$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62S9jZQuLhSLKapiRNC0kXDg3kg.roa File: 62S9jZQuLhSLKapiRNC0kXDg3kg.roa (raw, json) Hash identifier: 4if7z/RAyBQx4k0PCA04/zubiRXCiVapah4xm8Gd5EY= Subject key identifier: EB:64:BD:8D:94:2E:2E:14:8B:29:AA:62:44:D0:B4:91:70:E0:DE:48 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3956 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62S9jZQuLhSLKapiRNC0kXDg3kg.roa Signing time: Fri 22 Aug 2025 08:46:11 +0000 ROA not before: Fri 22 Aug 2025 08:46:11 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 211.76.119.128/25 maxlen: 25 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14678 (0x3956) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:11 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=EB64BD8D942E2E148B29AA6244D0B49170E0DE48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:24:95:08:8a:ec:96:4c:66:50:2f:0e:7c:1a: b3:91:ee:5f:1d:cb:30:57:57:10:2e:ff:90:c1:ce: 4a:1a:2d:6d:d3:84:eb:0d:85:44:38:b4:a1:68:26: e1:29:55:5d:45:c6:28:1c:73:f9:db:e2:96:b3:09: 16:a7:9d:a6:2b:c9:49:72:12:ec:39:46:ee:37:ab: 47:96:f6:c5:32:a4:a0:60:2b:89:52:74:4d:9d:20: 5f:0e:75:30:a3:da:32:4b:69:7a:81:28:05:96:7c: ec:e4:8c:a9:67:58:7a:5b:7e:62:87:79:ce:88:0b: 70:a3:34:f9:d0:49:6d:af:d2:e9:e4:da:42:5b:1d: 54:19:e5:17:51:ca:19:a9:17:3d:df:d3:14:6d:6e: 3e:b5:78:87:c3:ba:42:dc:85:b8:6f:99:2a:6b:b1: 36:66:8f:6a:85:38:f8:88:1b:36:08:61:70:ea:b7: cc:7a:79:de:c9:06:31:ab:a5:56:0c:69:14:7c:94: 56:5a:e9:25:6d:bd:4b:3a:a2:87:1e:1d:69:d8:d5: 22:8c:04:d6:40:39:64:a5:5e:dc:b4:46:5f:dc:a2: b9:41:ab:20:0e:ae:f8:0c:24:5d:f5:7a:ad:0a:0b: d8:b1:eb:fb:c3:d5:81:e1:fb:75:c8:21:f8:75:b4: 99:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:64:BD:8D:94:2E:2E:14:8B:29:AA:62:44:D0:B4:91:70:E0:DE:48 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62S9jZQuLhSLKapiRNC0kXDg3kg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.119.128/25 Signature Algorithm: sha256WithRSAEncryption 09:42:60:40:90:bf:97:26:4e:1c:0c:e6:49:06:b8:05:a0:df: 6d:a7:33:37:90:2e:ab:d9:2e:6f:f2:16:30:91:aa:6c:9b:2b: 98:75:14:1f:14:e6:d2:06:71:d0:1a:67:e5:66:17:1e:d6:c7: 46:ae:22:17:be:c3:4a:6d:c5:5c:ad:d2:9c:99:b9:20:89:6b: c3:22:5a:d7:d2:ea:b3:81:47:2d:0f:ad:84:1c:27:6a:45:77: 2c:c1:d1:72:58:df:4d:10:41:94:70:d8:3f:7e:6b:26:0b:ba: aa:98:b3:7e:6c:40:f0:5c:27:1f:69:9a:08:92:e7:3e:83:51: 41:2a:a6:f6:4f:56:9f:6f:1e:07:eb:e1:3e:d4:39:fd:2a:7b: 2a:da:7e:41:33:77:99:a4:2c:a4:94:e1:d1:4d:74:d1:ac:e4: f5:32:8b:aa:30:fd:dd:34:7f:ba:ca:b4:7a:c5:f8:71:40:6d: 10:fd:c7:bf:50:3a:e3:52:79:31:53:6c:fb:60:6c:15:37:4c: 4e:62:0a:b1:18:e9:08:93:7f:3f:f0:32:64:90:4b:53:be:26: e8:65:b0:6e:5d:64:46:41:e9:ac:5b:9c:b3:c7:40:d8:4e:3f: b5:6a:8e:63:52:54:37:6b:a6:99:ce:17:dd:c6:2d:80:7d:a3: f8:a2:19:08 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICOVYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVCNjRCRDhEOTQyRTJF MTQ4QjI5QUE2MjQ0RDBCNDkxNzBFMERFNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/JJUIiuyWTGZQLw58GrOR7l8dyzBXVxAu/5DBzkoaLW3ThOsN hUQ4tKFoJuEpVV1Fxigcc/nb4pazCRannaYryUlyEuw5Ru43q0eW9sUypKBgK4lS dE2dIF8OdTCj2jJLaXqBKAWWfOzkjKlnWHpbfmKHec6IC3CjNPnQSW2v0unk2kJb HVQZ5RdRyhmpFz3f0xRtbj61eIfDukLchbhvmSprsTZmj2qFOPiIGzYIYXDqt8x6 ed7JBjGrpVYMaRR8lFZa6SVtvUs6ooceHWnY1SKMBNZAOWSlXty0Rl/corlBqyAO rvgMJF31eq0KC9ix6/vD1YHh+3XIIfh1tJlFAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQU62S9jZQuLhSLKapiRNC0kXDg3kgwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzYyUzlqWlF1TGhTTEthcGlS TkMwa1hEZzNrZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQfT THeAMA0GCSqGSIb3DQEBCwUAA4IBAQAJQmBAkL+XJk4cDOZJBrgFoN9tpzM3kC6r 2S5v8hYwkapsmyuYdRQfFObSBnHQGmflZhce1sdGriIXvsNKbcVcrdKcmbkgiWvD IlrX0uqzgUctD62EHCdqRXcswdFyWN9NEEGUcNg/fmsmC7qqmLN+bEDwXCcfaZoI kuc+g1FBKqb2T1afbx4H6+E+1Dn9Knsq2n5BM3eZpCyklOHRTXTRrOT1MouqMP3d NH+6yrR6xfhxQG0Q/ce/UDrjUnkxU2z7YGwVN0xOYgqxGOkIk38/8DJkkEtTvibo ZbBuXWRGQemsW5yzx0DYTj+1ao5jUlQ3a6aZzhfdxi2AfaP4ohkI -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:36 2025 by rpki-client