$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DsCAbJUDEEYZhtQwCQjM5LhWoiU.roa File: DsCAbJUDEEYZhtQwCQjM5LhWoiU.roa (raw, json) Hash identifier: Z/HSdKZS7KYVSSVSrJubim6uyh7PRpC5fMmZOe4fsEg= Subject key identifier: 0E:C0:80:6C:95:03:10:46:19:86:D4:30:09:08:CC:E4:B8:56:A2:25 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3A9A Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DsCAbJUDEEYZhtQwCQjM5LhWoiU.roa Signing time: Fri 22 Aug 2025 08:47:33 +0000 ROA not before: Fri 22 Aug 2025 08:47:33 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 180.176.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15002 (0x3a9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:33 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0EC0806C950310461986D4300908CCE4B856A225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:21:66:1a:88:af:f7:e6:9f:8c:64:7f:6f:c3: 65:b0:09:89:ee:9d:d6:e8:92:25:20:6d:9e:ae:51: 65:40:17:5e:3f:9a:08:48:ad:ae:ff:d4:4b:b3:d9: e1:1c:ec:85:b9:39:ae:25:8f:32:7d:a7:85:28:e1: 01:1c:e0:ce:98:6f:39:41:89:b5:cd:fb:52:e1:44: ed:73:59:32:ed:95:71:e8:4b:53:eb:22:fd:84:6d: 1b:60:3a:33:32:8e:e1:9f:ce:bf:31:37:af:ca:80: fc:ae:a0:88:57:57:6e:0b:57:28:53:76:f6:8e:3f: a9:51:11:11:3e:4c:89:3a:12:04:56:68:a5:c5:6c: 71:6d:06:ae:70:e7:88:ce:c4:d6:cb:cf:6e:6e:61: 2f:26:e6:67:58:c2:49:76:f2:5c:b5:ef:45:a2:f8: f1:71:a5:08:cd:f9:59:2a:5d:a4:96:70:5d:76:b5: 9a:68:a6:cc:ab:ee:ee:58:92:43:46:d8:ca:55:bf: 8f:f2:7c:49:fa:fd:e5:d6:1c:24:2c:09:40:9c:dc: af:a2:92:7f:75:5d:6f:91:d5:4a:6b:16:1f:94:d1: e8:78:d6:3d:1c:55:34:10:ba:da:4b:36:2d:88:97: e8:80:d5:85:67:91:0d:ad:4a:50:67:2f:4d:21:f5: 3b:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:C0:80:6C:95:03:10:46:19:86:D4:30:09:08:CC:E4:B8:56:A2:25 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DsCAbJUDEEYZhtQwCQjM5LhWoiU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.176.156.0/22 Signature Algorithm: sha256WithRSAEncryption 66:18:11:59:2c:b1:fa:d6:46:5a:a5:84:d0:2f:eb:4b:00:10: fa:41:32:a4:ed:f3:98:d5:18:61:39:e0:33:ae:28:c7:60:41: bc:85:ac:08:b7:e2:1d:55:f9:9a:b3:83:93:32:aa:33:85:0c: bd:9a:2e:1b:3f:58:19:c8:72:f9:d2:52:02:bf:a7:ba:12:e2: f4:6a:f0:2c:0a:9f:46:cd:47:d1:f0:7e:c1:e3:09:40:3d:ab: d0:0e:97:f1:51:27:97:11:ba:ee:24:28:9e:f5:8b:8c:a1:6a: 45:e6:68:d2:38:e4:34:1f:f3:6b:a1:3e:bd:d5:80:40:19:e4: 7d:95:1a:65:7a:3b:27:21:35:bb:84:b6:f8:9d:ef:97:a0:1f: 3c:b4:fd:2f:1d:00:6f:5d:82:26:00:7c:34:9d:b9:e7:58:93: 3f:d2:dc:92:8c:f6:a8:28:3a:e9:46:91:59:15:9e:ae:3c:46: 9e:5c:de:a1:fc:47:9a:f4:75:8c:e3:66:55:0f:a7:26:15:52: ff:6e:fe:e9:a7:fe:32:30:82:dc:f0:cb:90:b6:29:88:3b:5a: 33:94:dd:a8:32:9a:fb:49:19:18:cb:b6:73:36:8f:01:81:09: d1:7d:97:3c:f0:95:2a:d5:22:ee:13:90:54:c1:2b:74:ef:57: f1:73:be:a3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOpowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3MzNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDBFQzA4MDZDOTUwMzEw NDYxOTg2RDQzMDA5MDhDQ0U0Qjg1NkEyMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvIWYaiK/35p+MZH9vw2WwCYnundbokiUgbZ6uUWVAF14/mghI ra7/1Euz2eEc7IW5Oa4ljzJ9p4Uo4QEc4M6YbzlBibXN+1LhRO1zWTLtlXHoS1Pr Iv2EbRtgOjMyjuGfzr8xN6/KgPyuoIhXV24LVyhTdvaOP6lRERE+TIk6EgRWaKXF bHFtBq5w54jOxNbLz25uYS8m5mdYwkl28ly170Wi+PFxpQjN+VkqXaSWcF12tZpo psyr7u5YkkNG2MpVv4/yfEn6/eXWHCQsCUCc3K+ikn91XW+R1UprFh+U0eh41j0c VTQQutpLNi2Il+iA1YVnkQ2tSlBnL00h9TtvAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUDsCAbJUDEEYZhtQwCQjM5LhWoiUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0RzQ0FiSlVERUVZWmh0UXdD UWpNNUxoV29pVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 sJwwDQYJKoZIhvcNAQELBQADggEBAGYYEVkssfrWRlqlhNAv60sAEPpBMqTt85jV GGE54DOuKMdgQbyFrAi34h1V+Zqzg5MyqjOFDL2aLhs/WBnIcvnSUgK/p7oS4vRq 8CwKn0bNR9HwfsHjCUA9q9AOl/FRJ5cRuu4kKJ71i4yhakXmaNI45DQf82uhPr3V gEAZ5H2VGmV6OychNbuEtvid75egHzy0/S8dAG9dgiYAfDSduedYkz/S3JKM9qgo OulGkVkVnq48Rp5c3qH8R5r0dYzjZlUPpyYVUv9u/umn/jIwgtzwy5C2KYg7WjOU 3agymvtJGRjLtnM2jwGBCdF9lzzwlSrVIu4TkFTBK3TvV/FzvqM= -----END CERTIFICATE-----Generated at Sun Aug 24 07:25:25 2025 by rpki-client