$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/M-e5RZMRJ9lOnQmY4kNUD5-dEyo.roa File: M-e5RZMRJ9lOnQmY4kNUD5-dEyo.roa (raw, json) Hash identifier: R02vYtI9Yyt7eaTbMmcQjidQZn21S/3nBpaCY729Kc8= Subject key identifier: 33:E7:B9:45:93:11:27:D9:4E:9D:09:98:E2:43:54:0F:9F:9D:13:2A Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 39C8 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/M-e5RZMRJ9lOnQmY4kNUD5-dEyo.roa Signing time: Fri 22 Aug 2025 08:46:39 +0000 ROA not before: Fri 22 Aug 2025 08:46:39 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.195.88.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14792 (0x39c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:39 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=33E7B945931127D94E9D0998E243540F9F9D132A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:53:c9:80:2f:7b:ae:6f:b6:98:cf:3b:91:55: 80:e8:74:7f:92:7e:12:df:50:1a:7d:a4:19:62:13: 04:93:c1:f8:1a:fe:37:98:3c:14:28:7f:ca:06:97: 1c:31:8d:ce:66:0e:df:e5:9e:c7:31:f3:f9:f2:9f: 0c:9a:cf:f1:cb:8e:5f:07:66:eb:94:a0:24:bb:36: b8:0d:84:e2:65:ca:9b:50:0d:9c:c3:b2:36:bd:d9: d8:a5:ef:d8:d6:7d:2e:a0:a8:a0:06:43:5a:ef:d6: 73:55:82:97:40:ac:22:01:17:1b:63:d3:09:e6:fd: bf:ec:d5:b5:1d:88:bf:3a:04:70:72:0b:42:da:7d: f5:c5:df:c6:2a:45:d3:1b:07:e6:f8:6b:5c:ab:8f: 73:ce:b0:c0:7b:f1:95:f5:1c:54:56:ce:4c:d2:80: 7a:cd:a5:3c:b3:e7:f0:3d:25:11:79:a1:51:c9:d3: d1:04:32:f7:59:e0:b9:b2:60:9e:dd:82:a4:47:73: c6:df:96:95:a6:79:46:e4:f6:a3:3f:d7:17:2d:9f: 09:21:1a:f6:75:15:d5:9f:b9:ee:ff:d0:a5:5c:6f: 17:52:74:45:74:59:c6:7f:71:7c:7e:0f:a4:a6:30: 52:36:13:ba:c1:ae:64:34:f8:14:09:b4:3e:71:a5: 42:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:E7:B9:45:93:11:27:D9:4E:9D:09:98:E2:43:54:0F:9F:9D:13:2A X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/M-e5RZMRJ9lOnQmY4kNUD5-dEyo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.88.0/21 Signature Algorithm: sha256WithRSAEncryption 07:28:ee:86:c0:af:0f:19:55:49:6c:bc:09:5a:2b:ce:60:9b: de:ea:e4:4b:53:1a:29:86:44:8b:85:d6:37:5f:72:8b:72:e4: ef:10:b2:26:41:a5:20:e3:a4:07:c3:14:e7:32:2b:8d:27:7c: 2c:f2:52:ce:64:72:da:38:2b:68:97:d1:0e:ab:f6:db:8a:31: f5:d5:ed:3b:aa:b5:d0:85:af:aa:66:a8:34:22:c2:59:48:b1: 2e:d0:b8:ce:b0:29:b3:63:21:f7:9c:42:d8:56:4f:7d:fc:d5: 00:f1:a2:92:47:d4:8b:22:5c:81:4e:d2:97:11:cd:b7:f8:fb: 6e:5d:ca:b5:56:c9:9e:ac:4a:cf:4b:ee:ad:dc:a5:2f:27:b7: 59:29:0f:e3:41:1d:d1:e0:79:9f:88:ba:39:ae:71:29:0d:67: 87:d0:4f:3c:26:6a:43:41:43:17:9f:f0:65:34:66:44:5c:11: a5:14:8b:90:65:74:53:b3:94:d7:66:1b:03:23:65:3f:20:30: 19:61:6d:2e:a1:14:42:34:a1:4c:41:bc:fb:5e:ff:d7:32:b3: a9:55:3c:16:6c:fd:d8:e3:a1:24:52:c6:59:1a:e2:6e:78:f5: 2e:64:79:ad:36:32:e9:04:39:28:5d:0d:9b:91:c1:e8:52:a5: 2b:f3:76:63 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOcgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MzlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDMzRTdCOTQ1OTMxMTI3 RDk0RTlEMDk5OEUyNDM1NDBGOUY5RDEzMkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD4U8mAL3uub7aYzzuRVYDodH+SfhLfUBp9pBliEwSTwfga/jeY PBQof8oGlxwxjc5mDt/lnscx8/nynwyaz/HLjl8HZuuUoCS7NrgNhOJlyptQDZzD sja92dil79jWfS6gqKAGQ1rv1nNVgpdArCIBFxtj0wnm/b/s1bUdiL86BHByC0La ffXF38YqRdMbB+b4a1yrj3POsMB78ZX1HFRWzkzSgHrNpTyz5/A9JRF5oVHJ09EE MvdZ4LmyYJ7dgqRHc8bflpWmeUbk9qM/1xctnwkhGvZ1FdWfue7/0KVcbxdSdEV0 WcZ/cXx+D6SmMFI2E7rBrmQ0+BQJtD5xpUI1AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUM+e5RZMRJ9lOnQmY4kNUD5+dEyowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL00tZTVSWk1SSjlsT25RbVk0 a05VRDUtZEV5by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 w1gwDQYJKoZIhvcNAQELBQADggEBAAco7obArw8ZVUlsvAlaK85gm97q5EtTGimG RIuF1jdfcoty5O8QsiZBpSDjpAfDFOcyK40nfCzyUs5kcto4K2iX0Q6r9tuKMfXV 7TuqtdCFr6pmqDQiwllIsS7QuM6wKbNjIfecQthWT3381QDxopJH1IsiXIFO0pcR zbf4+25dyrVWyZ6sSs9L7q3cpS8nt1kpD+NBHdHgeZ+IujmucSkNZ4fQTzwmakNB Qxef8GU0ZkRcEaUUi5BldFOzlNdmGwMjZT8gMBlhbS6hFEI0oUxBvPte/9cys6lV PBZs/djjoSRSxlka4m549S5kea02MukEOShdDZuRwehSpSvzdmM= -----END CERTIFICATE-----Generated at Sun Aug 24 07:29:34 2025 by rpki-client