$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IMwbD4ZBP2eNmJsQL7Bv1hA6GmQ.roa File: IMwbD4ZBP2eNmJsQL7Bv1hA6GmQ.roa (raw, json) Hash identifier: 4uKb00QzUQ0i01+Ao/Lhl41vcpKNtvNnDsDwgqvKTqQ= Subject key identifier: 20:CC:1B:0F:86:41:3F:67:8D:98:9B:10:2F:B0:6F:D6:10:3A:1A:64 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3802 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IMwbD4ZBP2eNmJsQL7Bv1hA6GmQ.roa Signing time: Fri 22 Aug 2025 08:44:52 +0000 ROA not before: Fri 22 Aug 2025 08:44:52 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.194.205.0/28 maxlen: 28 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14338 (0x3802) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:44:52 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=20CC1B0F86413F678D989B102FB06FD6103A1A64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:c7:3f:09:e4:38:dd:52:93:0e:7c:59:d9:3f: cb:87:43:2f:dc:a9:71:5b:82:4d:48:a0:a8:e6:aa: 5a:4f:20:ca:e2:97:43:d8:e2:a1:9c:5f:b7:d3:46: a2:96:94:7b:9c:a4:76:d3:ca:ff:72:2f:a6:9e:0d: b8:bb:15:09:f7:8e:32:71:c2:17:95:ce:69:26:d9: 3a:83:15:76:0d:a6:e2:66:5d:2d:5c:d3:82:06:2d: 5b:01:e6:70:bf:4f:3a:9d:fe:67:3f:d3:4f:88:9f: 93:fa:43:b6:54:74:dc:ed:4d:2c:ca:3c:b4:7d:4f: f0:f1:05:d3:33:b9:a3:c0:00:05:54:44:09:9f:b7: 04:31:cf:e2:48:b1:2a:06:af:7e:84:19:e3:f7:f4: c0:b8:ca:53:fd:d7:16:d9:68:38:3c:f1:58:b0:38: 29:26:65:1a:94:64:ac:4f:34:28:8b:3c:48:6a:c6: 87:97:63:26:96:3a:2d:9e:26:4b:ea:8b:4e:91:3f: fb:02:64:c5:b8:f7:0b:78:9e:61:d3:fa:9b:ce:78: c4:65:13:8e:a7:b6:a4:91:d1:63:27:20:75:bf:75: 18:ed:d1:4e:b6:42:4b:5d:95:bf:14:70:99:bd:8c: f2:29:b2:76:78:0e:ad:b0:12:fb:c4:85:97:9f:aa: 5d:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:CC:1B:0F:86:41:3F:67:8D:98:9B:10:2F:B0:6F:D6:10:3A:1A:64 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IMwbD4ZBP2eNmJsQL7Bv1hA6GmQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.205.0/28 Signature Algorithm: sha256WithRSAEncryption 7f:a3:3d:e0:72:7e:e9:9d:87:e9:88:3f:d6:5e:f3:39:5f:a9: 2a:28:ce:f4:00:63:93:63:f1:76:1d:0d:ae:fd:fc:03:a1:09: 32:9b:d9:1d:0a:f6:5a:e8:10:1c:3a:ec:ca:11:30:b6:a4:4b: 74:5d:80:f1:ba:10:52:81:f1:d8:e9:74:23:cd:61:6e:b8:71: 70:07:61:ad:fd:7c:78:36:75:60:95:98:c5:c7:af:b0:6f:a1: 24:e8:41:92:b3:b6:bc:32:12:27:80:dd:da:24:25:49:55:3b: 92:1e:32:e5:b4:9a:42:54:01:1b:1f:6e:2a:4d:58:b3:43:ec: 64:7c:e4:d3:57:9f:aa:ec:16:9d:b5:ad:b0:b1:f8:10:6a:8e: cd:bf:5a:90:45:2b:9f:78:b1:e7:3a:6d:5d:01:63:09:74:21: c5:88:20:e1:50:75:9b:90:7e:b9:f6:dd:af:ca:b1:62:75:c6: c8:17:76:07:1a:88:49:79:d8:c2:b6:6f:d1:14:6c:7d:0e:32: b2:fa:c4:bb:2a:c8:54:0f:42:77:63:60:1c:49:f1:d0:88:86: bb:fe:49:99:51:a9:ed:80:97:d5:99:8c:75:1f:f6:52:39:e9: 6b:43:35:0a:d2:6d:b1:09:fb:a2:fc:1f:48:23:4e:22:57:64: 91:37:22:fb -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICOAIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ0NTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDIwQ0MxQjBGODY0MTNG Njc4RDk4OUIxMDJGQjA2RkQ2MTAzQTFBNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpxz8J5DjdUpMOfFnZP8uHQy/cqXFbgk1IoKjmqlpPIMril0PY 4qGcX7fTRqKWlHucpHbTyv9yL6aeDbi7FQn3jjJxwheVzmkm2TqDFXYNpuJmXS1c 04IGLVsB5nC/Tzqd/mc/00+In5P6Q7ZUdNztTSzKPLR9T/DxBdMzuaPAAAVURAmf twQxz+JIsSoGr36EGeP39MC4ylP91xbZaDg88ViwOCkmZRqUZKxPNCiLPEhqxoeX YyaWOi2eJkvqi06RP/sCZMW49wt4nmHT+pvOeMRlE46ntqSR0WMnIHW/dRjt0U62 Qktdlb8UcJm9jPIpsnZ4Dq2wEvvEhZefql07AgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUIMwbD4ZBP2eNmJsQL7Bv1hA6GmQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0lNd2JENFpCUDJlTm1Kc1FM N0J2MWhBNkdtUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQR7 ws0AMA0GCSqGSIb3DQEBCwUAA4IBAQB/oz3gcn7pnYfpiD/WXvM5X6kqKM70AGOT Y/F2HQ2u/fwDoQkym9kdCvZa6BAcOuzKETC2pEt0XYDxuhBSgfHY6XQjzWFuuHFw B2Gt/Xx4NnVglZjFx6+wb6Ek6EGSs7a8MhIngN3aJCVJVTuSHjLltJpCVAEbH24q TVizQ+xkfOTTV5+q7Badta2wsfgQao7Nv1qQRSufeLHnOm1dAWMJdCHFiCDhUHWb kH659t2vyrFidcbIF3YHGohJedjCtm/RFGx9DjKy+sS7KshUD0J3Y2AcSfHQiIa7 /kmZUantgJfVmYx1H/ZSOelrQzUK0m2xCfui/B9II04iV2SRNyL7 -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:58 2025 by rpki-client