$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Sp1PAkNnPT_2yqI-b11-Xz3nD6Y.roa File: Sp1PAkNnPT_2yqI-b11-Xz3nD6Y.roa (raw, json) Hash identifier: kJwUP7iXgRgO5mw2uXBHG9iWetI6M3X3BLiF1v3GPX4= Subject key identifier: 4A:9D:4F:02:43:67:3D:3F:F6:CA:A2:3E:6F:5D:7E:5F:3D:E7:0F:A6 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3A07 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Sp1PAkNnPT_2yqI-b11-Xz3nD6Y.roa Signing time: Fri 22 Aug 2025 08:46:56 +0000 ROA not before: Fri 22 Aug 2025 08:46:56 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.232.232.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14855 (0x3a07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:56 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4A9D4F0243673D3FF6CAA23E6F5D7E5F3DE70FA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:1e:f4:72:89:99:9c:06:0b:5f:a0:76:16:62: 7f:d0:c4:7d:1c:08:8e:ec:b5:5c:13:f2:69:2b:3a: 6f:c5:c2:f4:50:41:fa:ea:90:8b:bd:60:2a:e4:3c: 74:8a:d2:aa:39:0d:51:39:b4:1d:ef:0c:5e:df:c7: 24:33:fe:07:98:88:5c:e6:d7:c0:09:72:69:54:39: 76:04:9d:db:81:30:80:1d:e5:d9:dc:6c:cd:d6:7d: ab:4b:8e:5f:9b:62:40:76:78:81:8a:31:c9:51:85: ab:e3:6d:a0:c0:6f:2d:47:2a:48:ef:a5:28:f8:db: df:46:71:8f:f9:4f:bd:3d:e3:79:dc:6d:70:88:76: dc:bc:b0:d3:83:76:78:5c:1b:96:6f:36:36:65:71: 57:43:4a:83:0d:03:55:14:72:3e:6c:2b:4e:5b:a0: 6b:66:dd:5c:31:f9:42:e3:ce:52:05:72:d5:e7:1a: 8d:e9:3e:09:7a:ee:f6:42:d4:b7:f7:8d:9f:9d:54: d3:28:ba:4c:be:f1:13:d3:c0:11:d2:b1:7c:84:af: e6:fc:d2:05:9f:e4:52:3d:76:99:7b:9e:1c:d1:be: a0:ab:8c:e7:ad:f0:7a:52:44:94:83:87:0c:67:4c: fb:4c:fa:02:39:fe:a6:5f:26:b7:04:25:d7:d9:90: 35:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:9D:4F:02:43:67:3D:3F:F6:CA:A2:3E:6F:5D:7E:5F:3D:E7:0F:A6 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Sp1PAkNnPT_2yqI-b11-Xz3nD6Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.232.0/21 Signature Algorithm: sha256WithRSAEncryption 96:78:19:3a:90:c0:75:43:d9:d4:c0:ff:8a:da:53:61:3d:28: 83:8d:40:6d:3e:08:b3:dd:9a:b5:00:43:19:96:e6:4e:51:e5: 76:a3:51:59:f3:32:e6:aa:db:75:32:30:f4:65:c6:60:eb:8e: 3b:18:a2:ce:fe:1d:62:3d:df:40:84:13:41:2f:a2:94:2e:7f: 6c:e8:41:6c:bf:a8:ea:0a:1a:86:a3:14:39:db:97:9a:53:69: 3c:c0:9c:9b:a9:7c:ff:fe:96:f3:24:6f:4d:16:e0:06:7a:8b: 74:57:bf:b0:b5:41:b4:d3:a9:fc:2d:ed:89:1f:15:e0:01:49: d2:b8:25:de:16:28:7e:2c:d5:05:38:dd:f3:4d:b1:24:80:03: c2:07:97:d5:b4:65:ce:54:5e:91:90:34:c2:65:4f:80:13:c8: b7:ce:e3:83:5f:37:0e:f5:21:62:48:24:ad:aa:b1:61:ee:00: 5a:8d:2a:48:95:02:a2:48:ab:f7:d5:97:6c:f3:9b:8f:c9:ba: a0:eb:ac:4d:89:37:6e:8c:32:9b:42:11:05:ac:f0:18:5e:9b: 52:bc:80:a5:10:3a:9a:10:42:b9:fa:56:bc:2a:a7:f0:d7:6b: f6:bb:0c:72:03:0c:fa:42:4b:b3:d7:c9:1d:1e:09:97:e1:f5: a4:77:ac:5e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOgcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2NTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDRBOUQ0RjAyNDM2NzNE M0ZGNkNBQTIzRTZGNUQ3RTVGM0RFNzBGQTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqHvRyiZmcBgtfoHYWYn/QxH0cCI7stVwT8mkrOm/FwvRQQfrq kIu9YCrkPHSK0qo5DVE5tB3vDF7fxyQz/geYiFzm18AJcmlUOXYEnduBMIAd5dnc bM3WfatLjl+bYkB2eIGKMclRhavjbaDAby1HKkjvpSj4299GcY/5T70943ncbXCI dty8sNODdnhcG5ZvNjZlcVdDSoMNA1UUcj5sK05boGtm3Vwx+ULjzlIFctXnGo3p Pgl67vZC1Lf3jZ+dVNMouky+8RPTwBHSsXyEr+b80gWf5FI9dpl7nhzRvqCrjOet 8HpSRJSDhwxnTPtM+gI5/qZfJrcEJdfZkDXbAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUSp1PAkNnPT/2yqI+b11+Xz3nD6YwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1NwMVBBa05uUFRfMnlxSS1i MTEtWHozbkQ2WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6OgwDQYJKoZIhvcNAQELBQADggEBAJZ4GTqQwHVD2dTA/4raU2E9KIONQG0+CLPd mrUAQxmW5k5R5XajUVnzMuaq23UyMPRlxmDrjjsYos7+HWI930CEE0EvopQuf2zo QWy/qOoKGoajFDnbl5pTaTzAnJupfP/+lvMkb00W4AZ6i3RXv7C1QbTTqfwt7Ykf FeABSdK4Jd4WKH4s1QU43fNNsSSAA8IHl9W0Zc5UXpGQNMJlT4ATyLfO44NfNw71 IWJIJK2qsWHuAFqNKkiVAqJIq/fVl2zzm4/JuqDrrE2JN26MMptCEQWs8Bhem1K8 gKUQOpoQQrn6Vrwqp/DXa/a7DHIDDPpCS7PXyR0eCZfh9aR3rF4= -----END CERTIFICATE-----Generated at Sun Aug 24 07:31:56 2025 by rpki-client