$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/L4OjFHmd5B4OhrO6jBBhKiSWbkQ.roa File: L4OjFHmd5B4OhrO6jBBhKiSWbkQ.roa (raw, json) Hash identifier: wVifYJThC2+vx8qOcYRZ65g1HONMUQRIt6MI6SrdnmA= Subject key identifier: 2F:83:A3:14:79:9D:E4:1E:0E:86:B3:BA:8C:10:61:2A:24:96:6E:44 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 39AE Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/L4OjFHmd5B4OhrO6jBBhKiSWbkQ.roa Signing time: Fri 22 Aug 2025 08:46:32 +0000 ROA not before: Fri 22 Aug 2025 08:46:32 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.193.244.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14766 (0x39ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:32 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2F83A314799DE41E0E86B3BA8C10612A24966E44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:0b:8d:f4:59:9b:76:7c:e3:68:9e:1b:df:ab: e3:f0:84:ff:dd:b5:5c:dc:aa:9a:4f:de:a2:72:85: ee:42:d8:26:bf:c0:7f:42:f5:24:05:54:1a:dd:e6: 52:1f:a5:b1:74:9e:86:e1:84:96:19:ca:0e:d6:0d: d8:08:53:0f:30:91:f8:f1:44:3d:79:43:96:04:7c: 8d:be:c3:d4:60:4d:24:4f:1c:62:bc:5c:0c:81:35: 09:e6:43:a9:1e:26:3d:03:35:51:2e:bb:ae:39:12: 2c:1d:9f:93:6d:d4:d8:f0:27:6e:c2:a8:fa:7b:ab: ec:2c:6a:f6:65:11:43:c1:d2:1f:cc:3c:a8:00:06: bd:76:eb:3c:0e:0e:55:d2:88:75:5e:67:38:f0:1d: f0:46:2b:f1:57:39:72:ae:ca:e3:c0:73:5b:ad:fc: 80:a2:ef:b7:4d:fd:88:85:3f:f7:07:e7:70:0d:9e: db:74:68:c6:35:19:3e:a1:c4:90:fb:f4:3c:97:db: bd:91:3d:10:5b:6d:84:0f:82:86:6a:01:7f:1b:f4: da:f4:2a:04:bc:c1:e1:58:ea:25:21:b0:a1:34:a9: e1:a4:41:27:6e:74:9e:67:0d:8f:c1:5b:0a:b8:08: 43:c7:d1:f6:d2:39:24:fe:65:04:d5:ac:d6:26:4a: 9f:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:83:A3:14:79:9D:E4:1E:0E:86:B3:BA:8C:10:61:2A:24:96:6E:44 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/L4OjFHmd5B4OhrO6jBBhKiSWbkQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.244.0/23 Signature Algorithm: sha256WithRSAEncryption 95:a6:3f:27:ea:84:72:8b:f5:f2:4b:52:a7:e9:dd:f8:b9:d6: 93:1f:be:24:98:43:0b:41:ed:94:30:6a:80:b5:dc:27:d7:73: 4d:56:3c:bb:91:0a:d6:87:8b:1c:ca:00:e0:d7:db:c1:78:9c: b4:15:dc:9a:e7:9e:ce:31:9a:e3:f2:19:34:d4:9f:fa:e1:31: ff:35:64:6b:5a:b9:25:d0:98:ba:00:67:b1:88:9b:e2:71:62: cb:95:0d:7d:24:ca:3d:9b:6e:fb:3e:9d:01:39:5a:22:88:cc: 5e:9a:39:d7:e1:07:c1:19:3f:ae:83:c2:f1:0f:67:75:75:ef: de:3b:2e:78:84:4e:64:3d:82:54:8d:c0:79:ac:8c:d2:1d:9f: f4:41:0c:0c:e5:20:5c:50:9d:2c:b9:36:59:2d:01:ec:44:0b: bf:33:ca:3b:33:f5:88:9b:c5:53:55:d5:5f:c8:e2:08:e1:45: 0f:ca:b0:22:aa:74:30:ac:41:d5:cc:3f:b2:fa:29:aa:90:8e: 65:bb:5d:f1:22:ee:52:d2:06:48:89:e3:8a:c1:44:53:91:5c: 7c:59:dd:9b:00:92:53:ba:25:5e:7c:7b:7c:d3:ec:3a:7a:8c: 9a:36:76:2a:01:f1:c1:9a:2c:b5:26:14:7c:b4:ff:d5:d3:44: 2e:22:84:29 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOa4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MzJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJGODNBMzE0Nzk5REU0 MUUwRTg2QjNCQThDMTA2MTJBMjQ5NjZFNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFC430WZt2fONonhvfq+PwhP/dtVzcqppP3qJyhe5C2Ca/wH9C 9SQFVBrd5lIfpbF0nobhhJYZyg7WDdgIUw8wkfjxRD15Q5YEfI2+w9RgTSRPHGK8 XAyBNQnmQ6keJj0DNVEuu645Eiwdn5Nt1NjwJ27CqPp7q+wsavZlEUPB0h/MPKgA Br126zwODlXSiHVeZzjwHfBGK/FXOXKuyuPAc1ut/ICi77dN/YiFP/cH53ANntt0 aMY1GT6hxJD79DyX272RPRBbbYQPgoZqAX8b9Nr0KgS8weFY6iUhsKE0qeGkQSdu dJ5nDY/BWwq4CEPH0fbSOST+ZQTVrNYmSp/TAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUL4OjFHmd5B4OhrO6jBBhKiSWbkQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0w0T2pGSG1kNUI0T2hyTzZq QkJoS2lTV2JrUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF7 wfQwDQYJKoZIhvcNAQELBQADggEBAJWmPyfqhHKL9fJLUqfp3fi51pMfviSYQwtB 7ZQwaoC13CfXc01WPLuRCtaHixzKAODX28F4nLQV3Jrnns4xmuPyGTTUn/rhMf81 ZGtauSXQmLoAZ7GIm+JxYsuVDX0kyj2bbvs+nQE5WiKIzF6aOdfhB8EZP66DwvEP Z3V17947LniETmQ9glSNwHmsjNIdn/RBDAzlIFxQnSy5NlktAexEC78zyjsz9Yib xVNV1V/I4gjhRQ/KsCKqdDCsQdXMP7L6KaqQjmW7XfEi7lLSBkiJ44rBRFORXHxZ 3ZsAklO6JV58e3zT7Dp6jJo2dioB8cGaLLUmFHy0/9XTRC4ihCk= -----END CERTIFICATE-----Generated at Sun Aug 24 07:29:33 2025 by rpki-client