$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HrLcKcBwyfQC4nhiSkxttNAXQvI.roa File: HrLcKcBwyfQC4nhiSkxttNAXQvI.roa (raw, json) Hash identifier: YpJrdezhhUEPzyzY9Ho+tj9wdZXmytFsmOSzmSwHYFA= Subject key identifier: 1E:B2:DC:29:C0:70:C9:F4:02:E2:78:62:4A:4C:6D:B4:D0:17:42:F2 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3875 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HrLcKcBwyfQC4nhiSkxttNAXQvI.roa Signing time: Fri 22 Aug 2025 08:45:18 +0000 ROA not before: Fri 22 Aug 2025 08:45:18 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.195.84.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14453 (0x3875) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1EB2DC29C070C9F402E278624A4C6DB4D01742F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:90:4b:2d:8b:d0:17:ca:76:80:b0:a6:d8:d3: 85:21:72:a6:6c:f2:bc:5e:29:86:a3:c5:5c:5d:0c: 41:2e:88:50:b4:dd:e2:b9:eb:30:50:37:91:23:d7: ce:b2:43:f3:04:6d:a8:e5:ec:54:6d:ea:3f:c7:e3: 10:f3:ce:c0:53:c3:28:39:73:f5:14:04:39:b3:ec: ab:a2:2e:e3:6e:0b:76:74:fa:e8:3f:f1:5d:9c:b4: 94:d1:f4:29:0f:de:2b:6b:16:48:5c:26:e4:43:35: 80:37:9e:9d:00:c0:92:7d:ec:ca:f7:03:01:90:2b: 9d:ee:99:9d:4f:cd:37:31:e3:11:53:9e:cd:c5:e8: 1e:2b:93:5a:5c:5d:e7:1d:78:4e:57:d5:1b:de:ac: 6f:c2:87:81:f6:ee:b4:f6:15:14:2c:e8:b9:99:44: dd:71:60:67:13:06:cf:de:26:39:0b:07:f2:e9:ff: b7:36:41:6c:2a:5b:0e:1b:2e:6d:95:0d:46:6a:b1: b4:3c:2d:7d:de:46:6b:f8:15:af:bd:45:ee:a1:e1: 4e:e5:fc:18:8f:ab:c0:7b:36:da:ac:18:9e:32:30: 3e:ce:b6:9f:85:32:6a:38:f0:4a:ca:15:bf:9e:a0: 1a:87:bb:3a:5a:88:e3:8a:c8:d5:58:fd:d2:e2:a1: bf:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:B2:DC:29:C0:70:C9:F4:02:E2:78:62:4A:4C:6D:B4:D0:17:42:F2 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HrLcKcBwyfQC4nhiSkxttNAXQvI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.84.0/22 Signature Algorithm: sha256WithRSAEncryption 03:19:f1:37:6f:8a:20:e2:24:85:e1:1f:9e:93:6c:f6:00:a5: 26:b7:b4:d3:75:bc:6a:e0:d4:61:95:be:1d:12:fa:ee:79:d4: c6:a6:7f:37:e1:cf:f3:e1:07:bc:b8:56:f2:f9:91:06:50:3b: c8:ad:8a:99:cb:3e:f0:ca:32:de:4b:9f:b9:50:5b:f5:27:03: 3a:e9:37:e7:c2:18:12:31:cc:b3:ff:39:be:6e:77:cf:58:88: 17:7c:8b:e5:d7:dc:d1:9b:48:a8:29:0c:a0:df:62:30:df:89: 50:e8:47:b0:56:f0:dc:a1:7e:07:7b:0f:89:ab:37:cb:4b:33: df:90:a2:aa:82:b8:a7:55:cd:1b:d4:c4:b2:df:3f:5b:56:46: 39:48:95:3d:e6:65:64:d5:5e:db:9d:5a:dc:0d:13:14:a5:60: a5:d2:ed:1a:b2:5f:da:ef:c0:fb:fc:a8:8a:0c:2b:ca:73:9b: 38:53:12:70:14:fa:86:e3:1c:90:8d:6a:6f:29:3b:65:5f:fe: 60:d2:92:c6:e1:ba:c9:c7:12:5c:e4:be:50:28:71:7e:ca:57: a0:d8:8a:03:f2:e5:82:e7:59:ed:82:ce:0e:54:da:32:a1:6c: b3:fc:66:b9:52:44:d6:43:3f:9a:6c:33:16:13:d6:97:e2:82: b4:fd:f4:2b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOHUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1MThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFFQjJEQzI5QzA3MEM5 RjQwMkUyNzg2MjRBNEM2REI0RDAxNzQyRjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXkEsti9AXynaAsKbY04UhcqZs8rxeKYajxVxdDEEuiFC03eK5 6zBQN5Ej186yQ/MEbajl7FRt6j/H4xDzzsBTwyg5c/UUBDmz7KuiLuNuC3Z0+ug/ 8V2ctJTR9CkP3itrFkhcJuRDNYA3np0AwJJ97Mr3AwGQK53umZ1PzTcx4xFTns3F 6B4rk1pcXecdeE5X1RverG/Ch4H27rT2FRQs6LmZRN1xYGcTBs/eJjkLB/Lp/7c2 QWwqWw4bLm2VDUZqsbQ8LX3eRmv4Fa+9Re6h4U7l/BiPq8B7NtqsGJ4yMD7Otp+F Mmo48ErKFb+eoBqHuzpaiOOKyNVY/dLiob9tAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUHrLcKcBwyfQC4nhiSkxttNAXQvIwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0hyTGNLY0J3eWZRQzRuaGlT a3h0dE5BWFF2SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 w1QwDQYJKoZIhvcNAQELBQADggEBAAMZ8TdviiDiJIXhH56TbPYApSa3tNN1vGrg 1GGVvh0S+u551Mamfzfhz/PhB7y4VvL5kQZQO8itipnLPvDKMt5Ln7lQW/UnAzrp N+fCGBIxzLP/Ob5ud89YiBd8i+XX3NGbSKgpDKDfYjDfiVDoR7BW8Nyhfgd7D4mr N8tLM9+QoqqCuKdVzRvUxLLfP1tWRjlIlT3mZWTVXtudWtwNExSlYKXS7RqyX9rv wPv8qIoMK8pzmzhTEnAU+objHJCNam8pO2Vf/mDSksbhusnHElzkvlAocX7KV6DY igPy5YLnWe2Czg5U2jKhbLP8ZrlSRNZDP5psMxYT1pfigrT99Cs= -----END CERTIFICATE-----Generated at Sun Aug 24 07:29:31 2025 by rpki-client