$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FkzCvtL3yWLDX9Mta0kNvsUYPHQ.roa File: FkzCvtL3yWLDX9Mta0kNvsUYPHQ.roa (raw, json) Hash identifier: yUAiOcY1a/HKb3wgaYv8m614LpWLiTwZhMfM7qAzR94= Subject key identifier: 16:4C:C2:BE:D2:F7:C9:62:C3:5F:D3:2D:6B:49:0D:BE:C5:18:3C:74 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3943 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FkzCvtL3yWLDX9Mta0kNvsUYPHQ.roa Signing time: Fri 22 Aug 2025 08:46:07 +0000 ROA not before: Fri 22 Aug 2025 08:46:07 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 180.177.120.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14659 (0x3943) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:07 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=164CC2BED2F7C962C35FD32D6B490DBEC5183C74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b8:ba:7d:9d:bc:5c:4d:b1:21:9e:a2:eb:ec: 2d:fd:a8:38:d0:9b:6e:94:84:cf:07:9d:34:4b:cf: 8e:0c:8f:ad:9f:9b:1e:70:f2:0f:36:97:63:f0:d2: d7:a1:04:97:0f:27:2b:9c:58:3a:c7:e4:c9:7d:44: 3f:51:96:9c:bd:01:c8:d8:46:fb:fa:06:49:6d:2b: a3:00:d7:70:1a:8e:53:54:84:55:46:9e:19:6e:1d: f3:ee:f5:34:e9:50:2d:72:77:97:f2:e5:50:47:d8: 89:7a:b4:05:38:8a:b4:4b:85:a4:e9:12:74:11:ae: 3f:46:e6:02:8f:5a:8a:d0:2b:9d:75:d7:07:0b:69: 67:6e:6f:cc:63:45:c1:ab:72:ec:5d:24:2d:2c:62: db:27:0f:1f:ae:d0:01:fa:b8:0c:0a:fe:9f:0f:88: e4:b3:c7:62:80:e7:43:3f:81:8f:ee:64:3b:99:7f: a2:42:99:a6:ea:01:3c:75:30:95:cc:d7:d3:0b:99: f8:96:e2:24:f3:19:6b:ff:6e:ec:6b:3c:09:f1:3c: ff:7e:8c:a8:ca:d1:23:7e:7f:4d:81:11:0f:da:e0: bd:ba:d4:95:a0:b9:3b:dd:86:5e:55:a4:32:ed:72: 2b:d7:00:8b:94:4b:67:70:05:87:7d:f9:50:69:ba: 71:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:4C:C2:BE:D2:F7:C9:62:C3:5F:D3:2D:6B:49:0D:BE:C5:18:3C:74 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FkzCvtL3yWLDX9Mta0kNvsUYPHQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.177.120.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:37:6a:91:3d:37:75:9e:e1:1e:39:82:b6:e3:03:51:20:c9: fd:80:73:97:6c:73:c8:d8:1a:10:46:b1:fe:c9:58:31:35:c4: e6:73:02:72:75:0e:f5:f2:b3:17:b5:04:3f:b8:d6:55:3e:26: 7e:6c:10:68:76:57:40:f8:f4:ce:61:89:e3:a1:cc:43:82:b3: 9a:12:a2:c9:f5:04:ea:99:b6:f1:66:a5:23:08:fb:b1:ac:b9: 42:7f:45:d1:db:6f:fc:40:0d:06:ee:a3:f7:40:54:68:89:5e: 43:40:db:93:62:20:91:68:ce:ed:d5:13:67:77:f7:c1:46:db: 1e:3a:d5:ee:5a:21:c4:d6:42:13:47:ae:01:6a:9e:47:90:98: 49:7d:0e:5f:e2:ff:17:d5:77:e6:86:c3:6b:dd:b2:64:35:0e: 97:4a:f3:e8:5e:52:48:80:a7:db:55:53:33:59:f6:b5:6a:99: 62:4b:e8:b9:da:07:0a:05:77:59:19:3a:b9:c1:91:03:5f:bc: 4e:bc:e4:11:7b:5d:a7:4d:ec:24:da:e1:46:ec:ca:4b:df:d1: d6:c6:c7:0c:61:9b:34:24:04:a4:80:de:e0:76:87:6d:0d:3d: 51:d4:df:72:47:82:bd:9b:18:5d:5f:d7:17:6e:16:bd:ab:56: 2f:5c:f9:37 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOUMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE2NENDMkJFRDJGN0M5 NjJDMzVGRDMyRDZCNDkwREJFQzUxODNDNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwuLp9nbxcTbEhnqLr7C39qDjQm26UhM8HnTRLz44Mj62fmx5w 8g82l2Pw0tehBJcPJyucWDrH5Ml9RD9Rlpy9AcjYRvv6BkltK6MA13AajlNUhFVG nhluHfPu9TTpUC1yd5fy5VBH2Il6tAU4irRLhaTpEnQRrj9G5gKPWorQK5111wcL aWdub8xjRcGrcuxdJC0sYtsnDx+u0AH6uAwK/p8PiOSzx2KA50M/gY/uZDuZf6JC mabqATx1MJXM19MLmfiW4iTzGWv/buxrPAnxPP9+jKjK0SN+f02BEQ/a4L261JWg uTvdhl5VpDLtcivXAIuUS2dwBYd9+VBpunFdAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUFkzCvtL3yWLDX9Mta0kNvsUYPHQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0ZrekN2dEwzeVdMRFg5TXRh MGtOdnNVWVBIUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAG0 sXgwDQYJKoZIhvcNAQELBQADggEBAIw3apE9N3We4R45grbjA1Egyf2Ac5dsc8jY GhBGsf7JWDE1xOZzAnJ1DvXysxe1BD+41lU+Jn5sEGh2V0D49M5hieOhzEOCs5oS osn1BOqZtvFmpSMI+7GsuUJ/RdHbb/xADQbuo/dAVGiJXkNA25NiIJFozu3VE2d3 98FG2x461e5aIcTWQhNHrgFqnkeQmEl9Dl/i/xfVd+aGw2vdsmQ1DpdK8+heUkiA p9tVUzNZ9rVqmWJL6LnaBwoFd1kZOrnBkQNfvE685BF7XadN7CTa4Ubsykvf0dbG xwxhmzQkBKSA3uB2h20NPVHU33JHgr2bGF1f1xduFr2rVi9c+Tc= -----END CERTIFICATE-----Generated at Sun Aug 24 07:28:24 2025 by rpki-client