$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/G-x9pqIcJHTqaTCO-RTv2i03rH8.roa File: G-x9pqIcJHTqaTCO-RTv2i03rH8.roa (raw, json) Hash identifier: Ga8ERUDfchqwFqpqq3U9F6QPKla6fGsZ8yYE5CP+ZRg= Subject key identifier: 1B:EC:7D:A6:A2:1C:24:74:EA:69:30:8E:F9:14:EF:DA:2D:37:AC:7F Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 38D3 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/G-x9pqIcJHTqaTCO-RTv2i03rH8.roa Signing time: Fri 22 Aug 2025 08:45:40 +0000 ROA not before: Fri 22 Aug 2025 08:45:40 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.193.60.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14547 (0x38d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:40 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1BEC7DA6A21C2474EA69308EF914EFDA2D37AC7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ca:31:37:bf:42:7c:81:80:fb:34:1f:eb:c0: 28:a2:e6:db:03:fc:34:77:11:a6:f0:7c:d5:bd:e2: 3c:59:dc:a4:f4:cc:12:7b:34:99:3d:3a:2a:1d:d4: 1a:bc:d3:df:98:37:c8:a1:3d:26:e4:2a:f6:9c:e9: 7a:0f:7e:4a:01:ce:8d:08:db:67:ca:9c:52:8b:69: 08:37:07:58:f5:3e:f5:97:9e:31:d1:17:6e:27:93: 32:5c:46:60:ad:18:ac:a5:0a:4b:bb:57:e7:4e:50: db:21:63:59:b6:ce:a3:75:a0:a1:29:65:01:c8:7d: b3:6d:67:da:16:5f:1c:2e:8a:e3:c7:d9:eb:b6:5d: f8:d5:c2:10:80:5e:65:0b:84:37:7e:e2:ad:17:0e: 4c:8f:51:ed:c5:2a:bf:94:e3:3c:2f:ed:40:16:e8: a8:ee:88:a7:20:f5:e4:73:1c:13:5a:39:6b:ff:58: 8e:61:1f:a2:fd:c1:56:f9:b1:6a:ea:d6:ad:bb:2c: 0a:8b:a7:d3:0f:91:b2:64:05:31:2c:97:79:bf:9b: 92:30:b8:20:37:c3:bc:a8:d3:1b:81:10:a3:1a:45: a5:db:2b:54:20:30:3e:c3:b9:b6:b0:4f:77:75:45: ad:9f:c6:73:63:f5:db:bb:43:c2:5a:17:6b:30:45: cd:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:EC:7D:A6:A2:1C:24:74:EA:69:30:8E:F9:14:EF:DA:2D:37:AC:7F X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/G-x9pqIcJHTqaTCO-RTv2i03rH8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.60.0/22 Signature Algorithm: sha256WithRSAEncryption 7b:60:2f:e5:7b:70:25:e7:aa:7a:0c:c7:95:35:57:2e:ec:01: 5b:c4:68:3d:5b:b8:ca:ce:29:00:28:5a:69:5b:56:2c:8a:91: ea:cf:0a:6c:53:76:db:70:45:8a:b9:0f:46:9d:b8:82:9f:90: 74:53:9f:6d:5e:2b:f7:9a:69:d0:96:eb:65:92:9f:3a:fc:c4: e0:cc:41:1f:69:00:d5:b1:f1:43:3a:ad:78:f3:0f:76:0b:1b: 8b:48:00:00:a3:5a:8e:68:fc:1d:45:2d:9a:ae:e3:90:72:fd: 2c:36:9b:24:1b:bc:63:9e:d6:32:fe:83:94:d6:a8:e1:9e:1b: 12:37:bb:84:eb:ac:a2:9a:51:f6:fb:48:bc:de:f9:f3:f9:56: 2b:ba:94:db:63:1a:ce:11:42:31:fe:82:3d:07:de:58:f0:3d: 34:ab:cb:33:f8:0b:56:0a:6b:4f:ab:79:17:4f:8a:f6:c0:be: 71:66:f7:c0:8d:60:24:21:f9:a3:36:07:4c:53:a5:67:2e:8e: db:08:4d:ab:49:67:95:df:7d:c8:88:d2:c5:b2:81:3f:f6:5d: 45:bf:19:93:8b:a1:dc:da:81:92:cf:08:88:b6:af:df:25:33: 65:39:29:39:0f:22:f6:fd:0a:78:92:98:30:ae:89:c0:e6:1e: 7f:a1:47:c4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICONMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1NDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFCRUM3REE2QTIxQzI0 NzRFQTY5MzA4RUY5MTRFRkRBMkQzN0FDN0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVyjE3v0J8gYD7NB/rwCii5tsD/DR3EabwfNW94jxZ3KT0zBJ7 NJk9Oiod1Bq809+YN8ihPSbkKvac6XoPfkoBzo0I22fKnFKLaQg3B1j1PvWXnjHR F24nkzJcRmCtGKylCku7V+dOUNshY1m2zqN1oKEpZQHIfbNtZ9oWXxwuiuPH2eu2 XfjVwhCAXmULhDd+4q0XDkyPUe3FKr+U4zwv7UAW6KjuiKcg9eRzHBNaOWv/WI5h H6L9wVb5sWrq1q27LAqLp9MPkbJkBTEsl3m/m5IwuCA3w7yo0xuBEKMaRaXbK1Qg MD7DubawT3d1Ra2fxnNj9du7Q8JaF2swRc1tAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUG+x9pqIcJHTqaTCO+RTv2i03rH8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0cteDlwcUljSkhUcWFUQ08t UlR2MmkwM3JIOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wTwwDQYJKoZIhvcNAQELBQADggEBAHtgL+V7cCXnqnoMx5U1Vy7sAVvEaD1buMrO KQAoWmlbViyKkerPCmxTdttwRYq5D0aduIKfkHRTn21eK/eaadCW62WSnzr8xODM QR9pANWx8UM6rXjzD3YLG4tIAACjWo5o/B1FLZqu45By/Sw2myQbvGOe1jL+g5TW qOGeGxI3u4TrrKKaUfb7SLze+fP5Viu6lNtjGs4RQjH+gj0H3ljwPTSryzP4C1YK a0+reRdPivbAvnFm98CNYCQh+aM2B0xTpWcujtsITatJZ5XffciI0sWygT/2XUW/ GZOLodzagZLPCIi2r98lM2U5KTkPIvb9CniSmDCuicDmHn+hR8Q= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:58 2025 by rpki-client