$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3FxijNFWP84s-WSZ72xAz9xZs24.roa File: 3FxijNFWP84s-WSZ72xAz9xZs24.roa (raw, json) Hash identifier: Udm5HYlEPuw9JcpTvWzoZXB013d5AzuRvt4t+Fdzh94= Subject key identifier: DC:5C:62:8C:D1:56:3F:CE:2C:F9:64:99:EF:6C:40:CF:DC:59:B3:6E Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3844 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3FxijNFWP84s-WSZ72xAz9xZs24.roa Signing time: Fri 22 Aug 2025 08:45:07 +0000 ROA not before: Fri 22 Aug 2025 08:45:07 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 211.76.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14404 (0x3844) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:07 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DC5C628CD1563FCE2CF96499EF6C40CFDC59B36E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:78:70:c2:16:14:23:9f:bd:ff:b3:21:25:f2: 07:d3:35:36:1a:74:65:42:f5:bc:0d:e9:f8:06:61: 5e:98:f7:8e:78:86:a1:9c:b0:05:a5:8b:d8:d7:18: d5:08:e5:b7:d9:cd:91:3c:51:db:ac:33:74:aa:62: 16:cf:77:d4:e9:c5:9a:2c:28:da:d4:b8:ac:02:d8: ee:83:a1:ad:43:1a:03:61:61:2f:99:d6:93:23:ff: d5:eb:26:a2:ce:0a:26:c6:d7:31:cc:ba:af:6d:08: 59:d5:ab:a5:dc:a6:38:76:dc:8e:70:c7:42:a8:4c: 85:00:a4:d8:2b:7f:8b:1f:6c:9e:5d:97:3a:7a:b4: a2:b7:d6:d1:2b:e4:f0:f5:18:54:ae:98:6b:5b:2e: 35:23:79:3a:00:95:84:a9:76:27:11:1d:6d:5e:71: 11:5d:b4:9d:99:c7:97:97:ed:f0:f0:7c:c6:47:12: 81:48:d7:ec:c5:57:f0:74:65:74:1e:b8:3d:c6:d7: 60:e3:e0:c6:64:98:48:c2:9e:f6:66:e9:ed:de:ab: d1:42:5b:42:91:b0:eb:cd:2b:c9:cf:36:dd:2e:ce: f5:d1:52:03:38:ba:fb:85:87:8c:0b:29:88:c6:a2: 87:10:09:05:df:c5:30:28:9b:8e:51:e7:d6:c8:d2: b2:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:5C:62:8C:D1:56:3F:CE:2C:F9:64:99:EF:6C:40:CF:DC:59:B3:6E X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3FxijNFWP84s-WSZ72xAz9xZs24.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.122.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:a9:f8:2d:30:16:f2:66:4d:1f:0c:12:1d:e2:3a:43:d9:eb: 8e:a1:27:fa:06:77:1d:da:4f:70:17:cb:e4:2f:05:b7:16:92: ba:4e:f0:6f:f9:c5:3f:94:6d:4b:f8:ae:7d:9c:49:a7:53:f9: 72:f5:36:a3:03:37:95:c5:a7:bc:78:05:4b:6c:b5:f3:78:67: ca:d3:68:96:51:fb:15:bc:73:52:7e:c4:d6:24:cc:f7:0d:b4: e5:b2:b9:bc:f6:4b:03:03:6d:16:d5:cb:82:65:9d:c6:64:5a: 38:08:6b:40:3c:b4:a2:13:37:b3:54:cb:0b:20:73:63:73:1e: 11:2d:9b:e2:f5:a5:86:84:91:81:41:16:64:57:33:84:cc:be: c8:15:10:9a:16:8b:7c:f4:b4:88:ad:d7:1c:bf:26:f0:d4:34: 6c:45:1a:7e:a6:5b:f9:3f:1b:77:f4:7e:75:ca:07:f6:4a:81: 0e:0f:74:2d:ab:9f:ab:77:9b:f4:b8:24:81:6c:78:58:b3:c3: 8e:4b:45:38:2a:5a:35:eb:f9:f1:c6:54:b9:ea:cb:b1:a9:24: d6:f6:b3:2c:e0:e8:19:21:02:b5:d6:1c:c9:ae:52:39:16:0b: 84:75:24:b2:19:a8:d5:f5:63:22:3c:94:07:80:6e:c4:2a:a1: 46:fe:62:a9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOEQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1MDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKERDNUM2MjhDRDE1NjNG Q0UyQ0Y5NjQ5OUVGNkM0MENGREM1OUIzNkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDmeHDCFhQjn73/syEl8gfTNTYadGVC9bwN6fgGYV6Y9454hqGc sAWli9jXGNUI5bfZzZE8UdusM3SqYhbPd9TpxZosKNrUuKwC2O6Doa1DGgNhYS+Z 1pMj/9XrJqLOCibG1zHMuq9tCFnVq6Xcpjh23I5wx0KoTIUApNgrf4sfbJ5dlzp6 tKK31tEr5PD1GFSumGtbLjUjeToAlYSpdicRHW1ecRFdtJ2Zx5eX7fDwfMZHEoFI 1+zFV/B0ZXQeuD3G12Dj4MZkmEjCnvZm6e3eq9FCW0KRsOvNK8nPNt0uzvXRUgM4 uvuFh4wLKYjGoocQCQXfxTAom45R59bI0rLHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU3FxijNFWP84s+WSZ72xAz9xZs24wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzNGeGlqTkZXUDg0cy1XU1o3 MnhBejl4WnMyNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADT THowDQYJKoZIhvcNAQELBQADggEBAAup+C0wFvJmTR8MEh3iOkPZ646hJ/oGdx3a T3AXy+QvBbcWkrpO8G/5xT+UbUv4rn2cSadT+XL1NqMDN5XFp7x4BUtstfN4Z8rT aJZR+xW8c1J+xNYkzPcNtOWyubz2SwMDbRbVy4JlncZkWjgIa0A8tKITN7NUywsg c2NzHhEtm+L1pYaEkYFBFmRXM4TMvsgVEJoWi3z0tIit1xy/JvDUNGxFGn6mW/k/ G3f0fnXKB/ZKgQ4PdC2rn6t3m/S4JIFseFizw45LRTgqWjXr+fHGVLnqy7GpJNb2 syzg6BkhArXWHMmuUjkWC4R1JLIZqNX1YyI8lAeAbsQqoUb+Yqk= -----END CERTIFICATE-----Generated at Sun Aug 24 07:23:17 2025 by rpki-client