$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/GV8uRF3O4Bm3ZC3GLDH8vrbypXw.roa File: GV8uRF3O4Bm3ZC3GLDH8vrbypXw.roa (raw, json) Hash identifier: hO7UExY7uK9O366wgWtEIxLZh399Jnbomf1lNxsR+28= Subject key identifier: 19:5F:2E:44:5D:CE:E0:19:B7:64:2D:C6:2C:31:FC:BE:B6:F2:A5:7C Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3874 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/GV8uRF3O4Bm3ZC3GLDH8vrbypXw.roa Signing time: Fri 22 Aug 2025 08:45:18 +0000 ROA not before: Fri 22 Aug 2025 08:45:18 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 118.232.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14452 (0x3874) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=195F2E445DCEE019B7642DC62C31FCBEB6F2A57C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:cd:99:63:4a:74:54:e4:94:9e:9b:ee:42:c4: f5:7f:02:34:f9:55:ab:8a:95:17:78:0a:16:df:75: 7d:b7:b1:2d:5b:81:d1:f3:dc:4f:76:64:7b:31:44: ca:70:c9:3c:db:d6:4e:b6:55:04:f8:bc:2b:ef:35: 8c:61:7f:79:c8:64:f2:e1:7b:cc:96:3b:f0:40:96: 74:36:2a:c6:5d:e5:b3:63:91:28:49:e1:91:c0:0c: 33:fd:ec:1a:01:fe:5c:c4:71:82:2b:a8:87:1c:d6: c7:7d:1e:ef:2f:2f:e2:06:12:7e:17:3f:ff:7d:26: 32:b9:c8:5c:65:a7:c6:ee:a5:2f:e4:5a:10:98:f7: 87:17:f0:92:f5:84:16:17:12:a3:fd:12:de:e6:86: 38:93:79:e8:2b:e9:78:9d:aa:5f:9b:e5:a6:2b:ba: a5:f4:7e:51:d1:df:96:fd:31:4a:04:09:67:73:f4: 5f:90:c0:2f:46:af:86:6c:ca:93:de:ff:7a:c2:bf: a1:64:d1:f9:be:3c:c6:33:47:93:7d:a7:0a:05:b5: 79:be:9a:2b:f1:3d:f9:d8:ea:94:24:35:eb:04:eb: e4:f0:85:84:55:21:90:d5:a9:4f:a5:07:dc:cc:90: 15:ad:7a:d6:52:d3:b0:7b:ee:83:49:0f:7b:36:bd: 6a:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:5F:2E:44:5D:CE:E0:19:B7:64:2D:C6:2C:31:FC:BE:B6:F2:A5:7C X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/GV8uRF3O4Bm3ZC3GLDH8vrbypXw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.64.0/19 Signature Algorithm: sha256WithRSAEncryption b4:79:70:80:6b:a3:e5:d7:a9:b2:c9:dc:01:ac:42:a1:94:b4: 1e:c3:b7:97:2d:71:00:3d:6a:ab:e8:58:b0:43:55:70:df:18: 4d:c2:c8:2c:14:ac:26:de:9b:9d:0e:86:86:41:bf:b5:cb:c3: 83:3a:77:22:a3:3c:2d:ec:4e:25:86:dc:52:0c:19:e7:88:fb: ab:86:62:01:53:10:88:89:90:be:7c:60:b5:87:5d:d6:4f:04: 32:12:22:e8:75:3d:db:03:2e:c4:4f:a0:85:52:74:a8:e5:fb: 42:59:36:84:e0:91:fd:1e:10:2d:7d:35:4a:1f:1b:75:8e:80: a3:3c:f5:a5:42:f0:da:2c:7f:e9:e6:70:30:f1:45:5b:c8:6c: 46:d2:e1:29:16:d0:76:42:e0:06:20:d5:83:0f:b3:8c:c1:cf: c5:9b:ad:d8:b2:5a:06:97:5e:47:a4:13:72:28:d1:00:9e:bc: c8:ee:de:75:09:0e:ed:98:3a:5e:e4:e8:ee:c6:91:26:4a:7e: 4c:72:77:a5:b7:31:c4:f8:38:14:5d:84:4d:23:65:02:c7:76: 13:63:91:f9:87:58:a2:ef:46:bc:91:e6:aa:1d:5f:43:79:18: e1:94:91:db:ed:a6:38:15:e4:2b:41:ad:3a:9b:d6:5f:08:64: e9:80:ef:7c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOHQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1MThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE5NUYyRTQ0NURDRUUw MTlCNzY0MkRDNjJDMzFGQ0JFQjZGMkE1N0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDazZljSnRU5JSem+5CxPV/AjT5VauKlRd4ChbfdX23sS1bgdHz 3E92ZHsxRMpwyTzb1k62VQT4vCvvNYxhf3nIZPLhe8yWO/BAlnQ2KsZd5bNjkShJ 4ZHADDP97BoB/lzEcYIrqIcc1sd9Hu8vL+IGEn4XP/99JjK5yFxlp8bupS/kWhCY 94cX8JL1hBYXEqP9Et7mhjiTeegr6Xidql+b5aYruqX0flHR35b9MUoECWdz9F+Q wC9Gr4ZsypPe/3rCv6Fk0fm+PMYzR5N9pwoFtXm+mivxPfnY6pQkNesE6+TwhYRV IZDVqU+lB9zMkBWtetZS07B77oNJD3s2vWrHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUGV8uRF3O4Bm3ZC3GLDH8vrbypXwwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0dWOHVSRjNPNEJtM1pDM0dM REg4dnJieXBYdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV2 6EAwDQYJKoZIhvcNAQELBQADggEBALR5cIBro+XXqbLJ3AGsQqGUtB7Dt5ctcQA9 aqvoWLBDVXDfGE3CyCwUrCbem50OhoZBv7XLw4M6dyKjPC3sTiWG3FIMGeeI+6uG YgFTEIiJkL58YLWHXdZPBDISIuh1PdsDLsRPoIVSdKjl+0JZNoTgkf0eEC19NUof G3WOgKM89aVC8Nosf+nmcDDxRVvIbEbS4SkW0HZC4AYg1YMPs4zBz8WbrdiyWgaX XkekE3Io0QCevMju3nUJDu2YOl7k6O7GkSZKfkxyd6W3McT4OBRdhE0jZQLHdhNj kfmHWKLvRryR5qodX0N5GOGUkdvtpjgV5CtBrTqb1l8IZOmA73w= -----END CERTIFICATE-----Generated at Sun Aug 24 07:25:26 2025 by rpki-client