$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cw7vUiBG_6v3yhRoqhUtXBLDNWA.roa File: cw7vUiBG_6v3yhRoqhUtXBLDNWA.roa (raw, json) Hash identifier: mi8Xmi3w+0YiS5gqzBsgNVOlnLFTbVV532WvWVco+2c= Subject key identifier: 73:0E:EF:52:20:46:FF:AB:F7:CA:14:68:AA:15:2D:5C:12:C3:35:60 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 38F9 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cw7vUiBG_6v3yhRoqhUtXBLDNWA.roa Signing time: Fri 22 Aug 2025 08:45:49 +0000 ROA not before: Fri 22 Aug 2025 08:45:49 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.233.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14585 (0x38f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=730EEF522046FFABF7CA1468AA152D5C12C33560 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b2:f5:e4:e2:a2:a1:be:76:86:b0:93:90:97: 3d:3b:73:06:d2:05:b6:f2:af:dc:c0:4d:7e:70:ca: 78:e5:57:64:d2:24:50:1e:03:71:ed:55:b0:95:0a: 17:f7:ef:e8:4d:9c:09:9e:eb:e4:10:71:67:28:d6: 52:4f:3b:ac:4c:c7:ca:78:89:fd:5e:30:13:66:7e: e6:5d:bf:e9:20:18:29:07:e2:c0:94:30:29:53:60: ed:d9:ad:55:5b:8d:5d:ef:b0:27:65:9f:d4:e0:db: 27:9e:bd:5b:b3:d4:43:17:6f:f0:3d:e7:e1:53:2e: 3f:f6:ef:57:b8:1f:fd:d0:eb:51:aa:f6:80:3d:94: 17:35:c9:62:dd:c3:14:34:f6:0f:dd:2d:2d:e3:5b: f2:18:33:28:8b:b1:24:0e:fd:d5:16:41:3f:c6:a5: e2:ad:4a:af:d5:4b:a7:c5:94:0e:ea:f9:ad:ba:96: 11:ed:f0:99:55:d8:a5:a6:a1:7a:a7:9d:53:b2:91: b2:69:88:60:37:be:50:e5:7a:2d:e0:c1:e1:65:df: 37:62:61:5f:a5:1a:a2:ad:1e:f2:6e:63:7c:df:4d: 78:52:dc:12:ea:cf:29:aa:9a:d4:56:4a:59:d9:9b: 20:8c:6b:01:20:53:41:1d:af:dd:19:ac:26:3e:64: a9:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:0E:EF:52:20:46:FF:AB:F7:CA:14:68:AA:15:2D:5C:12:C3:35:60 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cw7vUiBG_6v3yhRoqhUtXBLDNWA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.128.0/22 Signature Algorithm: sha256WithRSAEncryption 7b:3a:71:25:99:07:7c:af:fa:91:ff:73:92:96:f5:b6:00:28: 25:7e:76:20:f7:b5:c3:7c:28:5e:e1:0a:b4:de:03:cb:65:46: 04:c6:84:bf:bd:9b:d8:28:35:e2:d8:de:89:2e:18:4b:52:c1: 40:12:0e:e5:40:bf:87:22:b4:ac:24:5e:8b:7c:2b:60:cf:ce: 55:82:a4:97:c3:b6:02:c6:e9:f4:42:56:97:2d:64:4e:a3:5b: ba:f7:42:95:c8:1a:22:e5:c0:32:70:fd:64:66:31:ad:65:07: 17:a1:63:cf:91:13:90:e0:44:f1:9e:54:73:d3:a0:92:54:37: c3:a0:bc:2c:03:69:7c:b3:21:13:c0:6b:e7:81:9d:51:ef:5b: b3:34:aa:88:7c:9c:e1:57:e7:5f:d6:04:2d:ad:52:10:b6:c3: d9:9c:9f:7a:77:0d:22:7c:ef:52:25:49:90:d9:29:5f:56:ea: ad:1a:30:af:82:5c:dd:62:af:4f:43:73:55:5c:dd:46:1e:46: b0:c4:54:7e:5c:12:d6:65:80:9c:8b:78:a9:a3:28:84:17:d6: d7:b4:ce:e6:07:c8:91:33:79:e6:66:76:42:3d:74:a3:8d:39: 97:c7:3b:e0:20:01:bd:9c:77:26:7e:38:7f:d8:7f:26:d6:65: bb:5a:cf:85 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOPkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1NDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDczMEVFRjUyMjA0NkZG QUJGN0NBMTQ2OEFBMTUyRDVDMTJDMzM1NjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvsvXk4qKhvnaGsJOQlz07cwbSBbbyr9zATX5wynjlV2TSJFAe A3HtVbCVChf37+hNnAme6+QQcWco1lJPO6xMx8p4if1eMBNmfuZdv+kgGCkH4sCU MClTYO3ZrVVbjV3vsCdln9Tg2yeevVuz1EMXb/A95+FTLj/271e4H/3Q61Gq9oA9 lBc1yWLdwxQ09g/dLS3jW/IYMyiLsSQO/dUWQT/GpeKtSq/VS6fFlA7q+a26lhHt 8JlV2KWmoXqnnVOykbJpiGA3vlDlei3gweFl3zdiYV+lGqKtHvJuY3zfTXhS3BLq zymqmtRWSlnZmyCMawEgU0Edr90ZrCY+ZKnZAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUcw7vUiBG/6v3yhRoqhUtXBLDNWAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2N3N3ZVaUJHXzZ2M3loUm9x aFV0WEJMRE5XQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6YAwDQYJKoZIhvcNAQELBQADggEBAHs6cSWZB3yv+pH/c5KW9bYAKCV+diD3tcN8 KF7hCrTeA8tlRgTGhL+9m9goNeLY3okuGEtSwUASDuVAv4citKwkXot8K2DPzlWC pJfDtgLG6fRCVpctZE6jW7r3QpXIGiLlwDJw/WRmMa1lBxehY8+RE5DgRPGeVHPT oJJUN8OgvCwDaXyzIRPAa+eBnVHvW7M0qoh8nOFX51/WBC2tUhC2w9mcn3p3DSJ8 71IlSZDZKV9W6q0aMK+CXN1ir09Dc1Vc3UYeRrDEVH5cEtZlgJyLeKmjKIQX1te0 zuYHyJEzeeZmdkI9dKONOZfHO+AgAb2cdyZ+OH/YfybWZbtaz4U= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:21 2025 by rpki-client