$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UvdfbYg2KnIHMcyxb8HgoUFAXe8.roa File: UvdfbYg2KnIHMcyxb8HgoUFAXe8.roa (raw, json) Hash identifier: 4M4I5WaPYoHO16gxi2JKmMHjxZ+QpVcxBnN3NC+ZoNQ= Subject key identifier: 52:F7:5F:6D:88:36:2A:72:07:31:CC:B1:6F:C1:E0:A1:41:40:5D:EF Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 389A Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UvdfbYg2KnIHMcyxb8HgoUFAXe8.roa Signing time: Fri 22 Aug 2025 08:45:27 +0000 ROA not before: Fri 22 Aug 2025 08:45:27 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 180.177.160.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14490 (0x389a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:27 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=52F75F6D88362A720731CCB16FC1E0A141405DEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b0:20:1f:f1:c1:2a:cd:f3:0f:d3:b1:c1:fe: 51:39:70:47:56:a6:bd:bb:9e:7d:37:ba:24:16:90: 80:61:3d:5f:e3:dd:b5:95:cb:6d:7a:5e:87:6b:8a: d0:67:e0:51:20:da:a5:c4:7f:31:db:7a:f6:71:6c: dd:6e:9b:8f:c6:27:6c:b3:38:24:30:7c:53:b8:4c: 0f:a2:e1:43:22:47:f3:13:d9:e5:bb:e1:7b:bd:9e: 0b:cb:b0:47:3a:37:54:30:c2:25:50:e3:0c:20:21: 09:c6:da:c7:0b:a6:97:9e:d8:67:cf:8a:a0:30:4b: 8f:e1:2d:c2:32:74:b8:8e:c0:f2:e1:c5:26:8a:2e: 9e:5f:2a:49:61:55:45:34:2f:9d:61:d2:fa:c4:07: b4:d1:a8:fa:54:59:c0:55:39:72:c3:d4:27:ac:de: 48:62:1d:71:27:6d:5c:0b:7a:88:f0:f2:b0:f1:55: e8:21:9c:f5:1d:5e:b3:ec:b9:4d:95:1c:17:03:4f: b3:29:a6:b9:38:bb:1d:fc:89:db:33:30:29:3d:a7: 1b:7e:eb:cb:df:b6:67:ba:43:80:58:86:32:94:f2: 3d:b3:de:1b:ab:83:b5:71:a9:2e:71:e4:da:15:da: 0d:a7:69:be:38:16:91:e7:bb:3b:a0:fd:ac:89:95: 2f:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:F7:5F:6D:88:36:2A:72:07:31:CC:B1:6F:C1:E0:A1:41:40:5D:EF X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UvdfbYg2KnIHMcyxb8HgoUFAXe8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.177.160.0/21 Signature Algorithm: sha256WithRSAEncryption 77:09:47:92:91:ce:07:1b:08:cc:32:6c:d8:0b:e0:b3:a3:89: 0b:83:4e:9d:08:32:37:bc:3d:b4:09:b2:a4:4d:a3:c2:24:77: 9d:7c:3b:99:20:7c:ab:fc:e9:87:40:51:dd:b6:c5:e3:de:9d: 0e:f6:fe:7f:a3:e5:24:82:6f:39:26:98:62:07:de:5b:0c:73: 80:dd:a4:53:d2:53:56:dc:93:2b:a1:2f:4c:28:ff:b1:8c:0d: 06:3f:49:fb:bc:95:b4:ec:3d:76:74:af:4c:8d:ad:b6:64:56: 83:21:66:44:78:9a:fc:af:1f:a2:58:eb:88:cd:cb:7e:2b:8d: 1a:e2:ac:b6:b3:d3:02:92:af:46:6a:98:ea:bc:b7:2d:c0:11: a3:63:1c:ab:f5:54:41:8d:5b:0d:07:17:cc:6a:a0:fc:fb:1b: ef:d2:29:c7:3f:a4:7b:7a:9d:61:e5:95:46:81:40:3b:a8:c6: 82:39:ca:2a:e4:e0:de:ae:0c:2d:37:8a:82:cf:08:dc:fc:58: 78:08:76:fc:61:8f:36:b2:e4:90:3b:1b:3e:95:17:6b:54:ea: ad:51:eb:7c:d4:fb:5c:27:d1:5e:d5:a3:70:c1:86:3d:a7:d5: f1:dd:9b:74:66:3d:e9:11:71:ae:4c:42:de:54:f4:8d:f9:62: 05:30:1c:02 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOJowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1MjdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDUyRjc1RjZEODgzNjJB NzIwNzMxQ0NCMTZGQzFFMEExNDE0MDVERUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDsCAf8cEqzfMP07HB/lE5cEdWpr27nn03uiQWkIBhPV/j3bWV y216XodritBn4FEg2qXEfzHbevZxbN1um4/GJ2yzOCQwfFO4TA+i4UMiR/MT2eW7 4Xu9ngvLsEc6N1QwwiVQ4wwgIQnG2scLppee2GfPiqAwS4/hLcIydLiOwPLhxSaK Lp5fKklhVUU0L51h0vrEB7TRqPpUWcBVOXLD1Ces3khiHXEnbVwLeojw8rDxVegh nPUdXrPsuU2VHBcDT7Mpprk4ux38idszMCk9pxt+68vftme6Q4BYhjKU8j2z3hur g7VxqS5x5NoV2g2nab44FpHnuzug/ayJlS99AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUUvdfbYg2KnIHMcyxb8HgoUFAXe8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1V2ZGZiWWcyS25JSE1jeXhi OEhnb1VGQVhlOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 saAwDQYJKoZIhvcNAQELBQADggEBAHcJR5KRzgcbCMwybNgL4LOjiQuDTp0IMje8 PbQJsqRNo8Ikd518O5kgfKv86YdAUd22xePenQ72/n+j5SSCbzkmmGIH3lsMc4Dd pFPSU1bckyuhL0wo/7GMDQY/Sfu8lbTsPXZ0r0yNrbZkVoMhZkR4mvyvH6JY64jN y34rjRrirLaz0wKSr0ZqmOq8ty3AEaNjHKv1VEGNWw0HF8xqoPz7G+/SKcc/pHt6 nWHllUaBQDuoxoI5yirk4N6uDC03ioLPCNz8WHgIdvxhjzay5JA7Gz6VF2tU6q1R 63zU+1wn0V7Vo3DBhj2n1fHdm3RmPekRca5MQt5U9I35YgUwHAI= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:23 2025 by rpki-client