$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ej6sq0fl6OFbRdGqtlLVBzv5H-4.roa File: ej6sq0fl6OFbRdGqtlLVBzv5H-4.roa (raw, json) Hash identifier: K7t35uFi5Vyn5tz0e3oxZAU6bf7RyvDKceqAr5we81E= Subject key identifier: 7A:3E:AC:AB:47:E5:E8:E1:5B:45:D1:AA:B6:52:D5:07:3B:F9:1F:EE Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3997 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ej6sq0fl6OFbRdGqtlLVBzv5H-4.roa Signing time: Fri 22 Aug 2025 08:46:27 +0000 ROA not before: Fri 22 Aug 2025 08:46:27 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.193.160.0/20 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14743 (0x3997) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:27 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7A3EACAB47E5E8E15B45D1AAB652D5073BF91FEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:65:07:e2:af:cf:ac:16:b9:e9:9d:8e:b2:d0: 43:95:38:a6:1d:b7:6f:12:24:bd:18:8e:44:7d:53: 07:60:e1:95:0d:57:30:28:2f:a3:0c:85:5a:e1:f2: 61:d1:f6:8c:c6:23:71:3c:4b:6c:95:10:7d:2f:6d: 8f:18:10:e0:22:ff:b5:a7:31:18:b0:45:37:3d:64: 4b:70:b6:ff:13:9f:48:84:4f:33:6c:6b:44:2a:6a: 12:e6:31:2a:59:92:cc:d2:ae:24:5f:3e:e1:06:80: 5c:f9:db:1e:9d:f8:02:1d:20:1f:62:f0:52:a9:71: 60:54:30:19:ca:81:3a:ff:a4:46:36:b7:31:5e:02: d3:9e:16:b3:6d:f6:69:ed:da:3d:f6:12:a8:d8:0b: 00:43:4b:20:8f:34:de:09:d2:1f:79:81:ef:85:13: b7:f1:d6:db:5e:99:b0:be:58:58:a2:20:f1:c1:fe: 6e:51:26:9b:50:35:ab:4e:fd:4b:15:85:77:d4:19: 58:a5:90:12:9b:8a:31:3a:3f:b3:dd:80:7a:20:23: 34:4f:14:91:fd:07:c8:e0:55:1e:9c:8a:2e:83:fe: 64:62:d0:3f:f9:6b:2e:15:57:be:ee:be:1a:f5:b0: ea:5d:12:63:30:c7:3a:27:52:b9:64:cd:b3:7e:9b: d3:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:3E:AC:AB:47:E5:E8:E1:5B:45:D1:AA:B6:52:D5:07:3B:F9:1F:EE X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ej6sq0fl6OFbRdGqtlLVBzv5H-4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.160.0/20 Signature Algorithm: sha256WithRSAEncryption 48:6f:23:cc:55:2f:b5:4e:be:30:db:ed:d3:ab:04:de:ae:61: 74:74:02:f6:97:3a:e5:35:b6:26:81:eb:bc:e9:56:ac:a7:52: 67:47:2f:a3:1c:f9:1b:f3:e7:9d:42:22:df:ab:4c:ff:83:87: 6f:b3:5e:a5:b8:76:5b:4d:7c:f9:e1:3c:fa:04:f4:07:8b:5c: b9:95:e5:d2:b8:f3:36:83:cb:64:4b:bc:b1:82:38:aa:36:85: 2b:77:05:4d:8e:37:64:d7:dd:3b:e8:c9:cf:29:e3:5e:0b:60: f2:86:a1:dc:66:31:92:7e:41:b4:0d:aa:d8:d1:7e:6b:87:07: d6:7e:46:c1:4c:df:69:a2:16:f1:08:33:11:40:b9:e0:1a:fc: 2d:b8:de:40:6b:49:c9:70:82:6d:d4:e3:20:f8:fd:a6:34:25: af:fc:7a:37:0a:96:0a:07:77:5c:3f:bc:8a:99:3a:b3:a1:5a: 00:c1:80:bf:b0:ca:77:f0:a9:15:fc:38:a5:91:22:ea:f7:d0: d1:7f:d3:53:80:ab:d3:3b:c4:34:a2:b2:fe:9c:80:b9:58:65: 77:dd:24:ea:d5:31:06:b0:02:d5:20:bb:09:49:59:bf:53:93: eb:5a:ae:4b:2b:09:9d:49:4c:7f:12:42:34:02:a3:7e:4c:e0: c6:b8:06:9d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOZcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MjdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdBM0VBQ0FCNDdFNUU4 RTE1QjQ1RDFBQUI2NTJENTA3M0JGOTFGRUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzZQfir8+sFrnpnY6y0EOVOKYdt28SJL0YjkR9Uwdg4ZUNVzAo L6MMhVrh8mHR9ozGI3E8S2yVEH0vbY8YEOAi/7WnMRiwRTc9ZEtwtv8Tn0iETzNs a0QqahLmMSpZkszSriRfPuEGgFz52x6d+AIdIB9i8FKpcWBUMBnKgTr/pEY2tzFe AtOeFrNt9mnt2j32EqjYCwBDSyCPNN4J0h95ge+FE7fx1ttembC+WFiiIPHB/m5R JptQNatO/UsVhXfUGVilkBKbijE6P7PdgHogIzRPFJH9B8jgVR6cii6D/mRi0D/5 ay4VV77uvhr1sOpdEmMwxzonUrlkzbN+m9NzAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUej6sq0fl6OFbRdGqtlLVBzv5H+4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2VqNnNxMGZsNk9GYlJkR3F0 bExWQnp2NUgtNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR7 waAwDQYJKoZIhvcNAQELBQADggEBAEhvI8xVL7VOvjDb7dOrBN6uYXR0AvaXOuU1 tiaB67zpVqynUmdHL6Mc+Rvz551CIt+rTP+Dh2+zXqW4dltNfPnhPPoE9AeLXLmV 5dK48zaDy2RLvLGCOKo2hSt3BU2ON2TX3Tvoyc8p414LYPKGodxmMZJ+QbQNqtjR fmuHB9Z+RsFM32miFvEIMxFAueAa/C243kBrSclwgm3U4yD4/aY0Ja/8ejcKlgoH d1w/vIqZOrOhWgDBgL+wynfwqRX8OKWRIur30NF/01OAq9M7xDSisv6cgLlYZXfd JOrVMQawAtUguwlJWb9Tk+tarksrCZ1JTH8SQjQCo35M4Ma4Bp0= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:19 2025 by rpki-client