$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gqDNEs_pXixdvCS86BKhiHKJIlU.roa File: gqDNEs_pXixdvCS86BKhiHKJIlU.roa (raw, json) Hash identifier: YyXr+t+puupkLkINUK0sQQVAu/KHw+E70Hrezz9AvyU= Subject key identifier: 82:A0:CD:12:CF:E9:5E:2C:5D:BC:24:BC:E8:12:A1:88:72:89:22:55 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 39E6 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gqDNEs_pXixdvCS86BKhiHKJIlU.roa Signing time: Fri 22 Aug 2025 08:46:47 +0000 ROA not before: Fri 22 Aug 2025 08:46:47 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.233.148.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14822 (0x39e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=82A0CD12CFE95E2C5DBC24BCE812A18872892255 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:92:2d:28:9f:ae:21:59:9d:4c:9d:97:fe:31: 34:b7:19:a9:30:75:49:db:ce:78:da:6c:2d:95:fa: bb:40:bf:ab:71:f7:43:c4:62:33:89:f7:6b:3f:71: 0a:b3:a5:ee:f3:4d:74:62:2f:a1:f7:a0:9f:c2:95: 35:80:64:7e:a5:55:87:51:f8:8e:03:80:89:6d:7d: cb:a0:07:a9:35:70:f7:ea:30:c8:cc:d3:a1:0f:5f: e0:3c:98:9e:f9:9d:c0:48:13:65:56:6f:3c:e4:d6: bf:a7:7a:23:a0:75:40:48:87:9f:25:af:df:cd:e4: 7f:3c:83:70:6c:8d:fa:9e:7c:7d:11:76:56:a0:93: a7:68:fc:a9:4c:55:34:97:c4:66:2a:70:fd:5b:76: 32:c6:30:ab:da:da:19:28:51:d3:9a:4c:59:99:a6: a7:b7:52:ee:51:c5:14:f2:6e:98:61:9a:37:94:ac: bd:96:a7:55:07:65:ce:7c:8a:c5:4d:25:c4:8c:d9: 1c:72:79:9e:8f:d4:8d:8b:86:f3:de:e9:d9:8c:23: 4a:59:ec:80:03:82:1f:f3:44:39:a7:4e:e6:f8:7b: f0:be:4c:69:bc:01:c0:ab:f7:15:0d:17:b3:49:4b: ba:03:ac:da:cd:04:f8:bc:78:48:65:7a:c6:b5:74: e4:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:A0:CD:12:CF:E9:5E:2C:5D:BC:24:BC:E8:12:A1:88:72:89:22:55 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gqDNEs_pXixdvCS86BKhiHKJIlU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.148.0/22 Signature Algorithm: sha256WithRSAEncryption 1d:9b:b9:b2:d8:81:9e:de:cd:cd:83:49:2f:a6:3c:ed:2b:55: d1:54:0b:e3:28:e5:fb:bc:3b:ec:df:cd:11:3d:9c:4d:79:e3: 94:42:5f:99:8d:d3:b3:91:d6:00:f6:af:88:5f:f1:58:68:09: 9f:fd:7f:e9:9c:39:46:d1:0c:62:2a:4f:0f:10:c2:04:39:11: 91:ee:b6:bb:71:b7:91:82:90:1b:65:43:6b:c5:6f:64:48:f8: 66:ad:fa:2d:79:41:37:2f:88:9f:e7:f8:bd:92:8f:52:df:00: 8f:5c:cd:02:9c:d7:dd:f9:8d:0a:62:96:7d:43:04:a8:ea:01: ea:e1:5c:22:1c:4c:09:82:fe:87:00:55:55:cf:cb:96:1b:99: 81:19:a9:af:6d:63:73:40:6a:3b:1f:1d:0a:36:3b:ee:a8:f8: 71:c0:9c:47:60:fb:d3:a8:e5:14:0d:6c:be:c6:26:55:6a:55: 79:3a:af:08:92:f9:d3:3f:3c:de:f0:8e:23:dd:97:5c:f2:45: 1e:e8:15:0f:d9:10:35:95:98:15:e7:53:3e:8c:a7:02:12:f5: aa:87:ec:e4:17:f7:6e:f9:20:b5:7f:41:aa:ba:85:59:a5:98: c2:b5:87:3b:95:ba:f5:db:4f:b8:a6:ed:77:80:11:4e:05:f5: 1e:66:51:a0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOeYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2NDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDgyQTBDRDEyQ0ZFOTVF MkM1REJDMjRCQ0U4MTJBMTg4NzI4OTIyNTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMki0on64hWZ1MnZf+MTS3GakwdUnbznjabC2V+rtAv6tx90PE YjOJ92s/cQqzpe7zTXRiL6H3oJ/ClTWAZH6lVYdR+I4DgIltfcugB6k1cPfqMMjM 06EPX+A8mJ75ncBIE2VWbzzk1r+neiOgdUBIh58lr9/N5H88g3BsjfqefH0Rdlag k6do/KlMVTSXxGYqcP1bdjLGMKva2hkoUdOaTFmZpqe3Uu5RxRTybphhmjeUrL2W p1UHZc58isVNJcSM2RxyeZ6P1I2LhvPe6dmMI0pZ7IADgh/zRDmnTub4e/C+TGm8 AcCr9xUNF7NJS7oDrNrNBPi8eEhlesa1dORRAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUgqDNEs/pXixdvCS86BKhiHKJIlUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2dxRE5Fc19wWGl4ZHZDUzg2 QktoaUhLSklsVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6ZQwDQYJKoZIhvcNAQELBQADggEBAB2bubLYgZ7ezc2DSS+mPO0rVdFUC+Mo5fu8 O+zfzRE9nE1545RCX5mN07OR1gD2r4hf8VhoCZ/9f+mcOUbRDGIqTw8QwgQ5EZHu trtxt5GCkBtlQ2vFb2RI+Gat+i15QTcviJ/n+L2Sj1LfAI9czQKc1935jQpiln1D BKjqAerhXCIcTAmC/ocAVVXPy5YbmYEZqa9tY3NAajsfHQo2O+6o+HHAnEdg+9Oo 5RQNbL7GJlVqVXk6rwiS+dM/PN7wjiPdl1zyRR7oFQ/ZEDWVmBXnUz6MpwIS9aqH 7OQX9275ILV/Qaq6hVmlmMK1hzuVuvXbT7im7XeAEU4F9R5mUaA= -----END CERTIFICATE-----Generated at Sun Aug 24 07:29:32 2025 by rpki-client