$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/TXOrpjnzOQC6JxCyUY8A8_AV9aQ.roa File: TXOrpjnzOQC6JxCyUY8A8_AV9aQ.roa (raw, json) Hash identifier: suO4ryXRWAthflZWDteuNUfEhc+mBUtKMj2v3EYhNHY= Subject key identifier: 4D:73:AB:A6:39:F3:39:00:BA:27:10:B2:51:8F:00:F3:F0:15:F5:A4 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3894 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/TXOrpjnzOQC6JxCyUY8A8_AV9aQ.roa Signing time: Fri 22 Aug 2025 08:45:25 +0000 ROA not before: Fri 22 Aug 2025 08:45:25 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.194.84.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14484 (0x3894) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:25 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4D73ABA639F33900BA2710B2518F00F3F015F5A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:58:d2:3d:98:54:e9:b9:29:f8:d0:61:d1:9c: 72:5e:be:30:85:ae:8f:45:09:ee:87:9b:0c:e9:2e: 25:ed:48:57:c2:6c:57:8f:aa:9b:a5:4e:52:75:a4: ad:a3:a9:e3:8f:c3:d7:a1:54:e4:7e:b6:33:ef:57: 25:88:8c:4a:30:b7:20:fb:2a:31:82:22:b4:36:e4: 2f:19:c1:80:fb:64:9e:86:65:f8:fe:26:d5:a9:5e: d7:ed:4d:30:e7:b4:13:ac:61:ba:05:7b:a1:08:6f: 39:42:45:df:ad:b5:e2:ef:20:f3:50:12:da:d3:6e: 80:0f:62:50:a4:c7:f4:71:01:da:15:7b:8b:d9:24: 19:5b:ee:f1:4c:a1:4f:4a:3e:75:e1:01:ae:1c:f9: 97:00:05:29:4e:2e:41:2c:44:fb:84:9d:75:44:a2: 34:ec:cf:87:b6:dd:0c:0b:85:11:47:40:8a:c5:90: 16:11:1d:09:05:b5:b9:5e:8b:dc:18:9e:7b:05:19: 14:03:19:6f:0b:69:f1:7e:60:51:6d:47:78:d3:b9: 2f:e8:62:e4:99:2e:e2:39:bb:f3:a3:12:83:7d:02: 2e:5b:9f:00:aa:72:9f:13:7a:0d:90:ef:48:f5:c4: 0d:93:5e:45:18:d0:3b:27:6e:28:23:70:d2:fd:59: dc:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:73:AB:A6:39:F3:39:00:BA:27:10:B2:51:8F:00:F3:F0:15:F5:A4 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/TXOrpjnzOQC6JxCyUY8A8_AV9aQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.84.0/22 Signature Algorithm: sha256WithRSAEncryption 4f:24:2f:5e:3f:f9:89:5a:00:8c:c4:df:55:5a:49:21:15:ca: f0:ad:fd:54:71:7a:55:1e:29:83:26:52:ec:d0:c0:57:77:b0: 5d:a0:21:ef:67:27:60:ac:78:c1:ae:41:5f:8c:aa:66:fb:54: 6c:71:11:74:67:b4:fb:ed:33:5f:95:10:f8:dd:6a:1a:3f:f6: 7c:c5:8d:ca:10:d9:6e:eb:1c:db:42:2d:d6:05:6b:7f:32:aa: 32:cd:69:85:80:38:6f:80:d7:5f:47:a6:35:d2:23:2e:db:d6: e1:9b:2a:de:b1:95:b7:8e:01:8a:45:71:ab:be:a2:1d:20:e3: e1:c1:83:99:09:aa:66:e1:5c:e4:b2:76:67:7f:34:1f:6a:b2: 51:16:8d:31:59:f4:c8:f8:79:b6:70:71:97:07:e5:4d:5a:96: ee:13:fc:fe:20:2d:71:cd:91:8e:3d:2d:33:e9:e0:6d:5e:1e: 12:c3:16:f6:d0:6f:5c:70:57:70:1b:bf:bb:9e:7d:89:89:2f: 50:b6:56:18:3e:e9:b4:0f:50:a1:89:81:0c:6a:15:81:16:e1: 73:5e:2e:6f:3a:44:a8:39:ce:77:89:ca:52:bb:17:51:25:a4: 28:e4:72:b3:5f:20:0b:c9:45:f5:91:48:0b:9b:83:36:91:11: ab:a4:08:e9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOJQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1MjVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDRENzNBQkE2MzlGMzM5 MDBCQTI3MTBCMjUxOEYwMEYzRjAxNUY1QTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXWNI9mFTpuSn40GHRnHJevjCFro9FCe6HmwzpLiXtSFfCbFeP qpulTlJ1pK2jqeOPw9ehVOR+tjPvVyWIjEowtyD7KjGCIrQ25C8ZwYD7ZJ6GZfj+ JtWpXtftTTDntBOsYboFe6EIbzlCRd+tteLvIPNQEtrTboAPYlCkx/RxAdoVe4vZ JBlb7vFMoU9KPnXhAa4c+ZcABSlOLkEsRPuEnXVEojTsz4e23QwLhRFHQIrFkBYR HQkFtblei9wYnnsFGRQDGW8LafF+YFFtR3jTuS/oYuSZLuI5u/OjEoN9Ai5bnwCq cp8Teg2Q70j1xA2TXkUY0DsnbigjcNL9WdybAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUTXOrpjnzOQC6JxCyUY8A8/AV9aQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1RYT3Jwam56T1FDNkp4Q3lV WThBOF9BVjlhUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wlQwDQYJKoZIhvcNAQELBQADggEBAE8kL14/+YlaAIzE31VaSSEVyvCt/VRxelUe KYMmUuzQwFd3sF2gIe9nJ2CseMGuQV+Mqmb7VGxxEXRntPvtM1+VEPjdaho/9nzF jcoQ2W7rHNtCLdYFa38yqjLNaYWAOG+A119HpjXSIy7b1uGbKt6xlbeOAYpFcau+ oh0g4+HBg5kJqmbhXOSydmd/NB9qslEWjTFZ9Mj4ebZwcZcH5U1alu4T/P4gLXHN kY49LTPp4G1eHhLDFvbQb1xwV3Abv7uefYmJL1C2Vhg+6bQPUKGJgQxqFYEW4XNe Lm86RKg5zneJylK7F1ElpCjkcrNfIAvJRfWRSAubgzaREaukCOk= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:43 2025 by rpki-client