$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/v7xsbTiuyRlYja_xu0VuN3vkanU.roa File: v7xsbTiuyRlYja_xu0VuN3vkanU.roa (raw, json) Hash identifier: eT+beZAUNfMxC8DWx6xo71OcT6ZzObFF0rJLJsxNTeQ= Subject key identifier: BF:BC:6C:6D:38:AE:C9:19:58:8D:AF:F1:BB:45:6E:37:7B:E4:6A:75 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3A74 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/v7xsbTiuyRlYja_xu0VuN3vkanU.roa Signing time: Fri 22 Aug 2025 08:47:22 +0000 ROA not before: Fri 22 Aug 2025 08:47:22 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 106.1.16.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14964 (0x3a74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:22 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BFBC6C6D38AEC919588DAFF1BB456E377BE46A75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:bf:a6:20:64:3e:3c:ef:16:60:a7:ef:c9:9b: b7:b3:a7:a6:da:61:67:cf:dd:83:cf:ab:a1:90:e6: 43:c7:4b:ac:65:c9:8a:7a:fd:99:8c:6f:44:9d:17: 82:7c:17:19:1b:93:53:0b:71:39:9c:04:76:f5:b5: 08:82:1e:17:a2:7d:46:ec:36:3e:ea:ec:b1:a2:a9: 8a:b1:60:3a:4f:61:67:ef:ba:ce:e9:1a:94:95:be: 77:40:47:bb:7f:96:93:e0:ee:eb:db:06:6b:d5:ea: 7c:71:f6:33:68:73:c1:a0:08:67:c5:fb:b1:5e:44: b0:79:a2:57:fd:20:fd:48:28:f8:dc:1e:4a:50:1d: 0c:4c:c3:e4:fc:8c:e2:e1:b9:e6:5b:3b:ca:34:70: e3:60:47:0e:41:70:a5:72:29:f2:99:46:28:da:55: c3:32:d1:48:32:d5:c1:52:f3:47:f3:e9:61:37:1e: 7c:b4:c0:e2:a1:89:7f:df:f6:83:4d:67:46:b4:c8: f3:5c:ca:f7:fa:28:c6:4a:36:5a:ca:79:c9:6c:6e: 1e:5a:b0:bf:32:78:f3:82:be:86:aa:4b:8a:fb:cc: 43:46:db:ad:25:c1:d3:36:4f:90:b5:89:ae:36:0c: 8a:2f:b2:a1:10:1d:02:3d:d8:ab:fe:f4:fa:73:77: 12:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:BC:6C:6D:38:AE:C9:19:58:8D:AF:F1:BB:45:6E:37:7B:E4:6A:75 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/v7xsbTiuyRlYja_xu0VuN3vkanU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.16.0/22 Signature Algorithm: sha256WithRSAEncryption 2d:ee:09:da:69:b7:61:ae:ef:7b:71:da:98:31:df:a0:1f:54: 9f:5a:17:b1:ce:28:6e:1b:45:17:f1:a1:64:f1:ab:12:00:6a: ab:53:ca:32:79:c6:92:31:bd:81:ca:11:cd:96:73:65:ef:b8: 03:6b:54:41:a4:8e:ce:ee:4c:a2:41:fd:b8:51:6e:bc:64:d0: 5c:94:23:1b:aa:e1:be:56:98:4d:28:1f:e5:b9:4e:82:5e:a3: 58:8a:79:44:fb:e8:4d:cf:cb:8b:cb:b7:0d:00:ff:01:e3:e1: 52:45:f6:b6:d5:39:1f:1f:a3:13:de:cc:50:1c:86:1d:2c:1f: 99:f8:6b:9b:df:4a:70:a5:3a:2c:42:c4:f7:8e:54:59:f0:51: 99:42:fc:a4:26:8d:13:5e:5c:34:07:8e:2e:77:4e:7d:dc:75: 88:fa:cc:21:58:5b:d6:fe:4b:44:46:9f:a7:5f:f3:49:ca:12: ba:8c:e4:12:6b:da:40:d3:58:05:7d:87:06:57:8b:c8:f3:90: e9:99:1f:fd:70:03:33:25:d5:a0:9f:ba:45:92:d1:33:42:35: ce:69:3f:34:a7:a5:19:20:b5:5b:25:a0:b8:5a:ab:27:68:19: 27:47:3a:57:5c:5c:d4:ec:86:d9:f3:00:14:c6:42:d6:8e:2a: 82:32:19:50 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOnQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3MjJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJGQkM2QzZEMzhBRUM5 MTk1ODhEQUZGMUJCNDU2RTM3N0JFNDZBNzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXv6YgZD487xZgp+/Jm7ezp6baYWfP3YPPq6GQ5kPHS6xlyYp6 /ZmMb0SdF4J8Fxkbk1MLcTmcBHb1tQiCHheifUbsNj7q7LGiqYqxYDpPYWfvus7p GpSVvndAR7t/lpPg7uvbBmvV6nxx9jNoc8GgCGfF+7FeRLB5olf9IP1IKPjcHkpQ HQxMw+T8jOLhueZbO8o0cONgRw5BcKVyKfKZRijaVcMy0Ugy1cFS80fz6WE3Hny0 wOKhiX/f9oNNZ0a0yPNcyvf6KMZKNlrKeclsbh5asL8yePOCvoaqS4r7zENG260l wdM2T5C1ia42DIovsqEQHQI92Kv+9PpzdxKhAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUv7xsbTiuyRlYja/xu0VuN3vkanUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3Y3eHNiVGl1eVJsWWphX3h1 MFZ1TjN2a2FuVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq ARAwDQYJKoZIhvcNAQELBQADggEBAC3uCdppt2Gu73tx2pgx36AfVJ9aF7HOKG4b RRfxoWTxqxIAaqtTyjJ5xpIxvYHKEc2Wc2XvuANrVEGkjs7uTKJB/bhRbrxk0FyU Ixuq4b5WmE0oH+W5ToJeo1iKeUT76E3Py4vLtw0A/wHj4VJF9rbVOR8foxPezFAc hh0sH5n4a5vfSnClOixCxPeOVFnwUZlC/KQmjRNeXDQHji53Tn3cdYj6zCFYW9b+ S0RGn6df80nKErqM5BJr2kDTWAV9hwZXi8jzkOmZH/1wAzMl1aCfukWS0TNCNc5p PzSnpRkgtVsloLhaqydoGSdHOldcXNTshtnzABTGQtaOKoIyGVA= -----END CERTIFICATE-----Generated at Sun Aug 24 07:25:24 2025 by rpki-client