$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cK658rCl5l7pKV-c1cL8FvQsgyc.roa File: cK658rCl5l7pKV-c1cL8FvQsgyc.roa (raw, json) Hash identifier: 1hrwysi6AJPIX7WXMP2qfErWl0/K9NOtbXBMw4KLSAM= Subject key identifier: 70:AE:B9:F2:B0:A5:E6:5E:E9:29:5F:9C:D5:C2:FC:16:F4:2C:83:27 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3A58 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cK658rCl5l7pKV-c1cL8FvQsgyc.roa Signing time: Fri 22 Aug 2025 08:47:15 +0000 ROA not before: Fri 22 Aug 2025 08:47:15 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.194.164.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14936 (0x3a58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:15 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=70AEB9F2B0A5E65EE9295F9CD5C2FC16F42C8327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:29:b6:e7:f8:8b:59:ad:19:8d:f0:4d:8d:69: 8f:c8:ad:df:7a:25:2c:e1:22:9e:1e:d6:34:de:08: 0a:77:07:0f:bd:55:62:e8:99:e6:6b:80:fe:cb:ed: b9:f9:53:39:84:ac:92:57:b4:27:1c:c1:ed:bc:e7: c8:98:5c:65:79:85:b2:0a:72:eb:a6:0f:ff:4f:3f: 91:d7:50:74:bd:cb:fd:da:74:8b:e5:71:f5:84:bd: 5e:17:69:b3:a2:7b:f0:ec:55:09:d8:45:c5:0a:25: 24:8e:c8:c1:89:ca:3e:ff:da:8c:88:03:35:03:54: 72:69:ce:ef:31:fa:49:13:8d:df:e9:34:2c:8b:89: 06:fd:5b:77:5a:ee:fa:e9:05:e0:6e:ac:85:c7:1a: 4f:aa:3e:2c:80:17:c9:cf:40:74:9b:4c:27:e0:40: 1d:c7:68:ac:56:ec:70:27:0d:4a:ab:8c:46:e7:4e: 46:48:76:be:6e:1f:90:74:a5:d4:df:c8:a7:1c:ee: c7:8f:57:ee:ad:e3:73:f3:62:0d:05:05:a2:00:00: d5:ba:2d:e9:17:dc:8a:4a:09:56:d6:75:62:4d:1b: e7:98:68:7c:ba:02:03:83:7c:1b:2b:9c:75:f6:91: 75:f8:13:06:35:5e:d7:80:89:8d:02:45:fd:a0:c0: 61:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:AE:B9:F2:B0:A5:E6:5E:E9:29:5F:9C:D5:C2:FC:16:F4:2C:83:27 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cK658rCl5l7pKV-c1cL8FvQsgyc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.164.0/22 Signature Algorithm: sha256WithRSAEncryption ab:29:41:ca:da:fb:d0:40:b9:07:b8:71:51:9d:ee:9a:4a:95: 6a:fc:58:d3:eb:64:ef:90:88:01:b6:b3:4b:2b:1d:f0:2c:b6: 24:6c:2a:45:1b:3a:ab:b6:d6:1e:8c:62:db:da:ee:3b:d5:fd: c2:7b:5c:db:9b:44:81:59:01:16:36:5f:f6:4f:49:c9:0f:8e: bc:d9:a7:60:68:aa:83:e9:9e:a4:62:36:1b:92:16:a7:6e:63: ea:e0:d3:c8:02:bc:3c:e4:3e:fe:8e:46:38:1b:c3:80:3c:63: 35:9d:8d:73:2b:60:66:c1:45:0c:c9:ea:69:78:4a:e1:54:0c: 51:ed:af:46:72:b2:68:8f:bf:49:b4:4a:c2:64:58:0d:da:51: 31:59:46:53:59:40:e4:68:9f:be:47:a2:db:2f:9a:c2:1f:90: 5c:21:e9:25:51:90:64:fb:b2:fc:94:6c:bd:69:4b:12:41:0f: 66:6a:1d:9b:af:c9:6b:41:9e:e4:23:f8:8e:c7:a1:a9:1c:fb: 33:07:1e:ce:91:c4:62:98:de:2f:c7:cd:91:e3:a3:21:56:8c: c1:a8:fc:1f:81:69:df:0e:3b:25:62:51:55:f6:43:62:cd:eb: d5:e0:d4:38:1e:44:a9:6e:50:42:b3:a5:59:e2:66:79:e8:32: b5:08:4e:d9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOlgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3MTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDcwQUVCOUYyQjBBNUU2 NUVFOTI5NUY5Q0Q1QzJGQzE2RjQyQzgzMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2Kbbn+ItZrRmN8E2NaY/Ird96JSzhIp4e1jTeCAp3Bw+9VWLo meZrgP7L7bn5UzmErJJXtCccwe2858iYXGV5hbIKcuumD/9PP5HXUHS9y/3adIvl cfWEvV4XabOie/DsVQnYRcUKJSSOyMGJyj7/2oyIAzUDVHJpzu8x+kkTjd/pNCyL iQb9W3da7vrpBeBurIXHGk+qPiyAF8nPQHSbTCfgQB3HaKxW7HAnDUqrjEbnTkZI dr5uH5B0pdTfyKcc7sePV+6t43PzYg0FBaIAANW6LekX3IpKCVbWdWJNG+eYaHy6 AgODfBsrnHX2kXX4EwY1XteAiY0CRf2gwGEBAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUcK658rCl5l7pKV+c1cL8FvQsgycwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2NLNjU4ckNsNWw3cEtWLWMx Y0w4RnZRc2d5Yy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wqQwDQYJKoZIhvcNAQELBQADggEBAKspQcra+9BAuQe4cVGd7ppKlWr8WNPrZO+Q iAG2s0srHfAstiRsKkUbOqu21h6MYtva7jvV/cJ7XNubRIFZARY2X/ZPSckPjrzZ p2BoqoPpnqRiNhuSFqduY+rg08gCvDzkPv6ORjgbw4A8YzWdjXMrYGbBRQzJ6ml4 SuFUDFHtr0ZysmiPv0m0SsJkWA3aUTFZRlNZQORon75HotsvmsIfkFwh6SVRkGT7 svyUbL1pSxJBD2ZqHZuvyWtBnuQj+I7Hoakc+zMHHs6RxGKY3i/HzZHjoyFWjMGo /B+Bad8OOyViUVX2Q2LN69Xg1DgeRKluUEKzpVniZnnoMrUITtk= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:58 2025 by rpki-client