$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/djLzit66e2CKM7DhluisaC2A9eM.roa File: djLzit66e2CKM7DhluisaC2A9eM.roa (raw, json) Hash identifier: jzOqJ+ntnKzbLz/dZf6Qk/tLweSlP68i78BSGwHwWcc= Subject key identifier: 76:32:F3:8A:DE:BA:7B:60:8A:33:B0:E1:96:E8:AC:68:2D:80:F5:E3 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3A15 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/djLzit66e2CKM7DhluisaC2A9eM.roa Signing time: Fri 22 Aug 2025 08:46:59 +0000 ROA not before: Fri 22 Aug 2025 08:46:59 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.192.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14869 (0x3a15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:59 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7632F38ADEBA7B608A33B0E196E8AC682D80F5E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:6a:2d:3a:7c:34:b2:49:f9:e9:24:aa:2e:9e: bc:48:61:4b:8e:3e:71:da:f4:23:84:c5:a9:e0:46: 52:c6:b0:1c:b0:03:4a:d0:92:67:f9:73:a5:23:71: 16:54:a6:45:a6:c0:c5:02:65:1d:9e:03:95:3a:18: e8:21:cf:27:0e:b3:d4:f8:62:e6:52:09:2f:6b:46: 84:d2:84:b5:c1:62:0b:f9:91:aa:e3:1c:26:60:cc: b2:4b:d3:4b:08:ce:ba:b6:d3:a3:62:53:70:eb:e3: ba:1d:30:c4:bf:ab:97:9a:75:52:04:15:db:2e:78: 43:e8:27:34:b3:96:fb:de:d7:ab:8f:17:8d:f6:94: 09:5d:62:7e:fb:87:be:01:19:f1:70:3f:38:24:9a: 86:0d:64:96:f8:53:d2:c4:51:7d:0c:dd:a9:aa:f0: 6e:81:4f:45:e5:1d:12:08:e1:7c:72:40:61:9c:0c: 81:08:98:80:85:02:5f:1f:ee:79:b3:31:f0:02:1d: 16:bb:95:42:de:31:2a:5c:6e:76:2e:3e:59:03:1c: 57:5d:06:63:f8:c2:7f:4b:70:3e:a4:5a:1e:d4:86: 01:46:10:39:fd:11:48:c8:8f:cb:25:8f:c5:99:fe: ca:82:20:71:f5:9f:52:f3:ad:4f:6c:8a:27:ed:32: bc:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:32:F3:8A:DE:BA:7B:60:8A:33:B0:E1:96:E8:AC:68:2D:80:F5:E3 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/djLzit66e2CKM7DhluisaC2A9eM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.192.220.0/22 Signature Algorithm: sha256WithRSAEncryption 93:fe:ec:bb:df:00:7a:0e:15:06:d0:c8:20:ef:9f:77:64:53: 99:2e:5a:83:13:bb:b5:fd:12:38:f3:b5:10:79:97:b5:9f:45: 94:3d:1a:17:28:14:f6:5f:61:23:8b:1a:38:f5:2f:a6:dd:42: 71:fd:44:70:f5:84:5d:2b:c7:1e:15:67:cd:f5:b5:cb:2f:1a: c4:58:26:29:f5:e2:ca:77:70:24:b3:2b:44:c4:5e:11:81:c5: 30:63:ae:8e:66:ee:79:ce:5c:3d:c2:52:23:81:d8:1f:51:09: b8:b4:2a:42:f7:82:17:d1:e8:2e:a4:81:ed:39:4b:62:4e:b1: 12:ca:3e:d2:57:51:0f:f4:c6:2e:b7:2d:82:7f:28:09:98:1b: 84:25:88:cf:80:1b:d3:12:25:51:60:23:85:7b:9a:16:13:d0: c9:eb:54:88:4d:73:22:bb:a5:7d:d1:54:2e:ea:74:02:13:a8: 94:bd:96:99:b8:a1:b7:78:30:5f:2e:60:01:06:ba:41:11:57: 03:e6:58:37:3a:6c:a8:fc:38:02:e4:d5:56:4f:82:36:0c:7c: d7:0d:00:6c:8b:0c:83:bb:be:43:ab:c6:e3:d5:bb:03:fc:bd: 1e:d8:a8:8a:69:40:6d:a3:8e:7e:9b:de:3d:86:1a:30:58:d4: ea:29:76:6f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOhUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2NTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc2MzJGMzhBREVCQTdC NjA4QTMzQjBFMTk2RThBQzY4MkQ4MEY1RTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlai06fDSySfnpJKounrxIYUuOPnHa9COExangRlLGsBywA0rQ kmf5c6UjcRZUpkWmwMUCZR2eA5U6GOghzycOs9T4YuZSCS9rRoTShLXBYgv5karj HCZgzLJL00sIzrq206NiU3Dr47odMMS/q5eadVIEFdsueEPoJzSzlvve16uPF432 lAldYn77h74BGfFwPzgkmoYNZJb4U9LEUX0M3amq8G6BT0XlHRII4XxyQGGcDIEI mICFAl8f7nmzMfACHRa7lULeMSpcbnYuPlkDHFddBmP4wn9LcD6kWh7UhgFGEDn9 EUjIj8slj8WZ/sqCIHH1n1LzrU9siiftMrwXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUdjLzit66e2CKM7DhluisaC2A9eMwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2RqTHppdDY2ZTJDS003RGhs dWlzYUMyQTllTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wNwwDQYJKoZIhvcNAQELBQADggEBAJP+7LvfAHoOFQbQyCDvn3dkU5kuWoMTu7X9 EjjztRB5l7WfRZQ9GhcoFPZfYSOLGjj1L6bdQnH9RHD1hF0rxx4VZ831tcsvGsRY Jin14sp3cCSzK0TEXhGBxTBjro5m7nnOXD3CUiOB2B9RCbi0KkL3ghfR6C6kge05 S2JOsRLKPtJXUQ/0xi63LYJ/KAmYG4QliM+AG9MSJVFgI4V7mhYT0MnrVIhNcyK7 pX3RVC7qdAITqJS9lpm4obd4MF8uYAEGukERVwPmWDc6bKj8OALk1VZPgjYMfNcN AGyLDIO7vkOrxuPVuwP8vR7YqIppQG2jjn6b3j2GGjBY1Oopdm8= -----END CERTIFICATE-----Generated at Sun Aug 24 07:25:23 2025 by rpki-client