$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/GXh7R6b9TWnf2rDS2eSRKrMsoU4.roa File: GXh7R6b9TWnf2rDS2eSRKrMsoU4.roa (raw, json) Hash identifier: dC3NPOaGCF9Y1e2kT7LKyOK7KgPilJs7Efn/xNPY180= Subject key identifier: 19:78:7B:47:A6:FD:4D:69:DF:DA:B0:D2:D9:E4:91:2A:B3:2C:A1:4E Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 396A Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/GXh7R6b9TWnf2rDS2eSRKrMsoU4.roa Signing time: Fri 22 Aug 2025 08:46:17 +0000 ROA not before: Fri 22 Aug 2025 08:46:16 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 180.176.104.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14698 (0x396a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:16 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=19787B47A6FD4D69DFDAB0D2D9E4912AB32CA14E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:bd:16:d2:ea:84:3a:d2:f9:73:be:22:fb:0a: 44:7f:7f:43:f5:85:7b:38:1e:c8:29:ca:9a:43:66: a9:af:92:0e:21:0f:55:b2:7d:18:a8:bf:ca:0f:7e: 32:df:6f:87:c3:e4:4f:c1:27:56:e7:40:67:96:33: f3:e6:a0:7c:c3:e8:39:e3:f1:6e:8d:d8:0c:ae:c5: 39:43:47:bf:b3:78:24:93:29:c0:24:75:32:48:d1: d1:a5:72:0e:f7:e7:68:a4:d2:1b:67:42:0d:03:b4: 46:62:dc:ba:ec:6b:73:4e:9a:08:6a:0b:d6:76:c7: 26:84:19:59:fe:d1:c1:de:37:42:a4:a5:d2:97:5e: 3e:1a:cd:67:35:4f:75:cd:0e:23:29:74:07:45:be: be:7e:8c:5b:ab:09:d7:43:47:56:5a:3b:27:86:71: ab:a6:f1:41:29:0b:fe:54:fd:e3:b5:17:1f:7f:ad: f3:f8:d4:a6:52:30:af:8d:88:a5:d7:be:12:63:f4: d1:80:55:3e:df:06:1f:db:81:37:eb:83:05:b2:ec: 51:b7:1e:02:b7:1d:32:70:52:1f:98:0e:07:bc:6a: d6:c7:2f:33:c6:6d:11:48:2e:66:4a:8c:73:90:9b: 8d:c8:4d:26:e8:fb:b5:37:17:9b:bc:b9:34:8b:e7: 9c:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:78:7B:47:A6:FD:4D:69:DF:DA:B0:D2:D9:E4:91:2A:B3:2C:A1:4E X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/GXh7R6b9TWnf2rDS2eSRKrMsoU4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.176.104.0/22 Signature Algorithm: sha256WithRSAEncryption aa:27:63:8f:92:62:23:b0:58:29:69:b5:0d:eb:97:36:8a:46: 06:7d:fb:1f:93:29:23:18:86:2f:81:1a:5a:55:0a:51:ef:59: d5:86:76:43:a2:a5:2e:42:1d:52:4a:85:5a:3c:cb:7b:3c:aa: b0:05:7c:dd:03:5a:69:fe:ff:d1:94:29:c4:3d:36:d0:05:89: b4:cd:76:b7:53:5f:f7:5e:c3:70:e3:a5:f0:82:d0:e7:43:d5: 16:57:c5:c7:5d:7b:7a:a5:26:8f:fc:99:93:58:5d:a2:d3:53: 33:83:89:07:e0:ce:b1:1b:e5:f5:ec:d4:04:5c:58:92:27:fd: b0:48:5b:06:dc:23:ec:de:13:2d:17:4e:c1:61:e7:7b:74:ca: 7a:8e:c3:58:2d:6c:b4:53:da:90:16:4b:9e:c8:74:8d:be:3f: eb:fe:dd:b0:a7:30:66:ec:96:24:f5:a3:21:0b:a5:8c:04:f8: 13:70:69:39:08:81:36:34:1a:f6:51:7a:e0:ab:c8:27:83:0e: bc:ce:85:f2:fe:5a:18:65:0b:dc:ec:e0:9d:c2:be:08:70:1d: 57:a0:3e:a6:5f:f5:04:5f:e7:a6:40:f3:fd:94:7b:0a:dc:d6: e3:27:8a:4d:e5:1d:8b:17:e3:35:2c:80:66:31:54:cd:c7:e5: ad:5b:d8:e4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOWowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE5Nzg3QjQ3QTZGRDRE NjlERkRBQjBEMkQ5RTQ5MTJBQjMyQ0ExNEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlvRbS6oQ60vlzviL7CkR/f0P1hXs4HsgpyppDZqmvkg4hD1Wy fRiov8oPfjLfb4fD5E/BJ1bnQGeWM/PmoHzD6Dnj8W6N2AyuxTlDR7+zeCSTKcAk dTJI0dGlcg7352ik0htnQg0DtEZi3Lrsa3NOmghqC9Z2xyaEGVn+0cHeN0KkpdKX Xj4azWc1T3XNDiMpdAdFvr5+jFurCddDR1ZaOyeGcaum8UEpC/5U/eO1Fx9/rfP4 1KZSMK+NiKXXvhJj9NGAVT7fBh/bgTfrgwWy7FG3HgK3HTJwUh+YDge8atbHLzPG bRFILmZKjHOQm43ITSbo+7U3F5u8uTSL55zvAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUGXh7R6b9TWnf2rDS2eSRKrMsoU4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0dYaDdSNmI5VFduZjJyRFMy ZVNSS3JNc29VNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 sGgwDQYJKoZIhvcNAQELBQADggEBAKonY4+SYiOwWClptQ3rlzaKRgZ9+x+TKSMY hi+BGlpVClHvWdWGdkOipS5CHVJKhVo8y3s8qrAFfN0DWmn+/9GUKcQ9NtAFibTN drdTX/dew3DjpfCC0OdD1RZXxcdde3qlJo/8mZNYXaLTUzODiQfgzrEb5fXs1ARc WJIn/bBIWwbcI+zeEy0XTsFh53t0ynqOw1gtbLRT2pAWS57IdI2+P+v+3bCnMGbs liT1oyELpYwE+BNwaTkIgTY0GvZReuCryCeDDrzOhfL+WhhlC9zs4J3CvghwHVeg PqZf9QRf56ZA8/2Uewrc1uMnik3lHYsX4zUsgGYxVM3H5a1b2OQ= -----END CERTIFICATE-----Generated at Sun Aug 24 07:28:24 2025 by rpki-client