$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QJP2C6MHBRGj6UYT9ALgg8WjUzs.roa File: QJP2C6MHBRGj6UYT9ALgg8WjUzs.roa (raw, json) Hash identifier: 8Xg9URLm9GrkUxLL38t5fCcTUygQMP6MgMY3eIhvP40= Subject key identifier: 40:93:F6:0B:A3:07:05:11:A3:E9:46:13:F4:02:E0:83:C5:A3:53:3B Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 38E7 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QJP2C6MHBRGj6UYT9ALgg8WjUzs.roa Signing time: Fri 22 Aug 2025 08:45:45 +0000 ROA not before: Fri 22 Aug 2025 08:45:45 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 118.232.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14567 (0x38e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:45 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4093F60BA3070511A3E94613F402E083C5A3533B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:cf:46:c0:3a:fa:d7:5f:e0:de:bb:91:e3:d3: 11:ea:99:d6:61:8a:4c:e6:d8:1b:b0:96:dd:e3:21: 84:e8:79:57:81:6d:81:11:1e:db:be:74:2d:be:27: b7:10:32:aa:e2:e8:14:7d:f2:77:dd:68:5d:f3:ef: 65:42:8a:79:53:c9:41:5a:d7:71:3c:93:86:62:67: b0:32:6f:9a:d8:1b:cb:c6:45:ac:b1:af:3b:dd:6d: 60:f4:09:2f:87:7a:9c:ba:5b:69:11:70:e8:aa:01: 73:67:6f:fa:aa:48:4b:5f:cd:17:b2:c6:3a:1d:88: 5f:d4:0c:af:f5:64:3a:16:c2:92:4a:d6:10:d9:3f: 7b:81:e3:76:b6:a3:cf:80:4e:e8:d3:ae:c2:c4:b8: fb:36:96:2e:52:f4:2c:44:38:cd:5d:8c:46:10:08: 60:b2:f4:a0:c8:b9:67:a5:51:43:ea:07:0b:87:29: ce:d6:2d:bb:55:bb:5b:1f:31:bb:42:39:53:ad:0e: 77:ab:fd:16:56:70:06:9b:a9:79:a3:97:bd:6d:3c: ba:ab:a2:13:f2:1d:b8:ce:09:df:4e:75:3a:35:7d: c9:49:47:9e:fa:34:9e:9a:5f:d3:6d:fa:07:8d:53: a9:73:de:67:1e:02:8d:e0:2d:b1:6b:24:a0:2a:30: cc:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:93:F6:0B:A3:07:05:11:A3:E9:46:13:F4:02:E0:83:C5:A3:53:3B X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QJP2C6MHBRGj6UYT9ALgg8WjUzs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.0.0/19 Signature Algorithm: sha256WithRSAEncryption 60:62:a2:9a:eb:b6:fa:02:5d:7f:37:ec:5f:af:a5:94:29:c9: f2:bf:a2:a2:b2:39:58:fa:5b:c0:9d:94:8f:c2:c4:fd:86:96: c4:90:6a:fb:4e:c1:02:b0:3d:3a:f1:bb:12:99:19:a2:41:a4: 0a:b1:8b:e9:ed:9c:52:14:f0:f8:fc:88:e9:37:81:77:78:10: 7e:69:c4:a1:9a:85:16:9d:63:28:8d:c6:27:e1:37:48:ed:c4: ca:7d:4f:6e:c1:b0:9d:2a:a9:4d:e2:42:05:b7:48:f4:eb:aa: a1:21:11:24:fe:86:92:b5:90:14:91:0a:94:03:e5:74:11:24: 24:4c:83:65:19:e6:20:84:23:a1:ba:be:38:61:3f:e2:b5:59: 26:46:10:1c:d0:4f:c4:4a:0b:f0:2d:91:4c:c5:a1:ac:53:52: 85:9d:a9:0e:ad:ea:6c:69:84:41:f0:be:49:18:20:79:a3:d6: 5c:13:dd:cb:fe:dd:b7:f5:3d:24:c5:d3:11:7f:ef:b0:06:03: e5:ef:eb:00:fb:b1:c9:a0:3d:f8:a0:53:a3:ca:9b:f8:87:2c: 51:e7:0c:c9:bf:4d:60:e9:e7:5b:bb:e9:a0:60:66:a9:53:71: b7:3e:78:1e:49:70:69:6b:a3:56:1b:3e:51:50:d3:a4:9e:e1: 69:7b:c4:2b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOOcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1NDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQwOTNGNjBCQTMwNzA1 MTFBM0U5NDYxM0Y0MDJFMDgzQzVBMzUzM0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUz0bAOvrXX+Deu5Hj0xHqmdZhikzm2Buwlt3jIYToeVeBbYER Htu+dC2+J7cQMqri6BR98nfdaF3z72VCinlTyUFa13E8k4ZiZ7Ayb5rYG8vGRayx rzvdbWD0CS+Hepy6W2kRcOiqAXNnb/qqSEtfzReyxjodiF/UDK/1ZDoWwpJK1hDZ P3uB43a2o8+ATujTrsLEuPs2li5S9CxEOM1djEYQCGCy9KDIuWelUUPqBwuHKc7W LbtVu1sfMbtCOVOtDner/RZWcAabqXmjl71tPLqrohPyHbjOCd9OdTo1fclJR576 NJ6aX9Nt+geNU6lz3mceAo3gLbFrJKAqMMynAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUQJP2C6MHBRGj6UYT9ALgg8WjUzswHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1FKUDJDNk1IQlJHajZVWVQ5 QUxnZzhXalV6cy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV2 6AAwDQYJKoZIhvcNAQELBQADggEBAGBioprrtvoCXX837F+vpZQpyfK/oqKyOVj6 W8CdlI/CxP2GlsSQavtOwQKwPTrxuxKZGaJBpAqxi+ntnFIU8Pj8iOk3gXd4EH5p xKGahRadYyiNxifhN0jtxMp9T27BsJ0qqU3iQgW3SPTrqqEhEST+hpK1kBSRCpQD 5XQRJCRMg2UZ5iCEI6G6vjhhP+K1WSZGEBzQT8RKC/AtkUzFoaxTUoWdqQ6t6mxp hEHwvkkYIHmj1lwT3cv+3bf1PSTF0xF/77AGA+Xv6wD7scmgPfigU6PKm/iHLFHn DMm/TWDp51u76aBgZqlTcbc+eB5JcGlro1YbPlFQ06Se4Wl7xCs= -----END CERTIFICATE-----Generated at Sun Aug 24 07:24:11 2025 by rpki-client