$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ove8WRlkFXsN8gv2EnoEU851R08.roa File: Ove8WRlkFXsN8gv2EnoEU851R08.roa (raw, json) Hash identifier: JKUDVBBNNbZk8C67oH+bBA8WhCsmOPPuw7aiXpNO6xo= Subject key identifier: 3A:F7:BC:59:19:64:15:7B:0D:F2:0B:F6:12:7A:04:53:CE:75:47:4F Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3A12 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ove8WRlkFXsN8gv2EnoEU851R08.roa Signing time: Fri 22 Aug 2025 08:46:58 +0000 ROA not before: Fri 22 Aug 2025 08:46:58 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.195.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14866 (0x3a12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:58 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3AF7BC591964157B0DF20BF6127A0453CE75474F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:4a:92:82:66:15:3f:6b:3c:34:70:aa:62:2a: 0c:8c:dd:b0:62:97:68:fb:73:ae:36:58:74:4b:7f: c6:98:95:36:87:41:9b:ea:8f:3e:c2:f6:67:6b:30: aa:69:da:4e:99:5d:93:77:c0:b0:62:72:7c:2e:2b: e2:d2:ca:0f:bc:65:9f:b5:19:7d:ba:fc:95:61:cf: d9:99:c6:77:65:52:b0:ef:60:47:31:46:aa:d6:8d: b3:b3:b9:ad:1a:4f:cc:b2:03:2a:39:74:7d:a8:e8: de:2f:3c:94:09:40:a7:98:02:5f:97:95:f8:d2:6e: e3:96:01:1f:09:17:83:6b:02:69:90:18:9a:c0:35: 94:e6:b5:bd:f8:67:54:45:27:93:68:87:f1:95:8c: a2:48:36:0a:b7:3b:ac:22:be:10:1f:02:c4:2e:1d: e4:ee:8c:c6:20:75:4d:e9:d6:67:b5:fa:1f:71:e7: 78:0e:82:5b:f8:9e:41:77:c1:37:09:97:77:28:40: 14:4d:1d:cd:35:38:82:2b:94:38:44:cd:60:2f:79: cf:7c:55:43:2a:b0:49:ed:fe:ed:23:f1:29:a5:ef: f8:e3:4a:91:90:f4:89:9f:45:a3:7e:7a:a1:3f:f9: e6:8e:21:6c:05:86:42:dc:07:56:59:6a:53:a5:f6: cd:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:F7:BC:59:19:64:15:7B:0D:F2:0B:F6:12:7A:04:53:CE:75:47:4F X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ove8WRlkFXsN8gv2EnoEU851R08.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.178.0/24 Signature Algorithm: sha256WithRSAEncryption 50:b6:d3:35:46:52:42:64:97:04:1a:ae:7f:7a:1b:0a:e1:46: b7:70:bd:54:22:32:29:c4:f1:00:4e:c8:d6:55:7d:5f:a6:61: a1:07:39:9c:fb:9f:3c:1a:f2:91:0b:3f:7d:51:0c:7a:54:a8: c0:38:6b:88:4f:a0:5b:d3:79:f1:36:8c:73:68:73:d5:4a:9d: d4:0a:6b:f5:e3:f2:76:25:2b:e2:3e:89:4f:25:49:29:dd:da: 62:cc:a7:0d:18:14:20:9b:5f:36:43:f4:6f:16:38:6d:62:e3: 7f:24:03:2e:66:1a:b7:13:5c:ac:9c:ca:b6:4d:22:cf:44:8a: ad:be:f6:ef:16:b4:5a:13:86:47:1b:62:c0:74:29:c0:03:4c: 0b:cc:9b:56:e3:49:93:8e:77:d1:8b:d3:df:b2:c0:1f:f4:a9: ae:06:3f:e8:75:c3:e6:6e:0d:a8:44:55:07:e7:56:fd:1d:c3: ad:a0:ed:fc:55:79:1c:ef:b5:64:2f:15:6b:35:c4:12:8a:72: 6f:a7:8a:cc:71:4e:dc:55:fe:af:75:0a:34:3f:bc:68:fd:d3: ac:86:7c:ca:9b:8f:da:1b:e6:5b:c4:1d:43:2b:bf:c4:77:2e: ac:54:bb:b3:32:db:77:02:27:37:5b:1e:1e:5e:42:f3:67:7b: 9f:95:67:d4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOhIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2NThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNBRjdCQzU5MTk2NDE1 N0IwREYyMEJGNjEyN0EwNDUzQ0U3NTQ3NEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDmSpKCZhU/azw0cKpiKgyM3bBil2j7c642WHRLf8aYlTaHQZvq jz7C9mdrMKpp2k6ZXZN3wLBicnwuK+LSyg+8ZZ+1GX26/JVhz9mZxndlUrDvYEcx RqrWjbOzua0aT8yyAyo5dH2o6N4vPJQJQKeYAl+XlfjSbuOWAR8JF4NrAmmQGJrA NZTmtb34Z1RFJ5Noh/GVjKJINgq3O6wivhAfAsQuHeTujMYgdU3p1me1+h9x53gO glv4nkF3wTcJl3coQBRNHc01OIIrlDhEzWAvec98VUMqsEnt/u0j8Sml7/jjSpGQ 9ImfRaN+eqE/+eaOIWwFhkLcB1ZZalOl9s21AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUOve8WRlkFXsN8gv2EnoEU851R08wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL092ZThXUmxrRlhzTjhndjJF bm9FVTg1MVIwOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB7 w7IwDQYJKoZIhvcNAQELBQADggEBAFC20zVGUkJklwQarn96GwrhRrdwvVQiMinE 8QBOyNZVfV+mYaEHOZz7nzwa8pELP31RDHpUqMA4a4hPoFvTefE2jHNoc9VKndQK a/Xj8nYlK+I+iU8lSSnd2mLMpw0YFCCbXzZD9G8WOG1i438kAy5mGrcTXKycyrZN Is9Eiq2+9u8WtFoThkcbYsB0KcADTAvMm1bjSZOOd9GL09+ywB/0qa4GP+h1w+Zu DahEVQfnVv0dw62g7fxVeRzvtWQvFWs1xBKKcm+nisxxTtxV/q91CjQ/vGj906yG fMqbj9ob5lvEHUMrv8R3LqxUu7My23cCJzdbHh5eQvNne5+VZ9Q= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:16 2025 by rpki-client