$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xWCWcDn7wZ7Yf78DS4DK1y-4VcE.roa File: xWCWcDn7wZ7Yf78DS4DK1y-4VcE.roa (raw, json) Hash identifier: Tsuec1m01tbQKN75MJxPio5q7A8wBONFMhlYDCDyKOc= Subject key identifier: C5:60:96:70:39:FB:C1:9E:D8:7F:BF:03:4B:80:CA:D7:2F:B8:55:C1 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3903 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xWCWcDn7wZ7Yf78DS4DK1y-4VcE.roa Signing time: Fri 22 Aug 2025 08:45:52 +0000 ROA not before: Fri 22 Aug 2025 08:45:52 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.233.120.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 21:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14595 (0x3903) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:52 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C560967039FBC19ED87FBF034B80CAD72FB855C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ae:df:5c:43:d9:10:6a:f5:84:ca:21:c4:cb: 9f:a8:a9:b7:b0:b2:b8:84:af:f6:8e:3c:13:96:89: 44:0a:81:02:1a:64:91:4e:72:09:3e:cc:86:34:0c: 0e:17:a5:31:09:aa:dd:fd:dd:ab:3e:e9:93:1e:e5: 9a:06:f4:d1:26:b3:11:31:c4:ee:79:b8:52:0f:b5: 16:96:da:7a:00:7e:0e:ee:8a:25:ea:2e:a3:7e:ad: c1:7c:3f:78:1d:34:4f:a1:cd:00:d1:8f:79:ac:90: f5:45:2a:80:d0:8e:07:1d:41:eb:45:3e:dc:e2:4e: c6:57:38:5d:33:43:09:eb:df:20:f4:0b:f0:f6:6c: dd:ff:cf:1a:f5:b9:c7:cd:d4:20:d5:5c:ba:21:68: 6d:ce:f2:90:c6:f7:60:53:63:ca:6b:46:01:7b:bc: aa:fe:04:09:5b:74:7f:d9:7d:7a:6a:2f:2c:32:ac: 72:e5:b4:29:48:17:ca:22:ed:76:97:38:36:29:9b: 4d:b2:f1:13:de:d4:59:40:78:88:b8:66:07:40:15: e6:47:ac:f3:50:ac:6e:ac:c7:fa:98:2f:23:d2:a5: 69:bf:74:c8:cd:d0:a0:06:90:59:3e:10:21:3b:78: 55:a4:00:42:f3:6a:ab:2a:c6:c0:03:5a:5a:4b:a9: 57:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:60:96:70:39:FB:C1:9E:D8:7F:BF:03:4B:80:CA:D7:2F:B8:55:C1 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xWCWcDn7wZ7Yf78DS4DK1y-4VcE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.120.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:24:63:62:8a:78:5b:0b:1d:e8:2f:63:c5:d1:ac:b4:d6:97: 5d:4a:35:6f:3f:ca:96:11:62:14:2c:1c:a9:67:85:20:cf:7b: 3a:77:f4:ba:65:51:18:f3:cd:e3:2f:2e:90:b6:53:d6:e9:f6: d6:ca:47:88:b1:46:43:36:22:83:20:0a:e9:d3:21:3c:2d:dd: 6e:f3:cb:f4:6b:32:ee:ac:b6:e2:c6:74:54:0a:db:ac:17:96: a4:6c:82:a4:37:b7:4e:c9:02:b5:ae:89:56:63:36:2d:00:a0: f8:f9:58:2e:48:28:fc:76:90:fc:dc:0d:c4:95:b7:44:47:5f: a1:98:67:de:b9:5a:ab:e9:c5:73:01:17:e6:ca:48:af:a9:57: e1:9c:21:64:20:4d:bb:70:1b:a5:8b:7b:86:98:08:8f:19:c8: 47:2e:07:74:bb:34:dd:d2:16:b4:59:e2:2f:40:ad:fe:83:89: 3d:9b:a8:6c:97:a6:b5:2a:1e:cb:1d:ed:be:27:55:ad:9a:ad: fb:da:b4:d3:4b:1e:57:76:5e:74:4f:75:e8:78:33:85:9c:53: 0d:a3:2e:4d:d0:ed:07:df:cf:de:30:fb:95:c6:16:95:3b:67: 86:1e:00:cd:6f:3a:eb:9e:e0:42:9e:f4:dc:f1:16:41:3c:8a: 1a:09:06:9e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOQMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1NTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM1NjA5NjcwMzlGQkMx OUVEODdGQkYwMzRCODBDQUQ3MkZCODU1QzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzrt9cQ9kQavWEyiHEy5+oqbewsriEr/aOPBOWiUQKgQIaZJFO cgk+zIY0DA4XpTEJqt393as+6ZMe5ZoG9NEmsxExxO55uFIPtRaW2noAfg7uiiXq LqN+rcF8P3gdNE+hzQDRj3mskPVFKoDQjgcdQetFPtziTsZXOF0zQwnr3yD0C/D2 bN3/zxr1ucfN1CDVXLohaG3O8pDG92BTY8prRgF7vKr+BAlbdH/ZfXpqLywyrHLl tClIF8oi7XaXODYpm02y8RPe1FlAeIi4ZgdAFeZHrPNQrG6sx/qYLyPSpWm/dMjN 0KAGkFk+ECE7eFWkAELzaqsqxsADWlpLqVdZAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUxWCWcDn7wZ7Yf78DS4DK1y+4VcEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3hXQ1djRG43d1o3WWY3OERT NERLMXktNFZjRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF2 6XgwDQYJKoZIhvcNAQELBQADggEBAIokY2KKeFsLHegvY8XRrLTWl11KNW8/ypYR YhQsHKlnhSDPezp39LplURjzzeMvLpC2U9bp9tbKR4ixRkM2IoMgCunTITwt3W7z y/RrMu6stuLGdFQK26wXlqRsgqQ3t07JArWuiVZjNi0AoPj5WC5IKPx2kPzcDcSV t0RHX6GYZ965WqvpxXMBF+bKSK+pV+GcIWQgTbtwG6WLe4aYCI8ZyEcuB3S7NN3S FrRZ4i9Arf6DiT2bqGyXprUqHssd7b4nVa2arfvatNNLHld2XnRPdeh4M4WcUw2j Lk3Q7Qffz94w+5XGFpU7Z4YeAM1vOuue4EKe9NzxFkE8ihoJBp4= -----END CERTIFICATE-----Generated at Fri Oct 24 19:21:49 2025 by rpki-client