$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/esAC1GSnjnk9AzHfFFibATKjw4Y.roa File: esAC1GSnjnk9AzHfFFibATKjw4Y.roa (raw, json) Hash identifier: ymATbab41ZDHoIfs43t+AmQH9os6NZsiMAhIgvoMjWY= Subject key identifier: 7A:C0:02:D4:64:A7:8E:79:3D:03:31:DF:14:58:9B:01:32:A3:C3:86 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3977 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/esAC1GSnjnk9AzHfFFibATKjw4Y.roa Signing time: Fri 22 Aug 2025 08:46:19 +0000 ROA not before: Fri 22 Aug 2025 08:46:19 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 106.1.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14711 (0x3977) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:19 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7AC002D464A78E793D0331DF14589B0132A3C386 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e3:ac:92:39:8b:ae:1f:41:d1:f8:c3:e7:ed: 25:91:ab:1d:2b:8a:9a:a9:ac:e6:bc:36:24:21:f5: be:32:84:e5:f6:56:bd:67:d7:ab:6b:ce:a4:eb:c1: 4d:a4:35:0e:91:ee:a7:04:8b:ae:f9:4b:8e:56:ec: 31:5b:2e:2e:09:24:c5:90:9c:9f:d1:1a:cc:fb:01: 6b:c0:c8:e8:00:f4:db:bc:ea:3a:99:9d:7d:3e:34: 49:93:c8:b6:26:b9:0a:77:c7:cf:3f:dc:8e:b7:f8: ec:40:47:7a:bf:36:91:5c:0a:9f:32:d5:c9:42:88: cd:25:6c:92:14:f8:03:61:9b:ac:b2:e1:2c:2a:cc: b3:44:47:67:fa:d0:e7:c4:ab:91:ed:84:39:4f:6d: 74:0d:5d:ec:f3:e7:35:23:06:f4:7c:dd:3d:d2:c8: 2c:ca:91:d9:76:ed:ce:fd:3d:bc:11:b7:b7:56:47: 30:e7:ae:49:80:4e:e7:02:37:f5:b6:29:72:65:40: f2:63:e2:86:b8:d2:d5:8e:b8:e9:22:b1:bf:06:bb: 40:44:51:09:ff:b0:7d:d1:78:23:92:3d:d4:bc:90: 91:96:7b:c5:7e:26:0d:a8:50:a7:e2:17:67:5e:47: ae:c8:75:75:8e:5b:79:11:d4:5c:e2:5a:ae:09:9e: c3:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:C0:02:D4:64:A7:8E:79:3D:03:31:DF:14:58:9B:01:32:A3:C3:86 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/esAC1GSnjnk9AzHfFFibATKjw4Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.205.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:32:7c:1a:93:7e:06:0a:37:27:f5:90:15:e9:ef:bf:93:eb: d9:9c:31:09:9d:c8:1d:92:c9:61:58:2f:ea:ac:63:a9:7d:d9: 49:e7:86:6d:71:c4:ee:6b:4f:a2:30:a2:f5:13:54:8a:3b:ac: eb:cf:a6:89:83:a0:41:f9:af:13:e5:bd:e4:64:a1:ba:9f:b9: 4c:c5:75:ec:50:4d:b2:88:b3:43:6d:bd:30:b1:cb:39:88:36: 32:4c:58:e4:ae:bf:61:8f:d3:19:89:9b:62:74:fe:bc:f4:89: fd:f0:78:5d:1a:74:08:99:97:24:ca:fc:68:c2:90:eb:3b:d2: 14:b7:f7:29:a9:9a:25:2c:e9:8e:ac:a5:27:1e:80:0e:73:bb: 7f:fc:aa:12:52:3a:f6:49:76:91:d8:d9:f0:b8:72:56:48:50: ed:fd:f8:be:14:30:3e:80:82:72:82:3f:a2:f4:7a:c3:45:2d: b2:0f:ab:72:ce:9a:2a:29:ed:38:67:9a:20:7a:1e:a4:73:5d: ae:fc:fd:30:8b:ba:bc:ff:f2:75:80:79:39:b7:14:7f:e2:cd: ac:f9:6d:d2:3c:3d:b8:03:5b:97:c5:b4:d6:8c:a8:79:14:ce: 3d:63:69:1a:dc:f1:f8:af:4d:be:20:ef:48:34:97:8e:f6:95: c9:64:63:9e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOXcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdBQzAwMkQ0NjRBNzhF NzkzRDAzMzFERjE0NTg5QjAxMzJBM0MzODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDM46ySOYuuH0HR+MPn7SWRqx0ripqprOa8NiQh9b4yhOX2Vr1n 16trzqTrwU2kNQ6R7qcEi675S45W7DFbLi4JJMWQnJ/RGsz7AWvAyOgA9Nu86jqZ nX0+NEmTyLYmuQp3x88/3I63+OxAR3q/NpFcCp8y1clCiM0lbJIU+ANhm6yy4Swq zLNER2f60OfEq5HthDlPbXQNXezz5zUjBvR83T3SyCzKkdl27c79PbwRt7dWRzDn rkmATucCN/W2KXJlQPJj4oa40tWOuOkisb8Gu0BEUQn/sH3ReCOSPdS8kJGWe8V+ Jg2oUKfiF2deR67IdXWOW3kR1FziWq4JnsNPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUesAC1GSnjnk9AzHfFFibATKjw4YwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2VzQUMxR1Nuam5rOUF6SGZG RmliQVRLanc0WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq Ac0wDQYJKoZIhvcNAQELBQADggEBACoyfBqTfgYKNyf1kBXp77+T69mcMQmdyB2S yWFYL+qsY6l92Unnhm1xxO5rT6IwovUTVIo7rOvPpomDoEH5rxPlveRkobqfuUzF dexQTbKIs0NtvTCxyzmINjJMWOSuv2GP0xmJm2J0/rz0if3weF0adAiZlyTK/GjC kOs70hS39ympmiUs6Y6spScegA5zu3/8qhJSOvZJdpHY2fC4clZIUO39+L4UMD6A gnKCP6L0esNFLbIPq3LOmiop7ThnmiB6HqRzXa78/TCLurz/8nWAeTm3FH/izaz5 bdI8PbgDW5fFtNaMqHkUzj1jaRrc8fivTb4g70g0l472lclkY54= -----END CERTIFICATE-----Generated at Sun Aug 24 07:25:26 2025 by rpki-client