$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AMiVVeuNwCJ9mVx3gJtOHE_IDHk.roa File: AMiVVeuNwCJ9mVx3gJtOHE_IDHk.roa (raw, json) Hash identifier: FvMcDuvCrImXzkhxg0EuH6PBA+y8dZVCqlPhwZryTyg= Subject key identifier: 00:C8:95:55:EB:8D:C0:22:7D:99:5C:77:80:9B:4E:1C:4F:C8:0C:79 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3866 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AMiVVeuNwCJ9mVx3gJtOHE_IDHk.roa Signing time: Fri 22 Aug 2025 08:45:14 +0000 ROA not before: Fri 22 Aug 2025 08:45:14 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.194.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14438 (0x3866) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:14 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=00C89555EB8DC0227D995C77809B4E1C4FC80C79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:66:5f:4a:13:2f:23:9e:f3:01:90:eb:56:39: 61:c1:aa:67:b8:6c:ea:93:68:82:fe:68:31:8c:30: 63:92:aa:03:50:09:62:19:52:24:6c:e3:58:29:78: a3:92:23:f0:75:ea:73:7d:7c:6d:fb:a9:5a:8b:12: 05:e3:bb:27:a0:07:b0:0d:a6:a1:77:fb:f1:b9:d6: 8a:15:85:3b:47:1e:a1:5a:1b:38:6e:e3:79:91:ef: ce:ee:38:ff:f9:b0:fb:90:4d:eb:dd:da:99:9d:b4: 40:8d:b7:cb:06:f8:e8:77:f0:f2:02:86:cf:9b:22: 06:2d:ab:d9:62:23:21:cb:e4:aa:d6:a0:55:c1:54: 1c:ea:3a:5a:97:ef:c1:57:37:06:cb:9d:72:e3:55: 06:d8:e5:b6:2d:87:36:1d:91:8c:c3:4f:e7:a6:35: 7c:9d:98:60:af:54:2f:50:b1:e3:ef:b0:dc:46:29: 05:09:8f:b7:79:2b:13:d7:dc:37:30:4b:3f:95:01: 63:ba:93:34:c3:81:3d:b1:3a:c9:27:e0:37:10:e8: 9c:db:1f:06:50:3c:49:29:49:1c:e2:05:15:59:89: 94:f4:5c:bf:23:9d:57:02:67:03:32:43:e1:d7:7f: 84:34:53:b1:31:2c:26:89:08:da:05:10:d2:cb:e2: 05:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:C8:95:55:EB:8D:C0:22:7D:99:5C:77:80:9B:4E:1C:4F:C8:0C:79 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AMiVVeuNwCJ9mVx3gJtOHE_IDHk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.176.0/21 Signature Algorithm: sha256WithRSAEncryption 45:e5:b5:3f:6b:09:0a:12:ab:5b:e0:9d:a9:e1:75:31:5f:c2: bb:53:f3:bd:05:12:df:c2:43:a3:45:0c:dd:69:52:70:a8:46: 9a:f1:9d:09:1a:e8:a0:8c:80:17:41:47:7c:fd:f3:78:c5:04: 04:3a:dc:ef:73:90:6e:e9:8b:13:cf:ae:1b:43:ee:bd:23:85: d1:e9:d8:d7:b7:aa:7b:00:7d:b4:35:56:52:98:40:46:f7:76: d7:99:c2:63:bb:ba:0c:52:a8:9e:da:6e:93:69:c7:95:8d:53: d3:cb:d1:32:ad:65:44:10:17:6a:80:0f:6b:2e:4a:cc:43:ff: 11:c2:42:52:06:ad:1a:52:96:0e:f4:bf:76:8c:3c:45:22:87: df:b5:a6:d4:9a:ca:8d:99:1c:4f:a6:03:ef:c6:6c:44:7d:dc: 29:ca:a9:13:ca:66:44:6c:27:b8:25:42:a3:f9:ce:ed:bc:d1: 3a:a2:bb:6c:52:84:66:bb:46:aa:8e:3d:e9:e9:c5:87:f1:e3: 3a:5a:91:99:a1:62:b5:bb:e5:b3:a5:1c:50:17:1e:0d:b7:50: c4:0f:64:ce:de:a7:11:a2:6e:c2:6a:c6:84:e7:59:8f:8c:c8: c8:1b:c3:84:55:04:34:51:01:f8:2c:9d:aa:f1:65:2a:14:58: 11:6f:d3:56 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOGYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1MTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDAwQzg5NTU1RUI4REMw MjI3RDk5NUM3NzgwOUI0RTFDNEZDODBDNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/Zl9KEy8jnvMBkOtWOWHBqme4bOqTaIL+aDGMMGOSqgNQCWIZ UiRs41gpeKOSI/B16nN9fG37qVqLEgXjuyegB7ANpqF3+/G51ooVhTtHHqFaGzhu 43mR787uOP/5sPuQTevd2pmdtECNt8sG+Oh38PIChs+bIgYtq9liIyHL5KrWoFXB VBzqOlqX78FXNwbLnXLjVQbY5bYthzYdkYzDT+emNXydmGCvVC9QsePvsNxGKQUJ j7d5KxPX3DcwSz+VAWO6kzTDgT2xOskn4DcQ6JzbHwZQPEkpSRziBRVZiZT0XL8j nVcCZwMyQ+HXf4Q0U7ExLCaJCNoFENLL4gUPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUAMiVVeuNwCJ9mVx3gJtOHE/IDHkwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0FNaVZWZXVOd0NKOW1WeDNn SnRPSEVfSURIay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wrAwDQYJKoZIhvcNAQELBQADggEBAEXltT9rCQoSq1vgnanhdTFfwrtT870FEt/C Q6NFDN1pUnCoRprxnQka6KCMgBdBR3z983jFBAQ63O9zkG7pixPPrhtD7r0jhdHp 2Ne3qnsAfbQ1VlKYQEb3dteZwmO7ugxSqJ7abpNpx5WNU9PL0TKtZUQQF2qAD2su SsxD/xHCQlIGrRpSlg70v3aMPEUih9+1ptSayo2ZHE+mA+/GbER93CnKqRPKZkRs J7glQqP5zu280Tqiu2xShGa7RqqOPenpxYfx4zpakZmhYrW75bOlHFAXHg23UMQP ZM7epxGibsJqxoTnWY+MyMgbw4RVBDRRAfgsnarxZSoUWBFv01Y= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:20 2025 by rpki-client