$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/u7pZAah9BtxNtC-j_yxDW9QXhrY.roa File: u7pZAah9BtxNtC-j_yxDW9QXhrY.roa (raw, json) Hash identifier: sq2I7TWRi4qW13F/o62QM/dTjS44R+ARZaGKTcyMtC0= Subject key identifier: BB:BA:59:01:A8:7D:06:DC:4D:B4:2F:A3:FF:2C:43:5B:D4:17:86:B6 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3B24 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/u7pZAah9BtxNtC-j_yxDW9QXhrY.roa Signing time: Fri 22 Aug 2025 08:48:06 +0000 ROA not before: Fri 22 Aug 2025 08:48:06 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 180.176.104.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 21:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15140 (0x3b24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:48:06 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BBBA5901A87D06DC4DB42FA3FF2C435BD41786B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:47:c4:9d:ea:82:a7:c6:88:3d:ef:4e:05:e3: 83:73:ac:db:41:41:64:1e:47:db:89:21:41:9a:d1: 12:0d:7b:b4:e6:80:20:f7:07:25:a1:36:67:16:0a: 24:b9:01:16:c4:95:00:03:68:6b:c8:51:69:f8:4d: c2:88:c2:39:09:17:9e:18:56:e8:2c:d7:0c:38:58: 22:e2:3d:83:96:da:00:7d:8e:17:3b:6a:48:0c:a8: 5d:14:18:cf:1c:c2:b7:e0:53:5b:87:95:c7:5d:62: 55:44:af:45:3c:2c:28:72:d4:40:82:3e:96:ca:61: 0c:bf:af:af:5e:27:b9:3e:46:a8:b3:d0:2b:6c:14: 39:23:2e:33:02:9e:de:dd:6d:7c:27:7c:11:8f:7e: 44:4c:4e:7b:e3:7a:b3:40:96:97:00:07:d7:55:ed: 8f:1f:c1:fa:bc:d7:d5:eb:e9:cf:47:64:69:2a:c6: 79:06:13:ba:46:6d:b0:df:13:fb:f2:53:cb:b8:f7: ae:11:1f:1f:83:83:08:fa:ca:fa:60:ea:7e:a7:2a: 13:75:a7:a6:18:54:a5:f5:60:8a:3a:bc:1e:ba:0b: dd:90:8d:36:43:94:3f:32:3b:36:d0:5c:2e:23:a8: b2:7c:4e:8e:01:d1:6b:f4:ed:75:ce:35:17:46:51: b0:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:BA:59:01:A8:7D:06:DC:4D:B4:2F:A3:FF:2C:43:5B:D4:17:86:B6 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/u7pZAah9BtxNtC-j_yxDW9QXhrY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.176.104.0/21 Signature Algorithm: sha256WithRSAEncryption 51:e4:21:ce:64:20:cf:56:03:e2:23:85:74:df:fb:3f:7a:72: de:99:64:b6:1b:34:4b:e5:4d:f2:35:47:e6:b6:67:10:9f:82: 7c:0a:e1:ac:c8:af:17:70:0c:30:1b:40:aa:2b:f3:89:75:c6: 00:71:fc:d3:37:0b:a4:4b:23:f3:a6:ba:7f:d3:bb:a6:a2:1d: 19:3d:35:0c:df:37:96:43:69:30:eb:10:6f:de:8a:d1:ee:f4: dc:83:7d:98:ed:4f:48:da:34:f2:d8:b9:ca:fa:7a:8e:2f:95: 4f:06:fc:39:a5:dc:22:92:24:0a:4f:3f:53:e4:04:6a:d0:ed: 1f:19:76:e4:44:ee:4f:4c:9c:fc:90:26:98:14:1f:35:62:f5: 66:9c:18:7a:aa:59:d8:b4:83:46:6b:55:95:d6:48:0f:be:7e: 78:51:b5:a7:33:d7:b9:1a:24:95:94:5e:68:75:68:38:bb:24: 49:bd:4a:a6:fe:bf:ed:8d:a8:0f:e5:99:ed:f9:59:e9:f5:d8: b4:98:8a:7b:da:2f:6b:23:24:b5:bf:2f:79:29:f3:30:2e:c9: 18:9e:2c:89:d0:50:08:3b:c6:e9:73:a3:c8:b3:c7:ba:e4:66: 4b:43:78:3e:11:fe:83:31:9d:d3:20:90:89:f4:bf:aa:d0:ee: ab:14:f9:4d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOyQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ4MDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJCQkE1OTAxQTg3RDA2 REM0REI0MkZBM0ZGMkM0MzVCRDQxNzg2QjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSR8Sd6oKnxog9704F44NzrNtBQWQeR9uJIUGa0RINe7TmgCD3 ByWhNmcWCiS5ARbElQADaGvIUWn4TcKIwjkJF54YVugs1ww4WCLiPYOW2gB9jhc7 akgMqF0UGM8cwrfgU1uHlcddYlVEr0U8LChy1ECCPpbKYQy/r69eJ7k+Rqiz0Cts FDkjLjMCnt7dbXwnfBGPfkRMTnvjerNAlpcAB9dV7Y8fwfq819Xr6c9HZGkqxnkG E7pGbbDfE/vyU8u4964RHx+Dgwj6yvpg6n6nKhN1p6YYVKX1YIo6vB66C92QjTZD lD8yOzbQXC4jqLJ8To4B0Wv07XXONRdGUbCdAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUu7pZAah9BtxNtC+j/yxDW9QXhrYwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3U3cFpBYWg5QnR4TnRDLWpf eXhEVzlRWGhyWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 sGgwDQYJKoZIhvcNAQELBQADggEBAFHkIc5kIM9WA+IjhXTf+z96ct6ZZLYbNEvl TfI1R+a2ZxCfgnwK4azIrxdwDDAbQKor84l1xgBx/NM3C6RLI/Omun/Tu6aiHRk9 NQzfN5ZDaTDrEG/eitHu9NyDfZjtT0jaNPLYucr6eo4vlU8G/Dml3CKSJApPP1Pk BGrQ7R8ZduRE7k9MnPyQJpgUHzVi9WacGHqqWdi0g0ZrVZXWSA++fnhRtacz17ka JJWUXmh1aDi7JEm9Sqb+v+2NqA/lme35Wen12LSYinvaL2sjJLW/L3kp8zAuyRie LInQUAg7xulzo8izx7rkZktDeD4R/oMxndMgkIn0v6rQ7qsU+U0= -----END CERTIFICATE-----Generated at Fri Oct 24 19:21:47 2025 by rpki-client