$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Og0s95D8Ux60M7-Xic7dMD6r90g.roa File: Og0s95D8Ux60M7-Xic7dMD6r90g.roa (raw, json) Hash identifier: 2EEdp5ZitTlkPDlRGwARNnBmEsW9NstNKfijhnjL52I= Subject key identifier: 3A:0D:2C:F7:90:FC:53:1E:B4:33:BF:97:89:CE:DD:30:3E:AB:F7:48 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 39D6 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Og0s95D8Ux60M7-Xic7dMD6r90g.roa Signing time: Fri 22 Aug 2025 08:46:43 +0000 ROA not before: Fri 22 Aug 2025 08:46:43 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 106.1.106.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14806 (0x39d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:43 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3A0D2CF790FC531EB433BF9789CEDD303EABF748 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:54:c6:50:19:9d:0f:6d:93:02:63:82:a2:f7: 1a:6a:19:da:d4:3a:6a:eb:bc:2e:93:b7:ee:4f:44: da:a4:8a:87:73:3c:94:9a:c0:4f:a7:cb:88:be:c0: 6b:35:72:fe:30:fb:79:d1:ea:c6:54:71:d7:de:05: d0:09:73:23:cf:ff:f4:18:0b:c7:8a:2c:3a:41:d1: 4b:28:f2:13:0e:fe:93:5d:56:0c:77:16:c1:32:cc: f6:d2:bf:0b:82:5e:74:56:4b:3d:5f:96:07:2e:6f: e6:00:7a:60:f9:20:f0:71:78:f4:b8:99:19:26:88: 3c:f4:46:18:56:7f:6c:91:7b:f7:49:30:2d:a3:5f: 8f:4e:39:d7:8c:99:5e:8f:f9:dc:62:a3:58:ba:e6: 70:83:51:b4:0e:6e:e4:ad:f1:b1:51:ce:51:2c:48: b8:06:a9:9f:ea:15:a7:fd:bc:4f:5d:9d:dd:bd:5b: dd:2a:1d:c6:42:93:b5:39:c8:fe:5a:70:9b:a5:0e: 95:6f:16:ef:0a:20:b2:8a:32:50:fb:71:6e:51:bf: 4d:bc:21:29:82:87:09:e1:17:b0:81:12:7e:69:eb: d9:a7:0a:21:65:f3:54:a1:a2:d7:17:39:94:0d:74: 50:77:30:c7:64:e7:61:90:0a:2e:0c:eb:2c:b6:10: 84:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:0D:2C:F7:90:FC:53:1E:B4:33:BF:97:89:CE:DD:30:3E:AB:F7:48 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Og0s95D8Ux60M7-Xic7dMD6r90g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.106.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:c5:ce:d9:d0:b8:a0:e5:fa:95:ea:51:f7:50:c0:d9:f9:1d: 98:3d:64:c1:a3:c6:e1:f2:59:c4:3e:f7:cd:05:c8:6b:8b:b6: a5:6e:4d:58:80:c9:5e:93:61:4d:fd:cc:66:98:07:ce:1a:78: ad:fd:79:65:3e:ea:65:04:ac:c7:2f:e4:36:fa:40:ae:de:db: 4f:8d:52:46:da:30:98:71:36:1b:aa:eb:84:00:5d:e1:d0:39: 83:e9:8a:5a:2d:15:71:2b:94:86:7e:6d:f2:8e:3d:11:f0:34: 9c:b6:b4:26:df:db:91:ff:ee:91:af:2e:d0:e0:ba:b1:26:95: 64:72:ff:be:bd:62:44:d9:9c:4a:c5:f2:69:d2:f2:f6:74:82: bb:11:a8:0b:98:34:7b:78:04:08:02:ed:64:2c:af:c4:e3:d2: f2:7e:32:8e:c0:6e:1e:54:3f:3f:c6:4b:73:ce:92:47:5b:34: 5c:7f:12:3a:5b:27:b0:3a:2f:44:c1:7f:30:3e:bb:24:5f:5e: 34:f4:0c:df:f6:62:81:17:f6:aa:61:ea:9c:05:fb:dd:d7:6d: 06:a7:23:cf:49:4a:c5:34:b0:c3:31:26:ba:49:63:50:6c:cc: c9:f5:60:f1:98:75:c2:71:15:8d:ea:67:5b:a9:87:99:c3:f1: 7f:48:a4:73 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOdYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2NDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNBMEQyQ0Y3OTBGQzUz MUVCNDMzQkY5Nzg5Q0VERDMwM0VBQkY3NDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCVMZQGZ0PbZMCY4Ki9xpqGdrUOmrrvC6Tt+5PRNqkiodzPJSa wE+ny4i+wGs1cv4w+3nR6sZUcdfeBdAJcyPP//QYC8eKLDpB0Uso8hMO/pNdVgx3 FsEyzPbSvwuCXnRWSz1flgcub+YAemD5IPBxePS4mRkmiDz0RhhWf2yRe/dJMC2j X49OOdeMmV6P+dxio1i65nCDUbQObuSt8bFRzlEsSLgGqZ/qFaf9vE9dnd29W90q HcZCk7U5yP5acJulDpVvFu8KILKKMlD7cW5Rv028ISmChwnhF7CBEn5p69mnCiFl 81ShotcXOZQNdFB3MMdk52GQCi4M6yy2EIR9AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUOg0s95D8Ux60M7+Xic7dMD6r90gwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL09nMHM5NUQ4VXg2ME03LVhp YzdkTUQ2cjkwZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFq AWowDQYJKoZIhvcNAQELBQADggEBADvFztnQuKDl+pXqUfdQwNn5HZg9ZMGjxuHy WcQ+980FyGuLtqVuTViAyV6TYU39zGaYB84aeK39eWU+6mUErMcv5Db6QK7e20+N UkbaMJhxNhuq64QAXeHQOYPpilotFXErlIZ+bfKOPRHwNJy2tCbf25H/7pGvLtDg urEmlWRy/769YkTZnErF8mnS8vZ0grsRqAuYNHt4BAgC7WQsr8Tj0vJ+Mo7Abh5U Pz/GS3POkkdbNFx/EjpbJ7A6L0TBfzA+uyRfXjT0DN/2YoEX9qph6pwF+93XbQan I89JSsU0sMMxJrpJY1BszMn1YPGYdcJxFY3qZ1uph5nD8X9IpHM= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:38 2025 by rpki-client