$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/y2_Z9Z07eYW0aTXOlAMXTUFVJQc.roa File: y2_Z9Z07eYW0aTXOlAMXTUFVJQc.roa (raw, json) Hash identifier: TpJ9DX0MRC+Kt4tzqSHLrAIP2a3TI9spfiSdWFx+BrE= Subject key identifier: CB:6F:D9:F5:9D:3B:79:85:B4:69:35:CE:94:03:17:4D:41:55:25:07 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3A6A Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/y2_Z9Z07eYW0aTXOlAMXTUFVJQc.roa Signing time: Fri 22 Aug 2025 08:47:19 +0000 ROA not before: Fri 22 Aug 2025 08:47:19 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 180.176.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14954 (0x3a6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:19 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=CB6FD9F59D3B7985B46935CE9403174D41552507 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:18:cd:55:d6:0c:3f:fe:8f:95:a0:3e:87:69: 0f:51:58:a3:76:60:ef:b9:22:ef:a5:00:8e:38:b8: 3e:5e:5f:85:ac:d8:c4:b9:c6:49:9d:c0:40:16:cf: 35:f4:83:22:27:5a:dd:cc:8e:c0:a6:17:65:8a:78: d3:f6:00:b7:41:fb:40:39:7c:f8:a6:5a:45:f5:f1: 63:53:26:3b:d3:75:6a:e8:be:c2:e7:29:a1:7d:c8: 11:d3:c2:58:02:b2:9c:57:9f:6c:d7:cc:94:45:1c: 9a:ee:d4:13:fc:f4:4d:f9:97:e8:db:c8:d1:8d:eb: d3:4b:14:48:63:48:ae:91:45:de:f9:06:92:81:ce: ad:54:00:b4:f1:8c:86:95:c0:12:30:87:89:66:9d: 36:7e:01:40:ae:9f:b7:9d:cf:41:18:8f:bd:ce:a5: 19:43:86:e1:84:53:91:01:59:69:78:e8:60:3e:9d: 58:d6:15:a8:ab:f6:3d:ff:9c:c7:04:a9:63:cc:8a: 42:88:ff:36:e7:5e:43:05:af:b3:b3:d7:ff:4b:d0: 5c:b4:b7:bc:17:6c:c4:0c:d1:2b:ea:0d:41:2b:77: 67:d3:0a:8a:00:c6:17:b2:5c:50:56:35:85:27:fa: 0c:37:19:92:4c:ff:55:1d:3c:21:69:9f:aa:8c:17: 7c:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:6F:D9:F5:9D:3B:79:85:B4:69:35:CE:94:03:17:4D:41:55:25:07 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/y2_Z9Z07eYW0aTXOlAMXTUFVJQc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.176.0.0/15 Signature Algorithm: sha256WithRSAEncryption 1d:17:a4:0a:29:cb:01:c1:1f:86:91:89:d0:e9:5c:58:4b:c7: 37:38:19:10:3c:c9:10:de:f7:b9:3f:fa:07:b6:74:3a:9a:dd: 2b:8f:33:20:16:71:2a:a5:3f:8a:3c:7d:f5:6d:c3:51:9c:f7: 09:49:bc:7c:b1:0a:9c:d3:da:05:9b:da:fd:e2:f1:e1:66:30: 1e:5e:bd:c9:c2:5d:6c:98:80:32:0f:76:ff:f7:1c:fd:7d:ac: 7c:78:f0:c4:fa:3c:6f:ca:23:f1:30:55:2f:d1:1c:b7:30:69: 01:64:57:00:c2:7a:98:e7:57:98:35:87:ed:53:b6:ec:9d:6c: 74:d8:19:f3:5a:df:2d:a1:09:7a:68:48:bc:fe:1f:c6:18:a1: 69:eb:b8:cd:7e:2d:85:f4:fa:a1:93:da:bc:69:62:2b:47:ab: af:5f:10:f1:42:cf:e4:5b:d1:9a:f9:e2:4c:e9:59:f2:5e:b8: bb:03:8b:52:2d:e5:51:98:58:ed:53:f0:19:3b:14:22:79:02: 38:3d:75:ad:06:2e:1b:e5:a8:08:d0:74:da:a8:fd:05:7f:03: 43:59:66:33:44:be:ea:fe:61:af:fb:c0:f0:fb:48:f4:94:22: 00:e0:92:97:35:61:b2:db:58:f2:6d:95:50:e9:3d:fe:26:b0: 4d:b4:f7:c5 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICOmowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3MTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKENCNkZEOUY1OUQzQjc5 ODVCNDY5MzVDRTk0MDMxNzRENDE1NTI1MDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfGM1V1gw//o+VoD6HaQ9RWKN2YO+5Iu+lAI44uD5eX4Ws2MS5 xkmdwEAWzzX0gyInWt3MjsCmF2WKeNP2ALdB+0A5fPimWkX18WNTJjvTdWrovsLn KaF9yBHTwlgCspxXn2zXzJRFHJru1BP89E35l+jbyNGN69NLFEhjSK6RRd75BpKB zq1UALTxjIaVwBIwh4lmnTZ+AUCun7edz0EYj73OpRlDhuGEU5EBWWl46GA+nVjW Fair9j3/nMcEqWPMikKI/zbnXkMFr7Oz1/9L0Fy0t7wXbMQM0SvqDUErd2fTCooA xheyXFBWNYUn+gw3GZJM/1UdPCFpn6qMF3ytAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUy2/Z9Z07eYW0aTXOlAMXTUFVJQcwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3kyX1o5WjA3ZVlXMGFUWE9s QU1YVFVGVkpRYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwG0 sDANBgkqhkiG9w0BAQsFAAOCAQEAHRekCinLAcEfhpGJ0OlcWEvHNzgZEDzJEN73 uT/6B7Z0OprdK48zIBZxKqU/ijx99W3DUZz3CUm8fLEKnNPaBZva/eLx4WYwHl69 ycJdbJiAMg92//cc/X2sfHjwxPo8b8oj8TBVL9EctzBpAWRXAMJ6mOdXmDWH7VO2 7J1sdNgZ81rfLaEJemhIvP4fxhihaeu4zX4thfT6oZPavGliK0err18Q8ULP5FvR mvniTOlZ8l64uwOLUi3lUZhY7VPwGTsUInkCOD11rQYuG+WoCNB02qj9BX8DQ1lm M0S+6v5hr/vA8PtI9JQiAOCSlzVhsttY8m2VUOk9/iawTbT3xQ== -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:36 2025 by rpki-client