$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QtaFaGNGX9NEmqBiqU5zM1ODDhg.roa File: QtaFaGNGX9NEmqBiqU5zM1ODDhg.roa (raw, json) Hash identifier: pRMnHulfM2i5SsolkuWZVRGAAPiHzV8aguBdzPrU4bg= Subject key identifier: 42:D6:85:68:63:46:5F:D3:44:9A:A0:62:A9:4E:73:33:53:83:0E:18 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3A8F Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QtaFaGNGX9NEmqBiqU5zM1ODDhg.roa Signing time: Fri 22 Aug 2025 08:47:30 +0000 ROA not before: Fri 22 Aug 2025 08:47:30 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.233.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14991 (0x3a8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:30 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=42D6856863465FD3449AA062A94E733353830E18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:59:49:72:72:2c:28:b5:97:81:a7:a8:51:99: ca:fa:51:d1:da:b0:49:18:79:d4:56:b7:2c:05:78: ea:3f:42:fe:72:cf:a4:bf:c5:89:e3:a6:a8:9d:4c: a8:c2:42:41:04:37:7d:f4:54:c8:c2:93:78:af:d2: ba:ea:1e:e1:6e:f0:2e:3c:e5:66:94:a5:a1:6b:fb: b9:3b:2d:6f:80:14:0e:17:f8:f2:90:44:d6:c0:e6: 15:b4:af:fe:a4:76:ba:f1:c5:c2:4f:69:e1:d4:b9: 47:46:c8:db:de:55:d0:db:70:08:9c:f9:be:0e:37: fb:c4:e5:23:1c:a7:15:fe:a1:84:6c:d9:d6:9a:6a: 4c:be:b7:0e:01:41:dd:16:4e:7b:3f:c5:05:7e:9e: 92:f0:82:76:91:7f:52:44:20:2c:67:d1:de:7b:e5: 45:1e:4e:80:66:c1:fc:db:65:5a:90:a7:83:d6:f7: 75:65:39:9c:bf:a9:11:cf:2e:e6:6c:cc:13:f9:5c: 49:41:de:e4:50:d4:2d:05:ff:3c:81:44:ed:47:3c: 98:49:07:9a:1f:74:09:40:1f:3b:00:1f:24:73:47: 20:86:3c:1d:47:85:60:86:b8:30:ea:67:e2:38:93: 1c:7e:70:04:a1:c7:4d:1a:98:9b:44:bf:18:27:9b: 72:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:D6:85:68:63:46:5F:D3:44:9A:A0:62:A9:4E:73:33:53:83:0E:18 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QtaFaGNGX9NEmqBiqU5zM1ODDhg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.252.0/22 Signature Algorithm: sha256WithRSAEncryption 8e:1a:ba:9a:78:10:de:59:01:4f:2d:15:21:ec:04:8f:bf:f1: 75:57:8d:e7:d1:5e:66:a9:60:6a:bf:69:ff:f1:0d:16:29:63: 82:75:12:ff:d2:15:2a:af:39:3c:ae:03:09:3e:9d:c2:3a:5b: 9f:05:6d:13:5e:d6:34:78:24:e9:0e:58:bc:8e:c5:d7:c8:09: b5:31:2c:ee:ac:a1:3e:73:9a:17:4f:79:1a:5e:3b:96:bf:e7: f9:5e:9e:8c:a2:77:c0:87:6d:b1:82:35:81:f6:69:bf:58:c4: 46:ab:ea:82:82:d5:9b:2a:39:f3:97:e2:11:30:6d:ab:37:81: 96:f8:e6:fa:de:c9:bd:5f:81:46:60:70:4f:1d:11:f2:4d:16: 9e:4b:6b:aa:97:f8:3e:ab:4b:03:95:7a:09:37:0c:61:24:b2: 5a:5f:e3:8c:fc:13:23:63:bf:58:5d:5f:16:16:8d:d1:ec:e0: bf:b6:a5:f2:18:4d:a8:62:18:17:ba:00:05:13:49:6b:d8:8a: 82:7d:59:f1:21:fa:bf:d4:7e:e5:d5:66:f2:3b:9e:5b:56:49: f9:aa:19:ff:f5:35:32:48:4a:c5:18:19:76:9e:1a:d2:0d:3d: a9:81:a0:40:39:f4:5f:27:b7:80:17:6b:a9:cb:92:6c:b0:14: e6:fc:22:a2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOo8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3MzBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQyRDY4NTY4NjM0NjVG RDM0NDlBQTA2MkE5NEU3MzMzNTM4MzBFMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4WUlyciwotZeBp6hRmcr6UdHasEkYedRWtywFeOo/Qv5yz6S/ xYnjpqidTKjCQkEEN330VMjCk3iv0rrqHuFu8C485WaUpaFr+7k7LW+AFA4X+PKQ RNbA5hW0r/6kdrrxxcJPaeHUuUdGyNveVdDbcAic+b4ON/vE5SMcpxX+oYRs2daa aky+tw4BQd0WTns/xQV+npLwgnaRf1JEICxn0d575UUeToBmwfzbZVqQp4PW93Vl OZy/qRHPLuZszBP5XElB3uRQ1C0F/zyBRO1HPJhJB5ofdAlAHzsAHyRzRyCGPB1H hWCGuDDqZ+I4kxx+cAShx00amJtEvxgnm3KNAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUQtaFaGNGX9NEmqBiqU5zM1ODDhgwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1F0YUZhR05HWDlORW1xQmlx VTV6TTFPRERoZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6fwwDQYJKoZIhvcNAQELBQADggEBAI4aupp4EN5ZAU8tFSHsBI+/8XVXjefRXmap YGq/af/xDRYpY4J1Ev/SFSqvOTyuAwk+ncI6W58FbRNe1jR4JOkOWLyOxdfICbUx LO6soT5zmhdPeRpeO5a/5/lenoyid8CHbbGCNYH2ab9YxEar6oKC1ZsqOfOX4hEw bas3gZb45vreyb1fgUZgcE8dEfJNFp5La6qX+D6rSwOVegk3DGEkslpf44z8EyNj v1hdXxYWjdHs4L+2pfIYTahiGBe6AAUTSWvYioJ9WfEh+r/UfuXVZvI7nltWSfmq Gf/1NTJISsUYGXaeGtINPamBoEA59F8nt4AXa6nLkmywFOb8IqI= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:47 2025 by rpki-client