$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BGXCYvsI5_KKvnGn96CeFtENSIc.roa File: BGXCYvsI5_KKvnGn96CeFtENSIc.roa (raw, json) Hash identifier: 0iip9w0ExF7hCmvXgNjf74MBzS+PF4DhjfR6EXd1rNo= Subject key identifier: 04:65:C2:62:FB:08:E7:F2:8A:BE:71:A7:F7:A0:9E:16:D1:0D:48:87 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3A21 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BGXCYvsI5_KKvnGn96CeFtENSIc.roa Signing time: Fri 22 Aug 2025 08:47:03 +0000 ROA not before: Fri 22 Aug 2025 08:47:03 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.195.20.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14881 (0x3a21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:03 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0465C262FB08E7F28ABE71A7F7A09E16D10D4887 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:8e:92:a9:11:05:cf:cd:8c:22:70:2a:d1:4f: 3f:cd:62:65:dd:ac:84:e0:c6:16:90:03:56:e4:42: 18:9f:9f:f3:89:8d:d1:b5:7b:37:07:df:45:f3:d3: 53:be:ec:68:21:53:37:93:69:e5:ac:c4:dc:66:0a: ee:67:05:eb:09:ff:99:2b:da:4e:dc:d0:3f:6e:0f: 8c:dd:74:54:a9:fb:87:aa:01:75:2a:a2:4c:27:5e: 19:c0:a5:ff:c9:67:67:ca:be:d8:b9:80:c5:c6:ce: 9f:be:62:96:53:c2:2f:d2:14:69:dc:34:28:c4:3c: 94:36:38:76:ec:4b:d5:1b:2a:61:f1:61:fb:ff:83: e2:a5:88:ce:d0:d1:5a:9e:2a:08:5a:62:70:ca:f0: 8e:4f:36:1e:b6:2e:9e:02:eb:dd:2e:87:15:ee:10: 5e:ea:51:b7:a9:56:27:2a:e7:b3:88:d1:a4:32:bd: 60:21:f6:d5:9b:46:0c:91:5e:02:d3:9f:10:51:7a: 31:b0:7b:80:b9:66:d8:2a:59:29:e1:14:51:45:12: a8:46:f7:b1:dd:70:d2:63:13:a5:c3:94:49:9d:54: 96:62:8f:84:ea:ce:9d:2c:e4:4e:8a:e0:2f:4d:aa: 10:ee:74:d4:1f:a3:a8:3d:97:89:6a:26:38:da:ab: 91:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:65:C2:62:FB:08:E7:F2:8A:BE:71:A7:F7:A0:9E:16:D1:0D:48:87 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BGXCYvsI5_KKvnGn96CeFtENSIc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.20.0/22 Signature Algorithm: sha256WithRSAEncryption 2c:c5:55:b9:84:cb:c2:3f:ad:4c:54:47:7c:f1:f6:6a:c7:da: 07:8a:d4:54:9d:9a:cc:2e:89:b0:40:ce:fb:ad:74:80:d1:a8: f4:3d:b6:1c:aa:d2:4a:ec:76:6f:1a:0e:63:17:ac:48:59:d2: 44:f2:e1:57:52:32:27:28:4c:5c:f1:51:c3:e6:38:d7:c1:c6: dc:e4:05:ef:4b:63:52:45:b0:b3:46:46:95:6f:89:95:5b:c1: c2:60:4a:e3:16:1c:7b:fe:47:44:ff:aa:db:de:f2:5b:a1:9b: c8:20:d3:ff:33:3f:d0:6b:75:ca:ac:f9:b2:15:bb:8e:53:d7: 7d:48:62:4a:89:77:99:5d:19:2d:ae:3f:2d:d1:d4:bc:62:0d: bf:15:15:0f:d1:4b:23:37:a6:84:39:1c:d7:d6:f5:8e:2b:05: cd:29:58:8e:f2:22:4a:a0:76:24:e9:04:de:80:12:43:ea:71: 0a:57:e2:6a:9c:d5:10:79:64:89:bb:32:25:3c:d6:1d:c8:2a: 02:e0:fd:c6:8d:18:0b:42:7c:d7:87:c0:fb:e4:c4:d3:d5:ac: 06:e5:cc:b6:40:19:b3:b4:37:ee:d1:84:93:57:ca:31:a6:b5: d3:14:8f:f6:68:7f:0d:84:5f:f0:7a:f6:0a:b9:6d:68:33:5d: f4:c0:c3:da -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOiEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3MDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDA0NjVDMjYyRkIwOEU3 RjI4QUJFNzFBN0Y3QTA5RTE2RDEwRDQ4ODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtjpKpEQXPzYwicCrRTz/NYmXdrITgxhaQA1bkQhifn/OJjdG1 ezcH30Xz01O+7GghUzeTaeWsxNxmCu5nBesJ/5kr2k7c0D9uD4zddFSp+4eqAXUq okwnXhnApf/JZ2fKvti5gMXGzp++YpZTwi/SFGncNCjEPJQ2OHbsS9UbKmHxYfv/ g+KliM7Q0VqeKghaYnDK8I5PNh62Lp4C690uhxXuEF7qUbepVicq57OI0aQyvWAh 9tWbRgyRXgLTnxBRejGwe4C5ZtgqWSnhFFFFEqhG97HdcNJjE6XDlEmdVJZij4Tq zp0s5E6K4C9NqhDudNQfo6g9l4lqJjjaq5FRAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUBGXCYvsI5/KKvnGn96CeFtENSIcwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0JHWENZdnNJNV9LS3ZuR245 NkNlRnRFTlNJYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wxQwDQYJKoZIhvcNAQELBQADggEBACzFVbmEy8I/rUxUR3zx9mrH2geK1FSdmswu ibBAzvutdIDRqPQ9thyq0krsdm8aDmMXrEhZ0kTy4VdSMicoTFzxUcPmONfBxtzk Be9LY1JFsLNGRpVviZVbwcJgSuMWHHv+R0T/qtve8luhm8gg0/8zP9Brdcqs+bIV u45T131IYkqJd5ldGS2uPy3R1LxiDb8VFQ/RSyM3poQ5HNfW9Y4rBc0pWI7yIkqg diTpBN6AEkPqcQpX4mqc1RB5ZIm7MiU81h3IKgLg/caNGAtCfNeHwPvkxNPVrAbl zLZAGbO0N+7RhJNXyjGmtdMUj/Zofw2EX/B69gq5bWgzXfTAw9o= -----END CERTIFICATE-----Generated at Sun Aug 24 07:24:09 2025 by rpki-client