$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/j-6a-_w1BzQv_pTnQ9Nb1eZo9x0.roa File: j-6a-_w1BzQv_pTnQ9Nb1eZo9x0.roa (raw, json) Hash identifier: B6oTJHPs5aKQsGExGp8stqFvqvFj6aCb6ws3Lh9+jxg= Subject key identifier: 8F:EE:9A:FB:FC:35:07:34:2F:FE:94:E7:43:D3:5B:D5:E6:68:F7:1D Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3AAC Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/j-6a-_w1BzQv_pTnQ9Nb1eZo9x0.roa Signing time: Fri 22 Aug 2025 08:47:38 +0000 ROA not before: Fri 22 Aug 2025 08:47:38 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.232.184.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15020 (0x3aac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:38 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8FEE9AFBFC3507342FFE94E743D35BD5E668F71D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:76:9c:b3:9f:1b:7b:c9:7f:5b:34:0d:63:bb: 80:39:d0:07:96:8d:01:94:f2:0a:eb:cb:0c:d8:23: 64:36:d8:d0:7f:e2:10:23:3e:7f:0b:ae:5c:a6:12: 56:74:f2:46:f7:08:29:73:a3:db:c3:98:3a:40:12: a4:5d:4d:21:3d:0b:49:43:08:81:5f:f5:83:b8:4e: e4:71:9d:26:cb:94:f1:c6:12:8b:de:b0:88:91:87: 92:63:65:98:f3:80:46:64:e7:10:b5:49:8b:04:9e: 1a:9d:4b:38:a6:37:17:c0:50:44:4f:6d:52:6b:0a: 88:51:fe:b0:67:5a:f7:df:6a:43:ed:9b:ac:f9:4f: 7a:73:a0:97:de:f9:7e:97:c7:be:b7:cd:0a:2a:d6: df:79:02:b4:d3:4f:fd:30:b7:35:e4:99:4c:7e:34: fe:18:21:3f:62:6a:92:45:af:c7:8d:f1:d8:d4:fc: d7:f8:51:3e:2e:0c:b3:ea:41:c6:3d:74:a0:c1:8d: fa:7f:29:1a:a3:87:46:31:88:f7:c6:4b:3d:dc:0c: 77:da:42:4b:19:e0:5f:73:e4:be:9c:10:f9:65:19: 24:c1:b0:e4:82:26:c9:20:a6:f2:ee:11:50:3f:33: dd:4d:df:4e:c1:c8:52:9e:a9:bc:92:98:8e:7f:6b: 80:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:EE:9A:FB:FC:35:07:34:2F:FE:94:E7:43:D3:5B:D5:E6:68:F7:1D X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/j-6a-_w1BzQv_pTnQ9Nb1eZo9x0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.184.0/21 Signature Algorithm: sha256WithRSAEncryption 6e:3d:aa:f6:47:8a:ff:cf:fe:33:dc:66:b8:5f:fd:d5:57:1f: 90:54:d0:a0:74:b8:c7:ed:d5:35:81:c2:cb:c4:f4:a5:43:be: 62:93:b9:28:27:13:1c:dc:6f:69:33:35:af:31:67:65:2e:52: a1:54:be:5e:24:ca:7d:d1:93:c1:82:5e:9d:db:c5:07:3d:51: 4d:db:ee:8f:4c:bd:a0:3c:f9:af:73:09:38:7e:4c:1e:b8:4a: 26:b8:0e:6a:f6:52:db:7b:aa:cd:73:58:d9:22:1c:93:ac:28: 84:05:bc:1a:b3:57:9a:30:ab:d3:b2:69:66:73:01:6c:a8:ee: 64:a9:04:02:29:9d:67:03:73:b2:f0:a2:24:08:5c:6e:13:09: e3:1a:97:96:dd:39:ea:1b:ff:b4:62:58:e0:68:39:f1:11:4e: 4f:cc:71:37:a4:75:be:0d:b7:b1:b5:14:d8:5a:76:d0:87:1f: 27:c1:b5:2a:9c:80:bb:ab:b7:95:92:c9:05:c8:5b:06:5b:33: a1:57:18:4c:f6:d6:0b:17:df:2c:47:af:c5:dc:f0:7a:53:71: 00:3e:39:93:36:33:dd:f9:08:f1:b6:3a:b9:3a:a9:5f:28:08: ad:5d:4f:11:c5:e1:b7:f4:9e:72:8a:e3:6a:74:76:ec:ab:d5: 6a:61:b2:bb -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOqwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3MzhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhGRUU5QUZCRkMzNTA3 MzQyRkZFOTRFNzQzRDM1QkQ1RTY2OEY3MUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYdpyznxt7yX9bNA1ju4A50AeWjQGU8grrywzYI2Q22NB/4hAj Pn8LrlymElZ08kb3CClzo9vDmDpAEqRdTSE9C0lDCIFf9YO4TuRxnSbLlPHGEove sIiRh5JjZZjzgEZk5xC1SYsEnhqdSzimNxfAUERPbVJrCohR/rBnWvffakPtm6z5 T3pzoJfe+X6Xx763zQoq1t95ArTTT/0wtzXkmUx+NP4YIT9iapJFr8eN8djU/Nf4 UT4uDLPqQcY9dKDBjfp/KRqjh0YxiPfGSz3cDHfaQksZ4F9z5L6cEPllGSTBsOSC JskgpvLuEVA/M91N307ByFKeqbySmI5/a4C7AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUj+6a+/w1BzQv/pTnQ9Nb1eZo9x0wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2otNmEtX3cxQnpRdl9wVG5R OU5iMWVabzl4MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6LgwDQYJKoZIhvcNAQELBQADggEBAG49qvZHiv/P/jPcZrhf/dVXH5BU0KB0uMft 1TWBwsvE9KVDvmKTuSgnExzcb2kzNa8xZ2UuUqFUvl4kyn3Rk8GCXp3bxQc9UU3b 7o9MvaA8+a9zCTh+TB64Sia4Dmr2Utt7qs1zWNkiHJOsKIQFvBqzV5owq9OyaWZz AWyo7mSpBAIpnWcDc7LwoiQIXG4TCeMal5bdOeob/7RiWOBoOfERTk/McTekdb4N t7G1FNhadtCHHyfBtSqcgLurt5WSyQXIWwZbM6FXGEz21gsX3yxHr8Xc8HpTcQA+ OZM2M935CPG2Ork6qV8oCK1dTxHF4bf0nnKK42p0duyr1Wphsrs= -----END CERTIFICATE-----Generated at Sun Aug 24 07:23:14 2025 by rpki-client