$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BZ6ZwK2ASgVAHxuNNdLXgf4PA0w.roa File: BZ6ZwK2ASgVAHxuNNdLXgf4PA0w.roa (raw, json) Hash identifier: IZUETOC6hKo3VTVVjXlMWHxInFPUjaDjJex8M3eqREI= Subject key identifier: 05:9E:99:C0:AD:80:4A:05:40:1F:1B:8D:35:D2:D7:81:FE:0F:03:4C Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 39D9 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BZ6ZwK2ASgVAHxuNNdLXgf4PA0w.roa Signing time: Fri 22 Aug 2025 08:46:44 +0000 ROA not before: Fri 22 Aug 2025 08:46:44 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 123.195.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14809 (0x39d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:44 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=059E99C0AD804A05401F1B8D35D2D781FE0F034C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fd:ca:f1:2b:c7:98:de:ca:0e:7f:5a:48:88: 5c:7b:c1:c6:27:d1:f2:31:f3:17:48:9a:c3:c8:f0: b2:76:aa:b9:13:cc:bf:40:7d:67:92:45:e6:3e:4e: b1:7e:e5:8f:9d:1d:c5:1e:50:dd:f9:b8:c5:07:33: 36:3d:2b:89:1c:40:d0:b8:20:6f:e4:68:02:c3:d7: 87:93:98:59:bd:c3:e9:44:d4:6c:76:2f:44:af:42: 6c:fc:f6:80:06:2a:a4:ce:25:a4:c7:8c:f3:84:34: fe:2a:2f:ae:7f:a7:37:67:9c:db:12:d2:07:7f:c1: b6:48:c0:ae:1d:0e:41:43:24:a8:d6:e2:58:40:fe: 03:95:29:57:e7:93:c5:76:c4:46:09:27:00:00:dd: 4f:32:7a:15:6c:0e:0d:c4:70:f1:b0:78:92:33:0b: ef:48:b6:7e:20:49:95:40:55:b2:7e:5f:bb:0f:4c: 4e:18:60:af:0a:bd:2e:3c:2a:d8:15:62:9f:b7:bd: 6d:38:ae:66:04:7d:1a:52:59:d4:b6:2e:1f:f4:b6: c4:69:a0:c2:a6:42:d4:af:ef:81:04:c8:8e:bb:94: 3d:97:42:85:f8:df:a8:da:b9:de:34:b6:7c:54:87: c9:ef:6a:3c:13:fa:07:7c:b7:26:4e:20:ea:a3:90: e5:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:9E:99:C0:AD:80:4A:05:40:1F:1B:8D:35:D2:D7:81:FE:0F:03:4C X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BZ6ZwK2ASgVAHxuNNdLXgf4PA0w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.160.0/19 Signature Algorithm: sha256WithRSAEncryption 5c:ef:c6:19:13:1d:a9:24:ef:b2:a1:5b:b6:55:97:7e:4c:e7: b2:bb:a6:e8:62:06:16:c1:ab:c2:c0:dc:5c:a3:6f:97:ec:71: 07:d3:ad:44:61:65:ba:81:54:4f:72:14:ed:15:c6:9e:98:be: 3f:11:81:9e:73:e7:88:f4:7a:0e:7a:18:8e:cd:6b:33:e9:90: f8:fa:4e:89:f2:b7:8c:8f:b0:60:68:60:55:0c:a7:88:91:db: 75:85:86:be:14:32:8b:73:40:45:7f:85:b5:09:68:d9:d2:6a: dc:ba:c9:81:f4:99:00:83:69:be:45:a9:16:68:27:11:e9:60: 37:66:c0:b7:bb:1c:a0:ab:7c:33:df:56:dc:d6:db:bf:be:01: 59:65:b2:c3:b5:d0:43:ea:ed:0e:a3:d8:4b:46:2f:03:c7:40: a8:7f:c4:4c:e8:d1:5c:bf:eb:6e:1e:57:d9:38:02:fb:8c:cf: 85:40:96:98:e8:bd:5a:eb:38:e0:3d:0e:83:97:d9:93:b9:32: 4f:af:f5:fe:a5:4d:52:0f:f2:1d:bd:d2:91:1c:39:01:ee:e7: 96:d6:5b:a0:7d:22:8d:f4:97:89:d1:32:60:64:28:eb:69:0e: 57:5c:31:b8:90:85:cb:32:bd:bb:1e:68:d1:5f:ff:a9:ac:d3: 4a:7b:4c:9a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOdkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2NDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDA1OUU5OUMwQUQ4MDRB MDU0MDFGMUI4RDM1RDJENzgxRkUwRjAzNEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDO/crxK8eY3soOf1pIiFx7wcYn0fIx8xdImsPI8LJ2qrkTzL9A fWeSReY+TrF+5Y+dHcUeUN35uMUHMzY9K4kcQNC4IG/kaALD14eTmFm9w+lE1Gx2 L0SvQmz89oAGKqTOJaTHjPOENP4qL65/pzdnnNsS0gd/wbZIwK4dDkFDJKjW4lhA /gOVKVfnk8V2xEYJJwAA3U8yehVsDg3EcPGweJIzC+9Itn4gSZVAVbJ+X7sPTE4Y YK8KvS48KtgVYp+3vW04rmYEfRpSWdS2Lh/0tsRpoMKmQtSv74EEyI67lD2XQoX4 36jaud40tnxUh8nvajwT+gd8tyZOIOqjkOX9AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUBZ6ZwK2ASgVAHxuNNdLXgf4PA0wwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0JaNlp3SzJBU2dWQUh4dU5O ZExYZ2Y0UEEwdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV7 w6AwDQYJKoZIhvcNAQELBQADggEBAFzvxhkTHakk77KhW7ZVl35M57K7puhiBhbB q8LA3Fyjb5fscQfTrURhZbqBVE9yFO0Vxp6Yvj8RgZ5z54j0eg56GI7NazPpkPj6 Tonyt4yPsGBoYFUMp4iR23WFhr4UMotzQEV/hbUJaNnSaty6yYH0mQCDab5FqRZo JxHpYDdmwLe7HKCrfDPfVtzW27++AVllssO10EPq7Q6j2EtGLwPHQKh/xEzo0Vy/ 624eV9k4AvuMz4VAlpjovVrrOOA9DoOX2ZO5Mk+v9f6lTVIP8h290pEcOQHu55bW W6B9Io30l4nRMmBkKOtpDldcMbiQhcsyvbseaNFf/6ms00p7TJo= -----END CERTIFICATE-----Generated at Sun Aug 24 07:29:36 2025 by rpki-client