$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dOnEv9VUXKa8S4pQpAJbF_tpjec.roa File: dOnEv9VUXKa8S4pQpAJbF_tpjec.roa (raw, json) Hash identifier: is8e67/GY6Mk771i5iS8Nxw+xDZNCTyoeYCvEq5XIyA= Subject key identifier: 74:E9:C4:BF:D5:54:5C:A6:BC:4B:8A:50:A4:02:5B:17:FB:69:8D:E7 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3A63 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dOnEv9VUXKa8S4pQpAJbF_tpjec.roa Signing time: Fri 22 Aug 2025 08:47:18 +0000 ROA not before: Fri 22 Aug 2025 08:47:18 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.193.198.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14947 (0x3a63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=74E9C4BFD5545CA6BC4B8A50A4025B17FB698DE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b4:67:be:2b:c9:34:2d:70:ba:2c:eb:2b:15: 5b:8b:8a:1b:f8:22:41:6e:be:0d:f2:95:6e:22:82: 7e:5a:2b:5d:39:84:d0:6a:bc:7c:d6:fb:cc:e4:c0: 47:62:cc:f2:7d:44:0d:4b:a9:96:76:5b:87:09:be: 05:38:78:63:cb:2a:6b:3a:8e:ab:38:15:fb:87:cc: ab:de:ba:37:1e:e4:39:cf:2c:15:46:19:d0:ea:90: c9:2c:3a:48:4d:6c:f0:d5:01:56:43:65:2a:f6:9d: c1:32:fe:65:e0:85:0d:3e:e8:51:89:6b:0d:58:9e: 2c:0f:1b:cf:4c:0c:e1:80:fc:b4:c7:9b:08:d6:82: 44:19:ac:4c:d1:94:f3:bf:15:6c:e3:da:56:9e:dd: 60:83:a6:2a:4d:1d:4b:0b:79:7b:c1:ce:a3:ea:09: 99:5e:17:69:b3:05:a7:45:b6:c5:c9:f2:2d:8a:9f: 91:cd:a0:1f:72:ed:05:25:2d:eb:c1:d7:ad:db:da: 6f:a2:df:88:8a:64:9c:c7:a4:c8:99:06:7b:6f:7a: d1:e8:c8:1c:98:ff:98:27:62:2f:86:44:db:f9:7d: fd:00:7c:df:f0:d3:5e:9d:e2:6d:dc:0c:73:15:64: ea:5d:ed:2a:25:53:81:9a:0f:a7:d3:14:ac:80:08: 1b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:E9:C4:BF:D5:54:5C:A6:BC:4B:8A:50:A4:02:5B:17:FB:69:8D:E7 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dOnEv9VUXKa8S4pQpAJbF_tpjec.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.198.0/23 Signature Algorithm: sha256WithRSAEncryption ad:4b:ac:8b:2f:b4:cd:2b:4e:f4:30:a9:06:48:72:d3:ad:18: 13:56:e8:a9:31:bb:85:87:a6:da:b7:f7:5d:8e:1b:d8:49:f8: cc:ef:9b:56:81:93:b3:cc:bd:a6:d3:56:f9:a3:09:b1:96:73: 69:cd:41:14:9f:32:d5:8c:c3:a5:20:ca:f5:ce:1f:f5:2a:67: 80:5a:3d:53:71:f6:c3:47:b6:a9:69:aa:39:79:2e:8f:0f:f2: 8d:6b:67:8d:be:45:01:09:7f:b3:0b:bd:ba:02:ed:6b:fc:c3: 75:3a:d5:8b:65:4c:14:93:2c:89:26:46:38:65:18:ed:3d:be: 4b:dd:24:94:17:ee:3a:eb:76:c3:73:4a:e7:11:ae:5f:38:23: 94:a8:46:d2:3a:57:61:76:a3:18:37:7f:91:1c:2c:16:ee:fe: 84:58:c2:84:ad:9f:b9:94:5c:4a:51:38:54:5e:9b:17:9b:25: c7:cd:2a:08:7d:d5:35:96:cb:15:22:1f:f8:01:8b:b0:15:38: 2a:ad:7a:8d:6f:c9:5b:9f:f7:da:98:e4:67:05:ee:f4:58:7a: 6d:ee:12:c0:ba:d2:eb:95:3e:0b:d0:5b:a9:76:28:a0:a0:41: 0d:59:56:ca:d6:47:28:2f:fb:d2:39:b5:20:01:c7:31:83:e7: 8f:27:fd:06 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOmMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3MThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc0RTlDNEJGRDU1NDVD QTZCQzRCOEE1MEE0MDI1QjE3RkI2OThERTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4tGe+K8k0LXC6LOsrFVuLihv4IkFuvg3ylW4ign5aK105hNBq vHzW+8zkwEdizPJ9RA1LqZZ2W4cJvgU4eGPLKms6jqs4FfuHzKveujce5DnPLBVG GdDqkMksOkhNbPDVAVZDZSr2ncEy/mXghQ0+6FGJaw1YniwPG89MDOGA/LTHmwjW gkQZrEzRlPO/FWzj2lae3WCDpipNHUsLeXvBzqPqCZleF2mzBadFtsXJ8i2Kn5HN oB9y7QUlLevB163b2m+i34iKZJzHpMiZBntvetHoyByY/5gnYi+GRNv5ff0AfN/w 016d4m3cDHMVZOpd7SolU4GaD6fTFKyACBvnAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUdOnEv9VUXKa8S4pQpAJbF/tpjecwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2RPbkV2OVZVWEthOFM0cFFw QUpiRl90cGplYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF7 wcYwDQYJKoZIhvcNAQELBQADggEBAK1LrIsvtM0rTvQwqQZIctOtGBNW6Kkxu4WH ptq3912OG9hJ+Mzvm1aBk7PMvabTVvmjCbGWc2nNQRSfMtWMw6UgyvXOH/UqZ4Ba PVNx9sNHtqlpqjl5Lo8P8o1rZ42+RQEJf7MLvboC7Wv8w3U61YtlTBSTLIkmRjhl GO09vkvdJJQX7jrrdsNzSucRrl84I5SoRtI6V2F2oxg3f5EcLBbu/oRYwoStn7mU XEpROFRemxebJcfNKgh91TWWyxUiH/gBi7AVOCqteo1vyVuf99qY5GcF7vRYem3u EsC60uuVPgvQW6l2KKCgQQ1ZVsrWRygv+9I5tSABxzGD548n/QY= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:49 2025 by rpki-client