$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/P5tXbqYjQtbP71RjMs9HGF0j5TA.roa File: P5tXbqYjQtbP71RjMs9HGF0j5TA.roa (raw, json) Hash identifier: L5mIsrfs1wR4qHEU816/JDLc6Jt9htdWu9ga5lU0HDQ= Subject key identifier: 3F:9B:57:6E:A6:23:42:D6:CF:EF:54:63:32:CF:47:18:5D:23:E5:30 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 38C8 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/P5tXbqYjQtbP71RjMs9HGF0j5TA.roa Signing time: Fri 22 Aug 2025 08:45:38 +0000 ROA not before: Fri 22 Aug 2025 08:45:38 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.232.200.0/21 maxlen: 27 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 21:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14536 (0x38c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:38 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3F9B576EA62342D6CFEF546332CF47185D23E530 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:b5:a0:6b:15:b0:5c:3e:b6:11:07:23:f9:60: 46:9d:17:12:96:11:37:54:c5:4f:56:8f:33:d6:90: 0e:4b:c8:8f:86:0b:bd:c4:00:22:61:22:18:9d:a1: 09:78:fb:27:e6:85:cf:11:82:59:a2:59:1e:45:71: ef:b5:c8:12:66:cb:37:60:ad:b0:3e:91:a8:76:19: 9b:42:a7:3b:19:88:a0:a5:66:38:25:a0:98:2b:76: 1e:bf:f5:d4:84:f5:a0:14:86:08:a5:24:10:a0:66: 74:44:a5:61:7d:0a:76:f2:c0:9f:a7:fb:f3:ee:2d: c7:5a:af:b1:97:59:55:36:b0:8c:cd:c9:3d:20:dd: 77:a1:f1:26:a3:2f:2a:ec:49:d9:27:50:37:4a:3d: 1f:76:3f:2e:a0:8f:75:5a:b3:bd:d2:13:80:14:3d: 82:ce:c2:fb:7d:bc:c7:7d:b2:a8:17:c7:3e:72:4e: e7:69:77:35:7a:d3:b6:27:a6:f0:48:03:c7:a0:fb: ef:7e:b0:d9:1a:86:c9:e3:e0:dd:93:25:38:ee:d2: cf:ed:d8:aa:d3:9c:1f:1f:9b:69:e8:60:cb:5b:0d: 7f:2d:05:fd:6d:dd:31:2a:02:90:01:b1:25:41:dd: 4f:86:10:aa:99:d7:ac:87:e6:76:b9:01:13:81:3d: c2:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:9B:57:6E:A6:23:42:D6:CF:EF:54:63:32:CF:47:18:5D:23:E5:30 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/P5tXbqYjQtbP71RjMs9HGF0j5TA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.200.0/21 Signature Algorithm: sha256WithRSAEncryption 47:29:77:54:5a:a1:54:5e:24:48:86:56:06:79:79:66:38:6f: 19:b0:19:16:a5:78:52:69:b2:e8:ed:4e:2c:05:f9:9c:4a:e0: 24:72:2f:37:df:50:3d:78:d1:92:74:a5:16:e1:f3:21:1c:dd: cb:16:0b:a8:1a:2b:75:46:a6:42:c6:f6:6f:d0:f4:fb:da:be: a3:3d:86:5d:f6:7c:dc:58:da:b5:e8:d6:97:b7:d9:ba:98:c2: 8c:5d:7e:4d:5a:0b:10:66:2b:46:cd:f2:0c:3e:94:17:1d:42: 9b:97:84:66:08:4e:81:76:f4:d8:dc:5a:b9:f3:26:e9:0f:03: a5:8e:f8:af:78:01:10:a7:cb:88:38:cb:1a:e6:98:38:f9:7e: 93:c2:c7:3f:64:e4:bd:ff:68:4e:f4:e2:58:6a:2a:e4:1a:0c: f1:25:5c:87:ec:70:1f:ac:ca:5e:f5:67:5b:a1:d6:6b:6b:47: da:2f:77:25:b3:b7:71:5e:2e:dc:34:d2:94:f5:39:f9:50:cc: 9d:b2:b1:2a:fc:b3:e8:32:8b:c3:f8:05:ea:d2:52:13:23:3e: af:97:cb:5c:2f:a0:1a:ea:55:fe:d4:da:e9:27:86:24:63:b8: 62:21:87:2a:9d:88:dc:0b:70:9e:30:8a:ea:e1:86:e7:b1:12: 6e:12:29:1f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOMgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1MzhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNGOUI1NzZFQTYyMzQy RDZDRkVGNTQ2MzMyQ0Y0NzE4NUQyM0U1MzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDwtaBrFbBcPrYRByP5YEadFxKWETdUxU9WjzPWkA5LyI+GC73E ACJhIhidoQl4+yfmhc8RglmiWR5Fce+1yBJmyzdgrbA+kah2GZtCpzsZiKClZjgl oJgrdh6/9dSE9aAUhgilJBCgZnREpWF9CnbywJ+n+/PuLcdar7GXWVU2sIzNyT0g 3Xeh8SajLyrsSdknUDdKPR92Py6gj3Vas73SE4AUPYLOwvt9vMd9sqgXxz5yTudp dzV607YnpvBIA8eg++9+sNkahsnj4N2TJTju0s/t2KrTnB8fm2noYMtbDX8tBf1t 3TEqApABsSVB3U+GEKqZ16yH5na5AROBPcK9AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUP5tXbqYjQtbP71RjMs9HGF0j5TAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1A1dFhicVlqUXRiUDcxUmpN czlIR0YwajVUQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6MgwDQYJKoZIhvcNAQELBQADggEBAEcpd1RaoVReJEiGVgZ5eWY4bxmwGRaleFJp sujtTiwF+ZxK4CRyLzffUD140ZJ0pRbh8yEc3csWC6gaK3VGpkLG9m/Q9PvavqM9 hl32fNxY2rXo1pe32bqYwoxdfk1aCxBmK0bN8gw+lBcdQpuXhGYIToF29NjcWrnz JukPA6WO+K94ARCny4g4yxrmmDj5fpPCxz9k5L3/aE704lhqKuQaDPElXIfscB+s yl71Z1uh1mtrR9ovdyWzt3FeLtw00pT1OflQzJ2ysSr8s+gyi8P4BerSUhMjPq+X y1wvoBrqVf7U2uknhiRjuGIhhyqdiNwLcJ4wiurhhuexEm4SKR8= -----END CERTIFICATE-----Generated at Fri Oct 24 19:27:51 2025 by rpki-client