$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dW4exoc3jCwXb3NiqHykT8J2avA.roa File: dW4exoc3jCwXb3NiqHykT8J2avA.roa (raw, json) Hash identifier: 8J+Vg3PQ2IL8VZa2SKUAsmFX4fUgczCKhITEnG2GNvY= Subject key identifier: 75:6E:1E:C6:87:37:8C:2C:17:6F:73:62:A8:7C:A4:4F:C2:76:6A:F0 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3A0C Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dW4exoc3jCwXb3NiqHykT8J2avA.roa Signing time: Fri 22 Aug 2025 08:46:57 +0000 ROA not before: Fri 22 Aug 2025 08:46:57 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 211.76.120.128/25 maxlen: 25 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14860 (0x3a0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:57 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=756E1EC687378C2C176F7362A87CA44FC2766AF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:d0:a0:3c:40:04:1f:c5:73:59:94:0a:5e:87: 6f:9e:9d:54:8a:91:f7:7e:aa:ee:09:93:7a:6e:15: d4:8f:dd:ba:42:ba:c3:eb:d5:71:00:e3:c7:bd:0c: 36:31:74:f4:b3:08:8c:76:2e:99:ea:07:63:b8:7f: b1:6e:aa:10:85:0b:dc:67:b0:7a:27:f0:48:65:bf: 1d:03:d8:19:03:85:c8:f7:4d:2b:31:2d:15:cf:03: 7e:c5:1f:bc:ae:6f:bb:c0:4f:61:df:8d:5a:87:81: 32:c1:e2:99:f9:8d:a7:93:34:5d:a1:f8:37:39:f4: 40:d8:a5:4a:4c:45:52:0e:63:4a:05:09:3e:69:1c: 32:d2:16:f6:db:82:da:10:60:86:58:db:c0:16:59: 27:9a:c4:1d:ce:9d:48:b1:a5:fc:43:62:79:b8:7d: cf:52:14:2b:a5:f6:96:41:30:98:c2:af:85:23:21: b8:e1:57:1d:60:4f:86:33:2e:ad:c9:92:39:88:e1: 2b:5c:86:c9:52:d9:c7:7a:bb:bf:50:80:ad:9a:3c: 44:2e:a2:e6:0a:ef:bb:9f:e8:f1:0b:f6:98:84:45: c4:ee:5b:2d:df:ce:c8:3a:6c:a5:0a:9b:73:14:a9: e0:23:ab:ef:75:7c:2d:78:c6:70:6a:ba:c9:2e:1f: a0:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:6E:1E:C6:87:37:8C:2C:17:6F:73:62:A8:7C:A4:4F:C2:76:6A:F0 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dW4exoc3jCwXb3NiqHykT8J2avA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.120.128/25 Signature Algorithm: sha256WithRSAEncryption b4:1e:4a:01:71:ff:b1:4a:a7:1b:34:e3:e6:82:2a:c9:94:dd: 26:d2:c2:51:48:3c:e4:7f:3c:57:03:7a:8f:63:d4:8d:92:08: bb:89:9b:b7:4f:e0:81:17:30:3b:34:63:4c:6c:bb:18:19:8b: 1d:58:ac:cb:a6:ed:8f:99:10:b1:12:d8:59:87:d9:82:a8:44: 8c:44:3d:ae:7b:fe:35:79:a5:7c:35:a0:f4:3a:15:84:2d:d3: 9c:07:d5:6c:87:63:92:e5:5a:b9:25:cb:e3:f9:3d:b3:bd:0f: 10:13:56:3c:21:dd:09:e4:23:d1:c2:31:b2:a1:05:2c:48:34: 8d:ea:03:20:5d:fa:ea:16:50:56:1c:da:eb:75:f1:85:51:04: 6a:98:03:ce:d7:bc:ea:2c:ce:1b:f1:db:e2:76:49:12:07:b9: ab:50:26:56:09:8b:26:b6:83:24:99:73:80:38:ae:25:34:1e: 20:cc:69:9b:c7:21:68:9a:66:54:ec:d9:24:bb:8e:27:bd:35: 78:3f:f9:e4:f1:a1:53:20:d7:eb:db:9d:e7:28:9e:fa:69:e7: 90:83:33:41:4c:cb:f4:27:67:d3:53:3c:27:c7:59:61:cc:dc: ba:a5:e0:3e:99:69:e4:d4:cc:49:4e:90:76:03:68:b5:23:df: cc:5e:2e:09 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICOgwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2NTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc1NkUxRUM2ODczNzhD MkMxNzZGNzM2MkE4N0NBNDRGQzI3NjZBRjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDi0KA8QAQfxXNZlApeh2+enVSKkfd+qu4Jk3puFdSP3bpCusPr 1XEA48e9DDYxdPSzCIx2LpnqB2O4f7FuqhCFC9xnsHon8Ehlvx0D2BkDhcj3TSsx LRXPA37FH7yub7vAT2HfjVqHgTLB4pn5jaeTNF2h+Dc59EDYpUpMRVIOY0oFCT5p HDLSFvbbgtoQYIZY28AWWSeaxB3OnUixpfxDYnm4fc9SFCul9pZBMJjCr4UjIbjh Vx1gT4YzLq3JkjmI4StchslS2cd6u79QgK2aPEQuouYK77uf6PEL9piERcTuWy3f zsg6bKUKm3MUqeAjq+91fC14xnBquskuH6B5AgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUdW4exoc3jCwXb3NiqHykT8J2avAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2RXNGV4b2MzakN3WGIzTmlx SHlrVDhKMmF2QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQfT THiAMA0GCSqGSIb3DQEBCwUAA4IBAQC0HkoBcf+xSqcbNOPmgirJlN0m0sJRSDzk fzxXA3qPY9SNkgi7iZu3T+CBFzA7NGNMbLsYGYsdWKzLpu2PmRCxEthZh9mCqESM RD2ue/41eaV8NaD0OhWELdOcB9Vsh2OS5Vq5Jcvj+T2zvQ8QE1Y8Id0J5CPRwjGy oQUsSDSN6gMgXfrqFlBWHNrrdfGFUQRqmAPO17zqLM4b8dvidkkSB7mrUCZWCYsm toMkmXOAOK4lNB4gzGmbxyFommZU7Nkku44nvTV4P/nk8aFTINfr253nKJ76aeeQ gzNBTMv0J2fTUzwnx1lhzNy6peA+mWnk1MxJTpB2A2i1I9/MXi4J -----END CERTIFICATE-----Generated at Sun Aug 24 07:26:35 2025 by rpki-client