$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Dq2LLBbYIPLjMgJkbbNmeVQBpWQ.roa File: Dq2LLBbYIPLjMgJkbbNmeVQBpWQ.roa (raw, json) Hash identifier: XAyrmtGuC6jqqjP/8xJIfeXZG2VRr6fUMy2oIXaaOCM= Subject key identifier: 0E:AD:8B:2C:16:D8:20:F2:E3:32:02:64:6D:B3:66:79:54:01:A5:64 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3921 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Dq2LLBbYIPLjMgJkbbNmeVQBpWQ.roa Signing time: Fri 22 Aug 2025 08:45:59 +0000 ROA not before: Fri 22 Aug 2025 08:45:59 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.193.88.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14625 (0x3921) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:59 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0EAD8B2C16D820F2E33202646DB366795401A564 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:0c:bd:10:c7:b6:b8:3b:4a:d0:0e:b9:31:06: fc:c3:51:fc:c1:f7:b6:f6:d3:40:87:c4:47:ec:23: 82:77:51:65:f8:f7:b1:53:7f:28:f6:be:69:21:30: 4b:78:32:00:d9:8e:8f:0c:35:0b:90:dd:a9:fa:41: 98:44:9b:a1:7e:a0:3a:d9:20:cb:0b:8a:44:59:e8: 26:44:77:12:05:b7:9c:b1:f7:2c:88:dd:f6:cc:bd: 93:d9:78:0d:dc:98:51:e1:2e:a7:b2:fe:61:9c:3e: 15:20:51:eb:b8:8f:2f:58:0a:bf:56:47:74:c7:e7: df:eb:5b:8e:3d:e0:2d:41:d0:f1:26:c3:b9:59:e4: e3:1c:de:0e:5d:dd:c4:d1:d2:88:3f:51:5c:f8:ba: d4:8a:a5:0e:5d:8f:77:66:c4:1d:5b:34:c6:19:0f: 9e:84:63:24:6d:c4:a7:78:eb:1f:2b:4f:4c:df:0b: 46:6f:80:77:7c:16:88:b6:0f:46:dd:39:d3:ce:40: 0c:60:62:a4:ae:a6:17:ee:84:3b:cd:0c:5e:58:b1: a5:0d:60:af:6a:74:13:a6:55:fc:b3:7b:8a:9b:09: da:00:69:4a:6f:4d:7e:ad:6f:5f:f0:08:59:ea:94: 2f:92:81:0d:d9:27:01:b8:6a:77:63:be:b2:fa:e1: a9:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:AD:8B:2C:16:D8:20:F2:E3:32:02:64:6D:B3:66:79:54:01:A5:64 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Dq2LLBbYIPLjMgJkbbNmeVQBpWQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.88.0/21 Signature Algorithm: sha256WithRSAEncryption 00:a0:4a:d1:3b:e8:1e:aa:5a:26:b8:36:98:b7:ff:37:2b:69: 2b:e7:73:49:64:2d:7c:3f:58:92:0b:85:f7:2a:1c:e9:7e:b8: 66:9f:57:2e:95:3c:76:5a:a6:5b:37:cd:59:1f:c1:2c:69:f1: 95:31:05:4c:b4:ae:52:da:38:32:ae:be:69:59:1b:76:16:78: 60:9f:37:35:6a:e3:a0:bf:3b:bd:b2:08:b5:ca:11:d3:35:42: ec:0f:e2:27:c6:93:fe:7b:b0:49:be:66:8d:86:77:36:18:cd: 22:ac:d0:09:6e:1a:c3:0e:60:57:10:db:27:ef:2b:e7:da:3f: eb:2b:2c:e6:1a:b3:50:fc:6f:3e:c6:d4:c9:3d:aa:f4:8a:c9: 4a:76:a4:c3:67:ce:85:41:40:22:0b:74:12:a6:35:f9:58:74: e2:b2:5b:3f:f0:32:d3:02:7e:80:aa:c1:9e:84:78:94:99:f1: fb:90:89:b3:af:d3:05:e0:ab:e9:50:fb:cb:03:ab:ff:a7:42: 03:a8:ce:86:c3:75:1d:f9:3a:eb:02:4c:76:20:55:71:92:66: 42:da:72:74:d9:9d:08:35:f5:60:a7:8b:59:fd:5b:1b:b7:5a: 1a:e8:26:62:b0:35:11:59:58:bf:43:06:98:f3:a1:47:67:ef: 13:62:cb:f4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOSEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1NTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDBFQUQ4QjJDMTZEODIw RjJFMzMyMDI2NDZEQjM2Njc5NTQwMUE1NjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJDL0Qx7a4O0rQDrkxBvzDUfzB97b200CHxEfsI4J3UWX497FT fyj2vmkhMEt4MgDZjo8MNQuQ3an6QZhEm6F+oDrZIMsLikRZ6CZEdxIFt5yx9yyI 3fbMvZPZeA3cmFHhLqey/mGcPhUgUeu4jy9YCr9WR3TH59/rW4494C1B0PEmw7lZ 5OMc3g5d3cTR0og/UVz4utSKpQ5dj3dmxB1bNMYZD56EYyRtxKd46x8rT0zfC0Zv gHd8Foi2D0bdOdPOQAxgYqSuphfuhDvNDF5YsaUNYK9qdBOmVfyze4qbCdoAaUpv TX6tb1/wCFnqlC+SgQ3ZJwG4andjvrL64aklAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUDq2LLBbYIPLjMgJkbbNmeVQBpWQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0RxMkxMQmJZSVBMak1nSmti Yk5tZVZRQnBXUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wVgwDQYJKoZIhvcNAQELBQADggEBAACgStE76B6qWia4Npi3/zcraSvnc0lkLXw/ WJILhfcqHOl+uGafVy6VPHZapls3zVkfwSxp8ZUxBUy0rlLaODKuvmlZG3YWeGCf NzVq46C/O72yCLXKEdM1QuwP4ifGk/57sEm+Zo2GdzYYzSKs0AluGsMOYFcQ2yfv K+faP+srLOYas1D8bz7G1Mk9qvSKyUp2pMNnzoVBQCILdBKmNflYdOKyWz/wMtMC foCqwZ6EeJSZ8fuQibOv0wXgq+lQ+8sDq/+nQgOozobDdR35OusCTHYgVXGSZkLa cnTZnQg19WCni1n9Wxu3WhroJmKwNRFZWL9DBpjzoUdn7xNiy/Q= -----END CERTIFICATE-----Generated at Sun Aug 24 07:24:11 2025 by rpki-client