$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/nZF9Z0DU5OLwPUZi-FzYZ8G10xU.roa File: nZF9Z0DU5OLwPUZi-FzYZ8G10xU.roa (raw, json) Hash identifier: ituOvAUCd765ynAV4NZ95EYtpwfNZ9d0jH6izazQ4HE= Subject key identifier: 9D:91:7D:67:40:D4:E4:E2:F0:3D:46:62:F8:5C:D8:67:C1:B5:D3:15 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 389C Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/nZF9Z0DU5OLwPUZi-FzYZ8G10xU.roa Signing time: Fri 22 Aug 2025 08:45:27 +0000 ROA not before: Fri 22 Aug 2025 08:45:27 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.233.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14492 (0x389c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:27 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9D917D6740D4E4E2F03D4662F85CD867C1B5D315 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c2:6a:ba:d1:6a:c5:81:c0:51:ba:d7:5b:05: aa:23:91:12:2a:95:5b:41:a9:3b:f7:e1:ae:0e:c8: 2b:8a:c3:ac:82:fc:b4:dd:fc:86:91:b6:c7:c2:d3: b9:93:9c:97:df:d9:b6:10:7d:f6:9c:a9:79:be:11: 2d:3e:ac:43:13:61:6f:6e:1f:86:61:92:6d:8c:a9: dd:a9:0d:fb:09:8f:ff:b0:4c:8b:34:a3:a4:2f:62: 16:c5:98:ef:d4:ac:28:42:9e:ef:ae:74:b8:ee:1c: 70:fa:8c:1e:e2:20:38:9b:df:0c:45:42:41:7e:15: da:82:be:d1:0e:d9:06:ec:16:c8:f7:a9:90:73:29: 40:b7:4f:6b:cb:30:56:a3:3f:dd:bd:e2:31:00:4c: 83:c4:86:f1:c8:30:86:31:aa:e5:00:bd:27:31:81: 3c:c5:b6:a4:ad:1c:96:8a:33:dc:69:27:6e:16:c7: dd:78:35:5e:a6:c2:b2:d9:bf:e5:e9:b0:81:58:c5: 4d:f6:d5:39:1f:c2:4e:96:7d:17:f9:bc:a6:d8:29: 5c:41:28:c9:d3:65:95:ca:94:69:85:c9:00:2f:7a: 9c:b3:99:99:32:e1:7b:b5:17:e2:4d:16:57:d8:d7: 6b:e2:eb:79:8d:e7:61:cf:ca:24:26:20:ec:24:9c: 84:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:91:7D:67:40:D4:E4:E2:F0:3D:46:62:F8:5C:D8:67:C1:B5:D3:15 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/nZF9Z0DU5OLwPUZi-FzYZ8G10xU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.244.0/24 Signature Algorithm: sha256WithRSAEncryption 84:93:0d:67:6b:59:6e:2c:66:c2:14:39:40:29:62:49:95:cc: c6:56:ce:41:d9:7b:55:d9:df:ff:82:f9:43:3e:27:fd:a3:7d: 1c:f1:b8:f4:f6:87:33:10:e6:b1:39:7b:72:f6:e0:a1:04:aa: 4e:95:f5:ac:90:13:1b:a6:28:b0:2e:e1:f0:9e:09:80:d2:92: 36:a3:3d:18:e9:88:73:34:db:87:a7:1d:b9:30:08:34:e4:05: 6f:9a:a4:90:16:33:2a:72:82:f1:b8:72:60:6c:58:32:a3:48: 8f:cc:92:b2:5c:fe:76:d7:b7:2c:65:c2:55:2c:00:35:20:72: ea:21:04:d9:78:f1:57:d1:14:e2:65:2b:6d:49:10:7e:93:79: ec:d3:a6:77:b3:b6:53:cc:9d:e0:11:c5:44:7f:af:96:59:cf: 85:fa:42:91:1e:05:86:bf:f9:14:e2:e5:3b:24:31:6f:e2:3b: 23:03:bf:d4:b7:8f:78:f2:28:e9:81:9d:03:3b:c2:b3:2f:39: d5:7c:47:e3:0a:fd:b2:b9:34:8f:b3:36:fb:67:b0:85:2a:96: 10:16:45:09:55:ff:a3:5e:57:dc:50:cd:fb:22:79:42:05:94: 76:e6:ef:d7:35:45:90:9f:7a:a6:af:a5:c4:1d:ee:12:4b:32: f9:da:9f:af -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOJwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1MjdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlEOTE3RDY3NDBENEU0 RTJGMDNENDY2MkY4NUNEODY3QzFCNUQzMTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqwmq60WrFgcBRutdbBaojkRIqlVtBqTv34a4OyCuKw6yC/LTd /IaRtsfC07mTnJff2bYQffacqXm+ES0+rEMTYW9uH4Zhkm2Mqd2pDfsJj/+wTIs0 o6QvYhbFmO/UrChCnu+udLjuHHD6jB7iIDib3wxFQkF+FdqCvtEO2QbsFsj3qZBz KUC3T2vLMFajP9294jEATIPEhvHIMIYxquUAvScxgTzFtqStHJaKM9xpJ24Wx914 NV6mwrLZv+XpsIFYxU321Tkfwk6WfRf5vKbYKVxBKMnTZZXKlGmFyQAvepyzmZky 4Xu1F+JNFlfY12vi63mN52HPyiQmIOwknIRVAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUnZF9Z0DU5OLwPUZi+FzYZ8G10xUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL25aRjlaMERVNU9Md1BVWmkt RnpZWjhHMTB4VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB2 6fQwDQYJKoZIhvcNAQELBQADggEBAISTDWdrWW4sZsIUOUApYkmVzMZWzkHZe1XZ 3/+C+UM+J/2jfRzxuPT2hzMQ5rE5e3L24KEEqk6V9ayQExumKLAu4fCeCYDSkjaj PRjpiHM024enHbkwCDTkBW+apJAWMypygvG4cmBsWDKjSI/MkrJc/nbXtyxlwlUs ADUgcuohBNl48VfRFOJlK21JEH6TeezTpneztlPMneARxUR/r5ZZz4X6QpEeBYa/ +RTi5TskMW/iOyMDv9S3j3jyKOmBnQM7wrMvOdV8R+MK/bK5NI+zNvtnsIUqlhAW RQlV/6NeV9xQzfsieUIFlHbm79c1RZCfeqavpcQd7hJLMvnan68= -----END CERTIFICATE-----Generated at Sun Aug 24 07:29:30 2025 by rpki-client