$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/b9V8QdHpb_lD_y9R2BmtSlB-f_c.roa File: b9V8QdHpb_lD_y9R2BmtSlB-f_c.roa (raw, json) Hash identifier: blTnJ/8pH+1p71zDFMssnQRuJckwHUwCe6CNTC/Jxrw= Subject key identifier: 6F:D5:7C:41:D1:E9:6F:F9:43:FF:2F:51:D8:19:AD:4A:50:7E:7F:F7 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 39CD Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/b9V8QdHpb_lD_y9R2BmtSlB-f_c.roa Signing time: Fri 22 Aug 2025 08:46:41 +0000 ROA not before: Fri 22 Aug 2025 08:46:41 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 123.195.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14797 (0x39cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:41 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6FD57C41D1E96FF943FF2F51D819AD4A507E7FF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:09:ac:ea:6f:25:98:8f:61:f2:e6:94:d9:54: f8:07:cf:46:30:03:95:40:ff:18:26:7b:4b:43:e1: 14:c6:18:36:22:26:61:c7:c9:65:eb:27:ba:c6:d5: 51:69:1f:41:0f:97:52:57:a0:09:6e:ea:28:b3:40: ec:f9:e6:35:46:79:5b:b0:ce:75:5a:6a:74:7b:ef: e0:f4:e1:5a:3f:49:09:3c:b4:c6:34:30:c7:6d:2e: 69:84:9e:13:e5:c7:88:33:3e:bd:73:70:38:88:5d: 16:18:d4:9d:65:34:9c:c6:09:94:0d:f4:78:07:bf: c7:b0:16:9b:bf:f3:50:a0:e2:7f:01:01:25:e2:6e: e3:ad:34:08:78:b9:00:96:87:43:85:d3:30:1b:b9: c2:52:37:de:93:93:6e:fe:a6:26:df:71:a0:9a:e5: 90:67:4d:e2:53:ee:d9:aa:01:ac:fd:d5:6a:40:7f: ba:69:e4:67:6e:82:89:3b:40:d2:a0:b3:73:a8:0b: fe:ca:cc:f9:71:05:ca:0c:17:1b:c8:3d:ee:91:35: 13:fc:c4:d4:cb:d5:2b:88:e5:d0:d0:2f:10:4f:be: 1c:81:d6:5e:56:12:f7:1c:96:41:ee:37:d7:2d:1e: af:17:7e:da:34:41:95:3a:4e:dd:3a:0a:39:f8:a4: c8:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:D5:7C:41:D1:E9:6F:F9:43:FF:2F:51:D8:19:AD:4A:50:7E:7F:F7 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/b9V8QdHpb_lD_y9R2BmtSlB-f_c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.32.0/19 Signature Algorithm: sha256WithRSAEncryption 40:24:29:06:e7:91:43:10:fd:1f:e2:79:81:16:4b:40:6d:22: 74:3e:ca:14:01:30:88:85:ca:c7:fe:7c:c3:34:3f:20:00:07: 10:69:02:49:f1:46:9c:39:79:4d:ef:4c:eb:a5:04:a0:e3:94: de:6a:38:c2:e5:6a:69:bb:e3:aa:33:c2:1d:e0:99:8d:8e:84: d7:0f:45:12:59:14:5b:b0:f1:5d:76:87:9a:51:2c:ae:fb:e7: 84:ef:f4:00:f5:7a:91:45:da:ef:b3:03:4a:f3:f1:8e:8b:d1: f6:d3:92:41:e2:65:f7:18:fa:70:33:c8:fc:e7:8f:ba:ab:e7: d4:3c:8c:89:87:9d:e2:85:af:34:8c:ff:c1:e2:4b:e2:6a:f9: 51:bd:1e:ed:96:19:ac:14:4c:b0:a3:3e:42:28:a7:75:30:d3: 28:7e:ad:cf:99:62:c0:16:d7:2c:c1:7f:b8:f4:f6:66:fe:35: a1:44:e6:44:8a:bd:49:50:11:a4:4a:53:d5:79:3b:28:25:ba: d9:15:57:1d:bb:65:75:de:d5:36:7a:53:56:a2:03:8f:bf:67: c8:83:c8:37:6e:6f:a4:5c:35:3f:ea:03:9e:8c:9e:77:f3:cd: b8:3a:5c:f0:90:48:79:33:55:65:e0:6c:ca:cf:01:b0:c9:47: ca:40:3b:5a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOc0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2NDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDZGRDU3QzQxRDFFOTZG Rjk0M0ZGMkY1MUQ4MTlBRDRBNTA3RTdGRjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJCazqbyWYj2Hy5pTZVPgHz0YwA5VA/xgme0tD4RTGGDYiJmHH yWXrJ7rG1VFpH0EPl1JXoAlu6iizQOz55jVGeVuwznVaanR77+D04Vo/SQk8tMY0 MMdtLmmEnhPlx4gzPr1zcDiIXRYY1J1lNJzGCZQN9HgHv8ewFpu/81Cg4n8BASXi buOtNAh4uQCWh0OF0zAbucJSN96Tk27+pibfcaCa5ZBnTeJT7tmqAaz91WpAf7pp 5Gdugok7QNKgs3OoC/7KzPlxBcoMFxvIPe6RNRP8xNTL1SuI5dDQLxBPvhyB1l5W EvcclkHuN9ctHq8Xfto0QZU6Tt06Cjn4pMiJAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUb9V8QdHpb/lD/y9R2BmtSlB+f/cwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2I5VjhRZEhwYl9sRF95OVIy Qm10U2xCLWZfYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV7 wyAwDQYJKoZIhvcNAQELBQADggEBAEAkKQbnkUMQ/R/ieYEWS0BtInQ+yhQBMIiF ysf+fMM0PyAABxBpAknxRpw5eU3vTOulBKDjlN5qOMLlamm746ozwh3gmY2OhNcP RRJZFFuw8V12h5pRLK7754Tv9AD1epFF2u+zA0rz8Y6L0fbTkkHiZfcY+nAzyPzn j7qr59Q8jImHneKFrzSM/8HiS+Jq+VG9Hu2WGawUTLCjPkIop3Uw0yh+rc+ZYsAW 1yzBf7j09mb+NaFE5kSKvUlQEaRKU9V5OyglutkVVx27ZXXe1TZ6U1aiA4+/Z8iD yDdub6RcNT/qA56Mnnfzzbg6XPCQSHkzVWXgbMrPAbDJR8pAO1o= -----END CERTIFICATE-----Generated at Sun Aug 24 05:32:17 2025 by rpki-client