$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/jh3hsIbuXaiEHZC6Uf1cvDS9xMg.roa File: jh3hsIbuXaiEHZC6Uf1cvDS9xMg.roa (raw, json) Hash identifier: 33Agmfpvzzu0vpz03v3f9kQ81fIYhHIIRzt4Eny/W/g= Subject key identifier: 8E:1D:E1:B0:86:EE:5D:A8:84:1D:90:BA:51:FD:5C:BC:34:BD:C4:C8 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3AA1 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/jh3hsIbuXaiEHZC6Uf1cvDS9xMg.roa Signing time: Fri 22 Aug 2025 08:47:34 +0000 ROA not before: Fri 22 Aug 2025 08:47:34 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 106.1.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15009 (0x3aa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:34 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8E1DE1B086EE5DA8841D90BA51FD5CBC34BDC4C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:60:a4:92:69:6c:99:ac:d2:c9:3e:49:cc:9a: ed:6c:d5:bf:70:80:c5:da:e7:1b:06:68:aa:81:7d: ca:e3:a7:7c:4b:6b:97:df:37:d1:c0:7b:2a:ea:89: 48:c0:11:a3:c2:da:c0:b4:66:75:85:f0:20:76:43: 80:3c:bf:ca:75:5b:95:ca:b5:31:20:f5:1f:5c:1c: 8a:31:15:d7:33:37:00:9e:df:f1:01:d4:bb:a2:a9: 4d:1e:3e:47:33:b8:f5:2e:e9:f4:77:17:22:18:73: eb:bb:8a:ab:4e:d2:92:7f:34:58:ab:4b:ea:66:9d: 3b:70:a1:50:93:f8:b4:7f:c8:69:9f:6f:dd:8e:72: d5:7d:66:8c:62:32:d0:70:58:39:ab:86:00:b4:e2: 0e:38:a5:19:f4:a4:86:94:59:5c:d2:fc:65:ef:e8: b8:d4:18:6b:51:53:f6:ec:2a:9c:9c:9e:18:dc:ef: ef:4b:46:f1:b2:c7:e8:45:c1:94:c2:f7:62:ba:92: 68:5d:a9:6b:2d:7f:9a:41:ad:17:33:33:ab:62:09: 85:b2:f3:b1:f7:4e:6c:da:e2:c4:97:e3:b3:8e:08: 70:44:1d:9a:ae:57:8b:1c:d3:25:8a:14:c6:6b:f5: 1b:37:9d:3b:23:f3:11:6b:3f:6d:16:56:e3:0c:f3: 8b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:1D:E1:B0:86:EE:5D:A8:84:1D:90:BA:51:FD:5C:BC:34:BD:C4:C8 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/jh3hsIbuXaiEHZC6Uf1cvDS9xMg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.8.0/22 Signature Algorithm: sha256WithRSAEncryption 34:06:cd:b2:e9:9b:e9:ac:1b:de:20:c9:f7:c2:75:13:de:72: 5e:df:8f:c4:be:37:d3:8b:7a:ef:1c:b5:47:7c:12:63:36:b0: 3a:1b:62:7f:72:23:10:d1:d8:c0:f2:da:c3:a4:4f:43:71:a7: 1b:71:c1:9e:90:86:a9:11:e8:ad:39:4b:bb:8b:bb:a1:aa:a3: 4c:44:33:8e:dc:e9:df:0e:c8:1c:83:c0:b2:a2:e8:c2:70:48: f8:7c:c1:04:fe:1d:d9:5a:de:df:fa:52:f9:5c:c2:fe:96:69: c5:8f:4c:d5:51:4c:fc:65:e6:78:81:0e:e9:1f:86:71:db:cf: 6e:59:ba:aa:3b:2c:f7:6c:40:a6:22:0b:03:3c:5b:4e:af:7b: 7c:d5:c3:fa:7f:6c:cf:4a:56:f2:91:1a:64:48:c7:6a:02:96: 1e:de:6c:13:d8:26:c7:ca:f0:8f:bb:9b:bb:9a:e7:d2:d1:80: 84:6a:4e:7d:0e:63:07:3c:87:35:e0:89:f4:e8:da:d0:ec:92: b6:31:63:8e:46:44:4b:57:f0:21:05:8e:3e:47:82:77:2e:96: a9:c2:f2:9f:d0:be:11:a8:44:42:c1:ae:e7:92:35:fb:db:32: ff:a4:f5:97:10:f2:f3:09:48:e0:04:7c:06:a1:50:00:e7:09: 21:4f:7e:d9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOqEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3MzRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhFMURFMUIwODZFRTVE QTg4NDFEOTBCQTUxRkQ1Q0JDMzRCREM0QzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7YKSSaWyZrNLJPknMmu1s1b9wgMXa5xsGaKqBfcrjp3xLa5ff N9HAeyrqiUjAEaPC2sC0ZnWF8CB2Q4A8v8p1W5XKtTEg9R9cHIoxFdczNwCe3/EB 1LuiqU0ePkczuPUu6fR3FyIYc+u7iqtO0pJ/NFirS+pmnTtwoVCT+LR/yGmfb92O ctV9ZoxiMtBwWDmrhgC04g44pRn0pIaUWVzS/GXv6LjUGGtRU/bsKpycnhjc7+9L RvGyx+hFwZTC92K6kmhdqWstf5pBrRczM6tiCYWy87H3Tmza4sSX47OOCHBEHZqu V4sc0yWKFMZr9Rs3nTsj8xFrP20WVuMM84tFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUjh3hsIbuXaiEHZC6Uf1cvDS9xMgwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2poM2hzSWJ1WGFpRUhaQzZV ZjFjdkRTOXhNZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq AQgwDQYJKoZIhvcNAQELBQADggEBADQGzbLpm+msG94gyffCdRPecl7fj8S+N9OL eu8ctUd8EmM2sDobYn9yIxDR2MDy2sOkT0NxpxtxwZ6QhqkR6K05S7uLu6Gqo0xE M47c6d8OyByDwLKi6MJwSPh8wQT+Hdla3t/6Uvlcwv6WacWPTNVRTPxl5niBDukf hnHbz25Zuqo7LPdsQKYiCwM8W06ve3zVw/p/bM9KVvKRGmRIx2oClh7ebBPYJsfK 8I+7m7ua59LRgIRqTn0OYwc8hzXgifTo2tDskrYxY45GREtX8CEFjj5HgnculqnC 8p/QvhGoRELBrueSNfvbMv+k9ZcQ8vMJSOAEfAahUADnCSFPftk= -----END CERTIFICATE-----Generated at Sun Aug 24 07:31:06 2025 by rpki-client