$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CjWJTBy9k4qpcQ_AJSV1_v1eBNQ.roa File: CjWJTBy9k4qpcQ_AJSV1_v1eBNQ.roa (raw, json) Hash identifier: 0TM3oXbZuxENTnAmsMJiatc+zQaQ1QVzMfNLGSPYIlM= Subject key identifier: 0A:35:89:4C:1C:BD:93:8A:A9:71:0F:C0:25:25:75:FE:FD:5E:04:D4 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3982 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CjWJTBy9k4qpcQ_AJSV1_v1eBNQ.roa Signing time: Fri 22 Aug 2025 08:46:22 +0000 ROA not before: Fri 22 Aug 2025 08:46:22 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.194.204.128/25 maxlen: 25 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14722 (0x3982) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:22 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0A35894C1CBD938AA9710FC0252575FEFD5E04D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:94:6e:0e:7c:92:46:f1:4a:33:76:46:f3:ca: 97:86:74:32:a5:ca:15:5c:a6:bf:d8:71:5d:b6:ce: c9:10:5b:ec:9f:46:7f:a4:7d:7c:a0:3c:9a:47:97: 41:4e:7f:fb:80:78:7a:02:fc:da:07:2a:44:e6:45: a5:82:af:47:b0:48:e0:83:93:32:0b:6e:06:37:73: fa:9a:e2:70:1d:61:d3:d9:2c:f9:a7:f6:40:a9:60: 75:7e:eb:7a:d0:ba:c8:3b:93:1b:fd:b9:de:5e:0a: b9:9e:5e:8b:c4:dd:58:16:2f:e1:91:42:93:2d:cd: 59:cb:1e:f9:cc:9b:31:dc:c1:7f:cb:4b:50:b2:de: d4:6a:76:0e:ee:d0:93:21:18:73:19:44:cd:fe:24: 95:d5:7a:d9:97:95:f4:d8:0d:c3:9c:47:e9:34:31: 61:9d:71:08:e9:9a:92:af:d2:0b:5d:57:57:c4:f6: 9d:95:f8:68:93:be:de:ef:6d:49:dd:3c:ef:11:17: 12:93:82:2a:f8:cd:98:0a:70:9b:b4:0f:e3:e3:33: 5b:2e:c8:27:b7:6e:c8:f8:88:ac:3f:56:05:b4:b8: 56:df:75:60:44:26:13:37:f7:c8:e8:55:a2:b3:cd: 98:ad:b0:8f:30:53:0e:55:05:8f:8a:54:f1:36:0d: c7:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:35:89:4C:1C:BD:93:8A:A9:71:0F:C0:25:25:75:FE:FD:5E:04:D4 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CjWJTBy9k4qpcQ_AJSV1_v1eBNQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.204.128/25 Signature Algorithm: sha256WithRSAEncryption a6:86:ce:0a:d0:66:5e:2c:16:57:99:c6:b9:b1:93:b2:9f:93: b3:ae:7d:ec:e1:3d:29:13:68:d9:4d:3c:63:75:3d:c0:40:8d: 4f:03:b2:93:98:9b:e0:77:65:ee:2b:3b:40:67:2b:af:e2:71: fa:59:7c:ce:26:b5:99:c8:72:b3:7c:2b:18:54:f5:5d:b7:dd: 2c:6b:06:91:4c:96:bc:8e:2c:d8:56:1d:88:bf:54:9f:dd:2b: c1:5f:3f:9d:b8:87:51:f5:5e:39:0a:8e:fc:47:86:d6:9c:20: 1a:93:08:cf:76:35:af:1c:01:99:7b:04:bb:f5:a9:22:d7:01: 75:87:09:1f:62:b5:0f:09:56:c5:fa:44:5a:b3:17:47:52:ea: db:72:22:fd:2d:f4:9f:17:ae:e0:3f:c9:e9:03:f3:84:76:ac: 21:06:1f:fb:d5:b9:1b:19:2f:22:5e:2c:6c:18:f2:bf:66:ec: 0e:2a:95:01:5f:4a:df:ab:ce:12:8a:e5:5e:b2:b6:03:86:23: 97:a2:49:f5:cd:c0:78:23:71:c5:5d:e3:0d:dd:4f:33:1d:33: c1:07:69:76:51:c3:bd:43:49:e5:57:46:f4:c6:22:4c:2e:89: 0f:1f:2c:fe:f3:f8:f6:19:d0:60:d2:c4:61:a1:bc:b1:e1:ed: 8b:5a:56:ff -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICOYIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MjJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDBBMzU4OTRDMUNCRDkz OEFBOTcxMEZDMDI1MjU3NUZFRkQ1RTA0RDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAlG4OfJJG8UozdkbzypeGdDKlyhVcpr/YcV22zskQW+yfRn+k fXygPJpHl0FOf/uAeHoC/NoHKkTmRaWCr0ewSOCDkzILbgY3c/qa4nAdYdPZLPmn 9kCpYHV+63rQusg7kxv9ud5eCrmeXovE3VgWL+GRQpMtzVnLHvnMmzHcwX/LS1Cy 3tRqdg7u0JMhGHMZRM3+JJXVetmXlfTYDcOcR+k0MWGdcQjpmpKv0gtdV1fE9p2V +GiTvt7vbUndPO8RFxKTgir4zZgKcJu0D+PjM1suyCe3bsj4iKw/VgW0uFbfdWBE JhM398joVaKzzZitsI8wUw5VBY+KVPE2Dcf7AgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUCjWJTBy9k4qpcQ/AJSV1/v1eBNQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0NqV0pUQnk5azRxcGNRX0FK U1YxX3YxZUJOUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQd7 wsyAMA0GCSqGSIb3DQEBCwUAA4IBAQCmhs4K0GZeLBZXmca5sZOyn5Ozrn3s4T0p E2jZTTxjdT3AQI1PA7KTmJvgd2XuKztAZyuv4nH6WXzOJrWZyHKzfCsYVPVdt90s awaRTJa8jizYVh2Iv1Sf3SvBXz+duIdR9V45Co78R4bWnCAakwjPdjWvHAGZewS7 9aki1wF1hwkfYrUPCVbF+kRasxdHUurbciL9LfSfF67gP8npA/OEdqwhBh/71bkb GS8iXixsGPK/ZuwOKpUBX0rfq84SiuVesrYDhiOXokn1zcB4I3HFXeMN3U8zHTPB B2l2UcO9Q0nlV0b0xiJMLokPHyz+8/j2GdBg0sRhobyx4e2LWlb/ -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:53 2025 by rpki-client