$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OEDAqF6jngoK3IiynmLntqzITHw.roa File: OEDAqF6jngoK3IiynmLntqzITHw.roa (raw, json) Hash identifier: YPYbd/f+w5oGiESKk2cmyO3quuwvIw+h6dhlRbdvkPc= Subject key identifier: 38:40:C0:A8:5E:A3:9E:0A:0A:DC:88:B2:9E:62:E7:B6:AC:C8:4C:7C Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 37F0 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OEDAqF6jngoK3IiynmLntqzITHw.roa Signing time: Fri 22 Aug 2025 08:44:49 +0000 ROA not before: Fri 22 Aug 2025 08:44:49 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.195.8.192/26 maxlen: 26 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14320 (0x37f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:44:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3840C0A85EA39E0A0ADC88B29E62E7B6ACC84C7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:37:ad:a3:8b:5b:47:87:d1:72:52:c1:30:46: 41:fc:06:71:c5:3a:98:38:81:4f:e1:6b:b5:1f:cd: 92:9e:88:dd:92:7e:17:58:18:ec:7c:52:59:4e:2c: a6:43:f6:5c:0d:cb:9e:b5:bd:38:6f:49:ff:ef:3b: 2f:49:78:4d:34:23:8b:db:9e:56:fb:49:dd:64:73: 77:6c:73:69:15:ca:30:71:a6:44:c6:56:b9:96:91: e7:07:a5:90:0f:37:8b:c6:10:14:58:93:a4:d6:45: f3:0a:65:83:40:49:27:ff:6b:44:71:15:ec:84:ff: 13:f8:48:85:d4:8d:86:e3:da:0f:0f:ed:7d:98:18: f6:74:83:ab:a8:74:a3:d8:0e:8a:76:db:7c:1f:aa: e5:ea:8c:33:9a:a5:75:08:8f:b8:9b:11:9d:e3:a3: 84:67:7e:e4:ef:ea:eb:6d:45:60:ee:4a:69:02:b1: 4c:38:55:e7:d6:db:41:8d:bd:bb:7f:7c:cc:b3:df: 66:5e:a3:1f:78:2a:86:39:68:18:85:41:1b:1b:33: 64:26:6d:0c:d6:4e:6b:2d:16:60:3f:d2:b2:f9:a1: eb:f9:aa:2e:1b:25:46:9e:80:87:bd:f4:7f:08:da: 42:75:d7:73:3e:36:f0:e1:0e:f5:8b:f5:48:87:43: db:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:40:C0:A8:5E:A3:9E:0A:0A:DC:88:B2:9E:62:E7:B6:AC:C8:4C:7C X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OEDAqF6jngoK3IiynmLntqzITHw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.8.192/26 Signature Algorithm: sha256WithRSAEncryption a4:da:6b:18:45:18:f4:82:0b:a8:49:ac:37:84:ad:bd:19:d8: b3:1e:3f:15:d2:f2:85:5b:b4:26:b3:e9:c8:d9:97:5d:08:92: 88:ad:6f:e2:62:e3:c4:6e:fa:c1:69:2f:34:1a:5a:4b:92:4f: 65:da:b0:ac:84:51:60:88:a0:28:c6:1e:2e:c3:26:a2:28:5c: 62:48:ef:7c:4e:b0:57:b0:bc:4d:d4:a5:51:43:d0:15:51:b5: cf:83:2d:a2:9c:80:52:58:99:8d:48:9d:68:3c:6b:cc:0a:d3: cb:a3:c4:d2:68:58:c6:49:20:26:14:3f:c8:3c:cf:0c:2f:61: b0:68:cb:02:bb:42:9a:e5:a4:34:d8:5e:8d:e1:44:5f:00:64: ad:cd:67:b8:13:40:0f:e0:11:95:9c:dc:81:e4:bc:90:99:a2: c4:f4:10:56:ba:54:24:3c:1b:60:47:16:93:5c:e2:d2:03:23: b2:28:15:22:cc:87:fd:39:60:57:63:25:7b:10:be:f5:2b:67: 0c:97:fe:e3:c2:91:4d:13:0c:5a:df:9b:1d:8f:f4:cf:7c:61: 1b:80:e9:7e:cf:8c:7f:0a:86:a9:4b:22:d8:7a:ee:35:d1:4a: b5:28:1c:d3:6c:8e:78:7c:f0:58:24:6f:c6:d5:be:91:74:c0: 1a:08:b7:1c -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICN/AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ0NDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM4NDBDMEE4NUVBMzlF MEEwQURDODhCMjlFNjJFN0I2QUNDODRDN0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjN62ji1tHh9FyUsEwRkH8BnHFOpg4gU/ha7UfzZKeiN2SfhdY GOx8UllOLKZD9lwNy561vThvSf/vOy9JeE00I4vbnlb7Sd1kc3dsc2kVyjBxpkTG VrmWkecHpZAPN4vGEBRYk6TWRfMKZYNASSf/a0RxFeyE/xP4SIXUjYbj2g8P7X2Y GPZ0g6uodKPYDop223wfquXqjDOapXUIj7ibEZ3jo4RnfuTv6uttRWDuSmkCsUw4 VefW20GNvbt/fMyz32Zeox94KoY5aBiFQRsbM2QmbQzWTmstFmA/0rL5oev5qi4b JUaegIe99H8I2kJ113M+NvDhDvWL9UiHQ9s1AgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUOEDAqF6jngoK3IiynmLntqzITHwwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL09FREFxRjZqbmdvSzNJaXlu bUxudHF6SVRIdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQZ7 wwjAMA0GCSqGSIb3DQEBCwUAA4IBAQCk2msYRRj0gguoSaw3hK29GdizHj8V0vKF W7Qms+nI2ZddCJKIrW/iYuPEbvrBaS80GlpLkk9l2rCshFFgiKAoxh4uwyaiKFxi SO98TrBXsLxN1KVRQ9AVUbXPgy2inIBSWJmNSJ1oPGvMCtPLo8TSaFjGSSAmFD/I PM8ML2GwaMsCu0Ka5aQ02F6N4URfAGStzWe4E0AP4BGVnNyB5LyQmaLE9BBWulQk PBtgRxaTXOLSAyOyKBUizIf9OWBXYyV7EL71K2cMl/7jwpFNEwxa35sdj/TPfGEb gOl+z4x/CoapSyLYeu410Uq1KBzTbI54fPBYJG/G1b6RdMAaCLcc -----END CERTIFICATE-----Generated at Sun Aug 24 07:25:26 2025 by rpki-client