$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Epbdv1zdoIJKef4-KFOEFTps19g.roa File: Epbdv1zdoIJKef4-KFOEFTps19g.roa (raw, json) Hash identifier: vkC78VLPLPbAILxkZBntgj7zqlIaHA65dLqt+dauCE0= Subject key identifier: 12:96:DD:BF:5C:DD:A0:82:4A:79:FE:3E:28:53:84:15:3A:6C:D7:D8 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3A67 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Epbdv1zdoIJKef4-KFOEFTps19g.roa Signing time: Fri 22 Aug 2025 08:47:19 +0000 ROA not before: Fri 22 Aug 2025 08:47:19 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.195.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14951 (0x3a67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:19 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1296DDBF5CDDA0824A79FE3E285384153A6CD7D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:82:d0:9e:97:96:82:53:b2:32:e3:78:d5:69: 19:60:74:ff:35:72:a6:e1:df:9f:c6:32:88:59:75: 12:01:87:0f:9e:94:92:21:4c:b4:65:de:12:68:3a: 00:29:a7:2b:02:a8:82:95:ae:44:83:fc:53:91:39: 91:a0:80:65:b5:e9:51:f8:8b:ab:3c:43:9e:e1:3f: d7:70:29:ae:50:d3:b8:90:7e:02:cb:27:b2:00:cf: 5d:a7:47:7a:41:ea:43:85:8d:8e:fb:4f:de:1a:6a: f9:a8:37:78:22:fb:03:08:40:66:ef:65:c1:1f:bf: ce:de:58:cc:f8:b3:b7:5f:01:e9:58:71:82:aa:bf: 16:2f:97:cb:80:44:eb:29:59:7c:bc:22:85:9b:eb: 46:de:5f:ac:26:d0:2b:91:b5:35:e3:9d:55:d3:95: dd:6c:ed:be:7d:95:b2:43:45:4c:1d:31:41:ae:11: cd:ea:28:5e:13:71:1a:91:f9:7f:5e:d8:fc:1d:3b: 5d:19:43:2a:18:5a:24:fa:25:15:d5:8c:72:3b:7b: 9f:fd:c8:da:3f:e6:5f:a4:5b:52:c6:0a:77:e4:3c: e8:1a:e9:87:4c:d3:98:4f:a4:3e:85:5b:e6:84:90: 7d:03:bb:e3:32:01:76:20:25:f7:7a:74:9b:b7:67: 0d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:96:DD:BF:5C:DD:A0:82:4A:79:FE:3E:28:53:84:15:3A:6C:D7:D8 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Epbdv1zdoIJKef4-KFOEFTps19g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.0.0/21 Signature Algorithm: sha256WithRSAEncryption 24:db:8e:74:b3:a1:4a:0f:b4:f0:38:e0:8f:e2:05:67:3f:e3: 84:e7:8b:57:f8:df:44:b0:c3:29:2a:69:3d:12:dd:16:1f:f9: fa:0e:99:1d:ee:20:0f:8b:17:b7:8c:d3:23:60:38:2c:56:9d: 7d:dc:a5:b0:10:9a:b1:eb:99:e3:8a:c6:77:7c:c2:98:0c:ad: 4a:c8:06:72:a3:70:02:4d:80:34:5e:fe:22:c4:55:1e:1d:8e: 44:0e:6b:54:b2:d9:02:df:3a:37:68:d1:08:33:7c:a7:13:55: e5:d0:95:78:88:72:8b:d6:80:ff:90:40:a4:4f:25:71:ea:bb: 9d:2a:b5:c7:a4:20:07:1e:0a:21:4b:55:b6:f5:58:50:de:ee: c9:4d:01:44:79:5c:67:bc:19:e5:64:16:a1:1c:b1:8e:02:45: 76:f2:88:a3:6d:1c:57:b2:c3:ab:45:03:fd:2a:d9:db:d0:21: 21:58:b6:54:4c:9e:f6:43:98:8b:83:2b:a1:5c:f0:09:78:91: 40:37:0d:15:b3:5c:16:2a:fb:74:00:3a:71:b0:87:11:1e:9b: 13:47:91:d4:04:a4:a3:2c:ba:1e:17:db:e1:67:ce:c2:0e:26: 99:be:86:d1:4e:86:71:29:d9:56:35:64:0f:74:9e:3e:47:b4: 6f:81:5a:ae -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOmcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3MTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDEyOTZEREJGNUNEREEw ODI0QTc5RkUzRTI4NTM4NDE1M0E2Q0Q3RDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDygtCel5aCU7Iy43jVaRlgdP81cqbh35/GMohZdRIBhw+elJIh TLRl3hJoOgAppysCqIKVrkSD/FOROZGggGW16VH4i6s8Q57hP9dwKa5Q07iQfgLL J7IAz12nR3pB6kOFjY77T94aavmoN3gi+wMIQGbvZcEfv87eWMz4s7dfAelYcYKq vxYvl8uAROspWXy8IoWb60beX6wm0CuRtTXjnVXTld1s7b59lbJDRUwdMUGuEc3q KF4TcRqR+X9e2PwdO10ZQyoYWiT6JRXVjHI7e5/9yNo/5l+kW1LGCnfkPOga6YdM 05hPpD6FW+aEkH0Du+MyAXYgJfd6dJu3Zw2ZAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUEpbdv1zdoIJKef4+KFOEFTps19gwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0VwYmR2MXpkb0lKS2VmNC1L Rk9FRlRwczE5Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wwAwDQYJKoZIhvcNAQELBQADggEBACTbjnSzoUoPtPA44I/iBWc/44Tni1f430Sw wykqaT0S3RYf+foOmR3uIA+LF7eM0yNgOCxWnX3cpbAQmrHrmeOKxnd8wpgMrUrI BnKjcAJNgDRe/iLEVR4djkQOa1Sy2QLfOjdo0QgzfKcTVeXQlXiIcovWgP+QQKRP JXHqu50qtcekIAceCiFLVbb1WFDe7slNAUR5XGe8GeVkFqEcsY4CRXbyiKNtHFey w6tFA/0q2dvQISFYtlRMnvZDmIuDK6Fc8Al4kUA3DRWzXBYq+3QAOnGwhxEemxNH kdQEpKMsuh4X2+FnzsIOJpm+htFOhnEp2VY1ZA90nj5HtG+BWq4= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:26 2025 by rpki-client