Q= Subject key identifier: 33:84:7C:ED:7E:B0:F2:57:80:73:F8:46:30:72:ED:2D:71:74:84:43 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3819 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/M4R87X6w8leAc_hGMHLtLXF0hEM.roa Signing time: Fri 22 Aug 2025 08:44:57 +0000 ROA not before: Fri 22 Aug 2025 08:44:57 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 2407:4d00:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14361 (0x3819) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:44:57 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=33847CED7EB0F2578073F8463072ED2D71748443 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e7:a5:29:19:c1:9f:6e:b6:e7:9a:19:fa:bb: 88:64:4a:58:bf:77:94:59:66:b5:d2:35:70:7d:84: 2e:a1:2c:07:a6:55:b2:de:dc:8a:78:b3:52:2c:b4: ed:14:85:17:31:00:23:4b:8d:5a:09:dd:4b:12:6d: d2:2f:b7:e9:e4:ff:48:bd:d2:64:44:eb:16:bf:26: 6c:3d:ce:d2:de:c3:af:05:d6:5d:bd:87:fe:af:ef: 7a:16:e7:20:2a:80:9e:9c:64:c0:54:af:25:05:02: f7:68:fb:9c:78:ac:0b:3e:c0:9d:e6:79:7d:fa:62: 42:ca:11:5d:e5:68:31:5a:ef:15:04:5f:48:23:32: 47:c4:47:3c:8f:f7:84:43:ae:5d:81:b7:56:2a:83: e7:a9:74:c4:cc:e7:24:62:54:04:f1:bb:70:c1:fb: 19:0a:8f:f4:07:2f:e7:bf:2e:40:ce:a9:cf:28:f9: 49:a7:dc:34:50:ef:b6:e2:80:b9:05:1b:be:ed:10: 18:55:5c:98:7b:f8:c3:a0:ad:17:1c:a1:cc:a5:98: 19:9f:98:86:cb:73:11:0c:fd:39:f2:e4:3f:06:3c: dc:bb:24:0b:40:d9:fb:22:b0:96:84:a2:1b:1f:63: 8e:1b:9f:8f:45:3c:c5:c5:65:9e:6c:16:98:41:d4: c1:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:84:7C:ED:7E:B0:F2:57:80:73:F8:46:30:72:ED:2D:71:74:84:43 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/M4R87X6w8leAc_hGMHLtLXF0hEM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:4d00:2000::/36 Signature Algorithm: sha256WithRSAEncryption 08:15:ae:7c:c5:b8:a4:72:20:ac:f4:77:c1:99:7b:dd:ab:f9: 4a:e0:df:77:21:c4:c1:d1:2a:b1:76:20:88:f0:28:de:b2:fb: 0a:ff:90:cd:11:85:10:c3:60:a3:7d:70:d1:e1:94:14:f0:0b: a7:97:0a:ad:66:78:44:12:8b:46:5e:b4:83:de:46:2b:c4:a5: ca:ca:c1:35:61:9a:c3:9a:19:de:e9:5b:3e:01:3a:c8:ba:c8: d6:d5:53:32:24:ee:55:72:24:be:bf:bb:26:dc:b4:27:87:67: 69:5e:11:c0:1e:fb:34:ec:3a:29:19:93:7e:c4:62:56:1b:60: 79:b1:7c:15:86:ec:59:84:6c:2c:8a:97:96:41:6d:ed:e4:17: 1a:5a:6f:b9:29:37:c4:56:24:ee:33:cb:aa:a5:9b:25:73:87: cc:65:e4:9b:50:2a:f4:0e:c0:96:f3:26:c1:ac:28:45:91:1a: 61:e6:7b:95:2b:e9:ac:ad:4c:5d:d2:9d:8a:30:c8:ca:93:1a: fa:18:86:db:4e:b4:e3:3e:f1:cf:56:c6:69:2d:c1:eb:5a:88: 06:57:ae:d9:7e:95:fa:79:fc:9e:04:ba:78:9f:d4:f0:fc:ab: ac:61:b2:ea:9b:e5:98:e3:9c:7e:ee:36:0a:42:05:0e:4e:f1: 2b:42:ec:d4 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICOBkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ0NTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDMzODQ3Q0VEN0VCMEYy NTc4MDczRjg0NjMwNzJFRDJENzE3NDg0NDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC556UpGcGfbrbnmhn6u4hkSli/d5RZZrXSNXB9hC6hLAemVbLe 3Ip4s1IstO0UhRcxACNLjVoJ3UsSbdIvt+nk/0i90mRE6xa/Jmw9ztLew68F1l29 h/6v73oW5yAqgJ6cZMBUryUFAvdo+5x4rAs+wJ3meX36YkLKEV3laDFa7xUEX0gj MkfERzyP94RDrl2Bt1Yqg+epdMTM5yRiVATxu3DB+xkKj/QHL+e/LkDOqc8o+Umn 3DRQ77bigLkFG77tEBhVXJh7+MOgrRccocylmBmfmIbLcxEM/Tny5D8GPNy7JAtA 2fsisJaEohsfY44bn49FPMXFZZ5sFphB1MEFAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUM4R87X6w8leAc/hGMHLtLXF0hEMwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL000Ujg3WDZ3OGxlQWNfaEdN SEx0TFhGMGhFTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk B00AIDANBgkqhkiG9w0BAQsFAAOCAQEACBWufMW4pHIgrPR3wZl73av5SuDfdyHE wdEqsXYgiPAo3rL7Cv+QzRGFEMNgo31w0eGUFPALp5cKrWZ4RBKLRl60g95GK8Sl ysrBNWGaw5oZ3ulbPgE6yLrI1tVTMiTuVXIkvr+7Jty0J4dnaV4RwB77NOw6KRmT fsRiVhtgebF8FYbsWYRsLIqXlkFt7eQXGlpvuSk3xFYk7jPLqqWbJXOHzGXkm1Aq 9A7AlvMmwawoRZEaYeZ7lSvprK1MXdKdijDIypMa+hiG20604z7xz1bGaS3B61qI Bleu2X6V+nn8ngS6eJ/U8PyrrGGy6pvlmOOcfu42CkIFDk7xK0Ls1A== -----END CERTIFICATE-----Generated at Sun Aug 24 07:31:03 2025 by rpki-client