$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xsAMUWJiyXYjgXMjVHPYAxSOeV4.roa File: xsAMUWJiyXYjgXMjVHPYAxSOeV4.roa (raw, json) Hash identifier: b5SdSsSm22xiuMMNPGp4s8oQP7LIhekOdf7tJxEFfEY= Subject key identifier: C6:C0:0C:51:62:62:C9:76:23:81:73:23:54:73:D8:03:14:8E:79:5E Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3948 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xsAMUWJiyXYjgXMjVHPYAxSOeV4.roa Signing time: Fri 22 Aug 2025 08:46:08 +0000 ROA not before: Fri 22 Aug 2025 08:46:08 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.232.56.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14664 (0x3948) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:08 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C6C00C516262C976238173235473D803148E795E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:13:e5:09:0c:19:ce:c8:bd:a0:30:b2:08:33: dd:48:7e:f6:6c:b0:61:c8:3f:be:85:ce:ba:17:1e: 09:e5:7d:4b:64:cf:44:38:eb:60:37:63:40:68:8e: 74:68:f5:31:5a:ed:fd:23:3d:9e:87:0a:68:fa:cf: aa:39:eb:17:6d:06:cc:91:34:32:87:e1:7b:32:87: 05:96:f9:65:39:f1:db:83:42:60:c4:fd:ae:3e:e6: a1:99:58:1d:59:40:78:4e:5d:79:72:4d:79:b8:06: e9:99:f1:68:74:e6:6e:f6:cd:17:52:ce:65:4a:17: bd:cf:e4:60:16:f8:2b:f6:5a:38:24:94:1f:ba:8a: 2f:3f:3b:28:4a:0f:20:12:a9:a1:44:ee:38:4e:8b: 64:5d:ad:43:9c:74:6b:ed:c1:da:42:65:a2:34:4e: 6d:4f:82:0e:bc:3f:5e:23:31:30:d4:a3:9b:bc:4b: d5:d5:e1:29:85:b3:02:84:d1:20:a9:02:df:db:dd: 59:a1:12:56:ad:3f:2e:51:73:64:7f:37:80:7e:1a: b2:e1:18:46:cd:51:b7:45:54:06:be:3f:00:ab:b9: eb:b9:ed:58:d5:40:d5:6b:da:39:87:61:a4:37:4c: bc:e7:a5:a1:9a:83:67:41:dd:f4:35:0c:4e:2c:83: fc:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:C0:0C:51:62:62:C9:76:23:81:73:23:54:73:D8:03:14:8E:79:5E X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xsAMUWJiyXYjgXMjVHPYAxSOeV4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.56.0/21 Signature Algorithm: sha256WithRSAEncryption 56:de:a8:ea:03:d0:7d:a0:21:71:f5:3e:35:d3:93:88:f4:30: 71:f0:a3:39:f4:51:e3:02:b1:06:1e:a1:df:c1:b7:27:c9:c2: a1:0f:4b:cc:13:bc:8c:63:e2:03:47:bb:ca:9b:94:39:74:ef: fd:b1:a4:36:7d:9d:e2:1f:de:6d:b1:e1:74:34:d1:6b:b6:72: 94:fa:36:b8:fa:f8:f5:bf:e9:7d:70:3b:1d:bc:5e:36:0c:8e: ed:b9:b2:01:59:db:11:c8:99:56:7b:85:11:c7:b5:93:be:04: 8a:a9:63:a8:98:d0:f4:a9:f0:f9:ce:a6:ee:3b:1d:cd:89:87: 87:19:4c:e5:33:a4:9d:ae:c9:cb:9e:d3:c9:7c:70:dd:55:df: a3:6e:38:2e:67:c9:69:35:58:4d:31:ce:59:74:76:b0:a7:5c: 08:5f:80:ba:30:09:31:45:27:dc:f8:e2:1f:5d:cb:ab:fe:53: e6:6c:52:44:80:e5:49:f8:90:89:e6:f9:16:7b:1a:72:85:3e: 64:99:cf:51:8e:b1:a9:f1:29:01:04:f7:43:ee:6a:fb:c2:04: 72:ef:d7:41:cc:8e:55:5e:2e:75:d9:cb:c7:63:38:3b:53:ba: 87:92:db:e6:c6:bd:f0:33:26:8e:1c:28:65:e8:ff:5e:23:c7: 4b:f5:65:5c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOUgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM2QzAwQzUxNjI2MkM5 NzYyMzgxNzMyMzU0NzNEODAzMTQ4RTc5NUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCbE+UJDBnOyL2gMLIIM91IfvZssGHIP76FzroXHgnlfUtkz0Q4 62A3Y0BojnRo9TFa7f0jPZ6HCmj6z6o56xdtBsyRNDKH4XsyhwWW+WU58duDQmDE /a4+5qGZWB1ZQHhOXXlyTXm4BumZ8Wh05m72zRdSzmVKF73P5GAW+Cv2WjgklB+6 ii8/OyhKDyASqaFE7jhOi2RdrUOcdGvtwdpCZaI0Tm1Pgg68P14jMTDUo5u8S9XV 4SmFswKE0SCpAt/b3VmhElatPy5Rc2R/N4B+GrLhGEbNUbdFVAa+PwCrueu57VjV QNVr2jmHYaQ3TLznpaGag2dB3fQ1DE4sg/xJAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUxsAMUWJiyXYjgXMjVHPYAxSOeV4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3hzQU1VV0ppeVhZamdYTWpW SFBZQXhTT2VWNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6DgwDQYJKoZIhvcNAQELBQADggEBAFbeqOoD0H2gIXH1PjXTk4j0MHHwozn0UeMC sQYeod/BtyfJwqEPS8wTvIxj4gNHu8qblDl07/2xpDZ9neIf3m2x4XQ00Wu2cpT6 Nrj6+PW/6X1wOx28XjYMju25sgFZ2xHImVZ7hRHHtZO+BIqpY6iY0PSp8PnOpu47 Hc2Jh4cZTOUzpJ2uycue08l8cN1V36NuOC5nyWk1WE0xzll0drCnXAhfgLowCTFF J9z44h9dy6v+U+ZsUkSA5Un4kInm+RZ7GnKFPmSZz1GOsanxKQEE90PuavvCBHLv 10HMjlVeLnXZy8djODtTuoeS2+bGvfAzJo4cKGXo/14jx0v1ZVw= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:26 2025 by rpki-client