$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qGP7zYSDUiPqecR1NFfEj2H4kNY.roa File: qGP7zYSDUiPqecR1NFfEj2H4kNY.roa (raw, json) Hash identifier: EU+LwI+Bh26ZlVya6e+J7o7EnYBi1z3QNGrAq9vOr8k= Subject key identifier: A8:63:FB:CD:84:83:52:23:EA:79:C4:75:34:57:C4:8F:61:F8:90:D6 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3B0E Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qGP7zYSDUiPqecR1NFfEj2H4kNY.roa Signing time: Fri 22 Aug 2025 08:48:01 +0000 ROA not before: Fri 22 Aug 2025 08:48:01 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.233.96.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15118 (0x3b0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:48:01 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A863FBCD84835223EA79C4753457C48F61F890D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:e3:25:e8:44:8d:6f:fc:0d:0c:63:cc:2e:94: 07:3e:c1:b0:68:54:54:e1:2e:a4:17:a5:aa:f1:4f: dd:d6:04:10:b8:2e:bd:97:c7:01:17:d9:59:52:26: 4e:b8:8f:03:ac:d4:80:61:e8:47:71:e3:8a:77:75: 12:06:56:e4:a4:2b:1f:7d:09:60:d5:19:4c:74:fd: fe:28:8c:f9:73:72:cf:4b:4f:ec:e9:4f:6c:49:62: 12:df:bc:f9:87:13:5f:cb:7c:6c:7f:e2:6e:3a:00: ee:40:d6:d0:3d:62:e5:18:dd:59:ff:7c:f7:e3:bb: fe:81:77:f0:b7:b7:a5:1d:8d:18:2c:ef:db:98:f1: 22:bd:f1:64:63:ab:5a:43:77:e0:34:98:42:fb:53: 1c:d7:8a:9c:06:f9:82:9b:51:8a:e2:39:54:de:7b: b4:e4:6c:f3:8c:e0:36:a6:e6:5e:dd:2c:07:1d:9d: df:1b:08:36:f5:f9:0b:bb:7a:a2:35:1d:14:32:36: ae:5f:2d:fe:0a:ba:2c:54:5f:6e:58:18:f9:3d:6d: 3f:4b:3d:04:a2:2d:9b:9b:ab:25:d1:e4:dc:9f:08: e5:46:37:e2:55:eb:5d:b9:2b:8b:6c:a5:1a:a8:c8: 6e:33:77:df:da:23:66:6c:aa:96:9c:7c:2e:b2:5e: 44:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:63:FB:CD:84:83:52:23:EA:79:C4:75:34:57:C4:8F:61:F8:90:D6 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qGP7zYSDUiPqecR1NFfEj2H4kNY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.96.0/22 Signature Algorithm: sha256WithRSAEncryption 9d:c7:a8:41:c5:36:43:6a:ce:b8:4d:57:29:79:4a:62:8a:ed: d8:c4:c7:9e:0a:0d:f8:cf:69:2f:f5:e3:bd:9c:9d:0d:62:cf: 4a:67:10:55:bc:e6:3a:48:37:ff:98:5a:d1:86:f9:a8:02:9d: f4:35:9c:e3:61:15:e7:db:de:67:09:8e:86:95:3f:c5:d3:2a: 24:d6:7f:9b:62:51:32:2b:69:b2:75:06:f3:87:f0:55:b7:cd: fe:0c:48:65:38:26:db:a7:53:e1:3d:15:6b:0e:a5:00:ca:ce: c0:4f:1d:9b:15:c7:68:8e:b3:ed:f2:a1:3a:e2:38:79:1e:ba: 8a:1b:a7:ac:2a:29:f6:7a:2a:1a:d5:1d:e6:8f:1d:5c:6d:45: 1c:b3:33:04:c7:94:c5:86:dc:97:8a:55:f8:3c:3b:aa:31:9d: 4c:f3:1b:cd:1f:6e:cd:59:f3:7f:a8:36:ca:34:a3:72:af:82: 06:24:8f:8a:cc:51:47:0c:70:11:e9:c0:e5:92:3f:2f:45:c8: c5:66:44:6a:6d:9d:0a:06:f2:cc:5a:67:a9:7b:69:66:6f:e3: bd:9c:6c:98:0a:de:07:c7:88:b5:7a:44:0c:27:40:6f:df:5a: 75:db:0a:c8:8a:11:05:89:1e:9f:30:3c:12:82:d2:f7:a2:87: 4b:f4:16:88 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOw4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ4MDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEE4NjNGQkNEODQ4MzUy MjNFQTc5QzQ3NTM0NTdDNDhGNjFGODkwRDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDv4yXoRI1v/A0MY8wulAc+wbBoVFThLqQXparxT93WBBC4Lr2X xwEX2VlSJk64jwOs1IBh6Edx44p3dRIGVuSkKx99CWDVGUx0/f4ojPlzcs9LT+zp T2xJYhLfvPmHE1/LfGx/4m46AO5A1tA9YuUY3Vn/fPfju/6Bd/C3t6UdjRgs79uY 8SK98WRjq1pDd+A0mEL7UxzXipwG+YKbUYriOVTee7TkbPOM4Dam5l7dLAcdnd8b CDb1+Qu7eqI1HRQyNq5fLf4KuixUX25YGPk9bT9LPQSiLZubqyXR5NyfCOVGN+JV 6125K4tspRqoyG4zd9/aI2ZsqpacfC6yXkSLAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUqGP7zYSDUiPqecR1NFfEj2H4kNYwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3FHUDd6WVNEVWlQcWVjUjFO RmZFajJINGtOWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6WAwDQYJKoZIhvcNAQELBQADggEBAJ3HqEHFNkNqzrhNVyl5SmKK7djEx54KDfjP aS/1472cnQ1iz0pnEFW85jpIN/+YWtGG+agCnfQ1nONhFefb3mcJjoaVP8XTKiTW f5tiUTIrabJ1BvOH8FW3zf4MSGU4JtunU+E9FWsOpQDKzsBPHZsVx2iOs+3yoTri OHkeuoobp6wqKfZ6KhrVHeaPHVxtRRyzMwTHlMWG3JeKVfg8O6oxnUzzG80fbs1Z 83+oNso0o3KvggYkj4rMUUcMcBHpwOWSPy9FyMVmRGptnQoG8sxaZ6l7aWZv472c bJgK3gfHiLV6RAwnQG/fWnXbCsiKEQWJHp8wPBKC0veih0v0Fog= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:58 2025 by rpki-client