$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Zc5t2IVTqzkbAMpRIJhVkfoqrrI.roa File: Zc5t2IVTqzkbAMpRIJhVkfoqrrI.roa (raw, json) Hash identifier: WF2xj3max+RazMIC5rGXGXip8cw5yzCHiJ/dCB5FA+I= Subject key identifier: 65:CE:6D:D8:85:53:AB:39:1B:00:CA:51:20:98:55:91:FA:2A:AE:B2 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3A5C Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Zc5t2IVTqzkbAMpRIJhVkfoqrrI.roa Signing time: Fri 22 Aug 2025 08:47:16 +0000 ROA not before: Fri 22 Aug 2025 08:47:16 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 180.177.60.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14940 (0x3a5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:16 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=65CE6DD88553AB391B00CA5120985591FA2AAEB2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:44:9e:78:05:a7:5f:ad:b7:90:4c:8d:f2:13: 63:d5:da:bd:c7:ae:16:4a:58:bc:44:2c:9d:fd:27: 1c:f6:4e:dc:3b:b9:21:bd:49:0f:8e:be:7d:34:50: 4a:c3:72:53:af:04:13:96:61:20:b0:0f:b1:e6:ed: 62:23:82:ae:2f:78:d5:18:57:31:8d:40:8b:00:0c: b4:d5:32:00:51:85:17:14:6d:ff:d0:8d:26:4a:8b: 89:e1:d3:7d:f5:29:c2:fd:d3:37:95:a3:88:a3:d8: 8a:b1:90:86:8b:eb:0f:f9:f3:5a:17:f8:46:10:ba: ca:26:08:3f:15:84:b4:a1:73:67:d7:8e:cb:4b:80: 5a:83:d0:61:20:ce:ba:f5:db:1e:2f:f8:e7:26:fc: 9e:33:99:0f:da:62:6b:0d:1d:e5:2a:6a:0e:68:a5: d4:c4:c8:42:7f:65:7e:83:f4:36:c9:ec:89:14:ab: 0b:db:00:98:d6:35:62:d0:fa:d5:4f:0e:16:59:d6: 1e:1e:3c:63:be:47:89:10:f6:94:2c:d4:ed:d0:83: 11:41:ec:a8:fb:3f:24:a4:82:91:4e:42:eb:f2:4f: 1a:b5:15:b8:24:e7:26:ee:b1:3d:db:b7:7a:d5:ec: 7f:a5:45:6a:38:14:79:f0:54:67:3b:1f:9c:e2:51: ef:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:CE:6D:D8:85:53:AB:39:1B:00:CA:51:20:98:55:91:FA:2A:AE:B2 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Zc5t2IVTqzkbAMpRIJhVkfoqrrI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.177.60.0/22 Signature Algorithm: sha256WithRSAEncryption 35:c4:98:e7:a2:8e:c7:6d:5e:1e:db:20:46:6a:d2:b5:f6:26: ed:a2:66:68:61:cb:ec:dc:0c:28:1a:5e:19:fe:60:9a:52:df: a4:2c:87:f3:08:9d:a9:02:c3:13:ba:7c:5e:eb:98:ca:48:86: f3:0f:a3:d9:d6:35:0c:09:f4:0f:3b:65:b3:9c:c7:cd:e6:9f: a6:52:81:77:8e:d4:f0:c5:83:6c:c0:60:a4:32:e7:70:73:2f: 4a:cb:d2:06:83:bd:f8:18:db:bd:24:5a:46:48:2c:fa:7d:f6: d9:38:c9:ed:85:ec:86:35:47:d9:75:23:10:cd:1a:0e:25:18: d3:bc:00:25:66:34:00:28:7c:dc:ed:08:1d:08:37:9c:22:0e: 15:46:13:8b:eb:3f:31:e7:b7:86:3b:31:3a:20:92:07:e2:25: 3b:95:a2:f3:20:95:76:db:3e:85:92:2e:fd:53:1c:e9:d4:25: 2b:82:53:bb:11:e0:7c:bd:d1:6d:7a:5a:70:6b:40:0c:54:d4: 71:f3:33:3c:e6:da:a1:fa:1a:b8:3c:b1:c5:db:4e:05:1e:d8: 9e:49:83:8b:4c:5d:bd:a1:d3:f0:fd:40:d6:96:42:1e:0a:2c: a3:5b:75:36:01:aa:4b:a5:9a:0e:91:48:04:98:d0:00:a6:32: ec:aa:2f:5d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOlwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3MTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY1Q0U2REQ4ODU1M0FC MzkxQjAwQ0E1MTIwOTg1NTkxRkEyQUFFQjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCXRJ54BadfrbeQTI3yE2PV2r3HrhZKWLxELJ39Jxz2Ttw7uSG9 SQ+Ovn00UErDclOvBBOWYSCwD7Hm7WIjgq4veNUYVzGNQIsADLTVMgBRhRcUbf/Q jSZKi4nh0331KcL90zeVo4ij2IqxkIaL6w/581oX+EYQusomCD8VhLShc2fXjstL gFqD0GEgzrr12x4v+Ocm/J4zmQ/aYmsNHeUqag5opdTEyEJ/ZX6D9DbJ7IkUqwvb AJjWNWLQ+tVPDhZZ1h4ePGO+R4kQ9pQs1O3QgxFB7Kj7PySkgpFOQuvyTxq1Fbgk 5ybusT3bt3rV7H+lRWo4FHnwVGc7H5ziUe8PAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUZc5t2IVTqzkbAMpRIJhVkfoqrrIwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1pjNXQySVZUcXprYkFNcFJJ SmhWa2ZvcXJySS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 sTwwDQYJKoZIhvcNAQELBQADggEBADXEmOeijsdtXh7bIEZq0rX2Ju2iZmhhy+zc DCgaXhn+YJpS36Qsh/MInakCwxO6fF7rmMpIhvMPo9nWNQwJ9A87ZbOcx83mn6ZS gXeO1PDFg2zAYKQy53BzL0rL0gaDvfgY270kWkZILPp99tk4ye2F7IY1R9l1IxDN Gg4lGNO8ACVmNAAofNztCB0IN5wiDhVGE4vrPzHnt4Y7MTogkgfiJTuVovMglXbb PoWSLv1THOnUJSuCU7sR4Hy90W16WnBrQAxU1HHzMzzm2qH6Grg8scXbTgUe2J5J g4tMXb2h0/D9QNaWQh4KLKNbdTYBqkulmg6RSASY0ACmMuyqL10= -----END CERTIFICATE-----Generated at Sun Aug 24 07:26:37 2025 by rpki-client