$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5cgS4vkFFImj8EkrU0p4HlgTBP4.roa File: 5cgS4vkFFImj8EkrU0p4HlgTBP4.roa (raw, json) Hash identifier: d0gu2eima4YlTTfjlpWHDSHmYd2Nv5quSwxzbPfRsJw= Subject key identifier: E5:C8:12:E2:F9:05:14:89:A3:F0:49:2B:53:4A:78:1E:58:13:04:FE Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3ACC Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5cgS4vkFFImj8EkrU0p4HlgTBP4.roa Signing time: Fri 22 Aug 2025 08:47:47 +0000 ROA not before: Fri 22 Aug 2025 08:47:47 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.194.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15052 (0x3acc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E5C812E2F9051489A3F0492B534A781E581304FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:5a:ca:7a:43:0a:ee:8f:d4:f7:e6:e4:cc:c3: a2:52:91:b5:18:3f:2b:2a:cd:6b:ec:2e:db:0e:87: 31:ef:1a:f7:32:4b:dd:f9:f1:e8:10:b9:29:42:b1: 80:9a:4e:0c:7f:ba:ae:31:40:49:2e:4c:4e:ff:de: 29:fc:b5:b8:e7:6f:37:7c:77:55:15:a1:cb:7b:17: 9b:e1:09:02:f1:2e:fe:7a:51:2e:ba:f3:2f:2d:c8: b8:d8:3d:02:dd:8d:3e:dc:6c:5e:cd:24:10:2f:e3: ee:f6:f1:ca:71:95:cb:c3:38:39:9c:e7:b2:d9:4a: 2c:f9:a6:89:e1:26:9e:e0:56:30:06:be:e5:56:1c: 1b:3d:e1:13:f1:36:de:1a:ca:f4:ec:6e:b2:ed:89: 0d:aa:80:c9:99:c8:07:04:42:bb:aa:22:33:ff:9a: ee:ae:7f:b0:ce:32:c3:57:f9:f6:39:2e:1b:54:8e: f6:13:84:4d:71:2a:eb:fd:25:64:20:08:e1:59:90: 92:13:1f:07:ca:93:28:70:84:ad:fa:57:75:00:41: d7:61:d1:50:e9:08:a2:e0:9c:f1:4f:27:76:0a:3e: 88:ad:fc:ed:f3:2d:ed:f6:d5:28:00:4b:d4:92:21: ff:ba:cc:80:ed:3f:ae:e3:cd:f6:37:00:39:12:fa: 7a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:C8:12:E2:F9:05:14:89:A3:F0:49:2B:53:4A:78:1E:58:13:04:FE X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5cgS4vkFFImj8EkrU0p4HlgTBP4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.152.0/22 Signature Algorithm: sha256WithRSAEncryption 46:a0:33:99:b3:1d:a2:76:bd:d9:d8:a0:48:2b:ff:54:a5:be: c5:d4:85:25:cc:cb:ae:d8:0f:13:5a:58:7e:e9:4d:ee:aa:7c: 07:b0:1a:47:8c:af:97:14:75:7a:6d:ec:0f:f0:93:71:fa:cc: 8d:b5:c5:e6:61:7a:65:ef:03:a1:24:36:15:bc:56:61:3d:e3: 0f:a9:a3:d6:13:13:bd:38:17:de:6b:20:9a:a1:4a:75:3d:f4: 02:b1:c1:16:cb:ed:c8:54:d9:2e:10:40:94:98:83:03:61:7c: 67:ae:63:1b:14:31:6b:f9:b3:96:d6:34:11:bd:93:20:df:9e: a2:fd:cf:b7:9b:39:f3:43:02:0c:68:9c:dc:d7:19:2b:2a:8a: 06:59:19:3f:55:89:97:5c:e9:33:a3:dd:4d:d5:45:8c:36:bf: f3:3e:68:51:1d:83:a5:b1:63:e7:46:4c:ff:50:f3:b8:a8:64: 49:af:c9:49:9c:26:08:82:0f:3a:4c:eb:9a:94:e1:32:71:ae: 5a:b6:41:0a:0e:6c:4e:62:a5:55:3a:a0:d8:28:cd:a6:88:f9: c1:3f:9f:f0:49:3f:fa:13:70:2c:65:83:e0:65:5e:28:ef:4a: f1:82:cf:c2:85:34:19:95:dd:ae:c2:38:29:33:74:20:c1:4b: 76:ac:fc:e5 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOswwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3NDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU1QzgxMkUyRjkwNTE0 ODlBM0YwNDkyQjUzNEE3ODFFNTgxMzA0RkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnWsp6Qwruj9T35uTMw6JSkbUYPysqzWvsLtsOhzHvGvcyS935 8egQuSlCsYCaTgx/uq4xQEkuTE7/3in8tbjnbzd8d1UVoct7F5vhCQLxLv56US66 8y8tyLjYPQLdjT7cbF7NJBAv4+728cpxlcvDODmc57LZSiz5ponhJp7gVjAGvuVW HBs94RPxNt4ayvTsbrLtiQ2qgMmZyAcEQruqIjP/mu6uf7DOMsNX+fY5LhtUjvYT hE1xKuv9JWQgCOFZkJITHwfKkyhwhK36V3UAQddh0VDpCKLgnPFPJ3YKPoit/O3z Le321SgAS9SSIf+6zIDtP67jzfY3ADkS+npPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU5cgS4vkFFImj8EkrU0p4HlgTBP4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzVjZ1M0dmtGRkltajhFa3JV MHA0SGxnVEJQNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wpgwDQYJKoZIhvcNAQELBQADggEBAEagM5mzHaJ2vdnYoEgr/1SlvsXUhSXMy67Y DxNaWH7pTe6qfAewGkeMr5cUdXpt7A/wk3H6zI21xeZhemXvA6EkNhW8VmE94w+p o9YTE704F95rIJqhSnU99AKxwRbL7chU2S4QQJSYgwNhfGeuYxsUMWv5s5bWNBG9 kyDfnqL9z7ebOfNDAgxonNzXGSsqigZZGT9ViZdc6TOj3U3VRYw2v/M+aFEdg6Wx Y+dGTP9Q87ioZEmvyUmcJgiCDzpM65qU4TJxrlq2QQoObE5ipVU6oNgozaaI+cE/ n/BJP/oTcCxlg+BlXijvSvGCz8KFNBmV3a7COCkzdCDBS3as/OU= -----END CERTIFICATE-----Generated at Sun Aug 24 07:33:09 2025 by rpki-client