$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QfZGvorfUXdWG2pJcKNIC_jaxBs.roa File: QfZGvorfUXdWG2pJcKNIC_jaxBs.roa (raw, json) Hash identifier: HnmUTMIHbfaeohBl6SZb7xtPM3hxivVsiqvMYU77iDw= Subject key identifier: 41:F6:46:BE:8A:DF:51:77:56:1B:6A:49:70:A3:48:0B:F8:DA:C4:1B Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 38A5 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QfZGvorfUXdWG2pJcKNIC_jaxBs.roa Signing time: Fri 22 Aug 2025 08:45:29 +0000 ROA not before: Fri 22 Aug 2025 08:45:29 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 106.1.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14501 (0x38a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:29 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=41F646BE8ADF5177561B6A4970A3480BF8DAC41B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4e:c4:87:eb:ef:21:16:58:e7:fb:b5:b8:34: 94:6f:fc:0f:06:80:76:b0:84:2b:67:2b:2b:b7:3b: 37:86:c1:6b:0d:9f:6f:a2:12:cd:7e:bc:d9:48:aa: fd:2a:48:f9:f6:52:92:73:c9:20:91:3f:94:58:54: 65:bb:d4:20:6f:5d:26:60:b3:ef:29:c1:4b:e2:b8: c7:5b:c2:4f:2b:66:be:b0:f6:42:33:29:8e:66:e5: 25:c3:70:76:38:94:de:ae:a5:2a:cf:70:37:29:fa: 51:dc:78:d2:74:c1:de:18:e6:6b:2a:ca:a7:ee:fd: 07:a6:e3:ad:22:f8:1b:07:24:8d:53:36:4a:25:de: f9:e9:df:e1:e6:55:6c:b1:d0:fa:42:14:d7:ec:60: 6e:cb:52:7d:a2:9d:99:74:58:79:64:63:4c:6e:55: c2:e8:1d:16:4d:33:8d:a8:c0:6b:92:0f:05:5c:c8: 95:1a:a1:13:00:08:43:04:5c:bf:31:6d:16:92:15: 75:56:82:70:d9:7b:26:ad:17:0f:7e:ba:bf:f4:59: 77:a1:4c:9f:af:3b:ba:90:8a:a3:ee:ee:a3:cb:45: 86:e0:55:9e:42:da:46:2f:1d:83:e9:5a:e2:a9:f6: 0d:d7:d4:7e:5f:52:dd:24:47:2c:07:09:2e:9f:7c: fa:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:F6:46:BE:8A:DF:51:77:56:1B:6A:49:70:A3:48:0B:F8:DA:C4:1B X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QfZGvorfUXdWG2pJcKNIC_jaxBs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.100.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:fd:01:26:c2:89:10:83:aa:7c:a9:91:d1:29:20:b2:9c:98: 00:dc:08:30:b2:0c:60:75:63:58:87:b8:ed:77:6d:68:d8:d0: ba:8d:d8:f9:8e:51:62:c4:69:d3:4e:0f:e5:6e:79:4a:24:9b: d5:b6:c2:52:91:b5:a2:92:a5:36:61:b0:2c:dc:7d:51:42:c8: ba:b2:31:74:5a:be:b6:9d:d1:db:91:cb:fb:36:79:57:c9:fb: c0:9e:80:e8:19:92:4d:e0:41:aa:5c:88:19:b3:ed:24:04:f2: 90:77:99:fb:ae:fe:d3:49:ef:f7:8d:18:e6:4b:b4:71:b9:cc: 46:1a:83:04:05:8b:38:66:c0:76:8e:91:02:85:2b:03:b8:b0: b8:e2:af:0e:03:ac:5d:fa:cc:99:92:62:f3:59:a1:b4:0c:9e: 53:7a:e3:fb:8d:d0:68:ef:33:0a:8a:48:a3:08:10:56:16:70: e3:b3:de:95:6b:64:74:34:41:b1:54:5d:d5:00:26:5f:a6:be: 00:59:c9:35:48:27:d5:e1:04:8b:35:ae:de:6c:13:17:46:19: 33:fb:ad:3a:71:db:7d:cc:93:d1:37:41:15:e1:c9:0f:27:22: c2:26:4b:d3:1d:b5:87:88:d1:fd:09:e2:e6:3f:58:c6:a3:0f: e1:d3:90:9d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOKUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1MjlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQxRjY0NkJFOEFERjUx Nzc1NjFCNkE0OTcwQTM0ODBCRjhEQUM0MUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxTsSH6+8hFljn+7W4NJRv/A8GgHawhCtnKyu3OzeGwWsNn2+i Es1+vNlIqv0qSPn2UpJzySCRP5RYVGW71CBvXSZgs+8pwUviuMdbwk8rZr6w9kIz KY5m5SXDcHY4lN6upSrPcDcp+lHceNJ0wd4Y5msqyqfu/Qem460i+BsHJI1TNkol 3vnp3+HmVWyx0PpCFNfsYG7LUn2inZl0WHlkY0xuVcLoHRZNM42owGuSDwVcyJUa oRMACEMEXL8xbRaSFXVWgnDZeyatFw9+ur/0WXehTJ+vO7qQiqPu7qPLRYbgVZ5C 2kYvHYPpWuKp9g3X1H5fUt0kRywHCS6ffPoDAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUQfZGvorfUXdWG2pJcKNIC/jaxBswHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1FmWkd2b3JmVVhkV0cycEpj S05JQ19qYXhCcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq AWQwDQYJKoZIhvcNAQELBQADggEBAD/9ASbCiRCDqnypkdEpILKcmADcCDCyDGB1 Y1iHuO13bWjY0LqN2PmOUWLEadNOD+VueUokm9W2wlKRtaKSpTZhsCzcfVFCyLqy MXRavrad0duRy/s2eVfJ+8CegOgZkk3gQapciBmz7SQE8pB3mfuu/tNJ7/eNGOZL tHG5zEYagwQFizhmwHaOkQKFKwO4sLjirw4DrF36zJmSYvNZobQMnlN64/uN0Gjv MwqKSKMIEFYWcOOz3pVrZHQ0QbFUXdUAJl+mvgBZyTVIJ9XhBIs1rt5sExdGGTP7 rTpx233Mk9E3QRXhyQ8nIsImS9MdtYeI0f0J4uY/WMajD+HTkJ0= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:55 2025 by rpki-client