$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aKSUs_DBy0vjS29SrC1_BKfczc4.roa File: aKSUs_DBy0vjS29SrC1_BKfczc4.roa (raw, json) Hash identifier: NbYNfxhPIl9H9G6gFqRndWdLcTcEbu8KdqM3yz82Eno= Subject key identifier: 68:A4:94:B3:F0:C1:CB:4B:E3:4B:6F:52:AC:2D:7F:04:A7:DC:CD:CE Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3B05 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aKSUs_DBy0vjS29SrC1_BKfczc4.roa Signing time: Fri 22 Aug 2025 08:48:00 +0000 ROA not before: Fri 22 Aug 2025 08:48:00 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 180.176.144.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15109 (0x3b05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:48:00 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=68A494B3F0C1CB4BE34B6F52AC2D7F04A7DCCDCE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a5:f1:fd:df:d2:79:88:24:78:9e:de:a6:4e: ad:04:92:33:9f:53:d9:ff:a7:ee:f8:46:12:55:b5: f7:6c:68:7d:f7:9c:1c:c5:87:ab:4e:61:5a:85:d4: eb:f3:36:a6:f2:58:ea:97:ad:26:0c:d6:77:ae:b8: c8:b5:b1:76:9b:9a:5c:0d:eb:b9:11:a1:0d:92:80: 9f:72:71:be:04:0c:54:31:b5:b6:22:2a:81:6d:f6: b1:eb:9d:d6:3b:7f:04:aa:44:a2:42:01:88:06:f4: 8c:d3:13:b9:39:f9:8f:59:0a:25:d2:03:8c:c9:76: ce:f6:b8:07:67:57:e8:78:d2:ae:c0:38:a3:a9:18: fa:72:96:a4:11:be:f1:e7:4d:85:14:82:cd:9c:4d: d2:f8:e0:f1:81:6d:c4:d2:79:54:80:e9:b0:f2:ea: 77:72:4b:01:3c:b2:a7:9f:bd:10:4b:78:5f:60:99: a1:3f:e6:04:61:7d:56:b6:a8:59:61:47:9c:b8:95: 3b:61:15:49:aa:23:49:88:bf:6a:13:df:30:f2:da: 21:d0:07:3b:83:83:13:dc:42:1f:ae:5e:f0:53:13: 9c:21:95:6c:7e:50:70:18:2a:92:a2:dc:2a:d3:58: b4:6c:8f:41:bf:e9:7b:45:99:1b:75:62:ca:ae:38: f6:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:A4:94:B3:F0:C1:CB:4B:E3:4B:6F:52:AC:2D:7F:04:A7:DC:CD:CE X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aKSUs_DBy0vjS29SrC1_BKfczc4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.176.144.0/21 Signature Algorithm: sha256WithRSAEncryption a0:af:5e:d6:54:9e:8a:15:84:db:59:f4:16:25:96:d1:43:ea: ba:6b:6e:d5:95:f3:9b:a3:77:44:c8:f7:52:28:cf:96:a6:e3: 4a:38:00:4f:8c:9c:ce:87:79:13:d5:81:9b:15:d7:45:a6:4c: be:b0:5b:41:45:35:c7:9a:95:3f:99:73:0f:d7:b0:30:60:a1: 81:dd:5a:cb:f9:30:ac:1e:02:60:87:d7:2f:ce:6c:e9:39:50: 72:92:59:76:cd:15:a1:d8:44:a4:ac:a4:34:a9:b8:3b:a5:d7: 4e:44:c4:5b:6c:0f:9a:30:4f:68:a2:46:27:bf:eb:3e:dd:5e: 20:81:02:50:5f:20:c5:58:39:c9:bb:76:be:2b:a9:6f:53:31: d8:50:66:05:71:42:20:9e:f1:54:8b:fb:a0:15:94:5d:af:26: cf:ab:b3:0a:dc:55:7e:72:05:f9:e4:73:b5:3f:a5:bb:09:d1: 43:7f:f3:83:3e:dc:97:8d:8d:5f:5b:c1:84:5d:14:68:6d:d1: 50:fe:df:b3:93:aa:50:6e:69:34:b5:9b:a4:71:bd:0c:9c:a1: 39:f4:95:6a:2f:7b:b7:7e:d4:e5:96:fb:02:a5:4d:2c:49:d3: cb:58:3b:3d:2d:eb:8b:57:a6:ec:62:21:98:c8:82:55:9e:fa: 38:83:2f:05 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOwUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ4MDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY4QTQ5NEIzRjBDMUNC NEJFMzRCNkY1MkFDMkQ3RjA0QTdEQ0NEQ0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8pfH939J5iCR4nt6mTq0EkjOfU9n/p+74RhJVtfdsaH33nBzF h6tOYVqF1OvzNqbyWOqXrSYM1neuuMi1sXabmlwN67kRoQ2SgJ9ycb4EDFQxtbYi KoFt9rHrndY7fwSqRKJCAYgG9IzTE7k5+Y9ZCiXSA4zJds72uAdnV+h40q7AOKOp GPpylqQRvvHnTYUUgs2cTdL44PGBbcTSeVSA6bDy6ndySwE8sqefvRBLeF9gmaE/ 5gRhfVa2qFlhR5y4lTthFUmqI0mIv2oT3zDy2iHQBzuDgxPcQh+uXvBTE5whlWx+ UHAYKpKi3CrTWLRsj0G/6XtFmRt1YsquOPYvAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUaKSUs/DBy0vjS29SrC1/BKfczc4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2FLU1VzX0RCeTB2alMyOVNy QzFfQktmY3pjNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 sJAwDQYJKoZIhvcNAQELBQADggEBAKCvXtZUnooVhNtZ9BYlltFD6rprbtWV85uj d0TI91Ioz5am40o4AE+MnM6HeRPVgZsV10WmTL6wW0FFNcealT+Zcw/XsDBgoYHd Wsv5MKweAmCH1y/ObOk5UHKSWXbNFaHYRKSspDSpuDul105ExFtsD5owT2iiRie/ 6z7dXiCBAlBfIMVYOcm7dr4rqW9TMdhQZgVxQiCe8VSL+6AVlF2vJs+rswrcVX5y Bfnkc7U/pbsJ0UN/84M+3JeNjV9bwYRdFGht0VD+37OTqlBuaTS1m6RxvQycoTn0 lWove7d+1OWW+wKlTSxJ08tYOz0t64tXpuxiIZjIglWe+jiDLwU= -----END CERTIFICATE-----Generated at Sun Aug 24 07:29:34 2025 by rpki-client