$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Eh3avkwBSqDlsEmHfkaSOFb82C4.roa File: Eh3avkwBSqDlsEmHfkaSOFb82C4.roa (raw, json) Hash identifier: qsVngwexv8J4ZKXJ3+1E6T666nNRxcTvU3+jh3CrsCM= Subject key identifier: 12:1D:DA:BE:4C:01:4A:A0:E5:B0:49:87:7E:46:92:38:56:FC:D8:2E Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3810 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Eh3avkwBSqDlsEmHfkaSOFb82C4.roa Signing time: Fri 22 Aug 2025 08:44:55 +0000 ROA not before: Fri 22 Aug 2025 08:44:55 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.194.32.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14352 (0x3810) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:44:55 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=121DDABE4C014AA0E5B049877E46923856FCD82E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7e:68:a5:71:8c:dc:dd:78:49:01:7c:86:dd: 5a:eb:e1:fb:94:c2:8f:bc:a1:71:7f:e8:7d:8a:a9: c9:2c:83:66:81:36:99:d2:b9:4a:86:e0:0b:cf:09: 72:b0:16:f2:e0:8f:5d:fd:6b:16:58:c5:36:31:34: 61:22:7a:82:36:ab:dd:cb:e5:98:51:bd:a8:27:20: 1a:e1:94:0e:b1:42:f6:2c:70:67:98:c8:f6:e9:f3: 0f:c9:c3:03:1e:00:f5:3f:61:16:8d:b9:15:3c:43: fc:4c:c4:53:18:41:5d:df:5e:9f:45:81:90:fd:77: 8d:03:e6:9a:ac:e5:e2:23:8d:9a:26:a3:fb:1d:f2: 73:af:5d:20:b4:31:b5:b2:82:31:37:4d:f9:67:db: 52:ae:06:50:1e:e5:9b:58:ef:58:26:5e:9b:19:59: 39:c8:f1:fb:ce:98:91:2c:69:97:36:93:7c:32:62: 1b:2c:32:b9:f8:0f:19:b4:6b:b6:4b:ec:64:e0:bc: d0:1f:82:db:bb:fd:7c:9b:d5:6a:32:e8:a2:14:b3: 78:05:bd:39:3e:de:0d:8b:bd:5b:05:c2:01:82:75: 14:6d:0e:f6:92:97:0f:fa:cc:9e:79:e5:3c:50:a3: 65:94:06:51:9b:53:17:57:c3:d2:5e:ce:c5:8e:47: 4a:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:1D:DA:BE:4C:01:4A:A0:E5:B0:49:87:7E:46:92:38:56:FC:D8:2E X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Eh3avkwBSqDlsEmHfkaSOFb82C4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.32.0/21 Signature Algorithm: sha256WithRSAEncryption 70:5f:7a:de:ba:c6:a9:84:98:d7:f4:c9:6a:b1:27:df:b1:29: 3c:ae:ed:58:b7:84:26:7f:5e:51:41:1c:84:2f:95:1f:38:b1: 77:0e:76:b4:1b:78:5e:40:4f:a4:0a:fc:d9:d2:05:b7:f8:f3: e3:df:5c:61:0b:21:87:8d:16:86:bd:e6:96:bf:db:12:91:d4: e5:28:ce:1e:f4:3f:96:9b:a4:7e:73:7a:1f:10:01:dd:1b:7c: 5b:8f:e0:5c:c6:12:86:56:90:6e:1c:f5:d2:bd:c7:9e:34:30: 68:01:74:b0:eb:b4:a1:b2:e1:00:09:5c:64:08:18:ea:0c:c9: 4e:5b:3d:94:f2:bd:e9:f3:99:e7:e0:89:dc:06:eb:8e:1d:44: c2:32:1b:80:da:bb:57:3d:0b:27:93:6e:6a:a1:a3:c3:cb:04: fb:b3:7d:37:d2:65:7d:ef:14:01:26:a8:12:9b:0d:6a:ee:8c: d0:44:af:77:0d:a6:a1:cb:fc:77:1b:63:be:30:b0:2b:5c:2a: f5:7e:79:12:5e:78:0a:40:5f:d2:1e:9c:ef:fa:fe:cf:06:98: 81:00:b2:14:d0:3e:99:6d:5d:8c:f6:23:1b:8f:9f:17:a1:80: a4:2f:1c:80:76:53:09:37:40:73:5e:d5:68:ac:4b:ed:f6:2e: 13:54:d6:69 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOBAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ0NTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDEyMUREQUJFNEMwMTRB QTBFNUIwNDk4NzdFNDY5MjM4NTZGQ0Q4MkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEfmilcYzc3XhJAXyG3Vrr4fuUwo+8oXF/6H2Kqcksg2aBNpnS uUqG4AvPCXKwFvLgj139axZYxTYxNGEieoI2q93L5ZhRvagnIBrhlA6xQvYscGeY yPbp8w/JwwMeAPU/YRaNuRU8Q/xMxFMYQV3fXp9FgZD9d40D5pqs5eIjjZomo/sd 8nOvXSC0MbWygjE3Tfln21KuBlAe5ZtY71gmXpsZWTnI8fvOmJEsaZc2k3wyYhss Mrn4Dxm0a7ZL7GTgvNAfgtu7/Xyb1Woy6KIUs3gFvTk+3g2LvVsFwgGCdRRtDvaS lw/6zJ555TxQo2WUBlGbUxdXw9JezsWOR0prAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUEh3avkwBSqDlsEmHfkaSOFb82C4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0VoM2F2a3dCU3FEbHNFbUhm a2FTT0ZiODJDNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wiAwDQYJKoZIhvcNAQELBQADggEBAHBfet66xqmEmNf0yWqxJ9+xKTyu7Vi3hCZ/ XlFBHIQvlR84sXcOdrQbeF5AT6QK/NnSBbf48+PfXGELIYeNFoa95pa/2xKR1OUo zh70P5abpH5zeh8QAd0bfFuP4FzGEoZWkG4c9dK9x540MGgBdLDrtKGy4QAJXGQI GOoMyU5bPZTyvenzmefgidwG644dRMIyG4Dau1c9CyeTbmqho8PLBPuzfTfSZX3v FAEmqBKbDWrujNBEr3cNpqHL/HcbY74wsCtcKvV+eRJeeApAX9IenO/6/s8GmIEA shTQPpltXYz2IxuPnxehgKQvHIB2Uwk3QHNe1WisS+32LhNU1mk= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:26 2025 by rpki-client