$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ov1b4J5eSLiEkkTOylOh_gMl_r4.roa File: ov1b4J5eSLiEkkTOylOh_gMl_r4.roa (raw, json) Hash identifier: Ti3HERQ6Yc+Vt5dsWl1WgQDRFkpmkvSr0fqPIVrYYq8= Subject key identifier: A2:FD:5B:E0:9E:5E:48:B8:84:92:44:CE:CA:53:A1:FE:03:25:FE:BE Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 382E Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ov1b4J5eSLiEkkTOylOh_gMl_r4.roa Signing time: Fri 22 Aug 2025 08:45:02 +0000 ROA not before: Fri 22 Aug 2025 08:45:02 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.232.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14382 (0x382e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:02 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A2FD5BE09E5E48B8849244CECA53A1FE0325FEBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d4:18:22:8c:f5:23:4d:54:11:76:ae:1c:9d: 77:4a:59:9a:ed:a1:32:2a:f4:2a:41:7d:e1:74:c9: f5:6c:cc:2f:14:aa:75:77:70:31:a6:c9:e0:4e:e2: a1:65:11:63:50:61:9a:a4:31:36:22:9f:15:0f:e0: 21:5e:aa:73:4b:53:84:91:a4:21:20:c7:ad:fb:00: 10:07:33:12:56:78:cd:05:b9:5e:a6:33:95:68:44: b6:74:da:b2:48:af:3b:cd:05:fc:69:60:24:44:b7: 95:f7:7c:db:2d:22:a3:c3:ac:6f:66:a4:58:29:08: 6a:cd:b0:d5:52:62:c0:bd:0b:f6:1a:5b:4f:4f:51: be:c2:48:62:f7:41:0f:2d:06:e4:5b:c1:51:04:43: f8:fc:ca:89:65:7d:b6:31:6e:00:6b:06:33:1c:97: 33:ba:10:61:a2:bd:4c:b3:85:6f:c0:e2:cf:97:6b: 11:ee:76:60:66:02:c9:c4:e5:6e:8d:34:1a:8f:8b: 7d:8b:96:66:ad:04:02:dd:b9:07:aa:5e:b0:97:2d: 00:84:15:91:3f:77:ba:78:4f:d0:21:6c:c6:0f:d4: 9d:59:f4:b2:a6:f5:cf:9d:1a:72:17:07:8d:11:71: a1:11:50:6b:00:e7:55:ab:0a:61:71:d8:e1:9a:75: 1a:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:FD:5B:E0:9E:5E:48:B8:84:92:44:CE:CA:53:A1:FE:03:25:FE:BE X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ov1b4J5eSLiEkkTOylOh_gMl_r4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.252.0/22 Signature Algorithm: sha256WithRSAEncryption ac:94:72:c8:a5:64:4b:71:7d:da:a0:9e:26:fc:ed:d8:4e:16: b4:00:0e:cb:14:8e:47:52:c1:44:05:b1:2a:d1:7a:1d:97:b9: 91:24:74:62:8b:18:26:b7:b5:27:56:06:08:6d:9c:f5:b5:c6: cf:4a:cb:34:be:c1:6c:f0:ed:0f:f3:c2:41:00:5f:98:14:5b: 06:2e:0f:09:21:77:e9:59:85:e6:39:7c:6b:a3:62:9a:f6:00: 5e:cf:ca:bf:00:29:62:95:5b:81:12:f7:76:ad:95:17:87:06: 6b:b8:49:e8:8f:f2:98:2b:24:11:4b:0d:d6:1e:79:ca:49:01: 89:66:ce:ff:82:04:ed:6a:99:13:73:9c:e3:84:ad:2c:10:84: ed:11:10:68:e2:b2:15:e5:ca:51:ad:44:2b:83:41:d5:3c:40: 09:a9:48:bc:07:2c:7d:01:a6:1c:81:b4:95:f8:d6:5f:ff:47: f3:18:59:6b:aa:74:20:bd:a0:e6:6b:ca:42:81:b6:47:dd:18: f7:f8:71:94:b8:ad:33:04:e7:36:49:55:9c:4a:bc:db:56:b0: 01:b7:c4:4c:63:65:f5:51:36:8b:84:45:2a:09:f5:b0:f2:09: bd:f8:1e:2d:ea:e4:23:9e:49:eb:f6:da:0f:6e:66:98:e7:39: a0:28:eb:11 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOC4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1MDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEEyRkQ1QkUwOUU1RTQ4 Qjg4NDkyNDRDRUNBNTNBMUZFMDMyNUZFQkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC11BgijPUjTVQRdq4cnXdKWZrtoTIq9CpBfeF0yfVszC8UqnV3 cDGmyeBO4qFlEWNQYZqkMTYinxUP4CFeqnNLU4SRpCEgx637ABAHMxJWeM0FuV6m M5VoRLZ02rJIrzvNBfxpYCREt5X3fNstIqPDrG9mpFgpCGrNsNVSYsC9C/YaW09P Ub7CSGL3QQ8tBuRbwVEEQ/j8yollfbYxbgBrBjMclzO6EGGivUyzhW/A4s+XaxHu dmBmAsnE5W6NNBqPi32LlmatBALduQeqXrCXLQCEFZE/d7p4T9AhbMYP1J1Z9LKm 9c+dGnIXB40RcaERUGsA51WrCmFx2OGadRoJAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUov1b4J5eSLiEkkTOylOh/gMl/r4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL292MWI0SjVlU0xpRWtrVE95 bE9oX2dNbF9yNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6PwwDQYJKoZIhvcNAQELBQADggEBAKyUcsilZEtxfdqgnib87dhOFrQADssUjkdS wUQFsSrReh2XuZEkdGKLGCa3tSdWBghtnPW1xs9KyzS+wWzw7Q/zwkEAX5gUWwYu Dwkhd+lZheY5fGujYpr2AF7Pyr8AKWKVW4ES93atlReHBmu4SeiP8pgrJBFLDdYe ecpJAYlmzv+CBO1qmRNznOOErSwQhO0REGjishXlylGtRCuDQdU8QAmpSLwHLH0B phyBtJX41l//R/MYWWuqdCC9oOZrykKBtkfdGPf4cZS4rTME5zZJVZxKvNtWsAG3 xExjZfVRNouERSoJ9bDyCb34Hi3q5COeSev22g9uZpjnOaAo6xE= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:47 2025 by rpki-client