$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/nnzsvjf8_p0EMZdxI7cyjKLVYeE.roa File: nnzsvjf8_p0EMZdxI7cyjKLVYeE.roa (raw, json) Hash identifier: Eb2vsDqAhZQAlIt1ifU2OCjqB2+yxaiM/QBuRD6i9cA= Subject key identifier: 9E:7C:EC:BE:37:FC:FE:9D:04:31:97:71:23:B7:32:8C:A2:D5:61:E1 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 38FC Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/nnzsvjf8_p0EMZdxI7cyjKLVYeE.roa Signing time: Fri 22 Aug 2025 08:45:50 +0000 ROA not before: Fri 22 Aug 2025 08:45:50 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.233.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14588 (0x38fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:50 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9E7CECBE37FCFE9D0431977123B7328CA2D561E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:91:4d:2d:5a:77:45:d3:23:e8:52:d8:11:f1: 7e:30:2e:46:9e:4a:35:eb:bb:78:c2:15:ea:39:b2: ab:93:14:32:c2:d5:ee:ed:01:d2:81:50:83:00:f6: 35:47:29:18:ad:9c:b7:0e:53:48:2e:01:12:d2:16: cc:80:13:85:d8:5a:ea:b8:50:1c:8b:e7:42:fb:9a: e5:5c:e1:2d:97:39:e5:60:28:9f:c8:23:59:77:7c: c6:3d:96:70:99:a8:a0:3b:44:0e:80:b1:67:5e:37: 63:ac:56:65:69:60:72:0b:9b:d2:5a:e9:07:a5:20: c3:b8:78:c1:f7:a0:9f:67:86:6b:60:a9:34:3b:12: 8e:3a:04:da:31:fb:23:1e:f3:a8:64:1c:ab:4f:d6: 52:be:7d:2c:9c:31:a2:96:22:df:f4:39:55:71:ad: 57:4f:4e:2c:05:b8:08:0e:58:61:c5:b9:b8:a1:81: 07:bc:38:34:ae:d4:c6:52:e6:c6:44:85:43:36:9d: 8d:4c:a2:24:78:30:31:83:ee:d3:4e:06:9f:65:ee: ac:c6:b0:f6:78:01:9c:a2:d2:74:37:9f:50:50:3f: 08:95:a7:1c:cd:47:5a:34:a0:b3:d4:90:81:07:74: 05:d4:8c:fe:31:1f:2e:c0:b4:5e:50:f0:80:c1:7e: a9:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:7C:EC:BE:37:FC:FE:9D:04:31:97:71:23:B7:32:8C:A2:D5:61:E1 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/nnzsvjf8_p0EMZdxI7cyjKLVYeE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.245.0/24 Signature Algorithm: sha256WithRSAEncryption b1:9b:e0:a9:32:ad:5d:5c:e6:ef:51:87:b9:17:25:24:11:7c: 8b:89:38:09:21:22:dd:0b:ec:eb:9a:0f:10:0d:1b:2d:46:4d: 35:aa:19:25:79:62:f8:2e:4d:1f:c0:1b:1a:32:64:89:0d:16: a7:9a:f8:2c:0f:83:d6:2d:57:f7:a9:49:f0:b9:6c:f0:30:31: 91:8e:a0:ac:93:3e:16:2e:29:d6:1f:28:77:02:82:9f:84:06: 87:2d:96:3a:6c:5d:41:ca:32:42:96:ef:f5:8f:a8:01:1e:5b: 53:d9:9d:6c:c6:c3:17:55:87:5c:af:7a:93:f7:7f:2d:ac:50: 94:be:b4:37:84:16:61:46:ba:71:b3:1d:ee:2e:33:10:4d:83: d3:35:ae:fc:47:77:e9:d1:78:64:1c:3c:ec:79:af:12:c9:69: 06:81:9e:5b:26:b4:16:90:a8:ac:a8:5b:45:07:2a:ea:55:d6: bc:a2:9c:51:bc:0e:2f:6c:e0:22:35:d7:fa:26:e7:d3:dc:de: 40:1b:eb:28:71:de:8c:07:da:db:06:56:9b:e2:2f:42:a7:87: d1:5c:fb:71:88:8e:5f:5d:aa:55:7c:f0:04:91:3e:7e:ff:23: de:db:be:11:9e:79:c6:f9:c4:ea:40:39:5d:4b:89:3b:16:11: 07:c0:94:10 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOPwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1NTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlFN0NFQ0JFMzdGQ0ZF OUQwNDMxOTc3MTIzQjczMjhDQTJENTYxRTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7kU0tWndF0yPoUtgR8X4wLkaeSjXru3jCFeo5squTFDLC1e7t AdKBUIMA9jVHKRitnLcOU0guARLSFsyAE4XYWuq4UByL50L7muVc4S2XOeVgKJ/I I1l3fMY9lnCZqKA7RA6AsWdeN2OsVmVpYHILm9Ja6QelIMO4eMH3oJ9nhmtgqTQ7 Eo46BNox+yMe86hkHKtP1lK+fSycMaKWIt/0OVVxrVdPTiwFuAgOWGHFubihgQe8 ODSu1MZS5sZEhUM2nY1MoiR4MDGD7tNOBp9l7qzGsPZ4AZyi0nQ3n1BQPwiVpxzN R1o0oLPUkIEHdAXUjP4xHy7AtF5Q8IDBfqnZAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUnnzsvjf8/p0EMZdxI7cyjKLVYeEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL25uenN2amY4X3AwRU1aZHhJ N2N5aktMVlllRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB2 6fUwDQYJKoZIhvcNAQELBQADggEBALGb4KkyrV1c5u9Rh7kXJSQRfIuJOAkhIt0L 7OuaDxANGy1GTTWqGSV5YvguTR/AGxoyZIkNFqea+CwPg9YtV/epSfC5bPAwMZGO oKyTPhYuKdYfKHcCgp+EBoctljpsXUHKMkKW7/WPqAEeW1PZnWzGwxdVh1yvepP3 fy2sUJS+tDeEFmFGunGzHe4uMxBNg9M1rvxHd+nReGQcPOx5rxLJaQaBnlsmtBaQ qKyoW0UHKupV1ryinFG8Di9s4CI11/om59Pc3kAb6yhx3owH2tsGVpviL0Knh9Fc +3GIjl9dqlV88ASRPn7/I97bvhGeecb5xOpAOV1LiTsWEQfAlBA= -----END CERTIFICATE-----Generated at Sun Aug 24 07:32:00 2025 by rpki-client