$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/eofowvK3VY0rWSrHDZ-7_nGHoI8.roa File: eofowvK3VY0rWSrHDZ-7_nGHoI8.roa (raw, json) Hash identifier: RPuTuvr7+JZj9TRrwU/Mm/8nQSDQIaYgz6dYZiVLeu8= Subject key identifier: 7A:87:E8:C2:F2:B7:55:8D:2B:59:2A:C7:0D:9F:BB:FE:71:87:A0:8F Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Certificate serial: 0F5B Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/eofowvK3VY0rWSrHDZ-7_nGHoI8.roa Signing time: Fri 22 Aug 2025 08:51:15 +0000 ROA not before: Fri 22 Aug 2025 08:51:15 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18429 IP address blocks: 123.50.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3931 (0xf5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Validity Not Before: Aug 22 08:51:15 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7A87E8C2F2B7558D2B592AC70D9FBBFE7187A08F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:4e:7f:e0:02:9a:2e:56:fb:a7:1e:d4:59:59: 33:c3:6c:7e:a0:8a:31:8d:d3:ba:36:d4:5c:43:21: 2c:f9:04:09:0a:ba:61:70:3a:fd:c8:f5:b2:b1:b5: 24:41:af:52:ac:7b:0e:24:ed:52:f9:5b:d3:7e:83: 45:cb:0f:59:e3:2d:6c:bf:a5:85:eb:2a:ca:d6:eb: 8d:86:f5:ff:90:62:36:0f:70:9e:8f:48:8b:58:37: 2f:aa:45:56:a4:b0:7d:24:7c:06:0d:5c:06:aa:1b: f3:33:eb:d5:64:1e:34:36:1c:0e:21:29:89:54:67: e0:b5:68:e1:db:fd:61:16:f9:e4:ee:c9:95:d8:9f: ac:40:a4:27:e2:64:4a:0e:fe:68:96:6e:c8:17:db: a5:e5:02:6f:da:36:4e:70:23:3b:8c:20:b1:ab:e8: d2:8f:99:f9:17:ac:b6:5e:98:62:6b:84:98:21:3f: 92:e8:3e:c7:85:89:90:5e:c4:8f:ba:78:5d:fc:4d: df:33:57:05:f0:76:cf:4c:67:13:49:22:c1:e6:fd: fd:95:d7:10:e4:50:15:36:d0:8b:b1:97:ad:eb:39: 03:7e:39:35:bb:58:9c:0d:c6:41:d3:a4:36:4d:71: 1f:2e:49:16:5b:6c:f5:ec:2a:48:4e:80:6b:e7:6c: 45:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:87:E8:C2:F2:B7:55:8D:2B:59:2A:C7:0D:9F:BB:FE:71:87:A0:8F X509v3 Authority Key Identifier: keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/eofowvK3VY0rWSrHDZ-7_nGHoI8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.50.40.0/21 Signature Algorithm: sha256WithRSAEncryption 58:39:5a:70:f2:af:1f:73:c7:a3:1f:0c:85:b3:54:f8:d2:91: 4b:6c:a8:3d:2d:b1:4a:eb:bd:d1:36:46:a2:f1:b9:fc:0d:05: 60:6f:5e:e8:7d:73:dd:0a:b1:a4:27:c4:8c:43:bb:88:0a:1e: 4e:1b:0a:5d:7c:44:cf:49:86:4f:d2:64:53:3b:d8:4d:5b:f6: 7a:19:37:54:ba:bf:fe:56:bb:e1:5f:42:8e:57:e1:82:1d:5c: 9d:36:81:24:86:b4:8e:19:53:0f:d3:4c:dc:22:b3:d2:d0:69: 62:20:e8:bb:10:29:c0:bf:75:d7:01:00:65:34:1c:dd:e0:4c: 9b:63:3f:6a:53:a8:15:d8:12:1f:cf:42:f9:ab:59:bc:23:4f: 27:fb:da:b6:76:4f:32:12:d3:41:a7:e8:ad:16:d6:3d:17:c2: ce:3a:7e:a7:20:e5:f6:0a:8d:63:95:8d:c0:67:a4:d0:ef:f6: 57:4f:85:65:08:3d:0d:cf:c7:c5:44:b5:b6:3a:76:f3:9b:cd: ee:94:e2:6e:26:b7:df:1d:31:08:a6:93:97:8a:12:75:37:75: 28:91:bd:f3:c9:49:f2:d6:85:3f:8a:24:3f:53:5a:63:03:c4: 23:13:92:7b:df:ff:c6:74:a0:2c:76:76:cf:bb:77:7b:3f:87: fc:fd:4c:21 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD1swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yNTA4MjIw ODUxMTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdBODdFOEMyRjJCNzU1 OEQyQjU5MkFDNzBEOUZCQkZFNzE4N0EwOEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCiTn/gApouVvunHtRZWTPDbH6gijGN07o21FxDISz5BAkKumFw Ov3I9bKxtSRBr1Ksew4k7VL5W9N+g0XLD1njLWy/pYXrKsrW642G9f+QYjYPcJ6P SItYNy+qRVaksH0kfAYNXAaqG/Mz69VkHjQ2HA4hKYlUZ+C1aOHb/WEW+eTuyZXY n6xApCfiZEoO/miWbsgX26XlAm/aNk5wIzuMILGr6NKPmfkXrLZemGJrhJghP5Lo PseFiZBexI+6eF38Td8zVwXwds9MZxNJIsHm/f2V1xDkUBU20Iuxl63rOQN+OTW7 WJwNxkHTpDZNcR8uSRZbbPXsKkhOgGvnbEWvAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUeofowvK3VY0rWSrHDZ+7/nGHoI8wHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0 X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9lb2Zvd3ZLM1ZZMHJXU3JIRFot N19uR0hvSTgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDezIo MA0GCSqGSIb3DQEBCwUAA4IBAQBYOVpw8q8fc8ejHwyFs1T40pFLbKg9LbFK673R Nkai8bn8DQVgb17ofXPdCrGkJ8SMQ7uICh5OGwpdfETPSYZP0mRTO9hNW/Z6GTdU ur/+VrvhX0KOV+GCHVydNoEkhrSOGVMP00zcIrPS0GliIOi7ECnAv3XXAQBlNBzd 4EybYz9qU6gV2BIfz0L5q1m8I08n+9q2dk8yEtNBp+itFtY9F8LOOn6nIOX2Co1j lY3AZ6TQ7/ZXT4VlCD0Nz8fFRLW2Onbzm83ulOJuJrffHTEIppOXihJ1N3Uokb3z yUny1oU/iiQ/U1pjA8QjE5J73//GdKAsdnbPu3d7P4f8/Uwh -----END CERTIFICATE-----Generated at Sun Aug 24 16:05:09 2025 by rpki-client