$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YhZyw6eCQuCxMq-RbTw5wuXsg38.roa File: YhZyw6eCQuCxMq-RbTw5wuXsg38.roa (raw, json) Hash identifier: XgAiVZcD/TwtH8FQKh5birbYA5h4oR8yR4iUjLLY224= Subject key identifier: 62:16:72:C3:A7:82:42:E0:B1:32:AF:91:6D:3C:39:C2:E5:EC:83:7F Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 37E8 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YhZyw6eCQuCxMq-RbTw5wuXsg38.roa Signing time: Fri 22 Aug 2025 08:44:46 +0000 ROA not before: Fri 22 Aug 2025 08:44:46 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.192.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14312 (0x37e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:44:46 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=621672C3A78242E0B132AF916D3C39C2E5EC837F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:37:80:ba:4f:0b:9d:48:95:ed:74:f3:db:74: 0f:17:57:a9:f0:41:e5:08:f6:55:da:6f:25:d3:3b: 06:f7:6d:5d:3b:54:e8:54:df:7e:6d:2e:b3:6f:19: 2e:63:1d:41:9d:a1:dc:57:8c:70:36:8a:86:8d:14: cb:7e:f3:02:d0:97:b8:55:d2:8c:78:4f:90:8c:82: cd:7a:91:ef:7e:46:3b:44:9a:ed:ee:41:c0:8d:f0: 35:ab:8e:31:f4:96:5b:d0:7c:e2:5a:36:18:f1:91: 52:83:6b:d4:03:6d:81:3a:e6:9c:22:a4:2a:47:bf: df:07:71:fd:35:4a:53:3a:1d:84:10:e3:ff:74:7e: 52:dd:6f:50:f9:af:4b:a1:da:9b:91:a8:43:33:f1: 62:da:45:e6:45:99:88:ac:c3:30:e6:cc:78:e7:f0: 0b:e5:28:03:c3:a8:90:21:9d:01:7a:7d:42:b2:42: c6:25:b8:fa:75:ac:80:06:44:81:6d:2d:b7:c5:dd: 96:e2:1a:72:3c:3a:bc:91:54:19:58:1f:0b:cc:b2: 88:6f:3f:fa:a5:d2:2b:2d:36:4d:8e:6b:42:13:9d: 36:8d:b7:9d:8b:f7:90:38:97:12:25:4c:59:65:cb: 80:ef:ef:41:a2:24:e1:40:80:d2:1b:8c:dd:00:fe: cd:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:16:72:C3:A7:82:42:E0:B1:32:AF:91:6D:3C:39:C2:E5:EC:83:7F X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YhZyw6eCQuCxMq-RbTw5wuXsg38.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.192.96.0/20 Signature Algorithm: sha256WithRSAEncryption 37:27:e3:8b:4c:35:82:b2:ca:60:81:be:cb:6e:90:97:7c:9a: 64:b4:d9:a1:e3:01:59:a8:df:da:96:39:b6:dc:49:31:5e:f3: d0:41:62:20:5f:83:50:07:03:17:06:88:49:bb:0d:09:54:c0: 5a:5f:d1:df:80:cc:08:ce:e0:28:63:aa:17:69:b6:0e:83:cc: 2e:08:f8:3d:12:01:d2:fb:f3:7a:97:07:40:b7:46:1e:69:31: 97:db:05:01:31:42:2b:1d:07:f5:c7:d0:04:b3:33:5e:aa:98: 48:50:c5:ab:c5:3c:7f:9c:a7:68:d5:d0:8a:a9:e2:8e:db:46: 7f:eb:30:48:8d:d4:7d:ee:4d:a9:7f:89:5d:de:33:db:5b:81: e4:fb:45:b7:57:1d:9e:54:2f:ae:cb:85:3b:8c:b9:e9:d2:4d: 22:7c:79:09:16:9b:9d:56:d1:9f:ac:88:06:d8:59:c4:41:93: 9d:07:0f:9a:2b:c3:78:50:83:42:82:17:50:54:aa:b5:fb:a6: 9f:e6:f6:78:ba:e5:69:2b:47:bd:de:48:ea:e8:21:1e:78:51: e6:f9:57:af:e0:35:ce:32:79:07:d2:e6:2f:02:81:fc:ab:aa: a4:6b:aa:37:2b:d2:f9:27:3a:f5:22:d7:bd:c7:e6:fb:7e:df: f6:82:70:e0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICN+gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ0NDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDYyMTY3MkMzQTc4MjQy RTBCMTMyQUY5MTZEM0MzOUMyRTVFQzgzN0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGN4C6TwudSJXtdPPbdA8XV6nwQeUI9lXabyXTOwb3bV07VOhU 335tLrNvGS5jHUGdodxXjHA2ioaNFMt+8wLQl7hV0ox4T5CMgs16ke9+RjtEmu3u QcCN8DWrjjH0llvQfOJaNhjxkVKDa9QDbYE65pwipCpHv98Hcf01SlM6HYQQ4/90 flLdb1D5r0uh2puRqEMz8WLaReZFmYiswzDmzHjn8AvlKAPDqJAhnQF6fUKyQsYl uPp1rIAGRIFtLbfF3ZbiGnI8OryRVBlYHwvMsohvP/ql0istNk2Oa0ITnTaNt52L 95A4lxIlTFlly4Dv70GiJOFAgNIbjN0A/s3dAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUYhZyw6eCQuCxMq+RbTw5wuXsg38wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1loWnl3NmVDUXVDeE1xLVJi VHc1d3VYc2czOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR7 wGAwDQYJKoZIhvcNAQELBQADggEBADcn44tMNYKyymCBvstukJd8mmS02aHjAVmo 39qWObbcSTFe89BBYiBfg1AHAxcGiEm7DQlUwFpf0d+AzAjO4Chjqhdptg6DzC4I +D0SAdL783qXB0C3Rh5pMZfbBQExQisdB/XH0ASzM16qmEhQxavFPH+cp2jV0Iqp 4o7bRn/rMEiN1H3uTal/iV3eM9tbgeT7RbdXHZ5UL67LhTuMuenSTSJ8eQkWm51W 0Z+siAbYWcRBk50HD5orw3hQg0KCF1BUqrX7pp/m9ni65WkrR73eSOroIR54Ueb5 V6/gNc4yeQfS5i8CgfyrqqRrqjcr0vknOvUi173H5vt+3/aCcOA= -----END CERTIFICATE-----Generated at Sun Aug 24 07:23:16 2025 by rpki-client