$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/y-u9Hj5LGPuQ8WTjik93rwlQcgA.roa File: y-u9Hj5LGPuQ8WTjik93rwlQcgA.roa (raw, json) Hash identifier: /O25dsTIQzscxpzliz+icXcOsjnhDHz4gKmItWi20aw= Subject key identifier: CB:EB:BD:1E:3E:4B:18:FB:90:F1:64:E3:8A:4F:77:AF:09:50:72:00 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3961 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/y-u9Hj5LGPuQ8WTjik93rwlQcgA.roa Signing time: Fri 22 Aug 2025 08:46:15 +0000 ROA not before: Fri 22 Aug 2025 08:46:15 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.232.224.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14689 (0x3961) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:15 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=CBEBBD1E3E4B18FB90F164E38A4F77AF09507200 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:4f:48:4e:3b:52:c9:d2:bf:64:ff:29:f4:6c: 5f:fd:e2:b5:a5:b1:de:77:bf:f5:f8:b5:50:e5:4f: 4f:80:1f:cc:fc:70:16:b4:34:2b:0c:53:f2:0b:0d: 1b:ea:74:58:73:c3:72:71:6e:7f:d6:7c:df:8b:bb: a2:6e:f6:ff:c7:4b:ff:7a:13:0f:ad:de:9f:92:84: 11:72:d1:8c:93:2f:3d:66:29:53:ee:ec:19:f5:82: 52:f0:b2:66:96:78:c1:42:62:69:87:1a:64:1a:0e: 72:45:1b:44:47:90:21:5b:9d:54:b1:f5:07:08:c4: c3:eb:ab:49:6c:f7:94:cd:27:c4:b2:22:24:92:27: 4b:7e:cc:eb:e3:cb:5b:86:8d:ba:7e:26:35:6f:36: 72:62:70:0d:c3:d9:ed:81:2c:65:7e:42:9a:61:64: b2:c1:b3:9a:74:9d:27:fc:74:ee:b1:c5:4a:34:bc: 21:b4:2f:a0:59:d8:7c:26:dd:27:27:6e:cf:ff:82: 83:8f:98:12:2a:5a:e0:96:bf:5d:46:75:6c:1a:2a: 99:61:88:cc:29:b0:96:7f:d6:c1:88:44:1e:1f:db: ac:14:6f:0d:c3:14:6c:cc:7c:c9:8e:ab:82:68:1f: 3c:a5:51:7c:81:f1:8d:2f:8d:52:37:a9:c3:1c:4c: 69:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:EB:BD:1E:3E:4B:18:FB:90:F1:64:E3:8A:4F:77:AF:09:50:72:00 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/y-u9Hj5LGPuQ8WTjik93rwlQcgA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.224.0/21 Signature Algorithm: sha256WithRSAEncryption 05:8f:98:e8:0a:32:4f:fe:a6:98:97:29:1a:57:88:d8:20:1e: 23:e1:61:e5:10:b1:11:e7:4c:04:7f:eb:d2:44:6f:db:78:a9: 9d:32:e4:a1:46:31:78:87:99:72:d9:92:8c:51:96:0a:51:70: d1:b2:dd:47:42:98:4d:d3:e6:20:62:17:f9:b3:0e:56:e9:2f: 9a:21:39:9c:24:ef:c8:7f:c6:bb:8a:9e:59:92:2c:56:44:93: 45:68:db:e7:6e:ca:88:ee:cf:fd:e3:e4:f0:fd:ad:68:e8:09: 31:1a:cd:07:e2:de:c5:bb:b2:23:64:c7:91:c0:8e:ac:2b:93: 12:fb:c7:98:96:03:3e:0f:4b:46:19:e1:fa:2d:20:c9:3e:f9: c5:bf:93:07:68:cf:be:39:a4:4c:d2:9a:b0:ff:e6:da:77:f6: e2:5a:83:ec:a1:d5:c9:dd:d5:d0:f5:2f:ed:59:3b:9f:d1:03: 39:85:73:08:fd:3c:6f:bb:ed:5e:8a:57:f5:88:4e:c7:73:1c: 32:db:ac:4b:93:14:ce:76:f1:5a:80:bf:fa:a3:e9:8f:b8:f0: ac:14:7a:af:55:25:ae:8a:9f:55:1e:8d:4d:3d:d6:ec:84:92: 43:fc:1c:5c:0c:5c:e7:9f:6d:24:69:9f:7e:9e:d3:d3:69:00: 32:97:30:04 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOWEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKENCRUJCRDFFM0U0QjE4 RkI5MEYxNjRFMzhBNEY3N0FGMDk1MDcyMDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8T0hOO1LJ0r9k/yn0bF/94rWlsd53v/X4tVDlT0+AH8z8cBa0 NCsMU/ILDRvqdFhzw3Jxbn/WfN+Lu6Ju9v/HS/96Ew+t3p+ShBFy0YyTLz1mKVPu 7Bn1glLwsmaWeMFCYmmHGmQaDnJFG0RHkCFbnVSx9QcIxMPrq0ls95TNJ8SyIiSS J0t+zOvjy1uGjbp+JjVvNnJicA3D2e2BLGV+QpphZLLBs5p0nSf8dO6xxUo0vCG0 L6BZ2Hwm3Scnbs//goOPmBIqWuCWv11GdWwaKplhiMwpsJZ/1sGIRB4f26wUbw3D FGzMfMmOq4JoHzylUXyB8Y0vjVI3qcMcTGnHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUy+u9Hj5LGPuQ8WTjik93rwlQcgAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3ktdTlIajVMR1B1UThXVGpp azkzcndsUWNnQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6OAwDQYJKoZIhvcNAQELBQADggEBAAWPmOgKMk/+ppiXKRpXiNggHiPhYeUQsRHn TAR/69JEb9t4qZ0y5KFGMXiHmXLZkoxRlgpRcNGy3UdCmE3T5iBiF/mzDlbpL5oh OZwk78h/xruKnlmSLFZEk0Vo2+duyojuz/3j5PD9rWjoCTEazQfi3sW7siNkx5HA jqwrkxL7x5iWAz4PS0YZ4fotIMk++cW/kwdoz745pEzSmrD/5tp39uJag+yh1cnd 1dD1L+1ZO5/RAzmFcwj9PG+77V6KV/WITsdzHDLbrEuTFM528VqAv/qj6Y+48KwU eq9VJa6Kn1UejU091uyEkkP8HFwMXOefbSRpn36e09NpADKXMAQ= -----END CERTIFICATE-----Generated at Sun Aug 24 07:26:36 2025 by rpki-client