$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XRbSzXHhWIIEIjLSigBgvro6rE0.roa File: XRbSzXHhWIIEIjLSigBgvro6rE0.roa (raw, json) Hash identifier: StccoROmo0ahKrqyp1F95K12jPfEERlhpZXh9OUZGrc= Subject key identifier: 5D:16:D2:CD:71:E1:58:82:04:22:32:D2:8A:00:60:BE:BA:3A:AC:4D Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3800 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XRbSzXHhWIIEIjLSigBgvro6rE0.roa Signing time: Fri 22 Aug 2025 08:44:52 +0000 ROA not before: Fri 22 Aug 2025 08:44:52 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 106.1.228.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14336 (0x3800) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:44:52 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5D16D2CD71E15882042232D28A0060BEBA3AAC4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:4f:a2:12:c5:8f:6d:3b:e3:f5:d8:a1:71:0f: 29:d0:ed:fc:a6:d9:c2:be:07:62:49:a2:83:37:47: 28:38:9b:50:c6:41:b0:f5:43:67:79:41:9b:6a:5e: 82:06:d7:a5:bb:c2:d5:11:15:b4:67:51:0f:21:75: 01:07:eb:ff:8e:34:f7:a8:09:48:08:be:26:50:b0: 18:3d:7b:50:fc:6c:8d:4a:5f:b9:43:e0:70:78:0f: 6e:72:e9:c1:b6:3f:ce:b0:9e:8e:7a:73:e8:ed:53: 39:a6:fa:76:b4:e8:03:8d:8c:9d:65:e3:65:f7:16: c9:4f:2c:ab:e5:2f:8f:6d:31:be:05:3e:9f:8e:9d: c7:df:e6:d3:80:22:1e:1a:34:2f:b7:17:51:de:56: 9e:3d:2c:9f:f0:5d:45:b6:6a:3e:4a:99:35:20:80: 28:0f:0f:4a:71:e5:75:30:6f:8a:ab:9f:01:af:98: f0:96:86:48:be:cf:34:a1:9a:ba:1d:b7:e0:0c:f5: 02:fd:00:1c:4a:53:98:04:24:74:04:f2:44:43:cc: 41:38:f7:94:33:ed:0f:14:51:19:24:54:da:7a:b2: b8:0c:7e:f2:5e:11:fd:e9:40:8c:c8:26:f3:a3:bc: bf:c3:bd:17:ec:54:13:0b:7c:c6:88:4d:5b:cc:e0: fa:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:16:D2:CD:71:E1:58:82:04:22:32:D2:8A:00:60:BE:BA:3A:AC:4D X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XRbSzXHhWIIEIjLSigBgvro6rE0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.228.0/22 Signature Algorithm: sha256WithRSAEncryption 8d:9e:3c:f8:89:9f:a8:6c:d7:fa:7c:18:a1:31:8b:dd:75:2c: c7:5c:30:88:ef:e0:4f:87:b4:1b:26:cb:d8:6d:1a:48:18:1f: 09:3c:f2:36:c5:04:0e:c1:5b:e7:19:9c:bb:b8:fd:b5:a4:a9: 82:2a:43:d4:5a:ed:8b:cf:8e:35:91:ed:60:3b:8e:35:5d:9d: 69:c2:f8:6d:86:89:9a:eb:ce:8c:d3:55:62:2d:f4:70:b2:c4: 0e:05:59:5d:73:25:d3:de:85:02:1c:cf:4c:e3:eb:00:9b:1e: 7f:8c:ae:3c:13:4f:93:f5:db:70:6e:c2:86:a3:67:7a:36:15: 6d:f2:e1:b7:fe:80:7d:0b:da:c4:d4:b4:0c:b3:a8:73:e1:f6: 0f:0f:6a:eb:fc:e5:b6:86:fa:bf:b4:31:32:db:82:af:f7:43: c3:69:69:8b:ce:11:1e:d5:50:78:16:10:99:ce:55:a0:47:de: 77:b9:07:88:f7:52:91:5e:51:9a:7c:c1:bc:41:2c:28:99:b6: 1b:f8:db:bd:b0:11:73:94:2a:4d:f2:b1:c1:9b:7c:85:aa:d5: 4e:a9:78:22:4b:74:5e:25:3b:02:19:f5:8d:b1:34:72:0e:e3: 4f:f2:20:d4:19:d6:5f:e9:bf:22:6c:e7:8d:d3:a3:8c:68:3a: 39:03:c7:31 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOAAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ0NTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDVEMTZEMkNENzFFMTU4 ODIwNDIyMzJEMjhBMDA2MEJFQkEzQUFDNEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD4T6ISxY9tO+P12KFxDynQ7fym2cK+B2JJooM3Ryg4m1DGQbD1 Q2d5QZtqXoIG16W7wtURFbRnUQ8hdQEH6/+ONPeoCUgIviZQsBg9e1D8bI1KX7lD 4HB4D25y6cG2P86wno56c+jtUzmm+na06AONjJ1l42X3FslPLKvlL49tMb4FPp+O ncff5tOAIh4aNC+3F1HeVp49LJ/wXUW2aj5KmTUggCgPD0px5XUwb4qrnwGvmPCW hki+zzShmrodt+AM9QL9ABxKU5gEJHQE8kRDzEE495Qz7Q8UURkkVNp6srgMfvJe Ef3pQIzIJvOjvL/DvRfsVBMLfMaITVvM4Pr9AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUXRbSzXHhWIIEIjLSigBgvro6rE0wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1hSYlN6WEhoV0lJRUlqTFNp Z0JndnJvNnJFMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq AeQwDQYJKoZIhvcNAQELBQADggEBAI2ePPiJn6hs1/p8GKExi911LMdcMIjv4E+H tBsmy9htGkgYHwk88jbFBA7BW+cZnLu4/bWkqYIqQ9Ra7YvPjjWR7WA7jjVdnWnC +G2GiZrrzozTVWIt9HCyxA4FWV1zJdPehQIcz0zj6wCbHn+MrjwTT5P123Buwoaj Z3o2FW3y4bf+gH0L2sTUtAyzqHPh9g8Pauv85baG+r+0MTLbgq/3Q8NpaYvOER7V UHgWEJnOVaBH3ne5B4j3UpFeUZp8wbxBLCiZthv4272wEXOUKk3yscGbfIWq1U6p eCJLdF4lOwIZ9Y2xNHIO40/yINQZ1l/pvyJs543To4xoOjkDxzE= -----END CERTIFICATE-----Generated at Sun Aug 24 07:25:26 2025 by rpki-client