$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OofO2AyX9PDKeXiqpHI4Mi1Uu00.roa File: OofO2AyX9PDKeXiqpHI4Mi1Uu00.roa (raw, json) Hash identifier: 3mZ1x+UVAB5eVzqhUv/0ij/JQ/lNy86MBF56l1MweNg= Subject key identifier: 3A:87:CE:D8:0C:97:F4:F0:CA:79:78:AA:A4:72:38:32:2D:54:BB:4D Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3AD8 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OofO2AyX9PDKeXiqpHI4Mi1Uu00.roa Signing time: Fri 22 Aug 2025 08:47:50 +0000 ROA not before: Fri 22 Aug 2025 08:47:50 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 103.224.192.0/22 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15064 (0x3ad8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:50 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3A87CED80C97F4F0CA7978AAA47238322D54BB4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:cd:73:2a:df:0c:3e:a7:82:a0:97:c9:37:4f: 45:3f:ba:a4:da:3c:ef:06:02:72:78:11:1b:2b:52: 39:b1:6f:12:f9:55:3b:5a:2a:17:f2:ab:6f:2f:42: 14:20:b1:cb:89:53:0f:44:7a:f5:2e:90:b8:17:dd: 3e:a7:aa:e7:e0:63:82:18:f8:c7:07:37:7c:56:8d: e5:7c:63:5e:61:db:31:31:d0:a5:14:f5:92:1b:c4: 7e:b7:65:60:79:77:c6:d6:4e:83:48:38:3c:ff:e6: a4:d6:ed:54:3b:99:4f:6e:a6:3d:60:66:00:ae:ec: b9:b2:b1:bb:e5:dc:5f:69:64:83:e2:ac:dc:7f:b0: 01:11:05:76:2d:ea:0a:75:c4:c7:f1:d3:da:92:11: c5:9a:71:94:78:a6:94:1f:ac:49:5e:ed:b7:8b:89: a8:79:92:22:d4:de:db:3d:a3:46:19:f9:68:8e:23: 16:3b:f9:06:38:1f:af:97:09:3c:c2:92:f3:62:e1: 13:6f:f6:23:ee:ab:e0:9c:7f:80:f4:8f:2d:ff:16: de:96:0c:01:52:5c:22:d4:4c:12:ea:e8:60:48:e5: 66:77:e0:bb:1d:71:23:21:02:90:6c:88:22:06:a7: c2:82:40:da:4c:74:07:7b:ff:f9:0a:5b:43:2a:db: 65:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:87:CE:D8:0C:97:F4:F0:CA:79:78:AA:A4:72:38:32:2D:54:BB:4D X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OofO2AyX9PDKeXiqpHI4Mi1Uu00.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.224.192.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:99:59:c7:57:a5:be:f4:6c:65:35:a2:a6:12:d7:4b:82:b5: 65:2b:6f:82:47:03:68:ef:44:5a:93:63:9a:52:34:27:a0:79: f8:0e:9d:df:57:6d:a8:b9:e5:22:44:22:d1:08:49:fd:98:65: 10:77:14:f5:2c:57:2a:20:0b:eb:e8:4f:02:02:94:be:71:eb: 5a:ae:60:6a:8d:4f:37:5d:32:02:51:e3:42:ce:9d:2c:6c:17: dd:6a:60:40:0b:9b:48:bf:3b:ef:21:58:33:32:1d:76:9c:5f: 65:a0:79:a4:59:39:31:78:33:44:b6:77:0c:64:05:0c:e1:ee: 51:47:a1:69:ed:dc:7f:ed:ce:8c:29:cc:a9:2c:13:7b:c8:82: d4:f3:c7:79:83:55:e2:74:ec:37:ab:e7:55:c0:76:05:17:7b: 4e:75:ba:87:5f:0b:87:4b:b0:e3:91:d4:01:f7:89:26:9a:db: cb:3e:09:51:81:65:99:64:a1:c0:ae:99:e8:8c:0f:e3:b7:1e: 7d:f7:46:b1:c9:d1:41:4b:d8:2b:96:d7:0d:06:18:79:04:c2: d2:ff:5f:f0:c6:9f:a8:5a:e8:13:0d:9d:fa:d5:0a:b8:35:79: c3:88:cb:e2:b0:ff:72:1e:1f:4c:b5:39:ca:cb:71:67:4b:a6: d3:86:d8:47 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOtgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3NTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNBODdDRUQ4MEM5N0Y0 RjBDQTc5NzhBQUE0NzIzODMyMkQ1NEJCNEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnzXMq3ww+p4Kgl8k3T0U/uqTaPO8GAnJ4ERsrUjmxbxL5VTta Khfyq28vQhQgscuJUw9EevUukLgX3T6nqufgY4IY+McHN3xWjeV8Y15h2zEx0KUU 9ZIbxH63ZWB5d8bWToNIODz/5qTW7VQ7mU9upj1gZgCu7Lmysbvl3F9pZIPirNx/ sAERBXYt6gp1xMfx09qSEcWacZR4ppQfrEle7beLiah5kiLU3ts9o0YZ+WiOIxY7 +QY4H6+XCTzCkvNi4RNv9iPuq+Ccf4D0jy3/Ft6WDAFSXCLUTBLq6GBI5WZ34Lsd cSMhApBsiCIGp8KCQNpMdAd7//kKW0Mq22VbAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUOofO2AyX9PDKeXiqpHI4Mi1Uu00wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL09vZk8yQXlYOVBES2VYaXFw SEk0TWkxVXUwMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn 4MAwDQYJKoZIhvcNAQELBQADggEBABqZWcdXpb70bGU1oqYS10uCtWUrb4JHA2jv RFqTY5pSNCegefgOnd9Xbai55SJEItEISf2YZRB3FPUsVyogC+voTwIClL5x61qu YGqNTzddMgJR40LOnSxsF91qYEALm0i/O+8hWDMyHXacX2WgeaRZOTF4M0S2dwxk BQzh7lFHoWnt3H/tzowpzKksE3vIgtTzx3mDVeJ07Der51XAdgUXe051uodfC4dL sOOR1AH3iSaa28s+CVGBZZlkocCumeiMD+O3Hn33RrHJ0UFL2CuW1w0GGHkEwtL/ X/DGn6ha6BMNnfrVCrg1ecOIy+Kw/3IeH0y1OcrLcWdLptOG2Ec= -----END CERTIFICATE-----Generated at Sun Aug 24 07:31:57 2025 by rpki-client