$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8DFo4xBeoBGwALn5mSxaj7UUv78.roa File: 8DFo4xBeoBGwALn5mSxaj7UUv78.roa (raw, json) Hash identifier: wSSGwRGBZWxslTBA3iuqobbxdWT7dfadlnj/c0x9JRQ= Subject key identifier: F0:31:68:E3:10:5E:A0:11:B0:00:B9:F9:99:2C:5A:8F:B5:14:BF:BF Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 382D Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8DFo4xBeoBGwALn5mSxaj7UUv78.roa Signing time: Fri 22 Aug 2025 08:45:02 +0000 ROA not before: Fri 22 Aug 2025 08:45:02 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 180.176.228.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14381 (0x382d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:02 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F03168E3105EA011B000B9F9992C5A8FB514BFBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:24:22:4b:db:f6:b8:44:09:80:04:b6:34:86: cd:c9:a4:06:f9:cb:89:fa:95:88:c5:0e:70:42:de: 05:39:14:bb:f7:21:85:28:c2:25:d1:41:70:43:74: 24:3c:ba:83:97:f8:e8:d8:35:65:b3:b1:6c:d9:3a: ed:ac:61:d3:6f:d0:be:e8:cc:b3:3c:0d:d7:2d:9b: a4:db:da:62:09:46:2f:96:01:b1:9f:4b:7a:b6:d2: da:87:d7:7f:83:79:8d:fd:cb:87:dc:5c:79:c8:a9: d2:d7:99:2e:f9:c2:4a:ea:bb:e2:86:54:e9:62:f5: b8:ae:49:1a:ae:12:e5:52:29:73:eb:1c:4d:5c:98: d1:34:30:e3:65:12:66:76:c9:ba:cb:1b:00:e5:f0: b2:9b:88:8f:ac:fe:ed:87:65:bf:ab:f8:a2:7c:ce: 41:e2:4a:f4:86:3d:4c:66:cc:03:f7:aa:88:20:fa: 21:26:92:74:75:1a:40:73:c6:35:96:a9:cc:80:92: e4:dc:fb:69:f6:82:9f:3b:53:69:60:53:b5:b9:55: e8:7f:ae:66:ca:ef:c7:ec:74:d0:94:04:04:09:3c: b8:03:0d:f6:39:e8:ea:96:7f:f1:96:24:73:db:c9: 2a:c7:c5:48:7c:28:b0:35:fb:9b:e2:36:02:2f:36: 39:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:31:68:E3:10:5E:A0:11:B0:00:B9:F9:99:2C:5A:8F:B5:14:BF:BF X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8DFo4xBeoBGwALn5mSxaj7UUv78.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.176.228.0/22 Signature Algorithm: sha256WithRSAEncryption 7c:be:7b:89:c6:d5:a0:43:0d:43:eb:c0:3e:9d:3c:93:2a:f1: 55:2d:5b:dc:b1:39:cf:bc:6e:67:53:07:bc:f7:2d:60:f7:3b: 95:c4:67:15:c6:75:3e:a2:4f:a0:3e:36:14:bf:7e:f1:26:17: a0:3a:ec:b5:59:dd:ce:87:2b:ea:2a:74:14:77:cf:ce:c4:eb: b0:57:78:41:e8:f0:12:b0:d0:3f:ff:af:a9:0d:53:9f:1c:b9: a4:95:6d:3b:85:f5:f2:9e:2c:f7:ef:95:da:79:ae:99:58:ed: 99:7c:0f:b7:75:a7:5e:f6:0d:f2:47:63:eb:70:87:66:ac:3d: a8:c2:20:e9:51:8b:7d:68:9b:ab:bb:94:e2:56:53:e7:c3:9e: 76:0f:68:ad:f1:1b:ad:4e:49:cc:c0:8f:c4:ff:8e:91:5a:82: 37:c8:07:2d:0d:4a:32:5e:85:3f:e5:7c:98:93:f2:05:ca:f6: e2:40:49:d4:d2:bd:99:a4:ec:b4:d3:a2:b3:c0:73:f8:79:21: 97:8a:7e:27:93:e3:6f:83:b0:3c:e7:e7:35:68:03:70:32:9a: a6:09:c1:53:10:9d:f1:ab:59:94:c1:87:00:bc:37:a3:ef:d4: 7c:f7:5e:c3:78:6d:7e:fc:d2:c3:37:02:c2:c4:5d:c2:88:c6: d1:94:26:32 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOC0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1MDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEYwMzE2OEUzMTA1RUEw MTFCMDAwQjlGOTk5MkM1QThGQjUxNEJGQkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUJCJL2/a4RAmABLY0hs3JpAb5y4n6lYjFDnBC3gU5FLv3IYUo wiXRQXBDdCQ8uoOX+OjYNWWzsWzZOu2sYdNv0L7ozLM8Ddctm6Tb2mIJRi+WAbGf S3q20tqH13+DeY39y4fcXHnIqdLXmS75wkrqu+KGVOli9biuSRquEuVSKXPrHE1c mNE0MONlEmZ2ybrLGwDl8LKbiI+s/u2HZb+r+KJ8zkHiSvSGPUxmzAP3qogg+iEm knR1GkBzxjWWqcyAkuTc+2n2gp87U2lgU7W5Veh/rmbK78fsdNCUBAQJPLgDDfY5 6OqWf/GWJHPbySrHxUh8KLA1+5viNgIvNjl9AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU8DFo4xBeoBGwALn5mSxaj7UUv78wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzhERm80eEJlb0JHd0FMbjVt U3hhajdVVXY3OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 sOQwDQYJKoZIhvcNAQELBQADggEBAHy+e4nG1aBDDUPrwD6dPJMq8VUtW9yxOc+8 bmdTB7z3LWD3O5XEZxXGdT6iT6A+NhS/fvEmF6A67LVZ3c6HK+oqdBR3z87E67BX eEHo8BKw0D//r6kNU58cuaSVbTuF9fKeLPfvldp5rplY7Zl8D7d1p172DfJHY+tw h2asPajCIOlRi31om6u7lOJWU+fDnnYPaK3xG61OSczAj8T/jpFagjfIBy0NSjJe hT/lfJiT8gXK9uJASdTSvZmk7LTTorPAc/h5IZeKfieT42+DsDzn5zVoA3AymqYJ wVMQnfGrWZTBhwC8N6Pv1Hz3XsN4bX780sM3AsLEXcKIxtGUJjI= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:19 2025 by rpki-client