$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_jdMrg-KzT-yMZP7aBp4l733a-w.roa File: _jdMrg-KzT-yMZP7aBp4l733a-w.roa (raw, json) Hash identifier: kji01ofvfE2awrZK3T/uaBBWCwSD0MeT/Yz9kIaWtVE= Subject key identifier: FE:37:4C:AE:0F:8A:CD:3F:B2:31:93:FB:68:1A:78:97:BD:F7:6B:EC Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3935 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_jdMrg-KzT-yMZP7aBp4l733a-w.roa Signing time: Fri 22 Aug 2025 08:46:04 +0000 ROA not before: Fri 22 Aug 2025 08:46:04 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.193.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14645 (0x3935) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:04 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FE374CAE0F8ACD3FB23193FB681A7897BDF76BEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:bd:e3:0e:a1:91:a1:46:b4:0b:5a:72:df:9b: 6a:01:d2:8d:3b:67:10:00:3d:7c:1b:bc:15:49:82: f8:43:2a:28:03:bb:d6:d1:42:e8:75:a9:f2:09:2e: 62:2f:39:34:8d:81:ab:0d:eb:95:71:b2:5a:de:4f: bc:40:12:10:67:a5:3d:87:f5:18:9c:5f:81:07:0b: 40:4c:2d:ba:12:39:08:fb:fa:0f:bc:1a:1b:2f:19: a7:9b:01:88:57:6c:b7:2e:bd:0e:2b:84:7a:d1:62: 98:08:8f:12:b0:dd:1e:85:6d:09:0c:a0:6a:96:81: 42:f0:25:0e:34:7d:2b:18:40:29:f9:9f:1a:b1:d4: 0a:a4:c5:a1:e0:bd:36:2e:ab:af:aa:ae:98:d2:91: 64:85:69:2b:df:4f:bb:5a:18:fd:49:dd:33:19:49: a0:96:87:c0:1e:7c:c2:b6:b6:01:fe:de:df:83:01: e4:d9:d7:a7:0b:ef:54:2d:2a:0f:a1:5b:a8:c9:1a: f1:38:e2:5d:e9:d5:e8:b6:ff:7c:5c:23:3e:0c:90: 59:5c:d4:06:0f:ee:4e:ce:05:cb:62:b1:f1:5f:9e: e1:8d:bb:7e:cf:22:61:ae:3d:ea:be:b7:d9:3d:94: f9:74:56:61:5d:08:63:3d:15:67:f6:a3:ee:db:87: b4:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:37:4C:AE:0F:8A:CD:3F:B2:31:93:FB:68:1A:78:97:BD:F7:6B:EC X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_jdMrg-KzT-yMZP7aBp4l733a-w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.111.0/24 Signature Algorithm: sha256WithRSAEncryption 69:b7:81:ca:ef:df:8a:9a:6e:d3:18:f5:5a:6c:fb:e1:ce:cb: 86:5a:7b:5a:d4:7d:d4:cc:2f:7b:4a:43:f5:99:61:0b:2a:2c: a2:f3:6d:52:31:60:08:5d:d8:7d:06:5e:c9:6a:00:60:57:4f: b5:2c:ed:ba:3a:e3:02:aa:97:b4:dc:b4:a3:91:16:de:5b:69: fe:22:9c:06:11:4e:55:7c:c1:1e:75:9c:48:10:a7:65:38:61: 71:cf:1c:ed:3d:8d:51:ca:93:3b:00:d6:0e:e0:44:22:7c:57: 13:0d:a3:81:64:54:fc:b1:7b:6b:e9:15:7f:99:2a:d8:94:6c: df:9b:ea:7a:4f:a7:0e:2e:2e:9c:72:75:58:e3:41:a1:37:9f: 1a:12:d9:ac:e0:8b:9f:d9:3c:94:88:86:05:92:70:65:7f:20: a8:57:45:e0:b1:74:42:9e:1a:6b:c4:29:bc:2c:05:2a:17:c1: 30:be:fd:fa:f8:34:c8:6d:0e:ed:bb:28:f4:07:20:89:2c:12: 02:a7:b9:56:4d:70:63:98:1f:dc:dd:6e:ab:62:37:46:a3:0e: 2d:4c:f8:e4:da:a5:e8:01:2a:d8:99:9e:7f:e4:b3:d7:2a:04: 98:ce:16:8f:2e:bf:cb:e7:74:49:ff:ab:f1:68:a5:99:28:87: e4:ef:f7:d6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOTUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZFMzc0Q0FFMEY4QUNE M0ZCMjMxOTNGQjY4MUE3ODk3QkRGNzZCRUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpveMOoZGhRrQLWnLfm2oB0o07ZxAAPXwbvBVJgvhDKigDu9bR Quh1qfIJLmIvOTSNgasN65VxslreT7xAEhBnpT2H9RicX4EHC0BMLboSOQj7+g+8 GhsvGaebAYhXbLcuvQ4rhHrRYpgIjxKw3R6FbQkMoGqWgULwJQ40fSsYQCn5nxqx 1AqkxaHgvTYuq6+qrpjSkWSFaSvfT7taGP1J3TMZSaCWh8AefMK2tgH+3t+DAeTZ 16cL71QtKg+hW6jJGvE44l3p1ei2/3xcIz4MkFlc1AYP7k7OBctisfFfnuGNu37P ImGuPeq+t9k9lPl0VmFdCGM9FWf2o+7bh7TNAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU/jdMrg+KzT+yMZP7aBp4l733a+wwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL19qZE1yZy1LelQteU1aUDdh QnA0bDczM2Etdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB7 wW8wDQYJKoZIhvcNAQELBQADggEBAGm3gcrv34qabtMY9Vps++HOy4Zae1rUfdTM L3tKQ/WZYQsqLKLzbVIxYAhd2H0GXslqAGBXT7Us7bo64wKql7TctKORFt5baf4i nAYRTlV8wR51nEgQp2U4YXHPHO09jVHKkzsA1g7gRCJ8VxMNo4FkVPyxe2vpFX+Z KtiUbN+b6npPpw4uLpxydVjjQaE3nxoS2azgi5/ZPJSIhgWScGV/IKhXReCxdEKe GmvEKbwsBSoXwTC+/fr4NMhtDu27KPQHIIksEgKnuVZNcGOYH9zdbqtiN0ajDi1M +OTapegBKtiZnn/ks9cqBJjOFo8uv8vndEn/q/FopZkoh+Tv99Y= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:39 2025 by rpki-client