$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qO_V5klZ57aSOv3Ff6MGDWy2I8Y.roa File: qO_V5klZ57aSOv3Ff6MGDWy2I8Y.roa (raw, json) Hash identifier: Z7+8P0BPkL5Bn1v9ndfEla95mkBBksuLLrizJpXqrM4= Subject key identifier: A8:EF:D5:E6:49:59:E7:B6:92:3A:FD:C5:7F:A3:06:0D:6C:B6:23:C6 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3913 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qO_V5klZ57aSOv3Ff6MGDWy2I8Y.roa Signing time: Fri 22 Aug 2025 08:45:55 +0000 ROA not before: Fri 22 Aug 2025 08:45:55 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.233.144.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14611 (0x3913) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:55 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A8EFD5E64959E7B6923AFDC57FA3060D6CB623C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:e7:8d:6f:91:c8:06:b3:29:8c:02:ec:d2:98: 20:0a:7e:cd:7b:dd:2c:10:e1:c5:3d:00:ff:01:da: e1:e0:45:c5:7b:e2:ae:39:b3:a4:58:74:ef:42:b8: 5b:9a:69:1a:2e:8f:2c:b9:81:94:2e:df:a4:5b:96: ef:53:f7:24:7c:49:89:6b:41:ad:0d:75:c5:a4:51: 94:54:ae:4a:9b:96:a8:56:e4:27:ac:7f:af:ed:71: 9d:e2:22:e9:56:3f:23:ea:1e:0d:aa:62:ae:7e:3c: c8:fd:54:ce:b3:56:90:fd:39:26:e8:d8:18:57:43: 42:4b:63:55:1c:7e:63:e5:d4:b5:ad:ff:33:1f:f7: 2f:bc:50:a7:63:91:cf:b0:52:87:96:19:f4:01:6f: 77:7c:21:ed:72:f2:76:26:d9:3f:0c:5f:76:5d:10: 89:ed:e3:85:9d:0d:29:60:05:52:2e:2f:d4:be:2e: 79:92:58:fd:0c:0a:ed:fb:d5:2e:55:50:af:9c:2b: c8:f2:5a:92:07:cc:ce:3f:ae:a1:85:da:da:3d:f3: 42:0f:1d:f0:dc:a5:e6:54:11:7e:bd:77:cc:9d:8b: b6:6e:32:88:fb:83:c2:cf:53:b6:af:71:9a:12:52: 0a:fd:2b:9e:8a:cb:95:d9:f1:31:aa:0e:c3:89:fe: 45:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:EF:D5:E6:49:59:E7:B6:92:3A:FD:C5:7F:A3:06:0D:6C:B6:23:C6 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qO_V5klZ57aSOv3Ff6MGDWy2I8Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.144.0/21 Signature Algorithm: sha256WithRSAEncryption 96:84:10:da:ea:36:30:9c:a8:02:28:61:de:a5:1a:02:b5:44: 95:a0:41:cc:a7:fa:b1:d6:86:26:7e:a7:81:24:49:af:42:e6: 37:57:c8:94:07:79:34:f5:46:3a:23:a4:e7:f1:df:fb:2c:84: 7b:1f:55:a5:66:96:77:c8:6f:73:8e:64:a7:b0:b2:63:6f:dd: 33:b1:63:33:7c:6f:29:09:e3:cd:e9:e9:bf:a8:14:25:04:9b: a8:df:84:d7:a1:bb:62:75:54:94:1a:1d:bb:18:4d:f1:95:01: 51:a6:ad:e7:79:ef:f7:76:c4:4d:77:a4:68:ce:c7:30:ea:b0: 27:29:f5:36:1a:24:31:8c:c0:ee:d6:2a:cf:7a:31:b3:d2:31: 96:9b:a1:bc:6d:3e:59:ca:4a:24:d3:3d:3d:bb:91:38:82:e7: ef:b4:02:d6:58:0b:08:27:d2:1d:0c:d9:cb:e4:52:49:65:70: e2:69:c6:0b:3b:92:87:1c:fe:33:fb:46:93:ab:d6:4d:d1:d7: 68:79:a8:9e:2c:38:a1:54:6b:a5:8d:14:f1:27:5e:b7:5d:9c: 06:13:98:39:e4:22:b8:af:00:e8:4f:bc:cb:30:04:fb:94:fd: db:23:c2:0a:8a:13:73:aa:12:63:e7:7b:cd:65:1a:da:3b:ea: aa:96:fb:99 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICORMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1NTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEE4RUZENUU2NDk1OUU3 QjY5MjNBRkRDNTdGQTMwNjBENkNCNjIzQzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDv541vkcgGsymMAuzSmCAKfs173SwQ4cU9AP8B2uHgRcV74q45 s6RYdO9CuFuaaRoujyy5gZQu36Rblu9T9yR8SYlrQa0NdcWkUZRUrkqblqhW5Ces f6/tcZ3iIulWPyPqHg2qYq5+PMj9VM6zVpD9OSbo2BhXQ0JLY1UcfmPl1LWt/zMf 9y+8UKdjkc+wUoeWGfQBb3d8Ie1y8nYm2T8MX3ZdEInt44WdDSlgBVIuL9S+LnmS WP0MCu371S5VUK+cK8jyWpIHzM4/rqGF2to980IPHfDcpeZUEX69d8ydi7ZuMoj7 g8LPU7avcZoSUgr9K56Ky5XZ8TGqDsOJ/kWrAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUqO/V5klZ57aSOv3Ff6MGDWy2I8YwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3FPX1Y1a2xaNTdhU092M0Zm Nk1HRFd5Mkk4WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6ZAwDQYJKoZIhvcNAQELBQADggEBAJaEENrqNjCcqAIoYd6lGgK1RJWgQcyn+rHW hiZ+p4EkSa9C5jdXyJQHeTT1RjojpOfx3/sshHsfVaVmlnfIb3OOZKewsmNv3TOx YzN8bykJ483p6b+oFCUEm6jfhNehu2J1VJQaHbsYTfGVAVGmred57/d2xE13pGjO xzDqsCcp9TYaJDGMwO7WKs96MbPSMZabobxtPlnKSiTTPT27kTiC5++0AtZYCwgn 0h0M2cvkUkllcOJpxgs7kocc/jP7RpOr1k3R12h5qJ4sOKFUa6WNFPEnXrddnAYT mDnkIrivAOhPvMswBPuU/dsjwgqKE3OqEmPne81lGto76qqW+5k= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:46 2025 by rpki-client