$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/W8aU5VNZ_CUyhZes8KP6NyI-Q-Y.roa File: W8aU5VNZ_CUyhZes8KP6NyI-Q-Y.roa (raw, json) Hash identifier: sx/uM+TPCj8Gpj+mh6tDX9t6ygXngSz68VOBSMTBMgc= Subject key identifier: 5B:C6:94:E5:53:59:FC:25:32:85:97:AC:F0:A3:FA:37:22:3E:43:E6 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3ADB Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/W8aU5VNZ_CUyhZes8KP6NyI-Q-Y.roa Signing time: Fri 22 Aug 2025 08:47:50 +0000 ROA not before: Fri 22 Aug 2025 08:47:50 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.232.240.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 21:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15067 (0x3adb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:50 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5BC694E55359FC25328597ACF0A3FA37223E43E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f0:db:8d:66:5b:ef:0e:7e:4f:2f:42:c1:a5: f5:83:f6:2d:bc:03:f8:ce:4c:56:30:27:1b:e3:c3: f0:7e:1d:a5:19:a1:49:ed:7e:be:9d:16:e3:16:82: f7:aa:4f:01:6a:41:97:f3:5d:34:dd:0b:67:fa:d7: 1b:a4:df:8f:dc:25:38:80:5e:9c:82:f4:76:54:d5: ec:a8:bb:56:5f:eb:be:41:3d:e4:87:50:e4:1a:7b: 91:9b:e6:56:98:9f:c8:b0:82:c0:27:4c:66:9d:74: c4:96:87:71:87:23:49:03:64:8c:09:ba:df:6a:b5: e9:9f:ce:c7:15:98:c2:82:55:76:43:18:85:e7:d7: 29:51:84:87:6c:15:9c:c9:eb:5f:69:ff:78:03:25: 1e:53:78:de:10:e9:9b:73:b9:88:50:85:c2:2c:86: 97:3e:28:c5:fb:59:fa:cc:e7:b1:2c:e3:5e:85:88: 5b:55:4a:9f:f5:dc:6b:de:d3:4a:11:e6:e5:66:1b: 18:36:39:c9:7b:79:db:97:78:a9:c7:3f:2f:56:a1: 52:67:e6:01:13:d3:6f:c3:b8:20:2d:11:6c:e0:13: ed:84:6b:0b:d4:89:ed:af:7f:55:bd:76:7e:0c:71: b4:d9:17:1a:fd:7b:0b:95:2b:d2:43:80:9a:4a:32: 33:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:C6:94:E5:53:59:FC:25:32:85:97:AC:F0:A3:FA:37:22:3E:43:E6 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/W8aU5VNZ_CUyhZes8KP6NyI-Q-Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.240.0/21 Signature Algorithm: sha256WithRSAEncryption 02:c1:0f:53:5a:e7:8b:3c:d6:5c:6f:b0:34:60:4e:a8:d0:9f: 2f:14:11:ec:d2:d7:07:a7:19:a0:94:0e:07:0d:40:b2:df:2c: d7:d3:8d:b2:7e:ce:2d:df:37:2c:b3:85:6e:b5:76:c2:42:cc: ac:f5:5b:f3:3f:4d:5b:89:6b:b6:36:ca:51:7d:ba:19:d6:9e: 56:b2:53:8c:81:94:2e:28:65:69:cd:fd:2f:ee:78:36:58:41: ab:9a:7f:72:98:fa:54:c6:72:46:cd:ff:11:ad:ea:ee:71:dd: 45:d8:ac:79:0d:c8:a9:5e:a1:cd:f2:95:9e:96:4e:22:2f:df: 00:16:9b:5a:b1:5b:f2:f6:29:aa:73:38:8b:55:21:05:72:20: 21:7f:71:84:ac:0c:2e:7f:a8:e1:d8:0f:af:5d:56:13:2c:26: c4:a6:7f:28:d8:6a:ff:f2:d8:30:33:58:28:45:d5:24:69:f5: f5:a4:3c:54:e8:ef:88:fd:52:f4:89:ce:7a:c5:c6:8a:e6:1c: f7:37:55:a5:3b:a0:b6:bf:7e:06:e4:20:e1:29:86:5b:5e:67: 0f:f0:dd:55:69:24:ee:96:c6:1d:a1:bb:98:f4:8f:14:aa:15: ca:de:e2:68:a3:51:9d:b1:10:eb:39:a9:1d:13:7c:69:fc:1b: c4:3a:34:0e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOtswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3NTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDVCQzY5NEU1NTM1OUZD MjUzMjg1OTdBQ0YwQTNGQTM3MjIzRTQzRTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+8NuNZlvvDn5PL0LBpfWD9i28A/jOTFYwJxvjw/B+HaUZoUnt fr6dFuMWgveqTwFqQZfzXTTdC2f61xuk34/cJTiAXpyC9HZU1eyou1Zf675BPeSH UOQae5Gb5laYn8iwgsAnTGaddMSWh3GHI0kDZIwJut9qtemfzscVmMKCVXZDGIXn 1ylRhIdsFZzJ619p/3gDJR5TeN4Q6ZtzuYhQhcIshpc+KMX7WfrM57Es416FiFtV Sp/13Gve00oR5uVmGxg2Ocl7eduXeKnHPy9WoVJn5gET02/DuCAtEWzgE+2EawvU ie2vf1W9dn4McbTZFxr9ewuVK9JDgJpKMjMBAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUW8aU5VNZ/CUyhZes8KP6NyI+Q+YwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1c4YVU1Vk5aX0NVeWhaZXM4 S1A2TnlJLVEtWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6PAwDQYJKoZIhvcNAQELBQADggEBAALBD1Na54s81lxvsDRgTqjQny8UEezS1wen GaCUDgcNQLLfLNfTjbJ+zi3fNyyzhW61dsJCzKz1W/M/TVuJa7Y2ylF9uhnWnlay U4yBlC4oZWnN/S/ueDZYQauaf3KY+lTGckbN/xGt6u5x3UXYrHkNyKleoc3ylZ6W TiIv3wAWm1qxW/L2KapzOItVIQVyICF/cYSsDC5/qOHYD69dVhMsJsSmfyjYav/y 2DAzWChF1SRp9fWkPFTo74j9UvSJznrFxormHPc3VaU7oLa/fgbkIOEphlteZw/w 3VVpJO6Wxh2hu5j0jxSqFcre4mijUZ2xEOs5qR0TfGn8G8Q6NA4= -----END CERTIFICATE-----Generated at Fri Oct 24 19:21:47 2025 by rpki-client