$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/vqr2M9zepzbKRGqnKRAMj5Tz0Ho.roa File: vqr2M9zepzbKRGqnKRAMj5Tz0Ho.roa (raw, json) Hash identifier: K0Q/9tBQ9QVkJiI2r1wV/cIW2ZHUmvFbkcRA3kQB+qM= Subject key identifier: BE:AA:F6:33:DC:DE:A7:36:CA:44:6A:A7:29:10:0C:8F:94:F3:D0:7A Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3AA7 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/vqr2M9zepzbKRGqnKRAMj5Tz0Ho.roa Signing time: Fri 22 Aug 2025 08:47:35 +0000 ROA not before: Fri 22 Aug 2025 08:47:35 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 106.1.20.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15015 (0x3aa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:35 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BEAAF633DCDEA736CA446AA729100C8F94F3D07A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d4:67:66:53:4c:52:f8:fb:6d:35:50:67:de: 03:89:6e:63:8b:a8:fc:d9:28:19:da:c8:e2:c6:d5: ca:f7:b8:85:44:70:98:aa:51:75:f7:e2:aa:84:07: 63:4b:7f:b4:66:92:db:1f:4e:49:b7:2a:3e:ba:4a: 36:5e:fc:fa:2c:12:fa:67:6d:17:f3:9e:e5:ac:89: 61:11:95:50:92:e0:4a:61:74:d2:d8:09:50:dd:1d: cd:a8:f8:00:c3:53:87:28:d9:9d:1e:51:a2:47:01: fb:21:77:dc:b9:00:12:64:30:d2:a8:5e:92:b0:f7: 72:f6:ec:3d:ee:be:cc:e6:68:e5:26:76:d7:c9:aa: 91:ac:e7:9d:3f:a8:38:12:f0:76:93:bd:7c:54:89: 07:20:60:f3:5e:b3:d1:af:0b:bf:8b:eb:93:0c:c3: ad:35:4a:22:1c:53:f2:6c:45:77:69:f4:ef:1f:34: f9:ab:af:fe:f9:e9:18:34:0e:73:2c:1c:68:62:c0: cf:35:c6:82:0a:9e:9e:af:4d:c7:09:47:17:f8:3f: 97:1f:96:be:a2:6f:98:3b:db:f9:a8:11:da:8b:79: 09:69:06:dc:b0:1c:cb:ba:9c:2e:26:a9:de:55:03: e6:8b:0b:72:4c:17:f3:6c:df:2f:35:f9:52:5d:95: 7e:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:AA:F6:33:DC:DE:A7:36:CA:44:6A:A7:29:10:0C:8F:94:F3:D0:7A X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/vqr2M9zepzbKRGqnKRAMj5Tz0Ho.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.20.0/22 Signature Algorithm: sha256WithRSAEncryption 97:51:f7:c6:81:6c:d7:22:99:20:0c:70:df:e4:7c:8a:1d:25: ca:e8:a8:b9:99:ee:39:02:97:d5:5d:32:07:87:d0:e4:e5:e2: cd:da:6a:28:9c:2d:f5:22:19:26:bf:2d:35:7c:6a:bf:d5:92: d9:8f:09:cd:da:92:e5:29:aa:40:8b:38:46:ab:b1:df:2c:43: 39:e8:05:73:67:04:8c:24:f1:5f:67:cc:f5:6e:3a:b6:0d:b6: 64:66:85:fb:27:b3:3c:29:74:17:ad:3f:ad:45:79:89:c4:4f: 41:b0:48:ad:90:af:2e:6a:24:fb:5b:27:71:c8:32:43:9a:af: fc:a5:6d:a4:c7:9e:47:2c:3e:b7:9d:00:82:39:32:2a:b4:38: 7b:10:64:d1:79:0d:4f:b0:2e:ab:f4:e2:8f:69:bb:b3:1a:77: c3:8b:2d:ee:95:a9:00:7a:bc:03:1b:37:bd:49:9d:81:a8:95: d3:19:d8:49:98:1f:87:12:e2:4e:82:a4:3a:ba:49:4f:c3:a5: 75:ac:b3:14:9f:21:b0:d0:f3:5a:5b:ee:e9:31:39:af:bb:7a: 68:19:72:a2:91:ab:41:83:9e:c2:af:e4:75:22:e0:07:16:ce: 0f:1e:fd:9c:d1:49:cc:f9:77:1e:7a:9a:35:24:0c:74:d6:50: 50:48:a2:ee -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOqcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3MzVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJFQUFGNjMzRENERUE3 MzZDQTQ0NkFBNzI5MTAwQzhGOTRGM0QwN0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC41GdmU0xS+PttNVBn3gOJbmOLqPzZKBnayOLG1cr3uIVEcJiq UXX34qqEB2NLf7RmktsfTkm3Kj66SjZe/PosEvpnbRfznuWsiWERlVCS4EphdNLY CVDdHc2o+ADDU4co2Z0eUaJHAfshd9y5ABJkMNKoXpKw93L27D3uvszmaOUmdtfJ qpGs550/qDgS8HaTvXxUiQcgYPNes9GvC7+L65MMw601SiIcU/JsRXdp9O8fNPmr r/756Rg0DnMsHGhiwM81xoIKnp6vTccJRxf4P5cflr6ib5g72/moEdqLeQlpBtyw HMu6nC4mqd5VA+aLC3JMF/Ns3y81+VJdlX4fAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUvqr2M9zepzbKRGqnKRAMj5Tz0HowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3ZxcjJNOXplcHpiS1JHcW5L UkFNajVUejBIby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq ARQwDQYJKoZIhvcNAQELBQADggEBAJdR98aBbNcimSAMcN/kfIodJcroqLmZ7jkC l9VdMgeH0OTl4s3aaiicLfUiGSa/LTV8ar/VktmPCc3akuUpqkCLOEarsd8sQzno BXNnBIwk8V9nzPVuOrYNtmRmhfsnszwpdBetP61FeYnET0GwSK2Qry5qJPtbJ3HI MkOar/ylbaTHnkcsPredAII5Miq0OHsQZNF5DU+wLqv04o9pu7Mad8OLLe6VqQB6 vAMbN71JnYGoldMZ2EmYH4cS4k6CpDq6SU/DpXWssxSfIbDQ81pb7ukxOa+7emgZ cqKRq0GDnsKv5HUi4AcWzg8e/ZzRScz5dx56mjUkDHTWUFBIou4= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:59 2025 by rpki-client