$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xD4YjuPu1q0W_k_unN88BHoypgY.roa File: xD4YjuPu1q0W_k_unN88BHoypgY.roa (raw, json) Hash identifier: YbcUtaXk9aMyMCxjAPH7RBUCepEWvabdPD0FUGwYJkg= Subject key identifier: C4:3E:18:8E:E3:EE:D6:AD:16:FE:4F:EE:9C:DF:3C:04:7A:32:A6:06 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3B0B Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xD4YjuPu1q0W_k_unN88BHoypgY.roa Signing time: Fri 22 Aug 2025 08:48:01 +0000 ROA not before: Fri 22 Aug 2025 08:48:01 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 180.176.216.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15115 (0x3b0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:48:01 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C43E188EE3EED6AD16FE4FEE9CDF3C047A32A606 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:48:20:e4:32:f9:9b:99:39:03:56:d6:1b:7a: 80:33:16:a9:32:ef:d0:ef:5c:5f:b6:f4:ad:bc:48: 39:51:62:14:2a:63:0d:3a:6f:05:a4:ba:17:34:62: 9f:fe:2c:4f:6c:73:a6:28:d1:9f:8c:b0:b0:8d:7a: 25:b7:c6:41:e3:a7:90:bb:07:cd:53:90:b5:42:e0: 08:b7:af:5f:34:c1:27:77:61:f6:82:7f:f3:51:3c: e8:65:bc:3e:32:e7:6a:b1:c8:54:1d:53:db:86:70: 2b:86:8e:80:38:45:c3:3e:8d:d9:67:3e:d6:2f:4b: d4:c7:a6:22:ad:20:08:2e:aa:05:6c:d9:61:15:d8: a2:ab:81:8e:73:f8:5d:9c:fe:c4:20:33:35:75:a0: ef:8f:c3:32:d5:7c:32:a3:99:c8:9e:f1:0e:0b:9a: 37:0c:fd:8c:9a:a0:f2:9d:c9:18:26:75:a7:c9:12: c1:b7:61:06:93:fc:98:f9:0d:5c:16:0b:4d:ea:56: bd:40:d3:12:38:65:33:7b:dc:66:4a:ec:3c:69:69: e4:b7:1c:f6:aa:df:4e:10:6f:5c:fc:43:89:76:ed: d8:0b:1e:e8:ad:f4:d9:54:ef:d1:a3:a5:d2:db:8b: ac:3e:6b:07:7a:9a:8b:35:2a:71:4d:1b:ee:82:9f: 15:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:3E:18:8E:E3:EE:D6:AD:16:FE:4F:EE:9C:DF:3C:04:7A:32:A6:06 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xD4YjuPu1q0W_k_unN88BHoypgY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.176.216.0/21 Signature Algorithm: sha256WithRSAEncryption 1c:3b:e1:74:8b:5e:4e:40:ce:af:78:ab:40:42:5d:b3:39:c4: ac:66:48:d8:0e:b7:c9:88:1e:46:4d:3c:cf:dc:17:06:50:74: 59:17:70:b5:68:fb:d4:4f:a4:ec:b8:3d:4c:48:99:76:9b:dc: 11:65:93:81:26:98:e3:01:b9:ce:f2:90:dd:c3:92:3d:a3:70: e7:0b:0a:4c:f7:4b:69:a7:1d:2e:da:67:81:32:c8:f4:0d:a3: bc:21:3d:8d:45:79:b5:83:7e:ef:07:5f:33:d4:29:5a:96:28: 07:49:65:7a:ea:c5:b3:45:c5:5e:76:86:ba:25:0d:a9:e3:f1: 37:f3:54:fb:82:68:3a:bb:26:3c:e4:cd:4a:ad:6d:da:e2:57: 3d:cd:30:d2:99:e5:d7:c2:2b:56:94:09:27:d7:8f:25:c5:1f: e4:18:b1:32:1c:22:8e:52:d3:d4:fb:ac:e6:ea:7b:b5:96:65: 78:04:d6:90:fd:c0:f4:48:33:21:48:0d:aa:04:68:33:58:c9: 2d:44:e0:68:d5:af:4d:0b:4c:56:77:bb:4d:8b:0f:3e:f1:b8: ff:11:e4:13:6d:47:b7:52:8c:08:1b:3c:a7:ad:56:d4:92:f7: c7:9c:ab:fa:6e:8e:3b:a0:67:c5:5b:86:e4:00:81:af:5b:42: 71:f1:74:76 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOwswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ4MDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM0M0UxODhFRTNFRUQ2 QUQxNkZFNEZFRTlDREYzQzA0N0EzMkE2MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJSCDkMvmbmTkDVtYbeoAzFqky79DvXF+29K28SDlRYhQqYw06 bwWkuhc0Yp/+LE9sc6Yo0Z+MsLCNeiW3xkHjp5C7B81TkLVC4Ai3r180wSd3YfaC f/NRPOhlvD4y52qxyFQdU9uGcCuGjoA4RcM+jdlnPtYvS9THpiKtIAguqgVs2WEV 2KKrgY5z+F2c/sQgMzV1oO+PwzLVfDKjmcie8Q4LmjcM/YyaoPKdyRgmdafJEsG3 YQaT/Jj5DVwWC03qVr1A0xI4ZTN73GZK7DxpaeS3HPaq304Qb1z8Q4l27dgLHuit 9NlU79GjpdLbi6w+awd6mos1KnFNG+6CnxVpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUxD4YjuPu1q0W/k/unN88BHoypgYwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3hENFlqdVB1MXEwV19rX3Vu Tjg4QkhveXBnWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 sNgwDQYJKoZIhvcNAQELBQADggEBABw74XSLXk5Azq94q0BCXbM5xKxmSNgOt8mI HkZNPM/cFwZQdFkXcLVo+9RPpOy4PUxImXab3BFlk4EmmOMBuc7ykN3Dkj2jcOcL Ckz3S2mnHS7aZ4EyyPQNo7whPY1FebWDfu8HXzPUKVqWKAdJZXrqxbNFxV52hrol Danj8TfzVPuCaDq7JjzkzUqtbdriVz3NMNKZ5dfCK1aUCSfXjyXFH+QYsTIcIo5S 09T7rObqe7WWZXgE1pD9wPRIMyFIDaoEaDNYyS1E4GjVr00LTFZ3u02LDz7xuP8R 5BNtR7dSjAgbPKetVtSS98ecq/pujjugZ8VbhuQAga9bQnHxdHY= -----END CERTIFICATE-----Generated at Sun Aug 24 07:25:22 2025 by rpki-client