$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KWhyXloPHoPPKkm5iZukrE1yBzo.roa File: KWhyXloPHoPPKkm5iZukrE1yBzo.roa (raw, json) Hash identifier: XYAMEYzdTios6qhs61tSU3+89ckYjovY8XHomFmnqDw= Subject key identifier: 29:68:72:5E:5A:0F:1E:83:CF:2A:49:B9:89:9B:A4:AC:4D:72:07:3A Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 392D Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KWhyXloPHoPPKkm5iZukrE1yBzo.roa Signing time: Fri 22 Aug 2025 08:46:03 +0000 ROA not before: Fri 22 Aug 2025 08:46:03 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 180.176.32.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14637 (0x392d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:03 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2968725E5A0F1E83CF2A49B9899BA4AC4D72073A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e6:27:e3:bd:5e:cc:37:70:81:c6:fc:0e:6a: a7:f0:19:47:b5:21:41:af:db:01:92:05:54:4c:8d: f5:44:37:84:a0:fd:3c:5f:47:83:c2:ec:45:1f:2a: 5a:e8:8a:c9:0e:3c:1e:8f:29:58:80:ad:49:2b:0e: 32:78:8c:a5:08:2d:1c:3c:fa:56:ff:cc:32:ca:a4: f4:1e:97:6a:43:ce:d5:a2:a8:eb:1d:7a:af:ec:88: 93:3d:48:60:02:aa:ff:b6:d4:6a:58:cb:38:6b:19: c9:c4:52:ed:42:34:77:b0:00:45:e8:cf:c1:89:17: 1d:dc:4d:23:3b:fe:a7:25:ff:04:ec:e7:27:bf:c6: 7e:80:6d:d7:10:85:62:fb:21:cd:55:ab:b5:63:cb: 2c:61:e4:14:82:b4:d4:e9:ef:4b:87:63:f8:5b:5e: 5e:a3:2e:a2:eb:18:42:16:52:ad:bf:c5:7e:72:5a: d3:de:31:59:b2:31:9d:9c:c6:be:1c:b9:52:cd:43: 09:d8:66:a8:10:8f:40:45:2b:e3:fe:82:89:37:45: 85:d8:50:00:a9:f6:c0:18:8a:08:0d:7a:58:bf:80: 58:c3:6a:d0:98:7e:3e:e0:bb:8e:75:84:ed:0f:bf: a9:64:d5:b7:e7:46:63:eb:4c:7c:19:27:4d:2f:35: 2e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:68:72:5E:5A:0F:1E:83:CF:2A:49:B9:89:9B:A4:AC:4D:72:07:3A X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KWhyXloPHoPPKkm5iZukrE1yBzo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.176.32.0/21 Signature Algorithm: sha256WithRSAEncryption 5a:84:63:96:5c:b5:41:54:33:ba:43:b0:1c:7d:c0:d0:68:11: 4e:ce:77:53:ec:c3:d5:7a:b8:15:41:85:14:6a:e9:e8:5c:2f: a7:56:ef:d9:d3:d9:f9:cd:0f:0a:ff:96:89:1b:fd:28:6e:06: 68:2a:6b:c7:33:d6:15:e0:72:62:4e:02:4b:d7:d0:98:55:ab: 3c:a2:f9:2c:34:47:bd:e8:ba:76:01:da:6d:fd:d6:35:8e:a9: 83:b2:f1:4b:1b:59:47:f3:48:17:75:0c:26:b7:d9:bb:b4:b9: 12:e7:e0:eb:a9:fd:28:5b:bc:e1:f9:9c:bb:ff:e8:7e:23:da: 56:41:da:cb:fd:5f:af:b6:9e:3d:0d:35:34:74:8d:ff:ec:1f: af:30:13:5e:02:e6:92:9d:ac:0d:be:a2:cc:e8:9e:1e:5b:6a: 20:2a:0a:1d:09:81:33:61:28:cf:ad:0d:13:75:fc:b7:e6:6a: 77:20:ae:59:c1:f6:74:a6:94:3d:05:1a:b0:23:15:74:c8:5e: 07:3f:07:f0:e6:4a:1d:ea:77:82:8e:07:9a:86:76:a6:2d:da: ee:8d:b1:16:39:15:f5:e6:de:64:9c:3a:72:ea:a2:b5:cf:d2: bd:f6:c4:f7:06:b0:47:03:26:98:15:09:6e:bb:3f:77:b9:08: be:9e:eb:12 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOS0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI5Njg3MjVFNUEwRjFF ODNDRjJBNDlCOTg5OUJBNEFDNEQ3MjA3M0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC75ifjvV7MN3CBxvwOaqfwGUe1IUGv2wGSBVRMjfVEN4Sg/Txf R4PC7EUfKlroiskOPB6PKViArUkrDjJ4jKUILRw8+lb/zDLKpPQel2pDztWiqOsd eq/siJM9SGACqv+21GpYyzhrGcnEUu1CNHewAEXoz8GJFx3cTSM7/qcl/wTs5ye/ xn6AbdcQhWL7Ic1Vq7Vjyyxh5BSCtNTp70uHY/hbXl6jLqLrGEIWUq2/xX5yWtPe MVmyMZ2cxr4cuVLNQwnYZqgQj0BFK+P+gok3RYXYUACp9sAYiggNeli/gFjDatCY fj7gu451hO0Pv6lk1bfnRmPrTHwZJ00vNS5zAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUKWhyXloPHoPPKkm5iZukrE1yBzowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0tXaHlYbG9QSG9QUEtrbTVp WnVrckUxeUJ6by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 sCAwDQYJKoZIhvcNAQELBQADggEBAFqEY5ZctUFUM7pDsBx9wNBoEU7Od1Psw9V6 uBVBhRRq6ehcL6dW79nT2fnNDwr/lokb/ShuBmgqa8cz1hXgcmJOAkvX0JhVqzyi +Sw0R73ounYB2m391jWOqYOy8UsbWUfzSBd1DCa32bu0uRLn4Oup/ShbvOH5nLv/ 6H4j2lZB2sv9X6+2nj0NNTR0jf/sH68wE14C5pKdrA2+oszonh5baiAqCh0JgTNh KM+tDRN1/LfmancgrlnB9nSmlD0FGrAjFXTIXgc/B/DmSh3qd4KOB5qGdqYt2u6N sRY5FfXm3mScOnLqorXP0r32xPcGsEcDJpgVCW67P3e5CL6e6xI= -----END CERTIFICATE-----Generated at Sun Aug 24 07:33:19 2025 by rpki-client