$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mzG4oLcY4keUCoBzkKf5__rZ8SY.roa File: mzG4oLcY4keUCoBzkKf5__rZ8SY.roa (raw, json) Hash identifier: FaUpJpoPg4iCPVDVQHTTiiuF8oGTHYNb7APRW+fVU00= Subject key identifier: 9B:31:B8:A0:B7:18:E2:47:94:0A:80:73:90:A7:F9:FF:FA:D9:F1:26 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3A7A Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mzG4oLcY4keUCoBzkKf5__rZ8SY.roa Signing time: Fri 22 Aug 2025 08:47:23 +0000 ROA not before: Fri 22 Aug 2025 08:47:23 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.232.96.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14970 (0x3a7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:23 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9B31B8A0B718E247940A807390A7F9FFFAD9F126 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:8c:2e:3a:45:29:b7:04:66:39:db:c3:a6:6e: 10:13:c5:74:7b:8b:b5:82:a3:3e:25:fa:73:1e:4a: 42:2b:97:04:54:0a:43:10:d6:90:32:bb:f6:a0:9f: e6:f2:72:f6:49:43:a3:c5:1b:fa:75:33:d2:96:c4: 1e:11:44:5b:0b:5b:0d:8a:76:31:19:fc:30:09:e3: ac:f1:39:9a:1e:8d:1c:a5:ab:56:a9:3e:fd:0e:fb: 56:c9:38:48:7f:d9:1d:7f:ea:d7:fb:e4:d9:e8:0e: 1d:e2:3c:10:5a:01:f0:ef:ee:71:77:a6:f5:fc:8c: f7:a4:1a:bd:2c:25:a2:dc:ba:6c:67:50:20:1f:89: 2f:25:78:62:5d:bf:5a:11:2e:bd:c9:52:88:82:cc: 11:f6:08:f2:e6:7a:69:03:2e:7b:0a:f1:71:c3:38: 92:e7:4f:8a:21:4a:5e:fd:18:33:47:6f:eb:93:76: 03:55:1e:f1:2f:a6:43:bc:40:5f:ba:c4:1c:7e:ce: 24:2b:0a:da:d1:7c:be:f0:f1:fa:76:4e:e5:df:7b: 24:17:13:2a:3f:81:aa:03:81:95:73:9e:57:e0:b3: 2d:f9:ea:34:b8:11:a2:50:de:a6:f9:3d:84:ba:40: 12:69:3e:b7:c6:c2:d8:25:af:41:3d:c1:a3:7b:d0: b5:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:31:B8:A0:B7:18:E2:47:94:0A:80:73:90:A7:F9:FF:FA:D9:F1:26 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mzG4oLcY4keUCoBzkKf5__rZ8SY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.96.0/21 Signature Algorithm: sha256WithRSAEncryption 8b:4b:35:89:54:9b:38:f4:a0:03:f3:ca:0a:a7:e7:48:f9:88: e1:f2:38:36:15:4b:e2:4e:c3:d2:38:ec:11:02:9a:38:5c:78: 0c:49:9b:29:9b:13:ab:d7:3e:72:48:b9:76:cd:bf:0e:8e:0a: 66:78:03:ca:2f:0c:df:c0:3a:17:2a:73:60:97:22:b6:da:e7: 82:e5:7c:20:08:c3:62:63:e5:7f:ca:68:c8:a5:04:12:b2:99: 69:d5:63:e8:35:8b:12:99:26:39:f0:2d:9e:47:c3:4b:b1:f7: 44:0b:3c:b6:10:71:82:b5:55:82:d8:2c:87:06:d0:da:25:77: a7:dd:f9:a3:da:34:7e:12:8b:e9:1e:6c:4f:8c:20:d5:bb:cb: c6:10:8d:c1:3c:2b:61:bc:7b:77:b1:2b:cc:a0:bc:b8:d6:e9: 31:5e:16:f4:3e:84:ce:6e:0c:17:b6:54:1e:47:f4:2b:38:91: 80:e6:a0:d1:4e:21:64:33:82:34:09:85:f7:63:a0:17:7d:85: a1:fd:b8:4f:72:96:93:b3:08:ed:05:6a:a9:49:16:e0:df:b8: d7:be:dd:ce:e4:8b:3e:5a:57:91:9b:09:2d:a3:9d:6e:aa:c7: a4:57:ac:8f:5d:af:e4:62:36:12:87:e4:d9:a9:29:06:cd:dd: 7c:d6:b3:4c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOnowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3MjNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlCMzFCOEEwQjcxOEUy NDc5NDBBODA3MzkwQTdGOUZGRkFEOUYxMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDejC46RSm3BGY528OmbhATxXR7i7WCoz4l+nMeSkIrlwRUCkMQ 1pAyu/agn+bycvZJQ6PFG/p1M9KWxB4RRFsLWw2KdjEZ/DAJ46zxOZoejRylq1ap Pv0O+1bJOEh/2R1/6tf75NnoDh3iPBBaAfDv7nF3pvX8jPekGr0sJaLcumxnUCAf iS8leGJdv1oRLr3JUoiCzBH2CPLmemkDLnsK8XHDOJLnT4ohSl79GDNHb+uTdgNV HvEvpkO8QF+6xBx+ziQrCtrRfL7w8fp2TuXfeyQXEyo/gaoDgZVznlfgsy356jS4 EaJQ3qb5PYS6QBJpPrfGwtglr0E9waN70LWtAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUmzG4oLcY4keUCoBzkKf5//rZ8SYwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL216RzRvTGNZNGtlVUNvQnpr S2Y1X19yWjhTWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6GAwDQYJKoZIhvcNAQELBQADggEBAItLNYlUmzj0oAPzygqn50j5iOHyODYVS+JO w9I47BECmjhceAxJmymbE6vXPnJIuXbNvw6OCmZ4A8ovDN/AOhcqc2CXIrba54Ll fCAIw2Jj5X/KaMilBBKymWnVY+g1ixKZJjnwLZ5Hw0ux90QLPLYQcYK1VYLYLIcG 0Nold6fd+aPaNH4Si+kebE+MINW7y8YQjcE8K2G8e3exK8ygvLjW6TFeFvQ+hM5u DBe2VB5H9Cs4kYDmoNFOIWQzgjQJhfdjoBd9haH9uE9ylpOzCO0FaqlJFuDfuNe+ 3c7kiz5aV5GbCS2jnW6qx6RXrI9dr+RiNhKH5NmpKQbN3XzWs0w= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:53 2025 by rpki-client