$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/SWWgi-X1WqZUmfltacz5AuK23oE.roa File: SWWgi-X1WqZUmfltacz5AuK23oE.roa (raw, json) Hash identifier: BvmFFOZxDtbDLVlM1H6JRDIvhlSVxVLgnixcqfd0ch0= Subject key identifier: 49:65:A0:8B:E5:F5:5A:A6:54:99:F9:6D:69:CC:F9:02:E2:B6:DE:81 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3B31 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/SWWgi-X1WqZUmfltacz5AuK23oE.roa Signing time: Fri 22 Aug 2025 08:48:09 +0000 ROA not before: Fri 22 Aug 2025 08:48:09 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.233.196.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15153 (0x3b31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:48:09 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4965A08BE5F55AA65499F96D69CCF902E2B6DE81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:09:bd:67:e7:a8:f9:8d:0d:2d:7f:d1:8d:21: e6:bb:7a:4c:4e:e5:91:59:bd:71:03:ab:8c:b1:73: 70:02:8e:c0:65:0f:90:48:c5:39:14:2f:af:34:52: 49:73:da:f1:c2:a3:f2:d9:6c:e0:55:c1:04:dc:76: e5:8f:ae:88:74:8d:50:a2:ce:51:5f:13:46:5a:8e: 1a:46:f8:4a:3a:68:95:3e:f1:d0:c2:23:56:12:4c: 25:f9:f6:03:f3:61:0d:40:9f:3e:eb:3b:4b:a7:ca: 08:56:5c:f7:b8:20:a9:fa:0d:86:de:e5:4e:6c:ef: 78:74:24:e9:c6:43:e5:7d:b2:d3:08:b1:ce:28:40: 1d:05:eb:13:24:e3:d9:db:95:79:db:07:29:4a:5b: 6f:c5:e9:45:c6:df:d1:ae:37:3f:24:fa:34:c4:e6: 28:2f:e1:b2:05:cd:c7:3a:e4:27:67:52:a2:5f:2a: 09:10:fe:02:82:dc:0e:34:b5:11:98:1f:16:9c:10: 6d:3b:f1:11:be:77:f5:3d:cd:ab:79:ea:6a:1b:08: a7:29:7d:c0:ab:10:a9:8e:55:a9:d1:0d:a0:ad:bc: e4:7b:29:eb:26:c5:1b:3b:6d:86:ee:e8:26:99:20: 89:b2:9e:40:2a:92:bd:c0:7e:6e:f3:ca:72:37:2f: d5:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:65:A0:8B:E5:F5:5A:A6:54:99:F9:6D:69:CC:F9:02:E2:B6:DE:81 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/SWWgi-X1WqZUmfltacz5AuK23oE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.196.0/22 Signature Algorithm: sha256WithRSAEncryption 84:26:12:c3:1d:67:86:67:15:55:08:cb:ea:c2:db:66:a0:28: 77:72:f4:e5:3e:ed:22:43:00:aa:12:c7:8e:ca:69:1a:be:a8: 57:e2:89:68:a5:64:4a:fa:53:cd:c7:bd:d2:0d:76:57:70:be: b9:30:47:e4:00:87:da:2c:49:77:72:80:a7:be:e2:77:c7:5a: 21:13:d7:45:5c:1a:8c:03:bd:a1:de:c3:66:d2:27:15:50:4a: 04:73:42:5c:8e:9a:20:6f:ac:9a:5d:c1:89:9c:62:e0:73:1a: 0a:62:ab:f1:f0:bd:c4:a4:c6:a9:e5:65:64:d9:ee:e9:c1:16: 12:ee:14:01:32:03:b9:71:0d:32:9c:2f:52:22:53:0e:6a:54: ac:f0:f0:e0:cd:ee:ad:cf:8a:88:3a:84:40:ee:15:65:73:67: 15:88:ad:69:80:c8:23:64:dd:3d:b7:f0:be:bf:96:4f:8c:eb: ef:a0:66:ac:83:1a:46:04:32:87:36:b9:ef:a6:11:43:b0:07: 8f:9a:ca:fe:d4:7d:1a:fe:2a:ad:30:bf:4e:17:5e:10:b7:02: 1f:97:94:6c:70:be:15:65:6a:2d:1e:0c:01:83:3a:44:1f:a1: 6e:70:8e:3b:91:f2:bc:c7:ee:05:14:19:f3:27:93:d4:37:33: 98:aa:91:9e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOzEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ4MDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ5NjVBMDhCRTVGNTVB QTY1NDk5Rjk2RDY5Q0NGOTAyRTJCNkRFODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnCb1n56j5jQ0tf9GNIea7ekxO5ZFZvXEDq4yxc3ACjsBlD5BI xTkUL680Uklz2vHCo/LZbOBVwQTcduWProh0jVCizlFfE0ZajhpG+Eo6aJU+8dDC I1YSTCX59gPzYQ1Anz7rO0unyghWXPe4IKn6DYbe5U5s73h0JOnGQ+V9stMIsc4o QB0F6xMk49nblXnbBylKW2/F6UXG39GuNz8k+jTE5igv4bIFzcc65CdnUqJfKgkQ /gKC3A40tRGYHxacEG078RG+d/U9zat56mobCKcpfcCrEKmOVanRDaCtvOR7Kesm xRs7bYbu6CaZIImynkAqkr3Afm7zynI3L9URAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUSWWgi+X1WqZUmfltacz5AuK23oEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1NXV2dpLVgxV3FaVW1mbHRh Y3o1QXVLMjNvRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6cQwDQYJKoZIhvcNAQELBQADggEBAIQmEsMdZ4ZnFVUIy+rC22agKHdy9OU+7SJD AKoSx47KaRq+qFfiiWilZEr6U83HvdINdldwvrkwR+QAh9osSXdygKe+4nfHWiET 10VcGowDvaHew2bSJxVQSgRzQlyOmiBvrJpdwYmcYuBzGgpiq/HwvcSkxqnlZWTZ 7unBFhLuFAEyA7lxDTKcL1IiUw5qVKzw8ODN7q3Piog6hEDuFWVzZxWIrWmAyCNk 3T238L6/lk+M6++gZqyDGkYEMoc2ue+mEUOwB4+ayv7UfRr+Kq0wv04XXhC3Ah+X lGxwvhVlai0eDAGDOkQfoW5wjjuR8rzH7gUUGfMnk9Q3M5iqkZ4= -----END CERTIFICATE-----Generated at Sun Aug 24 07:24:13 2025 by rpki-client