$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LfH6T2U85ET7ldtFli0UgcXHa-o.roa File: LfH6T2U85ET7ldtFli0UgcXHa-o.roa (raw, json) Hash identifier: sPfyNfb+E/IJaDEwj/bTMt36ytLDSVEggMGpbLVlOjg= Subject key identifier: 2D:F1:FA:4F:65:3C:E4:44:FB:95:DB:45:96:2D:14:81:C5:C7:6B:EA Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3A26 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LfH6T2U85ET7ldtFli0UgcXHa-o.roa Signing time: Fri 22 Aug 2025 08:47:04 +0000 ROA not before: Fri 22 Aug 2025 08:47:04 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.194.192.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14886 (0x3a26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:04 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2DF1FA4F653CE444FB95DB45962D1481C5C76BEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:fe:52:b1:a7:78:b5:35:a2:6c:e6:77:1e:07: ed:26:c7:32:44:4c:38:61:d7:9d:1d:d9:bd:b5:22: ed:55:d8:8a:69:e6:67:be:56:9c:77:85:09:fe:94: 78:8f:b1:a4:ee:5e:ff:d4:15:60:d5:b9:05:b5:ce: b3:6d:ee:98:d0:96:00:9b:44:d1:c9:1e:ef:c3:c4: 4b:d0:1e:3e:26:8b:c8:c8:0d:12:90:4a:c1:d3:fe: 8c:4f:e8:1f:e4:b9:b1:5f:07:89:6b:c7:0b:f5:86: c8:1a:84:2e:5b:bd:4f:f0:4e:02:47:a4:b1:d9:4d: f3:13:ad:a2:2c:df:e6:67:82:ba:d7:31:fb:7c:11: eb:41:59:47:48:e8:1c:44:c8:d3:e2:3f:2a:84:a4: 6a:28:e0:aa:97:a8:f0:a9:d5:bf:6a:25:e0:08:01: 91:81:e2:ea:dc:95:24:c3:c8:65:66:1e:15:3f:51: 36:c9:37:4a:2a:92:31:f9:43:07:20:61:31:09:2f: 2c:33:e9:9a:b9:3e:72:a0:0f:fd:ca:2f:a5:02:09: 3c:9e:f9:df:86:94:cf:f8:1b:cc:de:1a:e2:19:f4: 2a:de:b6:99:4d:e0:59:36:85:88:52:a5:14:c0:95: 9b:ba:18:ab:0b:1c:59:ab:50:51:0c:38:b8:eb:13: f5:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:F1:FA:4F:65:3C:E4:44:FB:95:DB:45:96:2D:14:81:C5:C7:6B:EA X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LfH6T2U85ET7ldtFli0UgcXHa-o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.192.0/22 Signature Algorithm: sha256WithRSAEncryption 8f:2e:7a:7c:83:ce:95:85:4c:05:af:4a:66:86:8a:90:86:1d: da:f8:81:b6:c6:16:21:ba:e3:5a:2b:06:67:fb:fb:67:6a:10: 8d:4a:15:7b:99:1c:2f:6c:35:95:fb:4f:e8:d6:b6:60:78:e7: 39:66:cd:1e:b3:c1:e8:fa:0d:f4:7e:7c:d2:0a:41:96:23:00: 8d:09:f4:79:30:85:92:2d:55:5d:d7:d8:67:50:86:48:6e:fb: 73:fc:da:d3:0d:8a:51:bd:cf:2c:f8:7d:98:a0:9b:90:5d:d8: 5f:6f:b4:b6:90:6a:da:17:8e:c9:3b:75:57:d2:4f:6f:ae:c0: 60:af:75:75:a2:57:b2:32:44:46:8f:37:94:42:07:0f:49:7f: 98:dc:a4:b3:49:ad:d1:25:25:21:85:e4:35:51:15:c0:e8:4e: e9:af:ef:3b:ff:2e:de:da:b4:3f:19:0b:11:73:b6:6f:ca:ca: 65:a4:29:74:5c:49:12:b3:ea:38:03:24:b9:0d:0a:1a:f2:79: e8:0e:73:2f:dc:67:67:28:7b:48:b1:29:71:0f:79:a5:83:15: ad:8a:06:4a:bf:d5:7a:8e:7c:14:2e:fa:31:59:25:c9:8b:91: 96:73:70:7e:57:fe:a9:97:e1:0f:ef:d8:23:6b:a7:cc:fa:21: f5:c1:56:af -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOiYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3MDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJERjFGQTRGNjUzQ0U0 NDRGQjk1REI0NTk2MkQxNDgxQzVDNzZCRUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDS/lKxp3i1NaJs5nceB+0mxzJETDhh150d2b21Iu1V2Ipp5me+ Vpx3hQn+lHiPsaTuXv/UFWDVuQW1zrNt7pjQlgCbRNHJHu/DxEvQHj4mi8jIDRKQ SsHT/oxP6B/kubFfB4lrxwv1hsgahC5bvU/wTgJHpLHZTfMTraIs3+ZngrrXMft8 EetBWUdI6BxEyNPiPyqEpGoo4KqXqPCp1b9qJeAIAZGB4urclSTDyGVmHhU/UTbJ N0oqkjH5QwcgYTEJLywz6Zq5PnKgD/3KL6UCCTye+d+GlM/4G8zeGuIZ9CretplN 4Fk2hYhSpRTAlZu6GKsLHFmrUFEMOLjrE/XzAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQULfH6T2U85ET7ldtFli0UgcXHa+owHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0xmSDZUMlU4NUVUN2xkdEZs aTBVZ2NYSGEtby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wsAwDQYJKoZIhvcNAQELBQADggEBAI8uenyDzpWFTAWvSmaGipCGHdr4gbbGFiG6 41orBmf7+2dqEI1KFXuZHC9sNZX7T+jWtmB45zlmzR6zwej6DfR+fNIKQZYjAI0J 9HkwhZItVV3X2GdQhkhu+3P82tMNilG9zyz4fZigm5Bd2F9vtLaQatoXjsk7dVfS T2+uwGCvdXWiV7IyREaPN5RCBw9Jf5jcpLNJrdElJSGF5DVRFcDoTumv7zv/Lt7a tD8ZCxFztm/KymWkKXRcSRKz6jgDJLkNChryeegOcy/cZ2coe0ixKXEPeaWDFa2K Bkq/1XqOfBQu+jFZJcmLkZZzcH5X/qmX4Q/v2CNrp8z6IfXBVq8= -----END CERTIFICATE-----Generated at Sun Aug 24 07:23:17 2025 by rpki-client