$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/jEYIokRlQqrsH3CD5bMZ2Q8a-U0.roa File: jEYIokRlQqrsH3CD5bMZ2Q8a-U0.roa (raw, json) Hash identifier: jgzN9sFt7EchBR4T6oaKIqtfHeSPJ3IraQlSKMEkvJc= Subject key identifier: 8C:46:08:A2:44:65:42:AA:EC:1F:70:83:E5:B3:19:D9:0F:1A:F9:4D Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3B04 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/jEYIokRlQqrsH3CD5bMZ2Q8a-U0.roa Signing time: Fri 22 Aug 2025 08:47:59 +0000 ROA not before: Fri 22 Aug 2025 08:47:59 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 106.1.146.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15108 (0x3b04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:59 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8C4608A2446542AAEC1F7083E5B319D90F1AF94D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:11:20:09:95:36:bc:c9:80:3b:ca:a7:9b:e4: 22:31:1a:ef:52:ee:3b:83:1c:97:33:ca:f0:93:c8: 23:88:3b:6c:ee:e1:16:d4:f8:05:aa:23:12:12:f9: 4d:59:f7:58:fe:63:20:3f:a5:e1:24:fa:ac:3d:d6: 55:c6:ef:c8:07:a3:6f:f6:eb:ec:9b:24:eb:56:3f: 0b:53:b9:ff:b0:3b:85:cb:f9:d5:89:65:77:e3:00: 0b:70:ff:10:5e:91:b2:14:2b:b6:a4:20:1a:4c:86: c0:61:04:77:4f:d0:be:71:8b:c3:a0:4c:ac:54:50: 4e:13:bd:6b:b1:e0:11:22:c0:12:94:60:f7:16:49: db:ba:af:65:22:60:d0:98:0b:86:11:d3:84:01:7f: 86:a4:1f:70:9e:a8:06:f4:ff:c9:bf:02:32:77:05: 5a:d5:0b:64:f1:8c:16:cf:b2:e1:bd:a6:84:ca:2f: 76:9a:8a:02:35:a1:8a:20:6b:99:43:03:d0:91:52: 14:cc:2b:f1:69:91:4f:9f:29:9a:75:f7:04:1a:0a: 9c:36:20:d5:77:9a:5d:fb:d9:aa:1b:e4:6b:91:1e: 92:c7:c1:40:7b:14:c8:51:14:de:5b:f1:f4:28:b2: f0:3a:42:e9:26:8f:10:31:1f:33:92:d7:ec:4b:93: 3b:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:46:08:A2:44:65:42:AA:EC:1F:70:83:E5:B3:19:D9:0F:1A:F9:4D X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/jEYIokRlQqrsH3CD5bMZ2Q8a-U0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.146.0/23 Signature Algorithm: sha256WithRSAEncryption 51:df:bc:f9:40:b1:57:d2:c3:86:75:19:0a:2e:53:ef:6f:0a: 5e:4c:5e:ee:f5:57:a0:40:6e:7b:99:6c:0d:45:1f:f1:f8:81: 37:66:bf:6c:38:b0:78:3d:f7:8d:9a:08:3d:60:58:4e:4c:d6: da:e4:99:7e:e0:46:4b:4c:49:9a:47:de:fd:db:ec:ca:c7:20: 63:0a:6a:b4:2a:f9:49:21:b4:1e:06:72:48:70:7d:ff:f4:7d: fc:bc:81:f5:db:d8:bb:11:fe:ed:41:c0:25:1a:15:6c:64:ec: 1e:be:91:4b:c5:61:a4:74:45:81:c7:9f:2e:18:1f:39:c9:ed: fe:31:cd:af:67:84:82:01:fc:a7:c0:bb:09:60:2e:63:21:90: e4:23:2c:90:43:e1:37:b0:5f:54:67:e7:c6:0c:e3:50:96:4a: e8:c6:8e:c7:00:f9:24:e3:6a:96:33:d6:29:f4:51:33:6e:95: 1f:43:81:12:98:29:dd:99:e5:c4:aa:0f:0b:25:db:da:d7:d1: ab:2e:a9:f9:bf:73:3c:a0:14:ec:8b:31:48:8c:cd:1b:d5:80: 27:79:93:06:ef:99:69:bb:cc:48:0f:b4:dd:c2:90:ab:e2:6c: 48:19:ee:a2:d2:d0:67:a6:f1:6b:64:40:35:53:14:d1:80:db: 19:b0:13:bb -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOwQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3NTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhDNDYwOEEyNDQ2NTQy QUFFQzFGNzA4M0U1QjMxOUQ5MEYxQUY5NEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCESAJlTa8yYA7yqeb5CIxGu9S7juDHJczyvCTyCOIO2zu4RbU +AWqIxIS+U1Z91j+YyA/peEk+qw91lXG78gHo2/26+ybJOtWPwtTuf+wO4XL+dWJ ZXfjAAtw/xBekbIUK7akIBpMhsBhBHdP0L5xi8OgTKxUUE4TvWux4BEiwBKUYPcW Sdu6r2UiYNCYC4YR04QBf4akH3CeqAb0/8m/AjJ3BVrVC2TxjBbPsuG9poTKL3aa igI1oYoga5lDA9CRUhTMK/FpkU+fKZp19wQaCpw2INV3ml372aob5GuRHpLHwUB7 FMhRFN5b8fQosvA6QukmjxAxHzOS1+xLkztfAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUjEYIokRlQqrsH3CD5bMZ2Q8a+U0wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2pFWUlva1JsUXFyc0gzQ0Q1 Yk1aMlE4YS1VMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFq AZIwDQYJKoZIhvcNAQELBQADggEBAFHfvPlAsVfSw4Z1GQouU+9vCl5MXu71V6BA bnuZbA1FH/H4gTdmv2w4sHg9942aCD1gWE5M1trkmX7gRktMSZpH3v3b7MrHIGMK arQq+UkhtB4Gckhwff/0ffy8gfXb2LsR/u1BwCUaFWxk7B6+kUvFYaR0RYHHny4Y HznJ7f4xza9nhIIB/KfAuwlgLmMhkOQjLJBD4TewX1Rn58YM41CWSujGjscA+STj apYz1in0UTNulR9DgRKYKd2Z5cSqDwsl29rX0asuqfm/czygFOyLMUiMzRvVgCd5 kwbvmWm7zEgPtN3CkKvibEgZ7qLS0Gem8WtkQDVTFNGA2xmwE7s= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:35 2025 by rpki-client