$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/P3bJzEJ8H0vAQLpABgT-W9pY3oE.roa File: P3bJzEJ8H0vAQLpABgT-W9pY3oE.roa (raw, json) Hash identifier: hJU9STlXmjwPnAK5+NiIjEvrqPCpJuDE7LU3a6IrpOw= Subject key identifier: 3F:76:C9:CC:42:7C:1F:4B:C0:40:BA:40:06:04:FE:5B:DA:58:DE:81 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 39A9 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/P3bJzEJ8H0vAQLpABgT-W9pY3oE.roa Signing time: Fri 22 Aug 2025 08:46:31 +0000 ROA not before: Fri 22 Aug 2025 08:46:31 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 123.194.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14761 (0x39a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:31 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3F76C9CC427C1F4BC040BA400604FE5BDA58DE81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e3:a9:98:b6:a3:91:d0:ec:41:73:00:bd:94: f7:62:01:67:c8:90:6e:3c:3c:15:0e:ea:50:d9:62: be:c9:2b:6a:25:d2:41:37:11:72:5f:c3:fa:ab:b5: e5:91:10:b1:3b:42:6c:cf:37:f6:75:6e:5d:fa:27: 21:98:69:15:aa:ac:08:74:bf:a8:5a:81:4e:7c:80: 7b:d8:c7:a2:10:35:a2:a6:e9:98:07:b9:cd:79:b7: 19:4f:98:92:2b:df:1e:18:58:23:2e:4f:f6:08:04: f0:b9:87:92:95:7f:54:08:cc:85:5f:c7:1d:0d:b1: e9:5a:52:bf:0d:f9:ad:2b:dc:45:a5:79:09:5b:72: 11:8c:2a:88:f4:cd:6c:6d:ff:7c:00:02:4b:cf:41: ca:90:30:a6:af:d4:a6:78:0e:5d:0c:25:14:99:37: 69:a4:c5:b9:f2:d3:cd:fa:93:a5:29:29:f8:2b:89: 23:2e:27:87:a0:dc:89:95:da:38:95:9e:2a:ef:ff: fb:09:eb:32:44:7f:8f:d5:69:57:0b:a7:28:66:73: 6a:bc:e8:19:ec:00:6c:9b:5b:9b:bf:c7:57:f4:74: ac:0e:02:4f:e9:5a:7b:db:eb:a8:9f:be:77:8b:25: 67:ad:00:c4:dd:fd:c6:fb:31:6b:ef:2f:72:d0:79: ab:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:76:C9:CC:42:7C:1F:4B:C0:40:BA:40:06:04:FE:5B:DA:58:DE:81 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/P3bJzEJ8H0vAQLpABgT-W9pY3oE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.160.0/19 Signature Algorithm: sha256WithRSAEncryption a8:c0:16:75:12:2c:23:94:c9:5c:08:5f:ec:d1:da:ef:16:03: 87:5c:1a:9d:61:29:5d:6a:cd:89:ee:c3:02:4a:23:6e:a8:af: 61:42:9c:ff:06:b4:ab:21:48:6f:85:b4:39:41:c3:b3:da:f3: 68:c2:33:84:cc:10:8b:89:54:80:6f:22:a1:09:59:a4:da:e3: 6d:5e:7f:2c:4a:5f:65:a8:45:10:27:ac:14:03:06:4b:cb:07: 6a:12:49:17:e3:6d:cc:4c:07:0d:96:47:20:1d:54:05:1d:43: 18:7b:d7:9b:4b:b4:c1:91:8a:6d:82:09:6b:10:01:7c:9f:2e: b0:61:c4:98:04:11:dd:d9:59:fa:20:2b:45:cb:9e:56:7d:2c: 68:03:f6:f6:18:93:00:aa:e5:0d:63:98:b7:9a:68:a6:71:70: 18:e8:fa:47:60:fe:ad:70:86:47:76:8d:6a:dd:8d:15:ef:d5: 44:1d:26:1a:02:6b:90:b3:17:fc:4b:16:85:7b:b2:c3:38:75: da:7a:dd:53:57:e3:19:30:ce:95:28:d3:a2:65:97:d8:33:30: 05:8f:f3:f7:3d:c8:3a:0f:db:59:49:78:fd:78:5b:d8:db:e4: 94:4f:c4:90:84:f1:b6:c0:fe:4d:5b:37:c4:7c:ac:7a:d4:10: 87:b0:03:0c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOakwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MzFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNGNzZDOUNDNDI3QzFG NEJDMDQwQkE0MDA2MDRGRTVCREE1OERFODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCv46mYtqOR0OxBcwC9lPdiAWfIkG48PBUO6lDZYr7JK2ol0kE3 EXJfw/qrteWRELE7QmzPN/Z1bl36JyGYaRWqrAh0v6hagU58gHvYx6IQNaKm6ZgH uc15txlPmJIr3x4YWCMuT/YIBPC5h5KVf1QIzIVfxx0NselaUr8N+a0r3EWleQlb chGMKoj0zWxt/3wAAkvPQcqQMKav1KZ4Dl0MJRSZN2mkxbny0836k6UpKfgriSMu J4eg3ImV2jiVnirv//sJ6zJEf4/VaVcLpyhmc2q86BnsAGybW5u/x1f0dKwOAk/p Wnvb66ifvneLJWetAMTd/cb7MWvvL3LQeatNAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUP3bJzEJ8H0vAQLpABgT+W9pY3oEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1AzYkp6RUo4SDB2QVFMcEFC Z1QtVzlwWTNvRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV7 wqAwDQYJKoZIhvcNAQELBQADggEBAKjAFnUSLCOUyVwIX+zR2u8WA4dcGp1hKV1q zYnuwwJKI26or2FCnP8GtKshSG+FtDlBw7Pa82jCM4TMEIuJVIBvIqEJWaTa421e fyxKX2WoRRAnrBQDBkvLB2oSSRfjbcxMBw2WRyAdVAUdQxh715tLtMGRim2CCWsQ AXyfLrBhxJgEEd3ZWfogK0XLnlZ9LGgD9vYYkwCq5Q1jmLeaaKZxcBjo+kdg/q1w hkd2jWrdjRXv1UQdJhoCa5CzF/xLFoV7ssM4ddp63VNX4xkwzpUo06Jll9gzMAWP 8/c9yDoP21lJeP14W9jb5JRPxJCE8bbA/k1bN8R8rHrUEIewAww= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:52 2025 by rpki-client