$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OJIbjNdQE5TdWwEPRHQeDCsdQAk.roa File: OJIbjNdQE5TdWwEPRHQeDCsdQAk.roa (raw, json) Hash identifier: qFcBY6bOHunyKqbb4FedmdK86MNRBAea79Hk+388RRo= Subject key identifier: 38:92:1B:8C:D7:50:13:94:DD:5B:01:0F:44:74:1E:0C:2B:1D:40:09 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3AE2 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OJIbjNdQE5TdWwEPRHQeDCsdQAk.roa Signing time: Fri 22 Aug 2025 08:47:51 +0000 ROA not before: Fri 22 Aug 2025 08:47:51 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.193.192.0/19 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15074 (0x3ae2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:51 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=38921B8CD7501394DD5B010F44741E0C2B1D4009 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:30:e1:32:fe:f8:b0:29:9c:25:1e:0b:17:b1: 55:e8:df:91:2d:1a:ea:67:b5:33:11:63:e0:30:13: bc:f6:65:eb:14:95:0a:41:af:49:e5:7b:a5:e1:c6: d3:b5:09:9b:f2:72:9b:7e:68:ee:9a:f1:2c:46:c2: 7b:a2:d8:68:23:b5:47:80:da:ab:95:12:18:46:81: 9c:40:a6:50:5b:76:d6:2b:54:95:65:7e:c5:79:78: 01:68:d8:0d:e3:97:a8:32:38:13:54:b4:68:c9:93: 82:f4:4a:58:f3:a5:68:7f:71:d9:9b:80:c3:17:01: 0b:86:ee:5b:ab:df:21:33:73:35:9a:80:58:bd:14: af:c8:a7:ed:8a:87:9f:0f:53:94:f9:8e:1b:50:10: eb:79:3e:74:9e:92:9a:f7:af:90:ab:0a:d0:74:27: aa:70:4c:7d:53:78:5e:68:c1:15:d5:dc:7e:56:2a: 7e:1d:91:f6:65:bf:62:19:43:61:5b:35:7f:cc:9a: ae:99:b8:6f:39:ee:eb:74:f9:97:98:77:62:1a:ec: 8d:df:ad:3b:76:54:e3:fe:f6:ae:5f:b7:f6:31:02: c3:8b:da:65:32:16:c2:53:7d:3b:ba:49:03:36:1a: cd:d7:af:04:a7:28:d2:d0:ba:aa:1e:bb:20:bf:b6: c2:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:92:1B:8C:D7:50:13:94:DD:5B:01:0F:44:74:1E:0C:2B:1D:40:09 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OJIbjNdQE5TdWwEPRHQeDCsdQAk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.192.0/19 Signature Algorithm: sha256WithRSAEncryption 05:e1:4c:10:9a:2b:98:78:94:21:00:7b:12:1a:23:cd:df:93: 88:53:05:69:ff:50:ab:24:39:85:af:fa:70:1a:3a:db:23:a0: ac:93:a3:0e:37:04:c7:10:7b:a7:c7:b4:d6:c4:27:66:67:97: 13:fb:91:4f:b4:0c:39:f9:dc:bb:fa:d0:66:ce:e2:93:40:f2: c9:6a:fd:e3:d6:bc:44:97:0f:84:83:14:1b:78:e9:dc:7e:d5: 65:9a:15:b9:68:fc:a2:83:c2:68:24:e1:c9:03:e7:ff:07:f2: 81:a9:40:9c:a6:1e:11:d1:59:53:e8:7c:c8:29:fd:fa:6d:29: 08:11:72:84:66:a0:7e:b3:2f:0d:bd:bb:88:b2:cc:56:52:8e: b2:58:c8:91:17:a8:47:ca:03:94:40:1b:20:93:de:43:f5:5a: 68:17:e8:d6:e6:f5:9a:a5:8f:03:6c:cd:a7:f8:38:5d:08:d9: 4f:4a:73:fd:36:f4:c6:66:b1:d1:71:aa:52:bd:04:e0:35:21: c2:8b:38:09:30:ba:0d:1f:c3:e0:53:f5:5f:b5:88:fe:73:6a: 07:d6:d2:cb:01:83:6a:f4:60:2a:62:aa:02:48:43:2a:53:a0: a2:9d:ba:1e:cb:5e:0d:fb:4e:53:8a:13:84:2a:70:7e:ac:6e: af:7c:ad:cb -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOuIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3NTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM4OTIxQjhDRDc1MDEz OTRERDVCMDEwRjQ0NzQxRTBDMkIxRDQwMDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuMOEy/viwKZwlHgsXsVXo35EtGupntTMRY+AwE7z2ZesUlQpB r0nle6XhxtO1CZvycpt+aO6a8SxGwnui2GgjtUeA2quVEhhGgZxAplBbdtYrVJVl fsV5eAFo2A3jl6gyOBNUtGjJk4L0SljzpWh/cdmbgMMXAQuG7lur3yEzczWagFi9 FK/Ip+2Kh58PU5T5jhtQEOt5PnSekpr3r5CrCtB0J6pwTH1TeF5owRXV3H5WKn4d kfZlv2IZQ2FbNX/Mmq6ZuG857ut0+ZeYd2Ia7I3frTt2VOP+9q5ft/YxAsOL2mUy FsJTfTu6SQM2Gs3XrwSnKNLQuqoeuyC/tsLdAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUOJIbjNdQE5TdWwEPRHQeDCsdQAkwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL09KSWJqTmRRRTVUZFd3RVBS SFFlRENzZFFBay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV7 wcAwDQYJKoZIhvcNAQELBQADggEBAAXhTBCaK5h4lCEAexIaI83fk4hTBWn/UKsk OYWv+nAaOtsjoKyTow43BMcQe6fHtNbEJ2ZnlxP7kU+0DDn53Lv60GbO4pNA8slq /ePWvESXD4SDFBt46dx+1WWaFblo/KKDwmgk4ckD5/8H8oGpQJymHhHRWVPofMgp /fptKQgRcoRmoH6zLw29u4iyzFZSjrJYyJEXqEfKA5RAGyCT3kP1WmgX6Nbm9Zql jwNszaf4OF0I2U9Kc/029MZmsdFxqlK9BOA1IcKLOAkwug0fw+BT9V+1iP5zagfW 0ssBg2r0YCpiqgJIQypToKKduh7LXg37TlOKE4QqcH6sbq98rcs= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:29 2025 by rpki-client