$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_1Zbj9pFPmAwPcBgji4o-A9pIv0.roa File: _1Zbj9pFPmAwPcBgji4o-A9pIv0.roa (raw, json) Hash identifier: QKhoq8x+l5ZFE8Vqp6Q/CAqCi+UhTuTIfVSn6F6mpk8= Subject key identifier: FF:56:5B:8F:DA:45:3E:60:30:3D:C0:60:8E:2E:28:F8:0F:69:22:FD Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 39FA Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_1Zbj9pFPmAwPcBgji4o-A9pIv0.roa Signing time: Fri 22 Aug 2025 08:46:53 +0000 ROA not before: Fri 22 Aug 2025 08:46:53 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.233.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14842 (0x39fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:53 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FF565B8FDA453E60303DC0608E2E28F80F6922FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:2d:9f:cc:2b:04:7a:4b:b0:74:da:4a:6a:52: 64:02:fc:84:03:1a:10:71:d2:7c:56:05:a2:59:f7: 58:0e:c4:c7:75:e3:e3:dc:bf:0a:20:00:da:e1:8d: ab:00:7b:94:8a:a0:1c:86:21:e7:37:2a:61:4d:10: 11:e9:9c:a0:59:55:43:3a:31:9f:9d:d5:89:04:21: 26:63:1d:ca:99:c6:ce:64:b7:f3:42:9d:8a:a4:b3: fd:7f:3a:18:6d:cb:6b:b3:a2:97:84:b5:f4:37:8d: bd:7e:24:e3:fb:3a:2b:51:50:e6:f2:ce:17:47:59: 86:68:01:39:8a:11:40:15:af:73:77:9e:d4:93:ab: 85:16:ab:3a:90:d8:70:51:5a:47:5d:64:c9:76:cc: 15:58:f4:bd:8f:44:56:4b:b7:82:79:5a:7c:83:5f: 7d:0f:70:14:71:1f:de:3e:61:8f:f9:2c:63:aa:f7: 66:c5:0d:74:19:23:6a:49:ad:20:aa:8d:14:c1:53: 16:99:03:02:1d:3a:6c:51:de:ce:e2:0d:42:39:02: d2:13:a2:d0:85:65:51:40:2d:09:87:36:e5:dd:1c: d9:69:2e:cb:23:15:8c:c1:70:32:88:f3:27:60:10: 9f:ac:11:84:71:42:fb:0c:60:56:02:8a:81:e2:db: c8:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:56:5B:8F:DA:45:3E:60:30:3D:C0:60:8E:2E:28:F8:0F:69:22:FD X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_1Zbj9pFPmAwPcBgji4o-A9pIv0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.211.0/24 Signature Algorithm: sha256WithRSAEncryption 69:51:46:e0:71:f5:63:35:39:ce:b3:78:72:96:74:b9:a0:cb: b4:94:76:0a:e0:09:a8:d7:f2:3c:d9:5b:de:d4:a4:59:2b:8f: c3:01:02:48:f8:05:2c:0c:cf:f8:1f:3f:c1:b0:bd:64:99:06: a0:a3:3b:75:ef:3a:78:79:b0:f5:c3:a1:c8:43:03:81:4c:a1: d0:14:69:ba:19:46:1e:f2:5e:69:91:91:99:30:85:f6:64:d8: 4f:25:d9:56:90:f6:d2:57:36:35:b4:6b:50:09:a1:03:69:b1: 6b:c6:b9:03:18:aa:46:a8:8b:e0:27:76:64:43:99:ad:47:28: 93:c8:7a:fe:75:ca:18:84:67:29:c1:3b:57:62:49:e3:bf:34: 03:e6:e6:88:18:df:0a:e6:9c:10:c2:ae:f4:dd:d7:cb:43:c0: d8:81:67:c2:7f:2c:3a:47:ff:6f:45:39:f2:91:62:02:ad:6f: 86:1e:80:0e:01:45:9b:90:a3:11:fb:d1:8c:fd:af:cf:91:ea: 76:e8:c2:1d:f1:2d:f4:35:6f:77:14:70:76:c3:f7:c0:0e:da: 2e:5b:94:f1:77:71:cd:96:d0:93:a2:a0:28:7e:f9:6f:4f:da: e4:93:98:2b:70:88:57:51:77:b6:ca:0c:54:db:ea:4a:74:9a: 45:04:91:b1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOfowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2NTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZGNTY1QjhGREE0NTNF NjAzMDNEQzA2MDhFMkUyOEY4MEY2OTIyRkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChLZ/MKwR6S7B02kpqUmQC/IQDGhBx0nxWBaJZ91gOxMd14+Pc vwogANrhjasAe5SKoByGIec3KmFNEBHpnKBZVUM6MZ+d1YkEISZjHcqZxs5kt/NC nYqks/1/Ohhty2uzopeEtfQ3jb1+JOP7OitRUObyzhdHWYZoATmKEUAVr3N3ntST q4UWqzqQ2HBRWkddZMl2zBVY9L2PRFZLt4J5WnyDX30PcBRxH94+YY/5LGOq92bF DXQZI2pJrSCqjRTBUxaZAwIdOmxR3s7iDUI5AtITotCFZVFALQmHNuXdHNlpLssj FYzBcDKI8ydgEJ+sEYRxQvsMYFYCioHi28iXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU/1Zbj9pFPmAwPcBgji4o+A9pIv0wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL18xWmJqOXBGUG1Bd1BjQmdq aTRvLUE5cEl2MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB2 6dMwDQYJKoZIhvcNAQELBQADggEBAGlRRuBx9WM1Oc6zeHKWdLmgy7SUdgrgCajX 8jzZW97UpFkrj8MBAkj4BSwMz/gfP8GwvWSZBqCjO3XvOnh5sPXDochDA4FModAU aboZRh7yXmmRkZkwhfZk2E8l2VaQ9tJXNjW0a1AJoQNpsWvGuQMYqkaoi+AndmRD ma1HKJPIev51yhiEZynBO1diSeO/NAPm5ogY3wrmnBDCrvTd18tDwNiBZ8J/LDpH /29FOfKRYgKtb4YegA4BRZuQoxH70Yz9r8+R6nbowh3xLfQ1b3cUcHbD98AO2i5b lPF3cc2W0JOioCh++W9P2uSTmCtwiFdRd7bKDFTb6kp0mkUEkbE= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:33 2025 by rpki-client