$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NfjkTXENBV85PWmc3abnZafDWhY.roa File: NfjkTXENBV85PWmc3abnZafDWhY.roa (raw, json) Hash identifier: oA0eCQLAoYs2/imIlh7mV4b7/tJItd0X9yGzRtRPtoU= Subject key identifier: 35:F8:E4:4D:71:0D:05:5F:39:3D:69:9C:DD:A6:E7:65:A7:C3:5A:16 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3813 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NfjkTXENBV85PWmc3abnZafDWhY.roa Signing time: Fri 22 Aug 2025 08:44:56 +0000 ROA not before: Fri 22 Aug 2025 08:44:56 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.194.200.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14355 (0x3813) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:44:56 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=35F8E44D710D055F393D699CDDA6E765A7C35A16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:35:aa:d9:de:b5:1b:8d:a0:21:8d:f1:77:67: 39:13:9c:53:b1:3c:6b:51:10:59:73:57:77:0c:92: e2:41:7f:cf:75:03:dc:5c:c5:f7:68:45:30:9e:de: 3d:74:fb:2b:31:08:96:2a:e5:20:43:ea:3f:8e:61: 74:78:1c:23:eb:96:e1:48:3d:65:f4:83:de:f8:32: 6e:08:1d:5e:21:0e:94:e8:8e:62:12:b9:92:59:4c: c6:45:a6:22:54:bb:7c:16:f5:e8:9b:c4:60:eb:2f: a7:5a:de:38:df:3a:09:37:a4:62:09:2d:0c:35:d6: a1:55:d3:93:c9:81:30:72:21:96:8f:99:ad:46:a4: 23:97:50:fc:0c:f4:eb:2f:6b:5f:4d:f3:f7:a0:66: 81:a0:07:eb:08:71:f8:f7:a0:e0:2d:56:f2:cc:12: 72:85:45:1e:2f:25:dc:88:59:db:5d:d8:66:33:42: 14:03:56:ef:0a:d9:46:97:70:ce:b6:d3:c0:5f:10: c6:c0:1d:3f:a4:f1:bb:c0:67:96:e0:4c:e5:f6:8e: 45:31:19:45:1d:8e:56:35:ff:68:b9:66:cd:72:2a: ba:5f:a7:1f:1f:ec:49:0f:31:fc:bb:75:7a:64:62: 1f:55:ee:34:31:4e:02:10:ab:a2:78:01:c5:9a:0b: d3:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:F8:E4:4D:71:0D:05:5F:39:3D:69:9C:DD:A6:E7:65:A7:C3:5A:16 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NfjkTXENBV85PWmc3abnZafDWhY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.200.0/21 Signature Algorithm: sha256WithRSAEncryption 38:3a:e0:d2:96:64:e3:d5:86:96:3f:d7:e2:89:00:7b:1f:b0: 05:48:f7:2e:e1:cc:9a:90:ae:98:89:8a:45:fe:fd:d7:7c:c4: ed:13:64:91:f3:77:69:ca:bc:43:5f:42:56:a2:19:a2:18:80: 90:8a:e0:ea:dc:0b:d2:78:30:51:24:de:74:b7:24:f3:45:35: c5:28:06:a5:bd:c9:c9:94:ab:59:6b:ec:7d:02:5c:bd:3f:e4: b8:79:bd:85:2c:40:f7:60:5b:59:0d:00:1b:3b:9c:7d:da:1a: e6:6c:b0:0d:0a:93:90:e3:a5:13:80:2d:ac:b8:10:51:97:03: 47:75:aa:87:97:70:77:59:de:7a:c3:8b:39:63:5a:fc:b3:2c: ae:ee:ea:90:4a:46:3c:86:09:8c:6f:77:97:b6:fe:96:e7:57: d6:a5:9e:55:23:31:8a:32:21:fc:8f:84:69:ac:40:d8:0a:cf: 2e:17:58:80:90:1b:66:3c:aa:be:ae:7f:da:07:6e:bd:58:07: e6:f3:31:c3:ab:83:6b:87:8c:f4:14:cd:b2:da:9d:b8:3b:6e: e7:1c:0c:ac:bc:28:d8:3e:96:8f:5b:ad:90:29:de:3c:fb:46: e1:81:bb:ce:8e:63:94:c0:dc:57:ce:2b:bd:d5:39:01:17:63: a9:55:07:ae -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOBMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ0NTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM1RjhFNDRENzEwRDA1 NUYzOTNENjk5Q0REQTZFNzY1QTdDMzVBMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDNarZ3rUbjaAhjfF3ZzkTnFOxPGtREFlzV3cMkuJBf891A9xc xfdoRTCe3j10+ysxCJYq5SBD6j+OYXR4HCPrluFIPWX0g974Mm4IHV4hDpTojmIS uZJZTMZFpiJUu3wW9eibxGDrL6da3jjfOgk3pGIJLQw11qFV05PJgTByIZaPma1G pCOXUPwM9Osva19N8/egZoGgB+sIcfj3oOAtVvLMEnKFRR4vJdyIWdtd2GYzQhQD Vu8K2UaXcM6208BfEMbAHT+k8bvAZ5bgTOX2jkUxGUUdjlY1/2i5Zs1yKrpfpx8f 7EkPMfy7dXpkYh9V7jQxTgIQq6J4AcWaC9PDAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUNfjkTXENBV85PWmc3abnZafDWhYwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL05mamtUWEVOQlY4NVBXbWMz YWJuWmFmRFdoWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wsgwDQYJKoZIhvcNAQELBQADggEBADg64NKWZOPVhpY/1+KJAHsfsAVI9y7hzJqQ rpiJikX+/dd8xO0TZJHzd2nKvENfQlaiGaIYgJCK4OrcC9J4MFEk3nS3JPNFNcUo BqW9ycmUq1lr7H0CXL0/5Lh5vYUsQPdgW1kNABs7nH3aGuZssA0Kk5DjpROALay4 EFGXA0d1qoeXcHdZ3nrDizljWvyzLK7u6pBKRjyGCYxvd5e2/pbnV9alnlUjMYoy IfyPhGmsQNgKzy4XWICQG2Y8qr6uf9oHbr1YB+bzMcOrg2uHjPQUzbLanbg7bucc DKy8KNg+lo9brZAp3jz7RuGBu86OY5TA3FfOK73VOQEXY6lVB64= -----END CERTIFICATE-----Generated at Sun Aug 24 07:31:56 2025 by rpki-client