$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/do5FFphc_uRroInIrAhIPvIA4vA.roa File: do5FFphc_uRroInIrAhIPvIA4vA.roa (raw, json) Hash identifier: h0r52wtG1VjsWCs/Qv6wD+weh0J03ButKwzt8qxbrWM= Subject key identifier: 76:8E:45:16:98:5C:FE:E4:6B:A0:89:C8:AC:08:48:3E:F2:00:E2:F0 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3870 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/do5FFphc_uRroInIrAhIPvIA4vA.roa Signing time: Fri 22 Aug 2025 08:45:18 +0000 ROA not before: Fri 22 Aug 2025 08:45:18 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.232.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 21:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14448 (0x3870) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=768E4516985CFEE46BA089C8AC08483EF200E2F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:98:32:5a:d9:65:a2:59:fc:4a:91:1d:5d:aa: 97:e8:68:00:63:be:e4:0e:49:eb:9e:95:ff:7d:c6: 38:9d:41:ef:f0:a9:27:4f:fe:7b:df:2b:38:9b:a8: 29:c0:71:1f:e1:95:04:0e:55:b8:ef:5c:e9:31:21: 13:44:23:e2:36:54:8d:92:26:63:44:bb:31:d8:35: e2:a7:43:30:64:ef:a5:c5:98:77:e3:76:c3:7e:86: f0:27:b4:4c:ca:0b:2f:0b:a6:09:36:c5:fd:ec:14: 90:23:89:ea:80:eb:96:b9:41:44:90:fd:58:0e:b6: 6b:11:22:f0:5b:0d:e5:9c:b2:ff:42:38:24:bb:85: 1f:ef:53:34:43:59:0f:17:3c:d5:0a:0a:c5:01:68: 6c:77:e9:49:d5:27:ad:1e:0b:8d:1e:cc:85:8d:08: c0:45:da:15:ef:ac:9b:db:93:63:e9:6f:06:a2:1c: ed:e8:31:ca:8f:c4:f7:bb:3a:a5:0c:9a:95:9a:8a: 71:dc:06:38:69:aa:01:61:3e:c7:1d:7e:ba:9f:90: 4d:54:8c:85:ff:a4:1c:63:d1:04:60:e4:51:1e:d9: 70:79:ff:c8:76:5a:bd:5d:b1:31:eb:2e:09:d2:f9: de:0d:b6:a1:c3:d2:a9:5d:6e:4f:ac:a7:ae:58:c9: 12:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:8E:45:16:98:5C:FE:E4:6B:A0:89:C8:AC:08:48:3E:F2:00:E2:F0 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/do5FFphc_uRroInIrAhIPvIA4vA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.4.0/22 Signature Algorithm: sha256WithRSAEncryption ac:2d:7d:e8:e9:b7:e5:ea:a8:07:f6:d5:a6:d7:a6:1b:7a:21: 4c:e0:2c:b2:79:87:5a:dc:95:f3:7b:62:15:85:ac:ba:ad:b1: 67:fb:5f:3f:b2:a9:66:d8:66:9b:96:3f:5b:3c:16:ec:a0:03: be:92:d0:ce:ab:47:c6:c3:9e:f7:45:91:8a:45:40:23:4e:f3: 93:c1:1f:4f:87:46:3c:b2:98:d4:6e:f1:72:80:ec:e4:27:b9: 85:a8:ce:6f:ea:aa:07:e3:43:a1:9d:65:7b:ea:2d:13:87:cb: 17:73:bf:d1:06:07:81:f7:02:bd:5a:14:2b:1c:9d:45:7a:a2: b4:40:46:02:f4:73:f4:e2:5e:fe:83:b8:51:f2:74:99:d2:a9: 62:c5:75:3b:a5:de:b0:56:b1:41:f8:f1:75:a2:1e:96:07:35: 29:03:5b:e0:ae:42:9d:0a:07:58:7c:aa:4f:13:b7:3f:f0:6e: 79:2e:ea:90:78:9e:33:48:11:a7:c5:77:3a:4e:a8:a7:28:43: 3b:b1:e3:54:33:95:38:10:e1:ce:7e:3b:bf:c8:27:e2:92:f4: bc:2b:87:d9:62:14:d7:76:ae:33:af:15:d4:9c:b1:d2:12:73: 4b:85:5b:b8:a6:a7:3f:dd:c9:a2:72:42:be:7e:10:52:00:91: bf:c4:e2:d7 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOHAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1MThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc2OEU0NTE2OTg1Q0ZF RTQ2QkEwODlDOEFDMDg0ODNFRjIwMEUyRjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsmDJa2WWiWfxKkR1dqpfoaABjvuQOSeuelf99xjidQe/wqSdP /nvfKzibqCnAcR/hlQQOVbjvXOkxIRNEI+I2VI2SJmNEuzHYNeKnQzBk76XFmHfj dsN+hvAntEzKCy8Lpgk2xf3sFJAjieqA65a5QUSQ/VgOtmsRIvBbDeWcsv9COCS7 hR/vUzRDWQ8XPNUKCsUBaGx36UnVJ60eC40ezIWNCMBF2hXvrJvbk2PpbwaiHO3o McqPxPe7OqUMmpWainHcBjhpqgFhPscdfrqfkE1UjIX/pBxj0QRg5FEe2XB5/8h2 Wr1dsTHrLgnS+d4NtqHD0qldbk+sp65YyRJ7AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUdo5FFphc/uRroInIrAhIPvIA4vAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2RvNUZGcGhjX3VScm9Jbkly QWhJUHZJQTR2QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6AQwDQYJKoZIhvcNAQELBQADggEBAKwtfejpt+XqqAf21abXpht6IUzgLLJ5h1rc lfN7YhWFrLqtsWf7Xz+yqWbYZpuWP1s8FuygA76S0M6rR8bDnvdFkYpFQCNO85PB H0+HRjyymNRu8XKA7OQnuYWozm/qqgfjQ6GdZXvqLROHyxdzv9EGB4H3Ar1aFCsc nUV6orRARgL0c/TiXv6DuFHydJnSqWLFdTul3rBWsUH48XWiHpYHNSkDW+CuQp0K B1h8qk8Ttz/wbnku6pB4njNIEafFdzpOqKcoQzux41QzlTgQ4c5+O7/IJ+KS9Lwr h9liFNd2rjOvFdScsdISc0uFW7impz/dyaJyQr5+EFIAkb/E4tc= -----END CERTIFICATE-----Generated at Fri Oct 24 19:18:41 2025 by rpki-client