$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/APmWDR7QjyZvP7XO3zI3OzK-x3c.roa File: APmWDR7QjyZvP7XO3zI3OzK-x3c.roa (raw, json) Hash identifier: yuPa2wUT91qfoL6zFH24V4hTbhawoyxP1pz+RosvMaA= Subject key identifier: 00:F9:96:0D:1E:D0:8F:26:6F:3F:B5:CE:DF:32:37:3B:32:BE:C7:77 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 39E7 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/APmWDR7QjyZvP7XO3zI3OzK-x3c.roa Signing time: Fri 22 Aug 2025 08:46:47 +0000 ROA not before: Fri 22 Aug 2025 08:46:47 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.192.24.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14823 (0x39e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=00F9960D1ED08F266F3FB5CEDF32373B32BEC777 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:1d:35:00:7c:f2:4a:5a:90:9b:57:86:37:b0: b2:b5:02:4c:84:2f:81:7b:c6:d0:1e:d6:4a:ed:e7: 86:06:64:0b:de:68:b3:70:46:37:28:3d:39:4a:f6: 16:63:56:c8:fb:7c:bf:16:25:fc:e4:dc:35:28:f6: f4:bf:94:6c:1e:25:57:f2:73:75:7a:8b:39:46:ba: 0a:60:cf:ef:9e:7f:c4:ee:ef:d4:1c:61:58:66:6e: fc:fb:3a:ff:01:09:db:7a:54:1d:d0:38:df:c3:26: cd:fd:ef:40:85:ab:49:d2:34:79:c1:64:4f:4a:eb: 6b:9b:8e:1f:66:f7:b5:3a:61:c0:de:f7:3d:ed:8c: a2:fa:82:24:4b:70:f6:d0:4c:96:d2:54:5a:07:37: 36:a5:6c:c4:19:e0:ff:eb:b3:a3:74:ec:aa:96:25: d0:89:5d:d0:2d:b2:64:a2:60:99:88:d5:a0:65:83: c5:2c:21:57:af:86:6b:63:73:51:00:fd:29:96:c3: 6d:1d:08:5c:bd:8c:0f:15:ac:0a:e9:8e:2e:ff:c5: 24:b6:32:e6:e9:e7:55:cc:c3:f5:10:21:22:79:8a: a5:bc:6b:05:05:c9:7c:f5:18:6d:06:1a:b0:0a:48: 6c:e1:d3:27:bc:e9:97:cd:f1:3a:c3:bd:0d:05:48: 60:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:F9:96:0D:1E:D0:8F:26:6F:3F:B5:CE:DF:32:37:3B:32:BE:C7:77 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/APmWDR7QjyZvP7XO3zI3OzK-x3c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.192.24.0/21 Signature Algorithm: sha256WithRSAEncryption 87:49:8e:b7:07:58:67:61:46:64:28:f4:67:8d:3f:76:66:43: aa:75:b9:fd:63:a4:7f:ca:16:02:4d:0a:c2:c8:81:4c:1d:d4: 06:0d:e0:55:52:f5:9d:78:a1:88:6d:f7:20:7b:7b:5d:a7:92: 76:1f:84:7a:0f:e6:e1:73:35:86:fa:4b:3f:62:c7:94:d5:9b: b2:ac:3c:de:61:db:a3:75:fa:7d:dd:03:0e:00:4d:42:5f:8d: 44:f3:11:b9:33:b4:7c:64:5e:88:db:09:69:66:ac:ff:54:e4: 29:9f:a0:c5:90:d7:db:28:9c:ea:64:ee:39:f9:87:12:cf:f0: 55:f1:0c:40:e5:07:be:08:f7:e9:e2:c3:9c:86:97:47:03:19: e9:20:3b:ed:27:da:3b:3c:ca:97:d0:3d:3d:75:08:d4:b5:4e: 28:cc:0a:df:52:4c:c3:28:d9:4c:ae:18:98:c4:3b:b2:95:df: 5f:cd:5f:6f:04:e9:04:73:13:33:fa:76:3a:1a:8e:44:b3:80: 6a:84:c6:44:09:97:06:4f:bf:95:b8:8e:7e:a7:25:1e:eb:e4: 05:77:0d:77:b6:66:13:db:a1:54:13:21:ec:12:b1:2d:59:1f: b5:fa:18:1f:9e:41:dc:62:a8:fd:45:66:8c:19:05:0c:96:1b: 1f:0e:d6:51 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOecwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2NDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDAwRjk5NjBEMUVEMDhG MjY2RjNGQjVDRURGMzIzNzNCMzJCRUM3NzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHHTUAfPJKWpCbV4Y3sLK1AkyEL4F7xtAe1krt54YGZAveaLNw RjcoPTlK9hZjVsj7fL8WJfzk3DUo9vS/lGweJVfyc3V6izlGugpgz++ef8Tu79Qc YVhmbvz7Ov8BCdt6VB3QON/DJs3970CFq0nSNHnBZE9K62ubjh9m97U6YcDe9z3t jKL6giRLcPbQTJbSVFoHNzalbMQZ4P/rs6N07KqWJdCJXdAtsmSiYJmI1aBlg8Us IVevhmtjc1EA/SmWw20dCFy9jA8VrArpji7/xSS2Mubp51XMw/UQISJ5iqW8awUF yXz1GG0GGrAKSGzh0ye86ZfN8TrDvQ0FSGBrAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUAPmWDR7QjyZvP7XO3zI3OzK+x3cwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0FQbVdEUjdRanladlA3WE8z ekkzT3pLLXgzYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wBgwDQYJKoZIhvcNAQELBQADggEBAIdJjrcHWGdhRmQo9GeNP3ZmQ6p1uf1jpH/K FgJNCsLIgUwd1AYN4FVS9Z14oYht9yB7e12nknYfhHoP5uFzNYb6Sz9ix5TVm7Ks PN5h26N1+n3dAw4ATUJfjUTzEbkztHxkXojbCWlmrP9U5CmfoMWQ19sonOpk7jn5 hxLP8FXxDEDlB74I9+niw5yGl0cDGekgO+0n2js8ypfQPT11CNS1TijMCt9STMMo 2UyuGJjEO7KV31/NX28E6QRzEzP6djoajkSzgGqExkQJlwZPv5W4jn6nJR7r5AV3 DXe2ZhPboVQTIewSsS1ZH7X6GB+eQdxiqP1FZowZBQyWGx8O1lE= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:29 2025 by rpki-client