$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ih5rOwpeIvo5Dkuz6OJKh--JMTw.roa File: ih5rOwpeIvo5Dkuz6OJKh--JMTw.roa (raw, json) Hash identifier: aNWBFqYp6+KQue8lOZ+1FuXcngmJDr+C9oAPSRxBSSA= Subject key identifier: 8A:1E:6B:3B:0A:5E:22:FA:39:0E:4B:B3:E8:E2:4A:87:EF:89:31:3C Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 39BD Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ih5rOwpeIvo5Dkuz6OJKh--JMTw.roa Signing time: Fri 22 Aug 2025 08:46:36 +0000 ROA not before: Fri 22 Aug 2025 08:46:36 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.232.28.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14781 (0x39bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:36 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8A1E6B3B0A5E22FA390E4BB3E8E24A87EF89313C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ab:03:84:5e:8e:9a:cf:f2:4a:3d:c2:0b:b0: d9:07:ab:14:b5:ac:06:59:be:7a:26:cb:6a:27:4e: 1e:7a:81:d7:4b:f3:e7:97:38:be:e5:08:0f:a5:bd: b1:c7:0d:82:f3:84:50:5a:09:02:60:6a:06:71:fd: 17:47:88:ce:ea:bd:b1:1f:6f:1f:a4:89:a6:08:47: 92:07:49:77:3c:32:45:d6:61:8b:7c:cc:4a:cb:d2: 2b:36:fa:d6:ca:1e:e0:c5:7d:46:03:dd:0c:3d:eb: 94:40:0d:b0:aa:0e:76:16:8d:cb:e3:c0:89:a7:da: af:85:36:48:b3:17:8a:82:9e:26:83:7f:7b:f0:3e: 33:10:cf:66:0d:81:49:d2:9f:fe:e1:77:84:c0:68: 49:75:0f:62:f2:57:6b:c8:9a:82:7f:03:71:ea:83: a8:b8:07:60:77:33:aa:ec:f4:d9:b6:02:4a:6f:b6: 88:51:93:b9:ba:e2:c0:e8:ca:6a:db:23:03:b5:91: 43:62:6b:a9:f8:96:6c:c4:17:19:77:68:1a:2e:bf: 0c:42:0d:0f:0e:07:f8:f9:1d:9f:db:27:d7:9f:65: 4d:86:3d:20:74:32:94:46:d7:d1:80:4b:f8:64:f3: 8c:55:ec:4f:d8:87:e4:99:3a:81:e8:9a:f0:08:81: db:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:1E:6B:3B:0A:5E:22:FA:39:0E:4B:B3:E8:E2:4A:87:EF:89:31:3C X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ih5rOwpeIvo5Dkuz6OJKh--JMTw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.28.0/22 Signature Algorithm: sha256WithRSAEncryption 17:8b:c9:62:37:f6:fd:ef:ee:aa:2c:b8:36:0c:50:c5:d8:ef: 00:56:bf:b9:84:2b:6e:fc:01:60:40:e5:19:c2:e8:40:47:b1: 1a:c4:28:90:79:68:6d:79:d7:a1:e3:a9:d1:8e:37:cf:93:23: 2c:ff:61:59:4f:09:44:6a:f9:5f:bb:b2:4b:f2:5c:b3:8f:98: 2e:bd:f0:81:d0:c4:ef:a9:d9:93:d2:05:2e:51:59:bc:db:1e: 03:24:78:c8:8a:f4:cf:5f:e5:24:82:ef:ea:4b:4f:55:57:ef: da:1a:f8:65:c9:79:01:53:ef:6a:30:e9:c9:35:68:ff:4c:02: a2:e7:12:09:1c:b0:55:58:37:63:10:fa:60:cd:6b:6d:68:81: 6b:78:6a:23:ae:d5:48:79:17:31:02:82:29:10:d5:6c:38:a0: 46:b3:0c:2c:65:ad:21:32:50:ce:21:f5:7e:a4:66:c4:12:df: 3a:3b:24:6a:d8:06:78:40:f4:80:26:0b:93:68:ce:c9:64:4a: 19:59:11:5a:f9:db:28:58:37:07:0c:4b:e6:16:2a:cf:f0:88: 7d:e5:c3:73:9e:33:b8:3e:7e:43:f9:5d:04:2b:5b:d7:0b:0f: 82:45:56:89:cd:1b:4c:8c:54:eb:b4:e5:b9:51:62:9e:96:fd: 85:d3:e3:34 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOb0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MzZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhBMUU2QjNCMEE1RTIy RkEzOTBFNEJCM0U4RTI0QTg3RUY4OTMxM0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIqwOEXo6az/JKPcILsNkHqxS1rAZZvnomy2onTh56gddL8+eX OL7lCA+lvbHHDYLzhFBaCQJgagZx/RdHiM7qvbEfbx+kiaYIR5IHSXc8MkXWYYt8 zErL0is2+tbKHuDFfUYD3Qw965RADbCqDnYWjcvjwImn2q+FNkizF4qCniaDf3vw PjMQz2YNgUnSn/7hd4TAaEl1D2LyV2vImoJ/A3Hqg6i4B2B3M6rs9Nm2AkpvtohR k7m64sDoymrbIwO1kUNia6n4lmzEFxl3aBouvwxCDQ8OB/j5HZ/bJ9efZU2GPSB0 MpRG19GAS/hk84xV7E/Yh+SZOoHomvAIgdvpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUih5rOwpeIvo5Dkuz6OJKh++JMTwwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2loNXJPd3BlSXZvNURrdXo2 T0pLaC0tSk1Udy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6BwwDQYJKoZIhvcNAQELBQADggEBABeLyWI39v3v7qosuDYMUMXY7wBWv7mEK278 AWBA5RnC6EBHsRrEKJB5aG1516HjqdGON8+TIyz/YVlPCURq+V+7skvyXLOPmC69 8IHQxO+p2ZPSBS5RWbzbHgMkeMiK9M9f5SSC7+pLT1VX79oa+GXJeQFT72ow6ck1 aP9MAqLnEgkcsFVYN2MQ+mDNa21ogWt4aiOu1Uh5FzECgikQ1Ww4oEazDCxlrSEy UM4h9X6kZsQS3zo7JGrYBnhA9IAmC5NozslkShlZEVr52yhYNwcMS+YWKs/wiH3l w3OeM7g+fkP5XQQrW9cLD4JFVonNG0yMVOu05blRYp6W/YXT4zQ= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:45 2025 by rpki-client