$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/f1l-PA7D5u4-crkXC_Xvdn4t3Uk.roa File: f1l-PA7D5u4-crkXC_Xvdn4t3Uk.roa (raw, json) Hash identifier: I1PjAtq2jRZotRQxib6Ve+liSK+cnXWAn5z5T8iGtSg= Subject key identifier: 7F:59:7E:3C:0E:C3:E6:EE:3E:72:B9:17:0B:F5:EF:76:7E:2D:DD:49 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 39B5 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/f1l-PA7D5u4-crkXC_Xvdn4t3Uk.roa Signing time: Fri 22 Aug 2025 08:46:34 +0000 ROA not before: Fri 22 Aug 2025 08:46:34 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 2407:4d00:ff0b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14773 (0x39b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:34 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7F597E3C0EC3E6EE3E72B9170BF5EF767E2DDD49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:80:54:27:0e:44:5e:9d:69:1f:29:61:e1:df: 63:3a:63:22:4a:8d:40:6b:63:cc:1e:a4:c0:43:ee: 72:df:2f:cf:f4:10:81:5b:cb:61:90:dd:6f:62:00: 19:65:51:c5:ba:f8:dc:11:3d:a2:1e:c4:a0:42:c4: 88:12:5e:ef:49:90:f8:6c:04:fe:ff:a5:3c:0a:f8: 53:6d:49:13:4c:ae:86:3a:75:50:55:f2:27:1d:d0: 77:54:62:7b:f0:ae:71:65:cb:29:a5:5b:4b:d4:d8: d1:9b:c2:d4:e3:c5:ff:a6:5d:d9:a2:bb:15:4e:90: 58:f3:c9:22:06:28:60:75:c7:4f:da:cb:ea:cf:a5: eb:bc:77:11:21:76:04:f7:cf:5d:1f:6d:2b:a1:cf: 2d:28:3e:a0:48:88:98:5c:17:6a:79:3c:56:8e:b7: 50:37:2d:a9:60:a6:04:b0:86:79:ba:56:20:4f:f9: 68:c8:6e:91:da:3b:f4:f9:47:fb:d3:72:a9:cf:07: 1b:a1:a6:93:92:d3:f8:26:51:c9:16:a6:99:6a:4d: 47:ba:57:91:42:9e:34:3f:d0:c9:f2:a9:df:e2:92: 54:8c:e1:f2:90:6e:b3:27:2a:f9:ca:fc:79:fe:0e: 06:d2:1e:9d:38:6e:8a:66:f6:c2:e0:8f:37:5c:ea: 9e:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:59:7E:3C:0E:C3:E6:EE:3E:72:B9:17:0B:F5:EF:76:7E:2D:DD:49 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/f1l-PA7D5u4-crkXC_Xvdn4t3Uk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:4d00:ff0b::/48 Signature Algorithm: sha256WithRSAEncryption 9d:11:78:b8:ce:ac:e4:56:a3:c2:9a:56:c7:18:55:4c:28:04: f3:7c:2a:6c:30:2c:10:26:8a:bb:7f:2b:92:43:a9:1d:83:e0: 7c:12:bf:5a:8a:06:e7:33:86:e5:a8:9e:e9:46:6f:1e:c9:3e: 4a:7e:02:14:e4:c2:87:39:94:b2:85:96:30:e6:c2:91:ac:36: 4e:db:ed:e4:95:d4:84:35:1e:15:14:45:62:37:ef:0b:27:a4: dd:c5:f8:88:fb:ad:08:22:f2:db:77:3f:fa:cb:e6:73:05:b7: 86:47:5a:2a:0f:ac:bb:e9:ac:e6:9d:ee:ed:2b:9a:7a:ac:f9: 61:57:dd:1f:b1:4e:be:ba:0c:7b:c5:a4:a5:31:74:e5:1f:b5: 9f:46:e6:12:19:16:11:52:a1:6a:2e:01:15:34:59:89:59:61: 8f:de:3e:25:e0:2a:99:5b:a6:14:49:18:ca:2a:c9:c7:a0:e4: b0:40:2d:26:41:5c:ab:56:1b:7b:ca:f9:bd:7f:81:f5:a1:4c: 39:e6:68:5b:0b:b1:12:84:0e:5f:fb:ec:3d:11:81:8a:33:5a: fc:f2:3f:50:b5:5c:ec:84:63:ba:a8:a9:4b:7a:5f:40:d9:f6: 27:2b:e3:3d:c3:f3:74:6f:55:b1:78:7b:28:eb:04:2e:a6:3b: fe:2f:ea:bb -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICObUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MzRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdGNTk3RTNDMEVDM0U2 RUUzRTcyQjkxNzBCRjVFRjc2N0UyRERENDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDmgFQnDkRenWkfKWHh32M6YyJKjUBrY8wepMBD7nLfL8/0EIFb y2GQ3W9iABllUcW6+NwRPaIexKBCxIgSXu9JkPhsBP7/pTwK+FNtSRNMroY6dVBV 8icd0HdUYnvwrnFlyymlW0vU2NGbwtTjxf+mXdmiuxVOkFjzySIGKGB1x0/ay+rP peu8dxEhdgT3z10fbSuhzy0oPqBIiJhcF2p5PFaOt1A3LalgpgSwhnm6ViBP+WjI bpHaO/T5R/vTcqnPBxuhppOS0/gmUckWpplqTUe6V5FCnjQ/0Mnyqd/iklSM4fKQ brMnKvnK/Hn+DgbSHp04bopm9sLgjzdc6p57AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUf1l+PA7D5u4+crkXC/Xvdn4t3UkwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2YxbC1QQTdENXU0LWNya1hD X1h2ZG40dDNVay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk B00A/wswDQYJKoZIhvcNAQELBQADggEBAJ0ReLjOrORWo8KaVscYVUwoBPN8Kmww LBAmirt/K5JDqR2D4HwSv1qKBuczhuWonulGbx7JPkp+AhTkwoc5lLKFljDmwpGs Nk7b7eSV1IQ1HhUURWI37wsnpN3F+Ij7rQgi8tt3P/rL5nMFt4ZHWioPrLvprOad 7u0rmnqs+WFX3R+xTr66DHvFpKUxdOUftZ9G5hIZFhFSoWouARU0WYlZYY/ePiXg KplbphRJGMoqyceg5LBALSZBXKtWG3vK+b1/gfWhTDnmaFsLsRKEDl/77D0RgYoz WvzyP1C1XOyEY7qoqUt6X0DZ9icr4z3D83RvVbF4eyjrBC6mO/4v6rs= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:59 2025 by rpki-client