$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7hwxPiG0JNG6TJ4eHySljW50Fp8.roa File: 7hwxPiG0JNG6TJ4eHySljW50Fp8.roa (raw, json) Hash identifier: oo3TCJe9twtNNkVu+a4GmGAFyPqkeuvaM91exH1J7gk= Subject key identifier: EE:1C:31:3E:21:B4:24:D1:BA:4C:9E:1E:1F:24:A5:8D:6E:74:16:9F Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 39E5 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7hwxPiG0JNG6TJ4eHySljW50Fp8.roa Signing time: Fri 22 Aug 2025 08:46:47 +0000 ROA not before: Fri 22 Aug 2025 08:46:47 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.192.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14821 (0x39e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=EE1C313E21B424D1BA4C9E1E1F24A58D6E74169F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:aa:e4:b7:b9:01:41:d9:ad:60:32:ac:c4:ca: ed:7b:71:e5:36:ce:c2:27:cf:91:5f:01:ff:5a:62: 33:c8:c1:27:bc:fa:ae:49:90:78:24:84:1e:ac:90: 5e:02:40:49:de:47:ca:b7:6f:f9:c5:9c:4a:89:15: ec:61:53:4b:9a:fe:43:81:18:44:00:d9:f4:70:4d: 02:c0:fd:88:70:ed:0c:6b:3a:b1:80:f3:d9:14:75: 41:6a:ab:b2:6d:52:97:2a:d0:99:83:39:8e:04:87: ec:12:64:bb:49:94:3f:bb:eb:e1:c4:f4:7e:f0:a3: 71:62:07:3a:6c:53:40:e6:78:f1:23:4e:cc:a3:cb: e7:ab:0b:3e:bc:d4:e7:0c:8d:f5:5e:9a:35:47:ec: 9e:aa:e2:52:81:c6:f3:46:99:b0:7f:fc:4c:e9:d6: ef:49:54:9d:f0:05:18:01:3b:b7:41:40:db:b0:67: 43:81:1d:51:90:70:7c:b5:8f:47:4d:6c:4b:53:d4: bb:2e:40:a2:24:ad:b3:86:d1:e1:14:e3:04:c1:5f: 5f:d0:53:f9:0d:32:45:3a:5b:50:b1:d0:76:3e:02: 84:47:b5:ec:6e:3b:f7:59:d0:62:87:45:34:ee:d6: e2:b3:b3:e6:96:cb:f6:76:c6:74:c7:24:7c:f9:b7: 37:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:1C:31:3E:21:B4:24:D1:BA:4C:9E:1E:1F:24:A5:8D:6E:74:16:9F X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7hwxPiG0JNG6TJ4eHySljW50Fp8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.192.232.0/22 Signature Algorithm: sha256WithRSAEncryption 99:60:fe:bd:21:2a:fd:f6:3a:a2:e4:a1:40:94:ea:d7:13:6b: fa:03:a1:d3:dc:65:d5:bc:d8:cb:e5:89:f8:c4:3b:be:c2:11: c7:dc:ff:e1:75:b7:17:ce:f1:c0:af:a8:8d:c7:02:24:54:87: f3:8b:91:68:a0:e5:39:ad:ba:9d:56:82:fe:d0:7d:04:ed:c2: 6b:2b:9e:64:75:82:0d:99:4d:70:8d:64:84:d4:dc:0e:9a:42: f0:83:85:6f:26:ae:f4:10:3d:60:af:a0:6d:ad:80:2f:cb:33: eb:20:65:bd:42:81:8e:63:6c:81:5e:fb:92:ab:f3:ca:3d:be: a7:81:c5:91:8e:52:bd:3c:d9:52:ff:66:5d:b1:67:75:8e:ea: 04:fa:8b:46:2b:87:aa:cc:ae:0b:40:f3:60:26:eb:87:b6:d1: c8:e4:37:80:16:c0:e4:e9:82:25:fc:d7:89:15:7b:cc:1b:21: 72:0f:38:64:bb:5e:f5:a7:b2:93:56:55:70:90:24:00:30:fa: de:ed:9f:04:a4:60:ff:07:eb:b6:4b:be:41:ac:b2:a4:94:7a: c7:18:d5:17:01:db:c8:65:56:8b:8c:88:1a:69:19:ae:cb:34: a9:f7:aa:26:ec:1e:e5:02:f9:9f:e7:42:ee:5a:96:16:08:96: f8:27:7f:78 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOeUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2NDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVFMUMzMTNFMjFCNDI0 RDFCQTRDOUUxRTFGMjRBNThENkU3NDE2OUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwquS3uQFB2a1gMqzEyu17ceU2zsInz5FfAf9aYjPIwSe8+q5J kHgkhB6skF4CQEneR8q3b/nFnEqJFexhU0ua/kOBGEQA2fRwTQLA/Yhw7QxrOrGA 89kUdUFqq7JtUpcq0JmDOY4Eh+wSZLtJlD+76+HE9H7wo3FiBzpsU0DmePEjTsyj y+erCz681OcMjfVemjVH7J6q4lKBxvNGmbB//Ezp1u9JVJ3wBRgBO7dBQNuwZ0OB HVGQcHy1j0dNbEtT1LsuQKIkrbOG0eEU4wTBX1/QU/kNMkU6W1Cx0HY+AoRHtexu O/dZ0GKHRTTu1uKzs+aWy/Z2xnTHJHz5tzcvAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU7hwxPiG0JNG6TJ4eHySljW50Fp8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzdod3hQaUcwSk5HNlRKNGVI eVNsalc1MEZwOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wOgwDQYJKoZIhvcNAQELBQADggEBAJlg/r0hKv32OqLkoUCU6tcTa/oDodPcZdW8 2MvlifjEO77CEcfc/+F1txfO8cCvqI3HAiRUh/OLkWig5Tmtup1Wgv7QfQTtwmsr nmR1gg2ZTXCNZITU3A6aQvCDhW8mrvQQPWCvoG2tgC/LM+sgZb1CgY5jbIFe+5Kr 88o9vqeBxZGOUr082VL/Zl2xZ3WO6gT6i0Yrh6rMrgtA82Am64e20cjkN4AWwOTp giX814kVe8wbIXIPOGS7XvWnspNWVXCQJAAw+t7tnwSkYP8H67ZLvkGssqSUescY 1RcB28hlVouMiBppGa7LNKn3qibsHuUC+Z/nQu5alhYIlvgnf3g= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:20 2025 by rpki-client