$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/whDOkmNAq4bh_amPfOS0n2moCgU.roa File: whDOkmNAq4bh_amPfOS0n2moCgU.roa (raw, json) Hash identifier: 3xTw1Tp9Huu+XWWT/FCcWke6cePAKI+EuTEtG83+mzg= Subject key identifier: C2:10:CE:92:63:40:AB:86:E1:FD:A9:8F:7C:E4:B4:9F:69:A8:0A:05 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 382F Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/whDOkmNAq4bh_amPfOS0n2moCgU.roa Signing time: Fri 22 Aug 2025 08:45:02 +0000 ROA not before: Fri 22 Aug 2025 08:45:02 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 106.1.144.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 21:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14383 (0x382f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:02 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C210CE926340AB86E1FDA98F7CE4B49F69A80A05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f2:5b:bb:6c:ab:64:73:f3:1b:66:f4:6a:12: 4d:40:7b:23:98:50:16:06:c5:59:5b:82:b2:18:94: a3:43:fa:85:bf:a3:19:e4:08:65:23:a5:63:9e:de: c9:a1:47:03:40:c5:fb:6a:20:5d:85:8a:c3:94:58: 69:ec:55:81:7d:2c:eb:5d:59:c4:8f:be:26:41:22: 59:3a:80:e4:50:30:04:ac:43:e9:1a:db:90:92:26: bd:d1:b2:fd:0d:52:0c:34:1d:e9:a9:1c:49:68:e2: 7e:cd:0b:a2:e0:fe:99:a7:e4:51:30:a5:96:c3:12: ce:5a:ec:87:c4:22:c3:7c:ce:1a:23:23:cf:56:33: 95:8e:56:ef:48:3f:c1:59:a2:6b:7f:58:f1:a3:1f: 9f:fc:5e:96:d1:c4:01:9f:25:4e:e8:79:54:5f:85: be:e9:a1:4d:b5:76:4e:e3:39:97:60:27:4d:45:3a: 14:4d:e8:d7:9d:42:0e:21:c0:bb:8d:a4:c0:e6:76: f7:ac:fd:aa:c1:ce:36:62:b0:73:d3:e6:3d:b3:80: 6b:9b:ec:73:4b:5f:db:90:5a:52:01:c5:88:0b:76: 23:44:a8:65:33:8a:71:93:95:aa:2a:a5:6d:34:74: 54:9d:2c:8b:91:11:0b:db:a8:b3:1e:05:a5:3f:bb: c4:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:10:CE:92:63:40:AB:86:E1:FD:A9:8F:7C:E4:B4:9F:69:A8:0A:05 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/whDOkmNAq4bh_amPfOS0n2moCgU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.144.0/22 Signature Algorithm: sha256WithRSAEncryption 3e:09:e9:30:c2:62:dd:8d:eb:3e:05:23:f8:b5:4b:df:62:9e: c9:88:5a:3a:c1:ae:06:3b:c3:73:56:da:fc:45:50:f5:a1:89: 5a:16:ff:b0:42:26:5a:bf:fb:71:bc:95:40:23:8c:7b:8d:49: b3:30:a5:a3:c1:a6:48:fe:30:44:fb:50:b7:4e:1c:7c:51:6b: d0:02:1a:10:01:43:30:64:9b:c3:3a:0a:42:ba:51:b2:c7:4e: e3:59:a6:b9:22:af:76:6f:a7:23:7a:e5:07:09:0b:8a:77:ad: f8:ce:cd:e2:64:d3:39:95:5f:12:1c:7f:68:29:eb:ea:d8:9e: b1:99:f7:f3:1d:4a:1b:07:b7:b7:2c:fa:3b:4d:4a:85:ff:58: 46:ba:02:0b:8b:d2:20:63:dd:d9:57:e1:a0:4e:ee:13:40:45: 31:c1:39:c1:6b:b5:10:6b:be:d1:8d:f9:8d:d5:70:5f:1f:26: 08:cc:90:27:f7:8b:6b:90:aa:00:41:f2:7c:cc:22:7e:cf:57: 77:86:f9:1d:6b:70:3e:e0:5d:dd:eb:1b:fb:35:6d:82:80:9e: 3c:3a:51:91:f0:6e:db:59:81:eb:c5:d3:fe:1a:b7:d3:df:45: cc:9e:ef:35:24:08:5c:35:63:64:d6:a6:e9:ee:c4:1b:83:9a: 45:b7:fd:9c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOC8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1MDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEMyMTBDRTkyNjM0MEFC ODZFMUZEQTk4RjdDRTRCNDlGNjlBODBBMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDE8lu7bKtkc/MbZvRqEk1AeyOYUBYGxVlbgrIYlKND+oW/oxnk CGUjpWOe3smhRwNAxftqIF2FisOUWGnsVYF9LOtdWcSPviZBIlk6gORQMASsQ+ka 25CSJr3Rsv0NUgw0HempHElo4n7NC6Lg/pmn5FEwpZbDEs5a7IfEIsN8zhojI89W M5WOVu9IP8FZomt/WPGjH5/8XpbRxAGfJU7oeVRfhb7poU21dk7jOZdgJ01FOhRN 6NedQg4hwLuNpMDmdves/arBzjZisHPT5j2zgGub7HNLX9uQWlIBxYgLdiNEqGUz inGTlaoqpW00dFSdLIuREQvbqLMeBaU/u8Q1AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUwhDOkmNAq4bh/amPfOS0n2moCgUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3doRE9rbU5BcTRiaF9hbVBm T1MwbjJtb0NnVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq AZAwDQYJKoZIhvcNAQELBQADggEBAD4J6TDCYt2N6z4FI/i1S99insmIWjrBrgY7 w3NW2vxFUPWhiVoW/7BCJlq/+3G8lUAjjHuNSbMwpaPBpkj+MET7ULdOHHxRa9AC GhABQzBkm8M6CkK6UbLHTuNZprkir3ZvpyN65QcJC4p3rfjOzeJk0zmVXxIcf2gp 6+rYnrGZ9/MdShsHt7cs+jtNSoX/WEa6AguL0iBj3dlX4aBO7hNARTHBOcFrtRBr vtGN+Y3VcF8fJgjMkCf3i2uQqgBB8nzMIn7PV3eG+R1rcD7gXd3rG/s1bYKAnjw6 UZHwbttZgevF0/4at9PfRcye7zUkCFw1Y2TWpunuxBuDmkW3/Zw= -----END CERTIFICATE-----Generated at Fri Oct 24 19:27:51 2025 by rpki-client