$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/3o0MyGsph19QMioV8dAY38XyrUc.roa File: 3o0MyGsph19QMioV8dAY38XyrUc.roa (raw, json) Hash identifier: umOyiAyCMz6ZOB8ugCBEa2klieiuAsNSjRS3bcRXhko= Subject key identifier: DE:8D:0C:C8:6B:29:87:5F:50:32:2A:15:F1:D0:18:DF:C5:F2:AD:47 Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C Certificate serial: 07FA Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/3o0MyGsph19QMioV8dAY38XyrUc.roa Signing time: Fri 22 Aug 2025 08:58:48 +0000 ROA not before: Fri 22 Aug 2025 08:58:48 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9678 IP address blocks: 45.123.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2042 (0x7fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C Validity Not Before: Aug 22 08:58:48 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DE8D0CC86B29875F50322A15F1D018DFC5F2AD47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:74:59:cd:4c:90:f4:41:30:7d:8f:c2:f9:be: e2:0d:bd:91:06:65:43:4c:94:5c:2c:95:1d:47:78: cc:02:2c:1c:13:12:e7:64:c5:4c:39:91:3f:e6:5f: dc:3a:f5:35:5b:d6:ba:a1:d4:94:36:64:51:b5:87: 71:5c:3b:80:01:c6:cc:48:65:e8:11:04:dd:56:72: 37:97:ce:8d:4b:e3:12:ac:ec:03:77:cc:f9:6e:36: 30:6a:89:57:44:cd:88:9b:0c:8c:b4:eb:99:0f:94: 34:63:6d:34:0d:a4:b0:c3:72:9c:d4:31:af:28:9a: 4e:1d:d5:11:4c:59:5e:0d:fa:5d:f9:4c:98:ba:d2: d0:57:c1:0f:3f:ed:56:bc:af:20:ae:60:90:8a:e0: 7c:ba:86:03:be:2e:67:5b:0a:ce:10:41:ff:51:e8: a3:4f:c8:b2:0e:9e:b1:55:ff:7a:6d:b0:08:24:1a: 76:8e:04:1b:cf:d7:4f:04:84:27:a3:c4:33:b8:f8: d2:e5:7e:d7:03:2e:79:f1:00:c3:7b:cc:0a:72:19: ec:d4:76:49:81:e7:77:ef:7c:d8:e2:e4:e4:b3:b7: ef:4f:4c:19:00:95:c0:40:48:89:20:85:3a:6d:ee: 67:d4:ca:5c:2d:fd:cf:0b:bb:6e:73:27:56:8d:c6: f7:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:8D:0C:C8:6B:29:87:5F:50:32:2A:15:F1:D0:18:DF:C5:F2:AD:47 X509v3 Authority Key Identifier: keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/3o0MyGsph19QMioV8dAY38XyrUc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.123.117.0/24 Signature Algorithm: sha256WithRSAEncryption 65:93:6d:65:4f:cb:bc:16:4d:20:54:6a:98:6c:cb:b7:fc:e3: a5:22:66:26:4f:6e:37:16:cb:1d:f0:82:9d:f0:a3:51:cc:25: 34:22:06:38:1d:98:67:41:49:8e:d9:23:ba:ca:9f:71:c0:15: 0c:0e:bf:1c:2d:58:dd:43:a2:17:51:4a:8f:b1:73:a7:9d:86: 23:50:bb:c5:55:d9:fc:c4:46:5d:14:7a:09:5d:6b:fe:9a:7a: 2f:b6:ec:9a:6d:74:c1:df:55:61:89:8d:98:18:b4:23:6e:44: 08:4e:40:2c:b4:d5:ef:d8:ae:01:fb:ad:5b:ec:f2:88:68:01: 57:4f:65:63:80:bb:da:c2:75:10:d4:b8:6f:62:0c:71:a5:c6: 69:d5:bc:d3:e6:f4:19:52:c3:7a:1b:52:d4:60:49:18:7d:d0: f7:48:57:2e:df:2c:4f:95:a2:9f:3e:cd:39:66:51:04:50:ea: b4:b7:88:1c:65:a4:a3:35:97:b1:4c:02:d4:a2:a1:76:11:de: a2:32:00:4e:47:ba:56:24:d1:97:55:28:3f:56:06:f0:46:be: 8a:af:65:77:30:ab:0e:a6:bc:ec:3c:38:5c:89:66:6e:91:8c: ca:0c:51:08:80:c7:18:b1:3b:6a:67:b0:90:1b:65:e3:6f:db: f6:c0:e1:53 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICB/owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJF RDI4RkZDQzA0MEUzNjAzMkM0MjYxNTQ5NTU2MkJDQzZFRjQ1QzAeFw0yNTA4MjIw ODU4NDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKERFOEQwQ0M4NkIyOTg3 NUY1MDMyMkExNUYxRDAxOERGQzVGMkFENDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPdFnNTJD0QTB9j8L5vuINvZEGZUNMlFwslR1HeMwCLBwTEudk xUw5kT/mX9w69TVb1rqh1JQ2ZFG1h3FcO4ABxsxIZegRBN1WcjeXzo1L4xKs7AN3 zPluNjBqiVdEzYibDIy065kPlDRjbTQNpLDDcpzUMa8omk4d1RFMWV4N+l35TJi6 0tBXwQ8/7Va8ryCuYJCK4Hy6hgO+LmdbCs4QQf9R6KNPyLIOnrFV/3ptsAgkGnaO BBvP108EhCejxDO4+NLlftcDLnnxAMN7zApyGezUdkmB53fvfNji5OSzt+9PTBkA lcBASIkghTpt7mfUylwt/c8Lu25zJ1aNxvdtAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU3o0MyGsph19QMioV8dAY38XyrUcwHwYDVR0jBBgwFoAUq+0o/8wEDjYDLEJh VJVWK8xu9FwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElO L3EtMG9fOHdFRGpZRExFSmhWSlZXSzh4dTlGdy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvcS0wb184d0VEallETEVKaFZKVldLOHh1OUZ3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElOLzNvME15R3NwaDE5UU1pb1Y4 ZEFZMzhYeXJVYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAt e3UwDQYJKoZIhvcNAQELBQADggEBAGWTbWVPy7wWTSBUaphsy7f846UiZiZPbjcW yx3wgp3wo1HMJTQiBjgdmGdBSY7ZI7rKn3HAFQwOvxwtWN1DohdRSo+xc6edhiNQ u8VV2fzERl0Ueglda/6aei+27JptdMHfVWGJjZgYtCNuRAhOQCy01e/YrgH7rVvs 8ohoAVdPZWOAu9rCdRDUuG9iDHGlxmnVvNPm9BlSw3obUtRgSRh90PdIVy7fLE+V op8+zTlmUQRQ6rS3iBxlpKM1l7FMAtSioXYR3qIyAE5HulYk0ZdVKD9WBvBGvoqv ZXcwqw6mvOw8OFyJZm6RjMoMUQiAxxixO2pnsJAbZeNv2/bA4VM= -----END CERTIFICATE-----Generated at Sun Aug 24 09:20:31 2025 by rpki-client