$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BYmdMVE_VHtXBiVUa3zm7k8skVA.roa File: BYmdMVE_VHtXBiVUa3zm7k8skVA.roa (raw, json) Hash identifier: Wi33ppW2fsyNIfar4mv5IVDodyzNtNBQm3uJUvochTo= Subject key identifier: 05:89:9D:31:51:3F:54:7B:57:06:25:54:6B:7C:E6:EE:4F:2C:91:50 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3A4E Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BYmdMVE_VHtXBiVUa3zm7k8skVA.roa Signing time: Fri 22 Aug 2025 08:47:12 +0000 ROA not before: Fri 22 Aug 2025 08:47:12 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.195.164.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14926 (0x3a4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:12 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=05899D31513F547B570625546B7CE6EE4F2C9150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:85:82:a7:00:8a:48:aa:bc:09:b8:3e:dd:1b: 02:60:d2:22:21:21:b2:07:8d:30:d9:27:63:45:ec: 31:88:36:a2:d5:b8:4c:fd:5c:35:14:8a:45:e4:f8: 8e:4e:ba:b4:55:e2:3d:83:1f:07:e6:c2:83:e9:fa: 7a:52:07:6b:50:b3:7c:49:58:31:89:ef:0d:86:28: 37:9f:75:ba:c0:97:42:1f:87:5f:08:67:bf:c3:d6: b2:5c:61:4f:c3:fb:a8:8a:52:c2:0b:99:d0:03:58: 3e:2a:70:34:6d:11:eb:20:a2:e7:79:5c:d1:29:08: f9:fe:87:71:09:e1:29:44:98:4b:6d:5f:38:60:b2: 61:b7:aa:b9:e3:60:a6:57:20:04:95:72:ad:65:ef: d3:4d:09:f6:d3:af:21:ee:8e:69:e3:59:a7:f8:75: 60:6a:6f:75:b9:94:62:7d:2f:bf:f3:d2:1f:3a:05: 49:97:79:27:08:f6:bc:aa:82:15:fa:51:b5:e7:99: ce:94:01:c2:aa:ca:3c:84:83:97:6d:3f:04:e2:dc: 01:ae:04:9a:90:da:38:63:56:bf:59:b6:ff:58:17: 9f:3c:5e:de:12:f5:ba:fe:81:93:7e:74:c9:1f:b8: 16:ab:9d:0c:03:e5:a3:f9:2e:33:b9:97:35:de:2f: 2d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:89:9D:31:51:3F:54:7B:57:06:25:54:6B:7C:E6:EE:4F:2C:91:50 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BYmdMVE_VHtXBiVUa3zm7k8skVA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.164.0/22 Signature Algorithm: sha256WithRSAEncryption 57:9f:fe:29:d7:3f:51:68:34:2d:49:65:d1:48:d9:88:01:e7: 45:a1:64:07:f2:cf:a5:d7:c3:67:9d:c9:af:bf:9c:17:69:8a: 30:1d:40:be:0a:2d:fe:d6:64:8e:46:ec:73:a0:c2:1e:93:73: 02:ef:8b:2a:5f:bb:fc:6c:73:91:f4:24:ba:39:eb:31:ab:09: c2:73:19:9b:89:55:f5:0d:7c:f5:af:62:3f:68:7a:61:1b:2b: 09:92:77:31:c9:3a:ed:35:1c:c0:57:bc:32:9a:74:e0:01:ad: 1d:b8:07:e5:03:e3:b8:6d:e8:fe:e7:01:fd:b0:fc:9e:eb:93: 33:74:d1:c7:ee:33:09:ba:8f:26:f1:b0:24:8d:6b:9e:82:53: 3a:ff:6d:52:d2:3b:74:23:44:5b:ef:e7:6d:56:77:22:dd:89: e8:57:cf:49:a7:0f:2c:be:61:a9:a3:49:a4:e7:f5:f0:b4:e6: c0:07:72:43:0c:bc:a3:72:d1:4e:35:f9:96:03:5d:87:57:9a: a6:3c:00:5f:5b:ac:9a:0e:c2:80:46:79:72:1d:22:30:1a:e8: 8d:57:6d:20:d6:ab:df:34:d6:00:e4:19:2a:4b:de:1d:35:55: 92:0a:3b:e7:82:de:c7:b0:7d:dd:0b:07:c8:fd:45:37:cf:11: 6f:0d:02:8e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOk4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3MTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDA1ODk5RDMxNTEzRjU0 N0I1NzA2MjU1NDZCN0NFNkVFNEYyQzkxNTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCohYKnAIpIqrwJuD7dGwJg0iIhIbIHjTDZJ2NF7DGINqLVuEz9 XDUUikXk+I5OurRV4j2DHwfmwoPp+npSB2tQs3xJWDGJ7w2GKDefdbrAl0Ifh18I Z7/D1rJcYU/D+6iKUsILmdADWD4qcDRtEesgoud5XNEpCPn+h3EJ4SlEmEttXzhg smG3qrnjYKZXIASVcq1l79NNCfbTryHujmnjWaf4dWBqb3W5lGJ9L7/z0h86BUmX eScI9ryqghX6UbXnmc6UAcKqyjyEg5dtPwTi3AGuBJqQ2jhjVr9Ztv9YF588Xt4S 9br+gZN+dMkfuBarnQwD5aP5LjO5lzXeLy3PAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUBYmdMVE/VHtXBiVUa3zm7k8skVAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0JZbWRNVkVfVkh0WEJpVlVh M3ptN2s4c2tWQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 w6QwDQYJKoZIhvcNAQELBQADggEBAFef/inXP1FoNC1JZdFI2YgB50WhZAfyz6XX w2edya+/nBdpijAdQL4KLf7WZI5G7HOgwh6TcwLviypfu/xsc5H0JLo56zGrCcJz GZuJVfUNfPWvYj9oemEbKwmSdzHJOu01HMBXvDKadOABrR24B+UD47ht6P7nAf2w /J7rkzN00cfuMwm6jybxsCSNa56CUzr/bVLSO3QjRFvv521WdyLdiehXz0mnDyy+ YamjSaTn9fC05sAHckMMvKNy0U41+ZYDXYdXmqY8AF9brJoOwoBGeXIdIjAa6I1X bSDWq9801gDkGSpL3h01VZIKO+eC3sewfd0LB8j9RTfPEW8NAo4= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:35 2025 by rpki-client