$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/z5P4eZH9cev6-OMCkPDrA7hootY.roa File: z5P4eZH9cev6-OMCkPDrA7hootY.roa (raw, json) Hash identifier: S05Uz51NzA0Kqi1pWYs3vhAbtc7AJ87lJQLdL/FcjCw= Subject key identifier: CF:93:F8:79:91:FD:71:EB:FA:F8:E3:02:90:F0:EB:03:B8:68:A2:D6 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 38C2 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/z5P4eZH9cev6-OMCkPDrA7hootY.roa Signing time: Fri 22 Aug 2025 08:45:35 +0000 ROA not before: Fri 22 Aug 2025 08:45:35 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.232.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14530 (0x38c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:35 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=CF93F87991FD71EBFAF8E30290F0EB03B868A2D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f2:bb:5f:07:bf:e9:d4:ec:b1:c0:b8:e6:11: 2d:12:40:51:c5:a0:3a:a8:96:4c:83:48:0b:f0:32: eb:00:bb:bf:50:ae:c4:e2:fc:1e:36:20:6c:3a:20: d3:21:50:bc:e9:87:00:17:7c:ba:09:a0:d9:6f:0e: 97:c9:be:75:9c:6b:f5:52:50:a0:77:70:a2:93:77: 83:4d:b7:60:54:05:a1:52:dc:90:29:35:4a:d3:b3: f9:a3:0d:9f:93:42:fd:d2:75:c1:e8:cd:d2:1b:27: f7:3e:1c:56:10:85:71:b8:b0:86:a1:19:76:80:80: 11:68:e5:ba:86:6a:1a:56:6c:23:f8:ab:3a:c5:b9: 1b:41:a1:37:62:bd:51:f6:d7:25:2c:a6:87:2a:7c: 88:99:77:96:1b:9b:87:7a:55:c5:e4:eb:f2:d7:9a: 61:da:49:11:04:72:07:bf:d3:5d:0b:a9:fa:92:63: 7b:be:3f:ad:a4:ca:80:84:52:bd:35:74:b2:41:7b: 29:53:32:96:bd:ea:c7:2e:00:fc:25:20:b0:4b:a9: a5:94:45:a8:79:41:08:4f:91:df:e2:20:7d:e3:0f: 9f:30:00:7c:9b:57:d3:f0:a1:9b:db:34:f8:ee:35: 34:5a:0b:dd:44:b9:f4:f9:45:66:49:9f:83:f6:6c: ed:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:93:F8:79:91:FD:71:EB:FA:F8:E3:02:90:F0:EB:03:B8:68:A2:D6 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/z5P4eZH9cev6-OMCkPDrA7hootY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.16.0/21 Signature Algorithm: sha256WithRSAEncryption 2b:19:a3:ff:7e:d7:49:5d:db:29:36:35:38:05:a5:87:1e:07: b3:3d:c2:7b:bb:8d:fc:53:d0:98:99:6e:7a:28:c6:17:45:9e: 7e:19:c9:0b:f0:43:9b:4c:18:a6:e9:b4:7c:23:96:5e:f8:32: a7:b1:97:1f:01:78:46:3d:d2:23:fb:1d:fb:45:58:c5:57:08: 0d:8c:bb:61:fa:a4:4c:c8:8a:cd:a9:fa:aa:8b:a4:e3:55:7e: 90:a4:33:24:77:8b:5f:3d:50:de:83:26:3e:ec:da:7a:d6:3c: 0d:53:3b:d3:fb:70:9f:2e:43:9b:61:58:12:45:39:3f:da:ba: f0:b1:50:9d:9d:62:66:39:f7:c8:a2:a0:9a:f0:5b:ea:15:b1: b0:7b:bb:b0:e8:57:b1:c0:50:76:a1:66:35:15:0e:db:b2:04: da:61:19:c8:8d:44:7b:9d:6a:50:76:41:65:68:12:52:ba:98: ae:a6:b3:ae:fd:ea:ee:ef:f2:1c:05:8e:04:d4:7d:d4:7d:16: 56:94:ba:4d:5d:45:fc:14:7d:46:94:8d:f6:62:ef:22:96:17: f2:73:a0:5f:6a:8c:dc:bf:9c:68:14:00:16:23:b8:59:8b:a4: 4a:c0:19:c3:10:a1:b0:0d:04:3d:4e:c2:93:de:60:2a:c9:06: 25:67:17:05 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOMIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1MzVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKENGOTNGODc5OTFGRDcx RUJGQUY4RTMwMjkwRjBFQjAzQjg2OEEyRDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDI8rtfB7/p1OyxwLjmES0SQFHFoDqolkyDSAvwMusAu79QrsTi /B42IGw6INMhULzphwAXfLoJoNlvDpfJvnWca/VSUKB3cKKTd4NNt2BUBaFS3JAp NUrTs/mjDZ+TQv3SdcHozdIbJ/c+HFYQhXG4sIahGXaAgBFo5bqGahpWbCP4qzrF uRtBoTdivVH21yUspocqfIiZd5Ybm4d6VcXk6/LXmmHaSREEcge/010LqfqSY3u+ P62kyoCEUr01dLJBeylTMpa96scuAPwlILBLqaWURah5QQhPkd/iIH3jD58wAHyb V9PwoZvbNPjuNTRaC91EufT5RWZJn4P2bO2RAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUz5P4eZH9cev6+OMCkPDrA7hootYwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3o1UDRlWkg5Y2V2Ni1PTUNr UERyQTdob290WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6BAwDQYJKoZIhvcNAQELBQADggEBACsZo/9+10ld2yk2NTgFpYceB7M9wnu7jfxT 0JiZbnooxhdFnn4ZyQvwQ5tMGKbptHwjll74Mqexlx8BeEY90iP7HftFWMVXCA2M u2H6pEzIis2p+qqLpONVfpCkMyR3i189UN6DJj7s2nrWPA1TO9P7cJ8uQ5thWBJF OT/auvCxUJ2dYmY598iioJrwW+oVsbB7u7DoV7HAUHahZjUVDtuyBNphGciNRHud alB2QWVoElK6mK6ms6796u7v8hwFjgTUfdR9FlaUuk1dRfwUfUaUjfZi7yKWF/Jz oF9qjNy/nGgUABYjuFmLpErAGcMQobANBD1OwpPeYCrJBiVnFwU= -----END CERTIFICATE-----Generated at Sun Aug 24 07:29:30 2025 by rpki-client