$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XV2mcEkCgBzhDEW36paImdxBKow.roa File: XV2mcEkCgBzhDEW36paImdxBKow.roa (raw, json) Hash identifier: ca72fQ5+mfZF8YaSLqex9ceUuggyV5JSvNwN2jJttJY= Subject key identifier: 5D:5D:A6:70:49:02:80:1C:E1:0C:45:B7:EA:96:88:99:DC:41:2A:8C Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 39AC Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XV2mcEkCgBzhDEW36paImdxBKow.roa Signing time: Fri 22 Aug 2025 08:46:32 +0000 ROA not before: Fri 22 Aug 2025 08:46:32 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.192.148.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14764 (0x39ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:32 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5D5DA6704902801CE10C45B7EA968899DC412A8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c9:40:65:75:02:e3:28:a1:74:09:06:92:d0: 87:3d:30:08:54:7e:98:2e:c7:10:a7:30:58:50:18: a1:ca:97:71:43:68:3d:e3:e9:e1:c6:dd:94:14:7d: 56:68:4c:b0:61:98:ed:c9:c0:5b:a7:c0:c9:42:50: ae:37:46:15:e7:a3:fc:19:99:90:55:66:d9:29:a3: a8:24:5d:9a:f9:dc:0a:24:79:e8:35:69:0d:a8:bd: d6:9e:81:4b:54:e9:2a:1a:ae:21:46:e9:1f:87:89: 2d:ac:1a:cd:ae:66:7c:14:8f:9e:f0:cc:de:d0:b8: ff:d8:8c:e0:4b:ef:cd:29:ee:0a:fc:ca:8f:92:32: ec:7d:b5:72:29:db:26:a1:00:b1:62:6a:28:77:4e: 3c:50:d0:c3:61:d6:08:6e:65:54:dd:4d:bf:2c:93: 28:a3:53:95:2a:d8:e1:48:7f:26:08:7c:98:14:b4: 6a:c3:e7:65:a0:fd:7c:8d:5a:ae:22:97:ce:59:73: c0:e9:22:82:b4:dd:9a:00:51:27:64:df:c6:d3:90: 24:e2:3a:9e:21:58:9d:dc:19:c7:ca:ae:2a:4b:ae: 5c:af:ed:4e:26:b7:b9:15:ad:2f:29:2d:30:59:58: 1f:e0:88:58:39:34:2b:28:87:62:21:48:47:74:58: d0:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:5D:A6:70:49:02:80:1C:E1:0C:45:B7:EA:96:88:99:DC:41:2A:8C X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XV2mcEkCgBzhDEW36paImdxBKow.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.192.148.0/22 Signature Algorithm: sha256WithRSAEncryption 9c:21:c7:85:de:9e:e8:b6:73:50:4c:26:ef:95:c1:2f:8c:9d: 3b:04:2c:d9:73:a9:8b:5c:1c:83:f2:86:25:06:e1:ab:64:1c: 4a:9d:59:d8:0e:d6:34:e8:74:03:fb:95:98:c5:cd:3c:87:ee: 25:1d:8d:9f:a3:65:55:02:1d:9f:b9:9a:4b:0b:70:73:be:f4: 80:cd:28:58:dc:76:3e:f9:e5:52:66:eb:61:c7:d5:b0:fd:46: 36:a5:b1:d6:0c:5e:06:4a:bb:42:9a:12:00:1e:41:4f:7a:8b: 2c:c8:65:5c:c6:7e:02:fe:a4:45:14:a5:4d:32:3d:39:0b:3b: c6:56:8a:d8:6f:38:f2:62:f2:9f:74:46:a6:fc:e3:8d:59:c1: c9:42:61:f1:eb:40:d4:fa:f2:47:85:39:25:02:35:51:ae:5c: 95:4c:57:d5:6d:3c:dd:32:c6:b7:22:98:11:3d:78:f4:7f:fb: e1:ce:02:2e:5f:a9:0d:62:1c:5e:4b:59:99:c3:0d:49:90:de: 49:5e:96:a4:d0:37:c0:30:e1:ec:33:13:b6:cb:34:f9:ce:b3: 4a:5a:95:1e:4b:ae:c0:a0:6b:6e:26:dd:d0:03:ea:45:88:de: 7f:cf:86:05:e1:e3:0f:6f:fa:4a:02:74:80:12:9f:a9:9c:74: 95:0a:85:24 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOawwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MzJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDVENURBNjcwNDkwMjgw MUNFMTBDNDVCN0VBOTY4ODk5REM0MTJBOEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2yUBldQLjKKF0CQaS0Ic9MAhUfpguxxCnMFhQGKHKl3FDaD3j 6eHG3ZQUfVZoTLBhmO3JwFunwMlCUK43RhXno/wZmZBVZtkpo6gkXZr53Aokeeg1 aQ2ovdaegUtU6SoariFG6R+HiS2sGs2uZnwUj57wzN7QuP/YjOBL780p7gr8yo+S Mux9tXIp2yahALFiaih3TjxQ0MNh1ghuZVTdTb8skyijU5Uq2OFIfyYIfJgUtGrD 52Wg/XyNWq4il85Zc8DpIoK03ZoAUSdk38bTkCTiOp4hWJ3cGcfKripLrlyv7U4m t7kVrS8pLTBZWB/giFg5NCsoh2IhSEd0WNC9AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUXV2mcEkCgBzhDEW36paImdxBKowwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1hWMm1jRWtDZ0J6aERFVzM2 cGFJbWR4Qktvdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wJQwDQYJKoZIhvcNAQELBQADggEBAJwhx4Xenui2c1BMJu+VwS+MnTsELNlzqYtc HIPyhiUG4atkHEqdWdgO1jTodAP7lZjFzTyH7iUdjZ+jZVUCHZ+5mksLcHO+9IDN KFjcdj755VJm62HH1bD9RjalsdYMXgZKu0KaEgAeQU96iyzIZVzGfgL+pEUUpU0y PTkLO8ZWithvOPJi8p90Rqb8441ZwclCYfHrQNT68keFOSUCNVGuXJVMV9VtPN0y xrcimBE9ePR/++HOAi5fqQ1iHF5LWZnDDUmQ3klelqTQN8Aw4ewzE7bLNPnOs0pa lR5LrsCga24m3dAD6kWI3n/PhgXh4w9v+koCdIASn6mcdJUKhSQ= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:42 2025 by rpki-client