$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/GdFMLOshOsSVx4-b1xCGKsVAsbA.roa File: GdFMLOshOsSVx4-b1xCGKsVAsbA.roa (raw, json) Hash identifier: 3ckZ/yO9K4scnHrVVMZo4HZz9phSY4zXIjdgtMQ0PoU= Subject key identifier: 19:D1:4C:2C:EB:21:3A:C4:95:C7:8F:9B:D7:10:86:2A:C5:40:B1:B0 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3919 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/GdFMLOshOsSVx4-b1xCGKsVAsbA.roa Signing time: Fri 22 Aug 2025 08:45:57 +0000 ROA not before: Fri 22 Aug 2025 08:45:57 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.232.56.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14617 (0x3919) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:57 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=19D14C2CEB213AC495C78F9BD710862AC540B1B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a0:4b:bc:68:e4:a9:2e:ac:f0:27:b1:c5:d3: 9b:45:00:00:de:cb:d6:91:02:26:ca:1c:c0:2c:da: f6:14:fe:35:a5:4d:98:51:4b:e9:09:b7:ca:00:4e: 92:f8:22:19:e0:84:b9:ee:49:b3:f8:83:26:37:95: c8:ae:a0:b5:97:d8:46:52:3e:9f:89:b8:07:5b:80: 3f:c3:9d:87:d6:1a:5a:c6:a2:7d:b3:c3:f0:d2:a2: 1a:ec:e6:aa:b9:44:2e:ca:fd:dd:ba:63:21:40:e6: d7:e1:cd:9e:5f:53:1a:57:a4:c7:95:a7:39:ef:89: cb:87:0a:a0:90:4a:83:93:f6:d7:2e:5d:6d:d1:9f: 92:bc:96:ed:26:6c:99:c4:60:65:48:1b:1f:70:5d: b7:0a:da:90:8b:9a:03:52:9c:48:69:9b:6e:75:28: 53:22:07:ca:b0:69:dd:d2:9b:40:08:fe:80:2a:5f: 12:2c:61:63:a6:35:7b:ec:10:12:c9:5d:c6:a3:44: d3:36:e2:79:00:89:13:66:9f:d8:f1:02:fd:dc:5e: 0d:68:59:e6:4d:63:bc:b2:e5:f1:bd:9b:ef:9f:7d: 82:f4:16:6f:12:0f:85:b2:61:3f:f4:8a:82:a7:96: 8f:0a:7b:d3:d2:58:db:16:a7:1e:c1:3d:49:9d:4d: 6f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:D1:4C:2C:EB:21:3A:C4:95:C7:8F:9B:D7:10:86:2A:C5:40:B1:B0 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/GdFMLOshOsSVx4-b1xCGKsVAsbA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.56.0/21 Signature Algorithm: sha256WithRSAEncryption 58:bd:b5:93:55:4b:f1:ea:f9:0f:00:ad:27:69:fc:d1:2b:f0: 22:5f:6f:5c:13:4b:91:1c:0b:8f:b1:ff:4c:f0:f1:af:08:8b: f5:55:b0:6c:1d:c7:b7:25:c2:6f:a0:06:e7:29:17:20:38:99: d0:67:3a:a4:22:49:6f:0e:09:73:fd:88:94:1d:0b:2c:51:e3: 5a:b8:8b:f1:95:83:ec:b4:df:8e:5f:5e:40:d7:43:fb:76:8a: 27:61:c1:ed:e2:7c:f0:6f:2d:65:df:09:64:c9:dd:08:ca:27: e6:ad:ce:d7:78:82:d9:2f:8f:8a:ad:ac:21:d7:d8:59:ce:1e: b2:a6:d0:d5:16:1c:9d:0c:87:11:fe:1a:41:97:f8:72:16:4a: a8:01:86:96:11:8e:70:8a:6e:f8:d6:40:fa:f3:5f:b7:21:8b: 2a:4d:15:43:0b:bf:69:1a:0a:f1:94:36:45:6b:90:bc:06:5e: ba:12:61:c4:80:49:38:4f:9c:ce:72:c5:00:8b:0a:39:61:1d: 5a:46:71:57:e9:32:cf:db:f4:24:88:c6:59:cc:45:2c:ab:13: 35:50:4b:a2:b0:38:57:9a:1a:1e:2c:fc:89:4a:0e:a8:63:81: ea:c0:c8:9b:87:64:5f:33:70:63:09:c2:bb:bf:8d:fd:6d:a1: ae:26:bf:b3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICORkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1NTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE5RDE0QzJDRUIyMTNB QzQ5NUM3OEY5QkQ3MTA4NjJBQzU0MEIxQjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7oEu8aOSpLqzwJ7HF05tFAADey9aRAibKHMAs2vYU/jWlTZhR S+kJt8oATpL4IhnghLnuSbP4gyY3lciuoLWX2EZSPp+JuAdbgD/DnYfWGlrGon2z w/DSohrs5qq5RC7K/d26YyFA5tfhzZ5fUxpXpMeVpznvicuHCqCQSoOT9tcuXW3R n5K8lu0mbJnEYGVIGx9wXbcK2pCLmgNSnEhpm251KFMiB8qwad3Sm0AI/oAqXxIs YWOmNXvsEBLJXcajRNM24nkAiRNmn9jxAv3cXg1oWeZNY7yy5fG9m++ffYL0Fm8S D4WyYT/0ioKnlo8Ke9PSWNsWpx7BPUmdTW+JAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUGdFMLOshOsSVx4+b1xCGKsVAsbAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0dkRk1MT3NoT3NTVng0LWIx eENHS3NWQXNiQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6DgwDQYJKoZIhvcNAQELBQADggEBAFi9tZNVS/Hq+Q8ArSdp/NEr8CJfb1wTS5Ec C4+x/0zw8a8Ii/VVsGwdx7clwm+gBucpFyA4mdBnOqQiSW8OCXP9iJQdCyxR41q4 i/GVg+y0345fXkDXQ/t2iidhwe3ifPBvLWXfCWTJ3QjKJ+atztd4gtkvj4qtrCHX 2FnOHrKm0NUWHJ0MhxH+GkGX+HIWSqgBhpYRjnCKbvjWQPrzX7chiypNFUMLv2ka CvGUNkVrkLwGXroSYcSASThPnM5yxQCLCjlhHVpGcVfpMs/b9CSIxlnMRSyrEzVQ S6KwOFeaGh4s/IlKDqhjgerAyJuHZF8zcGMJwru/jf1toa4mv7M= -----END CERTIFICATE-----Generated at Sun Aug 24 07:25:22 2025 by rpki-client