$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4Nz-FXW_xmGhqoYqYTvChsuxu1w.roa File: 4Nz-FXW_xmGhqoYqYTvChsuxu1w.roa (raw, json) Hash identifier: XLPPywVD85gBWA62KpCnVbNlqdz3KnG1Z1lMDZYxH68= Subject key identifier: E0:DC:FE:15:75:BF:C6:61:A1:AA:86:2A:61:3B:C2:86:CB:B1:BB:5C Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3ACD Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4Nz-FXW_xmGhqoYqYTvChsuxu1w.roa Signing time: Fri 22 Aug 2025 08:47:47 +0000 ROA not before: Fri 22 Aug 2025 08:47:47 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.195.188.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15053 (0x3acd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E0DCFE1575BFC661A1AA862A613BC286CBB1BB5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:04:21:60:fb:14:a1:2e:58:1e:dd:1e:e0:9f: 56:fe:7a:58:69:26:a4:d7:1e:65:b5:0a:93:ea:2a: 10:27:60:fd:25:40:5f:72:f5:f5:2e:45:59:e1:2e: 37:4f:d9:df:7a:36:1e:ad:44:3f:78:eb:88:36:fa: 1a:8c:c8:de:1f:eb:eb:db:a8:4e:8a:45:43:ce:a6: 90:ba:69:b1:58:13:92:81:57:b7:e1:f1:e6:c1:12: 00:30:5f:f2:80:13:2e:69:19:97:18:10:b4:1e:f7: 9f:99:2c:d3:18:b2:88:90:c4:75:d5:0d:be:e5:ed: 36:fe:08:60:97:34:b8:f3:65:78:e1:16:17:47:8e: d0:76:4c:a3:6c:e3:52:be:ad:01:2c:a0:18:30:f6: 27:54:86:0d:6d:05:35:2e:38:cf:ff:90:ce:53:18: e8:10:e6:f6:04:6d:05:20:9a:a9:46:13:81:b4:e4: f3:b9:8c:4b:d0:57:d7:a8:f8:7c:06:c2:32:dc:9c: d7:e8:b4:39:03:ff:f9:67:4d:06:6f:90:40:0c:13: 85:e8:c3:36:03:b6:90:71:0a:ed:f1:37:ca:14:06: 0e:21:19:39:96:75:48:f6:3f:f4:cc:94:54:ce:a4: ae:ef:10:e2:48:24:d8:a0:73:40:68:92:cd:b8:14: c4:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:DC:FE:15:75:BF:C6:61:A1:AA:86:2A:61:3B:C2:86:CB:B1:BB:5C X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4Nz-FXW_xmGhqoYqYTvChsuxu1w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.188.0/22 Signature Algorithm: sha256WithRSAEncryption 54:bc:c8:a0:5e:ed:f8:48:b0:da:c6:16:55:ae:04:c3:dd:af: 20:43:6f:cb:c6:5a:ad:fc:5a:80:81:44:6e:2e:cc:3c:26:c0: bf:9f:0c:2c:45:61:90:6b:1d:d9:1e:15:80:aa:76:5a:e1:aa: ed:cc:42:27:df:aa:77:1b:4c:b4:9e:36:47:30:56:66:99:e6: cf:45:89:68:5b:0c:29:0b:e1:ea:eb:da:7a:31:a0:a4:83:c8: 7a:26:dd:3e:87:f4:e0:6c:0e:d6:06:b5:ff:e0:be:7f:a8:44: 6f:cc:f1:27:91:71:ab:ba:b1:bb:f1:95:97:09:2d:c2:58:c2: 34:02:4b:22:af:90:15:4b:a9:b0:77:c6:80:e7:ef:c4:ba:64: 8f:58:74:c5:16:cd:90:e6:12:78:16:7e:f0:40:d8:19:72:e4: f8:36:98:91:df:c3:dd:48:dd:ee:66:3c:e7:01:85:3a:fe:ff: d6:77:17:dd:4d:0e:84:6b:eb:20:47:f7:f9:ee:f2:6f:05:8a: e4:b5:05:83:41:f9:d8:f4:1b:f7:3c:6d:1c:0e:aa:f8:69:d1: a0:fc:0a:13:ae:35:76:31:a4:b4:85:17:e3:6f:1b:e2:55:c8: d3:56:58:b5:55:55:35:3a:3c:13:aa:5b:f8:40:9f:c9:41:38: a5:17:ea:34 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOs0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3NDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUwRENGRTE1NzVCRkM2 NjFBMUFBODYyQTYxM0JDMjg2Q0JCMUJCNUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChBCFg+xShLlge3R7gn1b+elhpJqTXHmW1CpPqKhAnYP0lQF9y 9fUuRVnhLjdP2d96Nh6tRD9464g2+hqMyN4f6+vbqE6KRUPOppC6abFYE5KBV7fh 8ebBEgAwX/KAEy5pGZcYELQe95+ZLNMYsoiQxHXVDb7l7Tb+CGCXNLjzZXjhFhdH jtB2TKNs41K+rQEsoBgw9idUhg1tBTUuOM//kM5TGOgQ5vYEbQUgmqlGE4G05PO5 jEvQV9eo+HwGwjLcnNfotDkD//lnTQZvkEAME4XowzYDtpBxCu3xN8oUBg4hGTmW dUj2P/TMlFTOpK7vEOJIJNigc0Boks24FMTHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU4Nz+FXW/xmGhqoYqYTvChsuxu1wwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzROei1GWFdfeG1HaHFvWXFZ VHZDaHN1eHUxdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 w7wwDQYJKoZIhvcNAQELBQADggEBAFS8yKBe7fhIsNrGFlWuBMPdryBDb8vGWq38 WoCBRG4uzDwmwL+fDCxFYZBrHdkeFYCqdlrhqu3MQiffqncbTLSeNkcwVmaZ5s9F iWhbDCkL4err2noxoKSDyHom3T6H9OBsDtYGtf/gvn+oRG/M8SeRcau6sbvxlZcJ LcJYwjQCSyKvkBVLqbB3xoDn78S6ZI9YdMUWzZDmEngWfvBA2Bly5Pg2mJHfw91I 3e5mPOcBhTr+/9Z3F91NDoRr6yBH9/nu8m8FiuS1BYNB+dj0G/c8bRwOqvhp0aD8 ChOuNXYxpLSFF+NvG+JVyNNWWLVVVTU6PBOqW/hAn8lBOKUX6jQ= -----END CERTIFICATE-----Generated at Sun Aug 24 07:28:24 2025 by rpki-client