$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dCdBIS0t82hKRP2GIKTgFXfvFaQ.roa File: dCdBIS0t82hKRP2GIKTgFXfvFaQ.roa (raw, json) Hash identifier: x79wYE8WxCjJlrzfMDjdVQ790+OQgvLjzP0351OGaX8= Subject key identifier: 74:27:41:21:2D:2D:F3:68:4A:44:FD:86:20:A4:E0:15:77:EF:15:A4 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3A5E Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dCdBIS0t82hKRP2GIKTgFXfvFaQ.roa Signing time: Fri 22 Aug 2025 08:47:17 +0000 ROA not before: Fri 22 Aug 2025 08:47:17 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 180.176.72.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14942 (0x3a5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:17 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=742741212D2DF3684A44FD8620A4E01577EF15A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:6b:e7:9a:6b:6d:05:eb:39:09:1c:78:4c:f6: 8c:c0:1a:c0:05:8e:f7:45:13:6a:07:01:7d:06:a2: bc:66:c1:ce:33:75:53:e8:63:7c:a6:65:ac:86:8b: cd:ba:fd:0a:28:ed:1a:a0:ac:b0:71:3d:64:4e:ab: dd:f2:3e:0f:93:ca:af:79:64:3b:54:14:45:e4:45: cc:2b:a9:33:a7:13:65:61:2e:d4:20:22:61:12:a2: a8:8b:1f:f0:b2:18:59:21:52:d2:f8:ba:39:90:50: 78:81:a8:e7:04:a8:1f:f5:94:b1:34:4b:71:c5:4c: 81:61:3d:57:29:2f:ff:b9:c1:ee:12:63:26:b7:59: a6:af:da:db:e9:15:11:ec:39:1f:35:7d:0a:ae:af: 0c:98:aa:95:52:22:21:a4:8f:cc:4f:af:16:79:60: d4:c3:03:5c:57:67:ca:55:65:3e:ba:44:8e:df:de: 41:1e:25:82:a4:aa:5e:77:17:11:d9:f1:69:a0:6b: 8e:0a:05:55:b8:12:9a:af:3b:01:4f:67:5d:97:83: 26:34:85:c1:ca:01:31:14:1d:66:ab:62:a2:94:af: 2a:f8:19:dc:c2:c3:78:46:43:66:f6:41:7c:46:b8: 9e:16:67:85:f3:28:0c:8a:c3:6d:f6:0a:53:ac:58: 46:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:27:41:21:2D:2D:F3:68:4A:44:FD:86:20:A4:E0:15:77:EF:15:A4 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dCdBIS0t82hKRP2GIKTgFXfvFaQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.176.72.0/22 Signature Algorithm: sha256WithRSAEncryption 41:10:dd:9b:ed:42:18:06:17:22:22:0d:79:82:60:32:23:c5: 17:8d:69:de:bf:07:54:bd:d4:9e:f1:20:26:19:68:44:fa:4c: fd:b0:1b:94:71:cf:9a:2f:f7:96:24:9e:8b:98:72:61:3a:58: a9:56:33:9e:02:78:be:53:87:6d:0a:72:80:77:99:32:54:e5: 1a:ea:03:bf:43:cd:db:b7:4a:bd:7b:2d:9c:67:13:23:cf:08: f4:07:44:b2:70:d1:43:06:d7:68:7b:db:2f:3c:9c:c4:bb:5b: 90:fb:a6:33:2d:f1:a8:24:6c:bd:ff:73:df:bd:23:8b:de:8a: f0:3e:53:b5:4c:3f:78:1a:b8:d4:58:e1:47:32:cd:d8:f5:8f: bd:61:27:c0:d8:ae:7e:e1:7c:f4:c9:8b:52:5b:b8:51:0c:36: b1:98:74:1b:3f:e4:20:a7:a1:8d:53:5d:42:bc:68:39:f3:49: 59:58:e0:60:60:6b:44:cd:33:f0:38:21:e3:78:1b:6c:5b:17: b7:71:6b:a0:f5:78:4f:89:43:70:aa:ee:e2:05:64:79:d1:fe: 3a:ba:d3:9a:f5:14:b2:0a:13:d1:51:1f:4c:be:0b:86:db:76: b4:a4:97:67:13:35:77:64:b4:74:d2:ef:d7:ea:d0:14:22:f1: 51:90:b2:05 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOl4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3MTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc0Mjc0MTIxMkQyREYz Njg0QTQ0RkQ4NjIwQTRFMDE1NzdFRjE1QTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCga+eaa20F6zkJHHhM9ozAGsAFjvdFE2oHAX0Gorxmwc4zdVPo Y3ymZayGi826/Qoo7RqgrLBxPWROq93yPg+Tyq95ZDtUFEXkRcwrqTOnE2VhLtQg ImESoqiLH/CyGFkhUtL4ujmQUHiBqOcEqB/1lLE0S3HFTIFhPVcpL/+5we4SYya3 Waav2tvpFRHsOR81fQqurwyYqpVSIiGkj8xPrxZ5YNTDA1xXZ8pVZT66RI7f3kEe JYKkql53FxHZ8Wmga44KBVW4EpqvOwFPZ12XgyY0hcHKATEUHWarYqKUryr4GdzC w3hGQ2b2QXxGuJ4WZ4XzKAyKw232ClOsWEZPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUdCdBIS0t82hKRP2GIKTgFXfvFaQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2RDZEJJUzB0ODJoS1JQMkdJ S1RnRlhmdkZhUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 sEgwDQYJKoZIhvcNAQELBQADggEBAEEQ3ZvtQhgGFyIiDXmCYDIjxReNad6/B1S9 1J7xICYZaET6TP2wG5Rxz5ov95YknouYcmE6WKlWM54CeL5Th20KcoB3mTJU5Rrq A79Dzdu3Sr17LZxnEyPPCPQHRLJw0UMG12h72y88nMS7W5D7pjMt8agkbL3/c9+9 I4veivA+U7VMP3gauNRY4Ucyzdj1j71hJ8DYrn7hfPTJi1JbuFEMNrGYdBs/5CCn oY1TXUK8aDnzSVlY4GBga0TNM/A4IeN4G2xbF7dxa6D1eE+JQ3Cq7uIFZHnR/jq6 05r1FLIKE9FRH0y+C4bbdrSkl2cTNXdktHTS79fq0BQi8VGQsgU= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:44 2025 by rpki-client