$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q_pe5P9yc_8SydaI_0_jd8IhxJQ.roa File: Q_pe5P9yc_8SydaI_0_jd8IhxJQ.roa (raw, json) Hash identifier: 0S84pWEUT6FF8NGSOS7pxB79faoHuymnD7EOrVN6EXg= Subject key identifier: 43:FA:5E:E4:FF:72:73:FF:12:C9:D6:88:FF:4F:E3:77:C2:21:C4:94 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 384B Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q_pe5P9yc_8SydaI_0_jd8IhxJQ.roa Signing time: Fri 22 Aug 2025 08:45:09 +0000 ROA not before: Fri 22 Aug 2025 08:45:09 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.192.40.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14411 (0x384b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:09 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=43FA5EE4FF7273FF12C9D688FF4FE377C221C494 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0e:46:5f:c7:55:f1:f2:dd:6c:27:ce:77:68: 5c:b3:b7:35:24:a4:80:59:2b:6d:52:19:19:cd:9f: e5:28:70:88:ba:fd:61:2d:0d:ae:22:c4:4a:b7:06: 05:24:33:c6:61:62:11:d9:ae:60:aa:35:58:87:21: 75:aa:ca:31:a3:6a:8f:c6:3d:55:fc:03:9f:69:02: 12:7e:07:9e:a2:5e:10:61:44:a0:8b:d9:9a:78:b9: 1c:b0:27:23:32:ab:39:0c:ff:df:6c:89:c7:bd:73: c1:b3:5d:62:7a:cb:ab:39:0e:9d:1c:bd:5c:1d:04: 10:4b:2c:81:11:d4:38:79:f1:32:ef:b6:60:3a:9d: 4d:10:b8:99:f2:57:9c:c4:9a:78:8f:fb:f7:22:a6: d0:cc:f5:4f:b0:61:0a:51:47:c5:8a:10:ac:14:ee: a5:97:c4:f5:d4:17:22:ae:d2:2a:ad:a2:cd:00:15: cb:3c:da:92:aa:ed:9d:f9:66:4f:34:e3:b8:9f:37: 19:40:19:ed:87:fa:72:b8:9d:32:2a:b0:da:86:5a: 48:b1:80:41:2f:23:0b:96:e7:21:dc:ee:0a:98:81: 0d:e4:27:77:28:04:ec:19:dd:78:ba:f0:2a:fb:ea: 22:6f:3d:44:0c:12:54:e2:3d:27:c6:b3:66:85:1b: d4:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:FA:5E:E4:FF:72:73:FF:12:C9:D6:88:FF:4F:E3:77:C2:21:C4:94 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q_pe5P9yc_8SydaI_0_jd8IhxJQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.192.40.0/22 Signature Algorithm: sha256WithRSAEncryption 38:0e:37:66:8f:e0:cf:1e:0f:55:c1:83:bb:66:57:d5:a0:b8: f9:49:59:d0:77:7b:ae:7b:57:61:68:08:25:71:ad:20:a4:dd: 54:e9:5c:6f:c0:29:97:b1:b1:5b:e5:19:03:75:52:98:c3:f0: 19:32:7a:96:6d:da:ea:6e:6b:50:0e:ad:93:dd:f8:64:81:f9: 4c:10:13:59:26:74:d0:b0:24:c6:2a:62:34:9b:79:1e:8a:8a: d5:63:01:ca:ad:62:4a:a9:97:57:e1:d4:0a:6e:7c:7c:bd:30: e7:f4:bf:cc:4c:7a:79:aa:4d:67:ec:77:31:fd:53:82:54:68: eb:ac:ae:d6:af:49:5f:f8:5f:3f:f1:6d:91:4e:af:29:b5:ce: 16:e8:f3:37:e8:7b:16:d9:eb:9b:16:7d:72:11:42:ba:9f:47: 51:f4:d2:3f:c8:1b:f7:e6:ec:4d:5d:5b:aa:21:92:64:75:7a: b6:04:d3:8d:44:ca:19:69:34:af:96:da:90:b8:b2:fc:0b:bb: ad:b9:de:78:48:86:5d:e9:1a:cb:e9:95:20:f6:28:02:0e:b6: 89:53:19:f1:b2:60:16:b0:b1:2f:fc:fa:c1:26:25:6d:ca:bd: 0e:7c:4c:dc:ed:0e:59:f5:23:0b:4b:e0:dc:a0:12:a3:d9:44: bc:75:41:7c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOEswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1MDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQzRkE1RUU0RkY3Mjcz RkYxMkM5RDY4OEZGNEZFMzc3QzIyMUM0OTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCDkZfx1Xx8t1sJ853aFyztzUkpIBZK21SGRnNn+UocIi6/WEt Da4ixEq3BgUkM8ZhYhHZrmCqNViHIXWqyjGjao/GPVX8A59pAhJ+B56iXhBhRKCL 2Zp4uRywJyMyqzkM/99sice9c8GzXWJ6y6s5Dp0cvVwdBBBLLIER1Dh58TLvtmA6 nU0QuJnyV5zEmniP+/ciptDM9U+wYQpRR8WKEKwU7qWXxPXUFyKu0iqtos0AFcs8 2pKq7Z35Zk8047ifNxlAGe2H+nK4nTIqsNqGWkixgEEvIwuW5yHc7gqYgQ3kJ3co BOwZ3Xi68Cr76iJvPUQMElTiPSfGs2aFG9RlAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUQ/pe5P9yc/8SydaI/0/jd8IhxJQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1FfcGU1UDl5Y184U3lkYUlf MF9qZDhJaHhKUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wCgwDQYJKoZIhvcNAQELBQADggEBADgON2aP4M8eD1XBg7tmV9WguPlJWdB3e657 V2FoCCVxrSCk3VTpXG/AKZexsVvlGQN1UpjD8BkyepZt2upua1AOrZPd+GSB+UwQ E1kmdNCwJMYqYjSbeR6KitVjAcqtYkqpl1fh1ApufHy9MOf0v8xMenmqTWfsdzH9 U4JUaOusrtavSV/4Xz/xbZFOrym1zhbo8zfoexbZ65sWfXIRQrqfR1H00j/IG/fm 7E1dW6ohkmR1erYE041EyhlpNK+W2pC4svwLu6253nhIhl3pGsvplSD2KAIOtolT GfGyYBawsS/8+sEmJW3KvQ58TNztDln1IwtL4NygEqPZRLx1QXw= -----END CERTIFICATE-----Generated at Sun Aug 24 07:31:04 2025 by rpki-client