$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0nbz5IbjwMgIEmxusr5NoFsCeJM.roa File: 0nbz5IbjwMgIEmxusr5NoFsCeJM.roa (raw, json) Hash identifier: cTIVM1TYbibyNNQ0l+A38P2MTZj/O8vXPb++ZrOnLX4= Subject key identifier: D2:76:F3:E4:86:E3:C0:C8:08:12:6C:6E:B2:BE:4D:A0:5B:02:78:93 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 39C7 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0nbz5IbjwMgIEmxusr5NoFsCeJM.roa Signing time: Fri 22 Aug 2025 08:46:39 +0000 ROA not before: Fri 22 Aug 2025 08:46:39 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 211.76.113.0/25 maxlen: 25 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14791 (0x39c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:39 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D276F3E486E3C0C808126C6EB2BE4DA05B027893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a6:f6:6e:0b:3f:0d:2d:c4:2a:30:bb:9c:b0: b4:2f:42:7e:39:41:44:c4:c6:c8:74:a6:62:88:a5: 3f:49:04:49:3f:9a:f0:f0:89:e1:44:b3:92:97:a9: 76:b6:3b:2a:c1:ca:dc:94:8b:37:7c:41:a6:0d:1d: 10:5b:43:04:49:f5:e0:fc:1f:67:85:c5:ce:36:db: e1:01:78:3a:68:2e:56:62:c1:4b:f6:6d:af:03:06: 7d:d2:09:b1:e9:c7:1e:82:3e:c7:ba:1b:6d:92:2f: a5:12:d4:da:38:dc:ac:22:64:4d:b0:16:8a:1e:b7: c0:f5:c2:69:12:6c:cb:be:8a:48:fe:86:3a:94:f8: fe:a5:a7:64:65:7b:18:74:b7:1d:3b:e5:6d:41:c2: 4a:30:0f:ff:7a:82:7b:1e:fb:18:33:a0:23:12:9a: fb:76:a0:86:40:e3:70:c8:2b:98:66:91:2d:61:5b: 1b:61:e7:88:e5:96:c8:ba:2d:e8:1f:6b:a7:13:9e: 29:d8:c7:19:1c:86:79:43:4b:19:ee:71:46:8d:61: a7:a4:7f:99:80:43:09:be:24:42:b5:71:f6:0c:2a: fa:b3:ac:47:48:5c:33:2b:96:bc:ea:f7:78:83:0d: 79:c2:78:ba:f8:87:47:5f:03:f5:a1:7c:33:00:a2: 63:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:76:F3:E4:86:E3:C0:C8:08:12:6C:6E:B2:BE:4D:A0:5B:02:78:93 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0nbz5IbjwMgIEmxusr5NoFsCeJM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.113.0/25 Signature Algorithm: sha256WithRSAEncryption 62:4c:ef:e6:1c:73:0f:6a:e1:ae:54:48:9f:f0:04:f3:3d:18: 28:d6:fe:cf:0b:e4:9a:18:28:59:8d:24:e8:42:bd:8c:10:43: 66:c8:23:bc:cd:7a:56:96:52:80:20:3f:07:11:38:a1:f2:b2: af:f1:57:24:a8:19:5f:cc:91:00:2c:70:f6:33:b8:c6:6b:a3: 35:28:e7:db:a7:1d:0c:2a:33:64:aa:c8:9f:de:b1:dc:11:40: 80:fc:2e:29:2a:91:fd:81:7d:a2:69:6b:06:78:8b:dc:78:ac: e6:41:27:12:25:21:5c:34:d3:f1:94:2e:46:c2:80:a8:7c:8a: 08:f7:65:03:f8:c0:7d:3d:f7:a1:6a:89:bb:2c:14:b2:ea:7f: 90:fc:aa:41:aa:2b:c8:f7:f5:55:55:50:0d:24:6f:55:96:89: 86:10:95:cd:86:8f:49:84:26:c4:10:9c:84:32:ef:84:41:c0: e2:23:f3:30:9d:49:52:2f:f5:5f:aa:72:4e:53:c9:25:3e:8a: 08:c9:e5:2a:2a:11:60:0f:29:fd:b9:d6:3d:79:18:ee:78:4e: c1:db:15:01:1c:d8:84:1e:e3:41:1b:0f:c2:1a:2b:6a:10:7b: d1:93:4e:dd:e6:bf:50:1f:ed:8c:d1:2e:37:5a:15:75:87:11: 92:cf:b9:4a -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICOccwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MzlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQyNzZGM0U0ODZFM0Mw QzgwODEyNkM2RUIyQkU0REEwNUIwMjc4OTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/pvZuCz8NLcQqMLucsLQvQn45QUTExsh0pmKIpT9JBEk/mvDw ieFEs5KXqXa2OyrBytyUizd8QaYNHRBbQwRJ9eD8H2eFxc422+EBeDpoLlZiwUv2 ba8DBn3SCbHpxx6CPse6G22SL6US1No43KwiZE2wFooet8D1wmkSbMu+ikj+hjqU +P6lp2Rlexh0tx075W1BwkowD/96gnse+xgzoCMSmvt2oIZA43DIK5hmkS1hWxth 54jllsi6Legfa6cTninYxxkchnlDSxnucUaNYaekf5mAQwm+JEK1cfYMKvqzrEdI XDMrlrzq93iDDXnCeLr4h0dfA/WhfDMAomNPAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQU0nbz5IbjwMgIEmxusr5NoFsCeJMwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzBuYno1SWJqd01nSUVteHVz cjVOb0ZzQ2VKTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQfT THEAMA0GCSqGSIb3DQEBCwUAA4IBAQBiTO/mHHMPauGuVEif8ATzPRgo1v7PC+Sa GChZjSToQr2MEENmyCO8zXpWllKAID8HETih8rKv8VckqBlfzJEALHD2M7jGa6M1 KOfbpx0MKjNkqsif3rHcEUCA/C4pKpH9gX2iaWsGeIvceKzmQScSJSFcNNPxlC5G woCofIoI92UD+MB9Pfehaom7LBSy6n+Q/KpBqivI9/VVVVANJG9VlomGEJXNho9J hCbEEJyEMu+EQcDiI/MwnUlSL/VfqnJOU8klPooIyeUqKhFgDyn9udY9eRjueE7B 2xUBHNiEHuNBGw/CGitqEHvRk07d5r9QH+2M0S43WhV1hxGSz7lK -----END CERTIFICATE-----Generated at Sun Aug 24 07:28:24 2025 by rpki-client