$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/f9La5h7upm0UgxQ7mXIHgMxF-dM.roa File: f9La5h7upm0UgxQ7mXIHgMxF-dM.roa (raw, json) Hash identifier: T9SOfNi4pYGUgLUEX3iw9ptx5l6LJvJCu0xl06L0YJI= Subject key identifier: 7F:D2:DA:E6:1E:EE:A6:6D:14:83:14:3B:99:72:07:80:CC:45:F9:D3 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 39D0 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/f9La5h7upm0UgxQ7mXIHgMxF-dM.roa Signing time: Fri 22 Aug 2025 08:46:42 +0000 ROA not before: Fri 22 Aug 2025 08:46:42 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.233.64.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14800 (0x39d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:42 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7FD2DAE61EEEA66D1483143B99720780CC45F9D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:47:28:02:97:b3:64:49:7f:55:5f:58:24:e5: 9b:22:86:7d:72:13:25:c3:c0:f0:e2:ab:b5:1b:9d: 65:42:cb:ad:96:2b:46:5e:b9:02:82:30:b4:ea:8c: 1c:34:f8:1c:63:b3:49:7a:65:34:f0:48:98:7e:1a: 31:0a:e4:f8:e1:ac:a0:17:b1:40:cc:87:3f:52:94: dd:7a:6e:be:33:64:c1:78:49:fe:f2:41:1a:be:57: 6b:d2:bb:e5:1d:7d:f1:fc:5d:1f:37:0f:43:91:a8: 67:c0:5b:bc:e9:b7:f9:cf:78:82:50:64:de:79:75: b9:bd:1c:2c:9f:3f:82:1d:b3:7d:95:70:4f:ba:fc: 09:44:8a:42:29:a8:e1:7e:c1:93:09:8d:0d:ed:1c: 97:b7:36:ad:3f:82:61:a0:ed:62:25:49:a3:88:57: 38:78:31:85:5d:33:c0:21:70:91:d8:6d:1a:6a:c3: 50:c9:bf:29:55:f9:11:eb:e3:77:80:6f:57:f9:0b: f6:1a:37:e8:bb:14:f7:dd:ad:df:7d:a1:9c:16:3c: 8f:49:73:8d:9c:ca:8c:b7:52:62:0e:16:85:85:fe: 0f:bc:9b:73:52:c2:6a:36:63:08:7d:9a:03:97:09: 91:bf:f7:cb:a1:2c:45:5a:8e:8a:2d:14:f8:86:3f: d5:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:D2:DA:E6:1E:EE:A6:6D:14:83:14:3B:99:72:07:80:CC:45:F9:D3 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/f9La5h7upm0UgxQ7mXIHgMxF-dM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.64.0/22 Signature Algorithm: sha256WithRSAEncryption 91:b3:46:ef:47:76:e8:e6:f9:cd:6c:ef:df:ad:3c:ab:02:62: bc:d8:d6:0c:cf:37:0e:96:34:26:92:7d:0d:ec:3e:41:ff:6e: 46:f5:cd:06:73:cc:2e:ca:48:6b:cb:e3:c3:b0:7e:83:18:28: 96:ec:1c:ee:ec:48:85:c8:48:0f:a7:8f:55:c7:ff:ce:73:58: 99:48:cb:02:2a:16:70:cd:26:5e:7d:5f:ae:b3:15:51:c3:ec: 13:39:e6:d1:71:dc:eb:e4:23:d4:48:d8:a3:b0:8d:28:82:63: 09:90:33:3f:68:71:6e:48:82:ae:50:9f:85:ca:e0:45:29:29: 84:97:7b:99:d7:10:72:a1:f0:01:5f:88:01:bb:69:74:a4:49: d0:f9:65:79:04:10:cf:2c:23:c4:a5:b1:a1:86:dd:91:af:45: df:82:8e:40:58:1e:e1:12:3a:6a:83:33:91:89:3c:9f:b5:0e: 9f:60:3a:ae:64:8d:33:22:54:1b:8c:64:1c:a8:78:04:9f:74: 4e:1b:96:6e:95:c5:bb:4e:79:b3:8e:54:d0:86:fc:1e:59:2c: a5:c2:81:be:dc:15:ad:47:e8:38:ef:15:a7:cc:25:36:5d:b9: c9:31:f4:e0:c2:2d:82:14:21:5f:62:96:32:8a:a2:0b:3a:5e: ca:8b:bf:62 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOdAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2NDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdGRDJEQUU2MUVFRUE2 NkQxNDgzMTQzQjk5NzIwNzgwQ0M0NUY5RDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDwRygCl7NkSX9VX1gk5Zsihn1yEyXDwPDiq7UbnWVCy62WK0Ze uQKCMLTqjBw0+Bxjs0l6ZTTwSJh+GjEK5PjhrKAXsUDMhz9SlN16br4zZMF4Sf7y QRq+V2vSu+UdffH8XR83D0ORqGfAW7zpt/nPeIJQZN55dbm9HCyfP4Ids32VcE+6 /AlEikIpqOF+wZMJjQ3tHJe3Nq0/gmGg7WIlSaOIVzh4MYVdM8AhcJHYbRpqw1DJ vylV+RHr43eAb1f5C/YaN+i7FPfdrd99oZwWPI9Jc42cyoy3UmIOFoWF/g+8m3NS wmo2Ywh9mgOXCZG/98uhLEVajootFPiGP9UXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUf9La5h7upm0UgxQ7mXIHgMxF+dMwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2Y5TGE1aDd1cG0wVWd4UTdt WElIZ014Ri1kTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6UAwDQYJKoZIhvcNAQELBQADggEBAJGzRu9Hdujm+c1s79+tPKsCYrzY1gzPNw6W NCaSfQ3sPkH/bkb1zQZzzC7KSGvL48OwfoMYKJbsHO7sSIXISA+nj1XH/85zWJlI ywIqFnDNJl59X66zFVHD7BM55tFx3OvkI9RI2KOwjSiCYwmQMz9ocW5Igq5Qn4XK 4EUpKYSXe5nXEHKh8AFfiAG7aXSkSdD5ZXkEEM8sI8SlsaGG3ZGvRd+CjkBYHuES OmqDM5GJPJ+1Dp9gOq5kjTMiVBuMZByoeASfdE4blm6VxbtOebOOVNCG/B5ZLKXC gb7cFa1H6DjvFafMJTZduckx9ODCLYIUIV9iljKKogs6XsqLv2I= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:51 2025 by rpki-client