$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q62HP3eMftXsTVb-cQh7BwT4JcU.roa File: Q62HP3eMftXsTVb-cQh7BwT4JcU.roa (raw, json) Hash identifier: VBk1LPGoVxRHSZOBiZan1os5pJUK7OC06MXBEnqHp/M= Subject key identifier: 43:AD:87:3F:77:8C:7E:D5:EC:4D:56:FE:71:08:7B:07:04:F8:25:C5 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3829 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q62HP3eMftXsTVb-cQh7BwT4JcU.roa Signing time: Fri 22 Aug 2025 08:45:01 +0000 ROA not before: Fri 22 Aug 2025 08:45:01 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 2407:4d00:ff04::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14377 (0x3829) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:01 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=43AD873F778C7ED5EC4D56FE71087B0704F825C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:25:82:20:4b:d9:01:2c:8f:a2:50:b8:55:cd: f1:80:e2:e0:1f:45:bf:55:91:00:92:d4:24:81:e6: 7b:43:1f:2c:d2:00:08:49:2c:02:54:b7:d3:fc:95: ef:8f:5e:ac:de:c1:5c:9d:e7:84:fe:97:98:23:40: 88:04:d8:89:71:14:18:5e:5d:62:53:9f:cc:c6:6a: 8e:ad:e5:ce:ae:e6:77:79:10:13:c5:6a:b1:0e:23: 6f:db:c1:98:14:db:27:7c:05:d9:cc:35:2d:a7:0a: 3c:5f:bf:5a:b8:4c:76:39:96:ce:28:ae:26:19:db: 83:a5:e4:51:5b:95:f1:d1:51:19:21:6a:c1:d0:bf: 25:65:87:32:49:8c:46:f1:4a:30:23:de:c5:ff:17: d7:7b:2d:2f:c2:ac:9f:cb:5a:e8:c2:60:75:da:f6: e1:26:30:f5:b0:04:2f:ac:1a:dc:f6:7e:d0:9c:b4: 33:cd:72:03:0f:33:48:3d:df:73:a8:16:55:5b:27: ab:ad:42:3e:dd:fe:74:56:63:24:12:6f:69:7b:ec: 90:f8:46:01:a1:83:b0:9f:f3:50:36:b6:e4:f1:0a: 6b:0f:51:cd:50:6a:c2:f4:f4:19:fa:9d:c1:78:f4: 78:45:6c:8a:05:bb:bb:ce:b7:d7:0d:4f:f0:74:a0: 8a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:AD:87:3F:77:8C:7E:D5:EC:4D:56:FE:71:08:7B:07:04:F8:25:C5 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q62HP3eMftXsTVb-cQh7BwT4JcU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:4d00:ff04::/48 Signature Algorithm: sha256WithRSAEncryption 94:73:c6:60:2c:e2:ac:88:52:d4:9a:eb:85:2f:16:1b:e9:11: fc:38:4b:6a:df:30:24:72:53:1e:c7:82:ee:76:5c:33:f8:51: b6:18:2d:ca:6b:f3:c5:88:95:5e:22:59:33:7e:65:87:ed:ae: 05:94:b6:ba:6f:ec:e3:a9:75:6e:fe:3c:c8:52:f7:4a:2d:d2: d7:7c:52:88:71:cb:9a:b5:2f:6a:07:b4:3b:76:c6:01:e4:e4: ac:cb:e1:96:62:db:b8:1c:cf:ea:c4:c4:8c:c9:e7:c1:67:77: 66:ab:18:e1:2f:e6:c8:42:03:6e:69:d9:06:c9:7f:bd:f2:db: ef:34:11:34:c7:4c:d3:85:1d:ce:ed:f4:7e:85:80:fc:8d:1d: 3b:51:1f:28:b9:d0:f3:66:20:34:2c:26:32:5d:fb:c3:1a:9e: 0c:12:99:3f:c9:a6:c3:a0:93:f3:a2:28:38:1e:eb:e4:c3:14: d4:85:d9:6a:b6:52:f4:ce:9a:20:b2:01:e9:3b:88:eb:15:d7: 8e:13:94:96:fd:a1:60:1c:d6:62:78:18:31:79:4e:43:56:7f: 52:8a:b2:5d:4c:b1:7b:68:a8:83:4a:3a:fd:bc:b0:9f:13:f8: f0:3e:26:51:f2:c2:d8:03:5f:27:62:27:a8:fe:19:fd:0d:da: fd:9a:41:fc -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICOCkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1MDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQzQUQ4NzNGNzc4QzdF RDVFQzRENTZGRTcxMDg3QjA3MDRGODI1QzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2JYIgS9kBLI+iULhVzfGA4uAfRb9VkQCS1CSB5ntDHyzSAAhJ LAJUt9P8le+PXqzewVyd54T+l5gjQIgE2IlxFBheXWJTn8zGao6t5c6u5nd5EBPF arEOI2/bwZgU2yd8BdnMNS2nCjxfv1q4THY5ls4oriYZ24Ol5FFblfHRURkhasHQ vyVlhzJJjEbxSjAj3sX/F9d7LS/CrJ/LWujCYHXa9uEmMPWwBC+sGtz2ftCctDPN cgMPM0g933OoFlVbJ6utQj7d/nRWYyQSb2l77JD4RgGhg7Cf81A2tuTxCmsPUc1Q asL09Bn6ncF49HhFbIoFu7vOt9cNT/B0oIrNAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUQ62HP3eMftXsTVb+cQh7BwT4JcUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1E2MkhQM2VNZnRYc1RWYi1j UWg3QndUNEpjVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk B00A/wQwDQYJKoZIhvcNAQELBQADggEBAJRzxmAs4qyIUtSa64UvFhvpEfw4S2rf MCRyUx7Hgu52XDP4UbYYLcpr88WIlV4iWTN+ZYftrgWUtrpv7OOpdW7+PMhS90ot 0td8Uohxy5q1L2oHtDt2xgHk5KzL4ZZi27gcz+rExIzJ58Fnd2arGOEv5shCA25p 2QbJf73y2+80ETTHTNOFHc7t9H6FgPyNHTtRHyi50PNmIDQsJjJd+8MangwSmT/J psOgk/OiKDge6+TDFNSF2Wq2UvTOmiCyAek7iOsV144TlJb9oWAc1mJ4GDF5TkNW f1KKsl1MsXtoqINKOv28sJ8T+PA+JlHywtgDXydiJ6j+Gf0N2v2aQfw= -----END CERTIFICATE-----Generated at Sun Aug 24 07:24:09 2025 by rpki-client