$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/a5khFhPCYKmHZeZsPDFsnUlk3x8.roa File: a5khFhPCYKmHZeZsPDFsnUlk3x8.roa (raw, json) Hash identifier: j2hd5mrWgWUkwDi32sKSWVCT4AD5xtiWH+bHV83S47c= Subject key identifier: 6B:99:21:16:13:C2:60:A9:87:65:E6:6C:3C:31:6C:9D:49:64:DF:1F Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3A0D Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/a5khFhPCYKmHZeZsPDFsnUlk3x8.roa Signing time: Fri 22 Aug 2025 08:46:57 +0000 ROA not before: Fri 22 Aug 2025 08:46:57 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 106.1.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14861 (0x3a0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:57 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6B99211613C260A98765E66C3C316C9D4964DF1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:cc:49:71:06:b7:15:ef:16:6c:e1:29:dd:e9: c0:65:e1:f3:16:8e:2e:c6:5e:a5:0b:8b:13:07:f5: 44:bc:0b:af:55:53:15:ae:da:82:79:ac:ac:61:2b: ff:95:1a:d0:d6:45:e1:eb:86:62:6c:77:b3:65:2c: 29:1c:bd:4f:38:3a:d1:76:60:15:1d:dc:39:b5:84: 2b:5e:29:a1:a9:fe:f1:6b:a7:19:92:d1:ec:08:f8: c2:f5:3b:b0:17:19:78:dd:3b:48:d6:39:68:c7:af: 6a:52:84:0e:c4:f8:d2:aa:40:eb:cd:ce:ca:08:0a: ec:bd:3f:75:82:2a:cb:db:c9:18:73:08:b0:27:b8: 1e:09:45:6f:4d:26:98:51:b2:5f:81:1f:cd:13:df: 68:30:9e:7e:5b:7e:ad:95:7d:a7:0e:8c:ca:01:da: db:a0:ac:52:d2:6a:c2:00:4f:ac:6f:ef:c7:46:1f: ef:db:f7:c4:b0:23:2a:52:37:89:ca:61:ad:66:a9: 29:91:2f:ce:a2:24:7b:07:6c:40:5c:16:8c:0c:6c: 4a:ed:71:c6:0e:d8:41:a2:79:c2:1c:82:61:fd:34: ef:39:16:e9:a1:78:9d:44:22:c6:e8:8c:4e:6f:df: ff:1a:e0:c7:42:27:a0:69:eb:b5:52:7b:65:7c:1b: 62:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:99:21:16:13:C2:60:A9:87:65:E6:6C:3C:31:6C:9D:49:64:DF:1F X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/a5khFhPCYKmHZeZsPDFsnUlk3x8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.237.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:49:0d:da:4d:25:4d:72:14:35:a6:36:71:9a:b8:88:be:56: 4e:32:4e:dc:f5:ff:4a:9b:02:d5:00:eb:d0:68:0e:65:42:9a: 31:c9:7b:ad:09:72:bc:b4:12:e7:53:cf:06:cc:16:60:e6:d1: 69:b6:7f:4f:ec:56:5f:6e:02:84:c2:13:53:72:0d:01:62:e5: d1:67:e8:a7:5b:39:77:96:b4:94:4a:73:0f:fc:f0:48:f1:39: 41:09:b2:03:b8:67:49:00:83:a6:1b:31:41:30:c2:7c:ec:5e: ff:7b:8c:6a:9c:7d:b1:14:47:2d:00:f8:cf:94:90:a9:9b:d3: bc:2a:c5:e2:55:1d:9d:fe:7f:fa:42:36:35:03:96:d5:51:10: 80:e4:e1:a9:94:70:1a:ff:d1:73:5f:83:0c:9f:98:62:7b:f4: d5:62:60:92:2f:8e:e5:e0:6e:95:4c:2a:33:25:13:3f:6b:7a: 31:c5:07:75:91:9c:20:3f:13:68:b0:9c:32:fd:22:07:7b:a7: c5:44:4e:a8:4f:29:10:dc:79:41:85:a9:3c:64:04:69:67:56: 95:e8:17:d6:af:f0:24:98:c3:e5:f5:b3:fa:00:37:a0:51:61: 43:8e:f1:d8:3d:2c:7a:b1:94:50:73:39:88:26:b7:f8:0f:d9: 41:7c:e1:80 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOg0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2NTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDZCOTkyMTE2MTNDMjYw QTk4NzY1RTY2QzNDMzE2QzlENDk2NERGMUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIzElxBrcV7xZs4Snd6cBl4fMWji7GXqULixMH9US8C69VUxWu 2oJ5rKxhK/+VGtDWReHrhmJsd7NlLCkcvU84OtF2YBUd3Dm1hCteKaGp/vFrpxmS 0ewI+ML1O7AXGXjdO0jWOWjHr2pShA7E+NKqQOvNzsoICuy9P3WCKsvbyRhzCLAn uB4JRW9NJphRsl+BH80T32gwnn5bfq2VfacOjMoB2tugrFLSasIAT6xv78dGH+/b 98SwIypSN4nKYa1mqSmRL86iJHsHbEBcFowMbErtccYO2EGiecIcgmH9NO85Fumh eJ1EIsbojE5v3/8a4MdCJ6Bp67VSe2V8G2JZAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUa5khFhPCYKmHZeZsPDFsnUlk3x8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2E1a2hGaFBDWUttSFplWnNQ REZzblVsazN4OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq Ae0wDQYJKoZIhvcNAQELBQADggEBAJ9JDdpNJU1yFDWmNnGauIi+Vk4yTtz1/0qb AtUA69BoDmVCmjHJe60Jcry0EudTzwbMFmDm0Wm2f0/sVl9uAoTCE1NyDQFi5dFn 6KdbOXeWtJRKcw/88EjxOUEJsgO4Z0kAg6YbMUEwwnzsXv97jGqcfbEURy0A+M+U kKmb07wqxeJVHZ3+f/pCNjUDltVREIDk4amUcBr/0XNfgwyfmGJ79NViYJIvjuXg bpVMKjMlEz9rejHFB3WRnCA/E2iwnDL9Igd7p8VETqhPKRDceUGFqTxkBGlnVpXo F9av8CSYw+X1s/oAN6BRYUOO8dg9LHqxlFBzOYgmt/gP2UF84YA= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:32 2025 by rpki-client