$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6zcNlXXpmXb7kkqXJb7e7V6OcO0.roa File: 6zcNlXXpmXb7kkqXJb7e7V6OcO0.roa (raw, json) Hash identifier: pdLZMMIJ9QEDfuhjpESg/S4uxUI/jHmixW9KQlwAo9I= Subject key identifier: EB:37:0D:95:75:E9:99:76:FB:92:4A:97:25:BE:DE:ED:5E:8E:70:ED Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3836 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6zcNlXXpmXb7kkqXJb7e7V6OcO0.roa Signing time: Fri 22 Aug 2025 08:45:03 +0000 ROA not before: Fri 22 Aug 2025 08:45:03 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.193.248.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14390 (0x3836) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:03 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=EB370D9575E99976FB924A9725BEDEED5E8E70ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:79:51:d2:87:03:78:4c:fb:c0:2e:66:2a:fe: 1c:9b:b3:50:76:d8:0a:da:f6:26:f4:91:27:4d:b9: cb:49:06:9f:bd:89:48:69:e9:7c:42:2e:55:b9:aa: 80:44:4b:3c:a7:a5:e8:74:9a:8d:32:b8:ae:fd:88: 8b:0e:41:2f:26:6b:58:ce:57:95:ec:f8:38:be:fc: e7:23:d3:b4:1a:cd:9b:7a:25:59:c1:4c:28:c3:8e: f7:98:21:b1:91:d0:ec:1d:56:5d:11:00:12:55:92: 6b:bb:8c:d9:88:f4:87:33:c0:4a:2f:1e:62:88:ec: ef:82:8e:45:ae:ab:c8:87:ec:3d:dc:45:ec:8a:ad: b1:19:6a:57:48:1f:fc:68:4b:22:b0:4d:bb:40:83: cd:80:ad:96:39:32:48:47:a9:12:dc:94:6f:8b:5c: 6a:16:9e:db:21:31:2e:86:8d:55:76:12:c1:a2:3b: 1d:b0:37:db:fa:42:cd:d5:fa:16:16:1f:3d:07:5e: eb:72:f3:17:2d:e8:aa:f7:07:23:69:5e:de:ae:d0: 3b:f2:45:dc:d4:a8:a8:ad:8a:e7:8e:c2:3c:f6:a1: 58:9e:cb:b3:92:c0:44:b4:5f:08:5a:b8:7e:39:62: e4:6c:13:05:b9:11:95:60:d3:c3:ab:11:e9:f8:83: bf:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:37:0D:95:75:E9:99:76:FB:92:4A:97:25:BE:DE:ED:5E:8E:70:ED X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6zcNlXXpmXb7kkqXJb7e7V6OcO0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.248.0/22 Signature Algorithm: sha256WithRSAEncryption 7a:d9:64:1f:87:f5:ea:92:f2:c5:43:ab:a3:c0:16:1f:58:0a: aa:33:60:2d:99:c7:6b:e7:cb:4d:1b:93:7b:88:4e:76:58:29: 21:ee:3d:aa:aa:16:a8:e4:85:9a:c1:70:f0:73:7a:64:de:73: b7:08:1e:61:fa:7e:7c:55:25:95:67:c2:4d:49:9d:b0:ca:44: ca:96:dc:30:01:1b:13:86:bf:7d:c2:cb:2c:69:75:83:07:db: 44:e6:fa:16:15:37:1d:95:1f:2b:5e:30:3b:b3:15:f6:44:c6: e4:c7:be:dc:bd:bd:35:a6:c1:f2:07:88:98:85:cf:d1:5d:5f: 6f:4b:ca:48:dc:04:93:66:d5:b2:8d:35:89:7d:d3:da:fe:81: a6:fd:29:e5:ec:c0:8f:3b:7c:10:27:bf:8a:70:f7:8c:ca:38: 22:54:99:b6:fa:0b:8c:af:82:87:88:30:6c:ef:d4:c4:3c:90: f8:01:57:93:e5:ae:63:04:08:a1:05:69:7d:cd:85:1a:8d:eb: 01:fa:43:01:54:fa:3e:99:a7:ca:6f:41:ca:5c:f3:05:0f:f7: a3:d1:92:6f:80:b1:55:d5:e5:18:5e:36:5d:ef:f5:2e:ad:bc: 33:fb:b9:9e:83:09:9c:dc:81:b0:97:66:26:83:dd:f4:3a:2c: 4e:d9:cf:ad -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICODYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1MDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVCMzcwRDk1NzVFOTk5 NzZGQjkyNEE5NzI1QkVERUVENUU4RTcwRUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpeVHShwN4TPvALmYq/hybs1B22Ara9ib0kSdNuctJBp+9iUhp 6XxCLlW5qoBESzynpeh0mo0yuK79iIsOQS8ma1jOV5Xs+Di+/Ocj07QazZt6JVnB TCjDjveYIbGR0OwdVl0RABJVkmu7jNmI9IczwEovHmKI7O+CjkWuq8iH7D3cReyK rbEZaldIH/xoSyKwTbtAg82ArZY5MkhHqRLclG+LXGoWntshMS6GjVV2EsGiOx2w N9v6Qs3V+hYWHz0HXuty8xct6Kr3ByNpXt6u0DvyRdzUqKitiueOwjz2oViey7OS wES0XwhauH45YuRsEwW5EZVg08OrEen4g7+VAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU6zcNlXXpmXb7kkqXJb7e7V6OcO0wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzZ6Y05sWFhwbVhiN2trcVhK YjdlN1Y2T2NPMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wfgwDQYJKoZIhvcNAQELBQADggEBAHrZZB+H9eqS8sVDq6PAFh9YCqozYC2Zx2vn y00bk3uITnZYKSHuPaqqFqjkhZrBcPBzemTec7cIHmH6fnxVJZVnwk1JnbDKRMqW 3DABGxOGv33CyyxpdYMH20Tm+hYVNx2VHyteMDuzFfZExuTHvty9vTWmwfIHiJiF z9FdX29LykjcBJNm1bKNNYl909r+gab9KeXswI87fBAnv4pw94zKOCJUmbb6C4yv goeIMGzv1MQ8kPgBV5PlrmMECKEFaX3NhRqN6wH6QwFU+j6Zp8pvQcpc8wUP96PR km+AsVXV5RheNl3v9S6tvDP7uZ6DCZzcgbCXZiaD3fQ6LE7Zz60= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:29 2025 by rpki-client