$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YMsFWmNHzy3Yhy6Z9_Ga_Oaiy20.roa File: YMsFWmNHzy3Yhy6Z9_Ga_Oaiy20.roa (raw, json) Hash identifier: prFuE46q85e8ysJULsrbboU789/iE5MoKPrWPra2zAo= Subject key identifier: 60:CB:05:5A:63:47:CF:2D:D8:87:2E:99:F7:F1:9A:FC:E6:A2:CB:6D Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3A3C Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YMsFWmNHzy3Yhy6Z9_Ga_Oaiy20.roa Signing time: Fri 22 Aug 2025 08:47:09 +0000 ROA not before: Fri 22 Aug 2025 08:47:09 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.233.68.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14908 (0x3a3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:09 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=60CB055A6347CF2DD8872E99F7F19AFCE6A2CB6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:ab:ca:c8:0b:dd:e5:3a:0a:ef:3b:c2:86:ae: c1:cf:9a:92:20:b4:35:a3:aa:87:2b:02:85:43:46: 29:2f:ce:b5:89:9a:76:18:d4:c8:0e:bf:e1:a9:8d: e5:4a:d3:5e:2b:7a:8c:0d:f0:7d:5b:65:aa:f6:c1: 68:24:c0:ee:3b:4f:b5:78:4a:81:06:2f:7d:53:e5: 44:29:36:20:e3:4c:7a:b4:d1:7b:07:2d:0f:33:01: a3:a9:d8:ca:a7:12:d0:3c:3e:0b:81:87:1e:ff:04: 61:eb:b3:95:1f:8f:b9:b2:49:2b:d8:fc:82:a4:35: 22:97:52:d9:e1:a6:81:47:63:ca:60:d5:7b:55:2c: fa:62:91:bb:60:ab:23:a3:a8:86:01:45:c2:24:05: 69:0d:6c:d6:cc:67:a0:ea:42:17:25:e0:6e:65:c3: 5d:6c:67:17:f2:4f:d6:55:13:02:8f:36:f5:65:1a: ff:2f:69:56:58:83:52:bf:ff:17:40:e9:62:f4:24: a7:d6:8e:3d:91:d4:bb:90:74:f4:d1:e1:ae:df:f9: 6a:cb:01:90:32:1f:7e:2a:a5:fd:f5:35:1e:7b:40: 2a:3e:4a:2d:64:56:41:91:44:cc:3f:57:69:e0:c5: f9:54:28:36:ea:24:b7:0b:c3:56:22:3d:68:aa:6c: a4:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:CB:05:5A:63:47:CF:2D:D8:87:2E:99:F7:F1:9A:FC:E6:A2:CB:6D X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YMsFWmNHzy3Yhy6Z9_Ga_Oaiy20.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.68.0/22 Signature Algorithm: sha256WithRSAEncryption 2b:5e:e2:e3:0c:35:f9:08:c4:bb:5c:f5:07:4c:d9:49:80:5c: 12:85:7a:f3:a0:41:a3:66:71:8b:12:53:75:3b:f1:14:04:84: 10:76:81:bf:49:9e:d2:ad:b7:87:a6:bc:50:42:07:92:c0:3a: 3a:3b:ba:69:ec:30:f2:35:15:96:cd:14:23:93:48:7c:6d:c0: 88:88:0b:70:cb:0c:23:bb:5a:64:61:04:65:71:d2:8e:ed:ec: 94:0f:4a:49:63:a3:b9:14:aa:7d:60:f9:43:84:e5:2a:e3:49: 2d:07:28:19:fe:0b:51:53:3e:8b:85:fe:f7:a9:16:9c:4b:be: eb:69:d4:4c:ca:67:f2:52:57:74:17:5f:ad:6f:50:03:b0:cf: f6:ad:e7:26:8a:44:29:b5:e9:90:09:39:e0:0c:e0:3c:eb:32: 4a:33:5a:7e:1e:b1:1e:b3:78:b9:db:f3:6e:6b:94:fa:90:aa: 3d:fb:f7:99:fa:c1:c0:41:f2:cd:6f:e7:da:d6:74:3a:5f:c0: 5e:70:af:cc:77:9c:21:77:f6:81:75:bd:2c:9b:c5:70:86:d9: bd:1d:97:a5:69:fb:1b:b4:79:57:32:49:f5:ae:47:72:cb:b4: 73:5d:11:3c:f1:06:fd:e0:e5:71:ca:08:63:2a:44:b7:80:ab: ee:2e:93:fa -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOjwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3MDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDYwQ0IwNTVBNjM0N0NG MkREODg3MkU5OUY3RjE5QUZDRTZBMkNCNkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDtq8rIC93lOgrvO8KGrsHPmpIgtDWjqocrAoVDRikvzrWJmnYY 1MgOv+GpjeVK014reowN8H1bZar2wWgkwO47T7V4SoEGL31T5UQpNiDjTHq00XsH LQ8zAaOp2MqnEtA8PguBhx7/BGHrs5Ufj7mySSvY/IKkNSKXUtnhpoFHY8pg1XtV LPpikbtgqyOjqIYBRcIkBWkNbNbMZ6DqQhcl4G5lw11sZxfyT9ZVEwKPNvVlGv8v aVZYg1K//xdA6WL0JKfWjj2R1LuQdPTR4a7f+WrLAZAyH34qpf31NR57QCo+Si1k VkGRRMw/V2ngxflUKDbqJLcLw1YiPWiqbKRLAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUYMsFWmNHzy3Yhy6Z9/Ga/Oaiy20wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1lNc0ZXbU5IenkzWWh5Nlo5 X0dhX09haXkyMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6UQwDQYJKoZIhvcNAQELBQADggEBACte4uMMNfkIxLtc9QdM2UmAXBKFevOgQaNm cYsSU3U78RQEhBB2gb9JntKtt4emvFBCB5LAOjo7umnsMPI1FZbNFCOTSHxtwIiI C3DLDCO7WmRhBGVx0o7t7JQPSkljo7kUqn1g+UOE5SrjSS0HKBn+C1FTPouF/vep FpxLvutp1EzKZ/JSV3QXX61vUAOwz/at5yaKRCm16ZAJOeAM4DzrMkozWn4esR6z eLnb825rlPqQqj3795n6wcBB8s1v59rWdDpfwF5wr8x3nCF39oF1vSybxXCG2b0d l6Vp+xu0eVcySfWuR3LLtHNdETzxBv3g5XHKCGMqRLeAq+4uk/o= -----END CERTIFICATE-----Generated at Sun Aug 24 07:29:36 2025 by rpki-client