$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/L3eD3Nrnjzu25ETBft3EB5_FwRE.roa File: L3eD3Nrnjzu25ETBft3EB5_FwRE.roa (raw, json) Hash identifier: UM+SjCcAdC4HJshYMbe4LsfoBOOekM8fShjKpA0st5s= Subject key identifier: 2F:77:83:DC:DA:E7:8F:3B:B6:E4:44:C1:7E:DD:C4:07:9F:C5:C1:11 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3A7F Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/L3eD3Nrnjzu25ETBft3EB5_FwRE.roa Signing time: Fri 22 Aug 2025 08:47:25 +0000 ROA not before: Fri 22 Aug 2025 08:47:25 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 123.194.254.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14975 (0x3a7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:25 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2F7783DCDAE78F3BB6E444C17EDDC4079FC5C111 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4f:f4:7e:d5:3c:48:a5:dc:c8:e1:6c:54:c6: f1:f5:f9:da:52:37:6a:bf:f0:52:c8:29:d5:f7:bf: 8f:15:6c:94:c3:ca:5a:ff:4d:0c:4d:62:49:e5:5c: d1:8c:3c:57:c0:0e:8c:1e:f2:e6:b5:b8:a8:ec:4a: 46:3b:9b:3d:34:2d:ad:40:75:af:63:84:39:59:0c: e5:3e:ff:e7:cc:a5:2f:3d:58:b1:db:22:52:a5:70: 6c:d5:de:22:2f:d9:d0:3b:89:e1:ac:df:57:b1:58: 9b:8b:c3:bd:ee:d9:b2:5d:72:4d:96:02:4d:ce:f9: 22:13:d8:22:67:55:46:0e:37:55:09:ef:1d:60:d9: fa:90:5b:b9:87:00:37:6e:2b:80:eb:53:0f:84:64: b3:b5:2f:14:96:36:af:7e:40:f9:88:1e:8c:af:c6: 35:7d:b1:ff:66:fc:c1:72:bf:32:c6:67:eb:1c:66: b3:d4:28:b7:c6:d3:90:5e:10:c6:b1:72:83:19:97: ab:b3:a5:6c:c4:58:e9:c2:1f:18:8c:18:08:6e:8a: a4:fb:a1:6b:3d:1e:ea:aa:d6:bf:6d:c5:ef:f3:20: c1:ae:c9:21:3b:ee:3c:2c:1f:55:fd:96:7e:f1:f5: d8:93:82:bc:37:98:18:d8:9d:e3:25:b7:63:b3:06: 10:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:77:83:DC:DA:E7:8F:3B:B6:E4:44:C1:7E:DD:C4:07:9F:C5:C1:11 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/L3eD3Nrnjzu25ETBft3EB5_FwRE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.254.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:c2:e8:1a:f9:c1:9e:de:63:b0:70:25:79:d2:90:6e:7d:ec: 12:6e:6d:d7:37:1b:b6:f1:19:a1:0a:00:73:06:0a:3c:e1:e5: c6:be:f8:e9:63:bb:20:e4:fb:b0:19:1d:ff:48:58:0d:d8:07: 2f:27:c7:a2:40:24:6f:36:83:62:36:c2:75:56:7b:b4:ab:dc: fe:e5:d9:2c:10:8d:a8:46:90:96:a5:64:93:a3:37:83:07:b7: 07:27:cb:6f:6f:9a:bc:05:91:5f:b7:6d:3f:cd:e1:d3:72:e4: 4f:08:c6:95:07:96:db:59:32:3e:32:e7:8f:74:10:1e:6c:de: 5b:e9:9e:48:dd:93:28:bf:ed:f8:5a:21:b1:f7:cb:d9:0a:90: db:91:77:92:21:f0:50:78:6c:ff:66:93:b5:d3:82:52:63:ed: 39:22:14:5f:7c:73:44:2c:23:a7:c5:c8:fd:d0:e7:5d:a9:52: 3f:f4:d5:45:f5:39:9c:c7:99:54:07:c5:e6:81:a2:86:4b:82: 73:a2:67:90:22:84:b3:0b:87:28:c6:47:7d:78:da:12:77:f6: ae:ea:c8:a6:16:db:cc:10:ee:78:d8:cf:f1:f9:ef:d5:3e:13: 17:e1:b1:bb:44:ad:70:2f:33:86:a1:38:67:24:57:db:91:e3: 8b:a5:f8:da -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOn8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3MjVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJGNzc4M0RDREFFNzhG M0JCNkU0NDRDMTdFRERDNDA3OUZDNUMxMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrT/R+1TxIpdzI4WxUxvH1+dpSN2q/8FLIKdX3v48VbJTDylr/ TQxNYknlXNGMPFfADowe8ua1uKjsSkY7mz00La1Ada9jhDlZDOU+/+fMpS89WLHb IlKlcGzV3iIv2dA7ieGs31exWJuLw73u2bJdck2WAk3O+SIT2CJnVUYON1UJ7x1g 2fqQW7mHADduK4DrUw+EZLO1LxSWNq9+QPmIHoyvxjV9sf9m/MFyvzLGZ+scZrPU KLfG05BeEMaxcoMZl6uzpWzEWOnCHxiMGAhuiqT7oWs9Huqq1r9txe/zIMGuySE7 7jwsH1X9ln7x9diTgrw3mBjYneMlt2OzBhCjAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUL3eD3Nrnjzu25ETBft3EB5/FwREwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0wzZUQzTnJuanp1MjVFVEJm dDNFQjVfRndSRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF7 wv4wDQYJKoZIhvcNAQELBQADggEBAHvC6Br5wZ7eY7BwJXnSkG597BJubdc3G7bx GaEKAHMGCjzh5ca++OljuyDk+7AZHf9IWA3YBy8nx6JAJG82g2I2wnVWe7Sr3P7l 2SwQjahGkJalZJOjN4MHtwcny29vmrwFkV+3bT/N4dNy5E8IxpUHlttZMj4y5490 EB5s3lvpnkjdkyi/7fhaIbH3y9kKkNuRd5Ih8FB4bP9mk7XTglJj7TkiFF98c0Qs I6fFyP3Q512pUj/01UX1OZzHmVQHxeaBooZLgnOiZ5AihLMLhyjGR3142hJ39q7q yKYW28wQ7njYz/H579U+ExfhsbtErXAvM4ahOGckV9uR44ul+No= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:41 2025 by rpki-client