$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ZTdlLxh9eUr-lGjqDO8ees5RjoE.roa File: ZTdlLxh9eUr-lGjqDO8ees5RjoE.roa (raw, json) Hash identifier: FiGugI8TcDwrhi9yQfzQWu+GuNdoyRPi6Pt8KEA9TUU= Subject key identifier: 65:37:65:2F:18:7D:79:4A:FE:94:68:EA:0C:EF:1E:7A:CE:51:8E:81 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 39A6 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ZTdlLxh9eUr-lGjqDO8ees5RjoE.roa Signing time: Fri 22 Aug 2025 08:46:30 +0000 ROA not before: Fri 22 Aug 2025 08:46:30 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 123.193.160.0/19 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14758 (0x39a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:30 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6537652F187D794AFE9468EA0CEF1E7ACE518E81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e3:a8:72:9c:f4:14:98:c0:fa:e7:c1:97:3a: c0:e1:fc:05:17:09:5e:23:f9:5e:33:6b:ad:2b:db: f1:3a:6c:aa:6c:4e:37:42:36:ad:e9:3f:03:4c:6c: 9f:fb:62:3a:a1:22:1d:de:94:8a:66:1b:72:a4:e5: 2a:58:a1:88:bd:b7:13:da:71:b0:12:79:ea:91:6c: 96:67:a7:d5:4b:1a:fc:84:bd:fa:77:ab:0b:5a:dc: 54:1a:e6:cf:bb:1d:aa:fc:77:e7:d5:31:01:82:de: 02:71:58:fe:54:3f:eb:03:fa:fe:f5:c3:54:a1:e9: ad:51:19:57:58:55:6f:89:b8:61:e5:3a:12:d9:43: 76:3d:36:e3:1d:1b:71:e0:23:3b:76:eb:03:c6:8d: e4:e7:72:11:d7:e6:3c:16:4b:99:30:45:c1:91:97: f4:a6:76:19:1a:e8:de:2c:63:08:e4:26:1d:b4:33: 7d:df:37:fd:f0:58:58:9b:6e:bc:de:87:36:d2:83: bd:42:9e:f5:1a:3b:9d:7c:2e:da:b4:3b:d9:ee:b9: ff:b2:0e:39:47:f2:10:b2:17:69:b4:29:e3:f7:22: 84:36:8d:8e:42:6b:16:76:23:da:93:d5:62:a9:75: 5d:50:d0:5b:d5:61:13:5a:cb:8a:4d:b1:01:69:9c: 7e:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:37:65:2F:18:7D:79:4A:FE:94:68:EA:0C:EF:1E:7A:CE:51:8E:81 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ZTdlLxh9eUr-lGjqDO8ees5RjoE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.160.0/19 Signature Algorithm: sha256WithRSAEncryption 76:33:25:6d:9c:8d:91:ec:15:2e:d8:c2:f5:95:f5:1b:98:c5: 83:f7:a4:1e:a5:3a:a2:33:66:bd:73:87:cb:82:15:1f:b6:88: d7:3c:34:e6:b4:de:ee:f3:5a:82:da:87:a4:d7:95:87:e8:e9: 79:0b:7b:0b:88:62:ef:25:d3:44:24:70:72:8c:66:72:66:4f: 46:cf:ba:45:6c:cb:b7:bc:d8:ff:0e:d0:79:8f:a5:cf:b7:19: 05:c1:d7:9e:25:a6:82:a5:aa:93:44:23:01:2b:37:e8:f6:53: 19:bd:74:74:eb:f0:1e:b9:5b:4b:6e:46:1b:68:81:39:6d:60: fd:a9:f0:c4:34:f5:5d:32:4c:fd:f6:b8:b9:5f:9c:b8:dc:4d: a2:f7:40:56:3d:80:a3:45:66:5c:13:bc:1d:38:e0:39:9c:59: 6c:56:de:42:a0:8c:6e:7f:92:bd:d6:11:94:b7:8c:df:22:1d: 72:f9:ee:fe:fa:67:10:28:e3:a0:a0:36:55:76:89:62:72:a6: 4a:0a:38:e7:45:ad:5b:ed:dc:2b:74:42:5d:61:7c:7c:f3:17: 17:cb:0b:8d:d8:79:7b:56:7f:43:de:b1:fa:80:ec:d4:a8:52: 93:91:a3:5f:05:c3:36:78:be:77:6f:81:f6:0b:e6:dd:3c:31: 2d:c2:5b:9f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOaYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MzBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY1Mzc2NTJGMTg3RDc5 NEFGRTk0NjhFQTBDRUYxRTdBQ0U1MThFODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDI46hynPQUmMD658GXOsDh/AUXCV4j+V4za60r2/E6bKpsTjdC Nq3pPwNMbJ/7YjqhIh3elIpmG3Kk5SpYoYi9txPacbASeeqRbJZnp9VLGvyEvfp3 qwta3FQa5s+7Har8d+fVMQGC3gJxWP5UP+sD+v71w1Sh6a1RGVdYVW+JuGHlOhLZ Q3Y9NuMdG3HgIzt26wPGjeTnchHX5jwWS5kwRcGRl/Smdhka6N4sYwjkJh20M33f N/3wWFibbrzehzbSg71CnvUaO518Ltq0O9nuuf+yDjlH8hCyF2m0KeP3IoQ2jY5C axZ2I9qT1WKpdV1Q0FvVYRNay4pNsQFpnH7XAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUZTdlLxh9eUr+lGjqDO8ees5RjoEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1pUZGxMeGg5ZVVyLWxHanFE TzhlZXM1UmpvRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV7 waAwDQYJKoZIhvcNAQELBQADggEBAHYzJW2cjZHsFS7YwvWV9RuYxYP3pB6lOqIz Zr1zh8uCFR+2iNc8NOa03u7zWoLah6TXlYfo6XkLewuIYu8l00QkcHKMZnJmT0bP ukVsy7e82P8O0HmPpc+3GQXB154lpoKlqpNEIwErN+j2Uxm9dHTr8B65W0tuRhto gTltYP2p8MQ09V0yTP32uLlfnLjcTaL3QFY9gKNFZlwTvB044DmcWWxW3kKgjG5/ kr3WEZS3jN8iHXL57v76ZxAo46CgNlV2iWJypkoKOOdFrVvt3Ct0Ql1hfHzzFxfL C43YeXtWf0PesfqA7NSoUpORo18FwzZ4vndvgfYL5t08MS3CW58= -----END CERTIFICATE-----Generated at Sun Aug 24 07:32:00 2025 by rpki-client