$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bp7S1lXBJo_U1K5_OP0_O18dpyw.roa File: bp7S1lXBJo_U1K5_OP0_O18dpyw.roa (raw, json) Hash identifier: wxFCH0hcO32GRflMrajTzbeTQ8pBWZiY3hgzL0lfGek= Subject key identifier: 6E:9E:D2:D6:55:C1:26:8F:D4:D4:AE:7F:38:FD:3F:3B:5F:1D:A7:2C Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3821 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bp7S1lXBJo_U1K5_OP0_O18dpyw.roa Signing time: Fri 22 Aug 2025 08:44:59 +0000 ROA not before: Fri 22 Aug 2025 08:44:59 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 106.1.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14369 (0x3821) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:44:59 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6E9ED2D655C1268FD4D4AE7F38FD3F3B5F1DA72C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:75:31:69:0e:1c:e8:36:2c:03:4c:b8:c3:a5: 7e:83:34:11:c1:cc:87:fb:32:02:e0:20:ff:22:8d: 2c:f8:0a:3d:76:ca:e4:da:1f:88:6a:59:2b:fa:81: ac:f0:6d:58:95:fa:fb:35:d5:5b:ef:12:57:7d:97: 3c:c9:fb:84:60:ff:f0:ce:48:f3:89:54:81:f8:ba: f4:0e:6b:7d:18:c2:27:16:0e:41:1a:e0:0e:4f:d2: c9:c5:5c:ab:8a:ec:bd:00:e6:ff:22:49:2d:27:ad: 9c:e7:84:1f:14:79:6d:98:56:1e:dd:8d:82:de:8e: aa:39:96:ea:46:18:5e:ae:4a:7a:7e:af:b1:3a:e4: 88:b5:dd:b8:fd:9b:3c:74:1b:7c:f2:4c:fe:ac:ee: 61:f0:54:1d:4b:0b:01:8a:55:11:e6:94:a3:f6:e4: ef:f7:fa:2c:d2:23:18:03:4d:e0:5d:6f:06:ea:4f: 0b:64:7c:33:13:62:c3:86:80:2d:56:51:fc:a0:82: 97:ff:9a:5a:78:f2:90:74:91:5b:3c:d2:57:cd:95: a1:f3:00:1b:b6:7d:39:7e:4a:66:1f:5a:14:5e:16: e1:1b:ec:64:e0:92:e0:3c:e8:c0:a6:68:2e:fd:af: db:94:f1:0c:a3:ea:d8:46:70:7c:20:b7:ac:08:e8: 0f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:9E:D2:D6:55:C1:26:8F:D4:D4:AE:7F:38:FD:3F:3B:5F:1D:A7:2C X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bp7S1lXBJo_U1K5_OP0_O18dpyw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.170.0/24 Signature Algorithm: sha256WithRSAEncryption 47:46:34:a0:f5:d5:96:2c:de:bb:db:d9:98:b0:cf:ef:2d:b1: 87:d6:5d:b3:ce:a4:19:20:9a:13:ff:24:cd:3f:6c:3d:4f:72: a8:38:fa:24:a8:44:3a:8c:53:03:1c:42:be:d5:3f:53:2a:87: a6:3b:be:67:f1:99:2e:49:bc:fb:60:77:a7:0f:7b:23:f5:50: d3:df:60:89:57:79:8e:07:8e:99:6b:f3:6a:04:b6:9c:a6:89: ab:22:25:ef:59:3e:a9:cf:94:82:f1:50:fa:60:a4:92:1a:6a: c6:b8:5a:2c:2b:ae:48:40:15:27:26:81:fd:9a:29:fd:f6:66: 1b:78:99:9b:12:ce:b8:bd:60:64:c4:82:b0:06:df:7d:8a:9f: 81:d4:48:2a:1b:f0:3e:21:55:92:da:cf:d9:ae:49:ab:9a:25: fa:7a:60:71:5e:e2:62:0f:44:e2:a0:73:7c:10:d1:ec:f2:37: bc:a5:5e:80:7d:e4:7e:e2:93:0d:fb:54:41:bc:f6:da:80:6e: 9b:7f:5a:9a:dc:64:6a:2d:99:d6:2c:aa:c7:5c:31:28:eb:ed: 9b:30:c4:26:ae:b7:e0:d0:f0:72:ae:93:9c:8d:f6:d7:0e:1f: b1:1e:5d:45:0d:53:da:0b:72:64:b8:e8:24:1a:cc:16:fb:78: b4:52:4d:10 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOCEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ0NTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDZFOUVEMkQ2NTVDMTI2 OEZENEQ0QUU3RjM4RkQzRjNCNUYxREE3MkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAdTFpDhzoNiwDTLjDpX6DNBHBzIf7MgLgIP8ijSz4Cj12yuTa H4hqWSv6gazwbViV+vs11VvvEld9lzzJ+4Rg//DOSPOJVIH4uvQOa30YwicWDkEa 4A5P0snFXKuK7L0A5v8iSS0nrZznhB8UeW2YVh7djYLejqo5lupGGF6uSnp+r7E6 5Ii13bj9mzx0G3zyTP6s7mHwVB1LCwGKVRHmlKP25O/3+izSIxgDTeBdbwbqTwtk fDMTYsOGgC1WUfyggpf/mlp48pB0kVs80lfNlaHzABu2fTl+SmYfWhReFuEb7GTg kuA86MCmaC79r9uU8Qyj6thGcHwgt6wI6A+7AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUbp7S1lXBJo/U1K5/OP0/O18dpywwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2JwN1MxbFhCSm9fVTFLNV9P UDBfTzE4ZHB5dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq AaowDQYJKoZIhvcNAQELBQADggEBAEdGNKD11ZYs3rvb2Ziwz+8tsYfWXbPOpBkg mhP/JM0/bD1Pcqg4+iSoRDqMUwMcQr7VP1Mqh6Y7vmfxmS5JvPtgd6cPeyP1UNPf YIlXeY4Hjplr82oEtpymiasiJe9ZPqnPlILxUPpgpJIaasa4WiwrrkhAFScmgf2a Kf32Zht4mZsSzri9YGTEgrAG332Kn4HUSCob8D4hVZLaz9muSauaJfp6YHFe4mIP ROKgc3wQ0ezyN7ylXoB95H7ikw37VEG89tqAbpt/WprcZGotmdYsqsdcMSjr7Zsw xCaut+DQ8HKuk5yN9tcOH7EeXUUNU9oLcmS46CQazBb7eLRSTRA= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:22 2025 by rpki-client