$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5g8_OfF1R6nGBEGAIXq2oslWFdM.roa File: 5g8_OfF1R6nGBEGAIXq2oslWFdM.roa (raw, json) Hash identifier: VUchR055ThcbFYeQz81zbu+EhOHr/r4NQgUVeD2ZIjg= Subject key identifier: E6:0F:3F:39:F1:75:47:A9:C6:04:41:80:21:7A:B6:A2:C9:56:15:D3 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 38BF Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5g8_OfF1R6nGBEGAIXq2oslWFdM.roa Signing time: Fri 22 Aug 2025 08:45:35 +0000 ROA not before: Fri 22 Aug 2025 08:45:35 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.195.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14527 (0x38bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:35 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E60F3F39F17547A9C6044180217AB6A2C95615D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ba:2e:56:c3:44:4d:8c:30:8a:26:69:d4:b4: e8:8d:d9:68:ea:e0:f4:81:3c:66:74:79:a0:25:da: 94:35:93:2d:33:bb:4f:79:80:f6:02:00:a4:2b:4b: c4:7c:32:aa:0e:25:11:b4:87:26:db:8d:2b:78:ea: 76:61:a5:4e:ad:52:91:f0:37:f0:e1:9f:20:eb:92: 63:42:eb:ae:6a:a8:29:63:66:60:97:92:06:63:f1: 4e:d5:85:1b:c0:1c:35:3f:bf:e7:5c:95:e9:2a:ec: 11:0a:4c:52:ca:a7:ec:84:9a:0f:b6:b1:55:2a:22: 4b:19:d7:34:8b:06:54:84:42:63:39:dc:1c:80:bc: f1:05:21:18:9e:28:a8:c9:c3:8a:8b:8a:34:5c:f3: ba:61:c6:53:3a:76:db:37:51:85:4a:62:a6:dd:d1: 25:09:aa:32:3b:4c:58:14:2f:03:65:c4:7e:f4:26: b1:a7:04:e7:cb:13:87:92:bf:db:27:f3:af:11:59: be:45:cd:81:4c:d1:8b:14:20:68:c8:10:98:dd:0f: a8:06:1c:46:dc:29:ef:ef:59:92:10:b4:99:ca:a6: 61:a1:05:e5:41:fc:08:b6:9d:83:5b:5a:ea:74:c3: 44:ef:66:ed:30:d8:68:c3:57:fe:23:c8:2c:08:4e: 09:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:0F:3F:39:F1:75:47:A9:C6:04:41:80:21:7A:B6:A2:C9:56:15:D3 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5g8_OfF1R6nGBEGAIXq2oslWFdM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.0.0/22 Signature Algorithm: sha256WithRSAEncryption 5a:33:ac:ee:56:86:f6:ec:e2:a5:d6:e3:2b:45:b0:6d:9d:90: 5c:4c:1c:17:d3:df:22:3d:bc:d2:db:87:3a:cc:12:72:76:cb: 47:41:f9:cc:7d:1d:38:42:a0:39:9b:77:a2:db:23:aa:44:98: 4c:92:28:b2:f6:53:a8:e3:d5:d2:5a:48:32:2c:d4:14:97:34: b3:a9:cd:e4:47:86:11:4e:d4:7b:3a:91:f9:8f:aa:3c:d1:33: fd:d6:52:7f:5a:55:5d:e2:6d:c4:70:87:43:9a:6e:7c:12:d3: da:0f:db:ed:b6:0b:7e:79:0d:54:02:d2:6c:8f:74:2f:d5:07: 18:2b:d4:58:88:97:4f:af:0d:34:e6:88:b6:5a:95:38:17:67: d5:d7:7e:a9:9b:f6:f8:95:66:6c:a3:ed:e2:8c:ec:66:d5:dd: d2:6f:7d:99:92:76:56:cd:dc:a5:f6:14:d9:51:a1:23:8d:7a: fd:95:a6:dc:3f:a8:87:bb:fe:59:2f:b6:54:96:c3:6b:cd:55: 34:73:ea:6d:26:8d:75:e9:a3:73:c9:0d:0a:0b:d9:b6:d8:7b: 57:6a:ce:27:ef:ba:06:dd:07:30:2b:50:61:1c:d3:eb:d8:ac: 1c:e6:93:ea:ee:05:c9:22:68:41:7b:49:ce:4b:d8:55:fc:26: be:91:b3:ba -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOL8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1MzVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU2MEYzRjM5RjE3NTQ3 QTlDNjA0NDE4MDIxN0FCNkEyQzk1NjE1RDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDui5Ww0RNjDCKJmnUtOiN2Wjq4PSBPGZ0eaAl2pQ1ky0zu095 gPYCAKQrS8R8MqoOJRG0hybbjSt46nZhpU6tUpHwN/DhnyDrkmNC665qqCljZmCX kgZj8U7VhRvAHDU/v+dclekq7BEKTFLKp+yEmg+2sVUqIksZ1zSLBlSEQmM53ByA vPEFIRieKKjJw4qLijRc87phxlM6dts3UYVKYqbd0SUJqjI7TFgULwNlxH70JrGn BOfLE4eSv9sn868RWb5FzYFM0YsUIGjIEJjdD6gGHEbcKe/vWZIQtJnKpmGhBeVB /Ai2nYNbWup0w0TvZu0w2GjDV/4jyCwITgkZAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU5g8/OfF1R6nGBEGAIXq2oslWFdMwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzVnOF9PZkYxUjZuR0JFR0FJ WHEyb3NsV0ZkTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wwAwDQYJKoZIhvcNAQELBQADggEBAFozrO5Whvbs4qXW4ytFsG2dkFxMHBfT3yI9 vNLbhzrMEnJ2y0dB+cx9HThCoDmbd6LbI6pEmEySKLL2U6jj1dJaSDIs1BSXNLOp zeRHhhFO1Hs6kfmPqjzRM/3WUn9aVV3ibcRwh0OabnwS09oP2+22C355DVQC0myP dC/VBxgr1FiIl0+vDTTmiLZalTgXZ9XXfqmb9viVZmyj7eKM7GbV3dJvfZmSdlbN 3KX2FNlRoSONev2Vptw/qIe7/lkvtlSWw2vNVTRz6m0mjXXpo3PJDQoL2bbYe1dq zifvugbdBzArUGEc0+vYrBzmk+ruBckiaEF7Sc5L2FX8Jr6Rs7o= -----END CERTIFICATE-----Generated at Sun Aug 24 07:31:00 2025 by rpki-client