$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/f9CEh7h9ggAmo51d-6y-VZ5An8w.roa File: f9CEh7h9ggAmo51d-6y-VZ5An8w.roa (raw, json) Hash identifier: j+BPRw+FUfV844xSX20npuN73ukm5ATNBUV9W4cHaq8= Subject key identifier: 7F:D0:84:87:B8:7D:82:00:26:A3:9D:5D:FB:AC:BE:55:9E:40:9F:CC Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 39A1 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/f9CEh7h9ggAmo51d-6y-VZ5An8w.roa Signing time: Fri 22 Aug 2025 08:46:29 +0000 ROA not before: Fri 22 Aug 2025 08:46:29 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.195.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14753 (0x39a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:29 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7FD08487B87D820026A39D5DFBACBE559E409FCC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:74:c9:3a:aa:ba:82:12:36:11:3a:ce:e7:b3: db:44:11:a7:8f:f1:43:e8:8c:91:7b:f3:44:41:50: 43:9b:88:de:0a:b9:f6:d6:1e:0c:a9:71:cc:dc:97: dd:bb:39:28:3e:7b:cb:ab:8a:d4:8e:c7:f8:e5:42: 5c:9b:91:ff:51:65:6e:53:59:5a:e5:fb:33:dd:8e: ce:8b:e9:b9:35:a3:41:c4:9f:5f:d3:95:f1:76:46: 37:f5:22:ed:05:85:88:38:c8:73:83:1d:d6:5e:4e: 7c:43:e9:f0:92:81:b9:16:14:28:e6:7d:29:d4:b6: 62:88:22:17:c3:b0:7b:0e:00:39:e5:9c:5f:72:68: 55:d4:9c:bb:fc:7b:73:77:f4:c6:2f:fe:e1:9b:07: b4:a4:cf:29:ca:a9:6b:9f:9e:39:8a:2c:c9:91:3e: 9c:6e:6d:de:15:aa:66:18:d7:43:6f:48:3d:c2:74: 3f:f2:1c:84:37:1f:ce:bb:93:57:1f:e0:22:b9:f2: d7:e5:3b:11:64:69:10:7c:ac:0f:93:8c:be:a2:48: 69:e0:a8:96:58:55:a3:0c:fc:46:d4:e9:18:5e:66: 0a:73:d3:24:60:4f:80:c4:60:4f:aa:11:30:72:62: 5d:5a:17:70:c8:61:41:5a:4f:7c:3c:2b:f7:64:7c: 40:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:D0:84:87:B8:7D:82:00:26:A3:9D:5D:FB:AC:BE:55:9E:40:9F:CC X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/f9CEh7h9ggAmo51d-6y-VZ5An8w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.144.0/20 Signature Algorithm: sha256WithRSAEncryption 24:fe:d6:c7:b7:04:1f:12:39:d2:da:5f:5c:e6:ac:07:47:cb: f3:72:86:05:e5:89:29:d3:87:cd:45:0d:9f:22:fd:02:9d:36: e7:22:4f:0f:0c:e3:82:39:44:f6:11:9e:60:cd:bd:7f:0d:99: a4:7f:da:6c:59:64:e9:09:4d:ae:ef:7d:c1:b4:fd:bd:89:c4: 41:ac:9e:dc:6c:bb:1c:3f:48:9f:82:b3:62:3f:1c:29:ea:e3: 44:b2:e2:82:27:87:14:64:45:d6:b2:1b:69:a0:21:1e:49:22: fe:c7:02:eb:9c:f4:5b:2b:2b:47:89:64:c5:c4:f0:59:bc:85: b4:33:d8:4d:4e:11:1c:2e:a8:71:18:a8:d8:2b:ef:e5:5c:6f: 63:b7:59:be:c7:c8:30:9f:8b:b0:8a:eb:3d:74:c5:72:0e:e9: 34:9c:0e:d0:80:97:ce:c7:31:81:60:40:b4:d6:69:6c:38:69: 44:a4:82:02:ea:5c:bb:67:ba:17:52:63:23:a0:a0:62:5f:e0: fe:0e:9a:9a:fc:42:0c:7d:16:d6:c7:72:42:7d:0a:da:2f:b9: b3:23:08:25:f2:4b:da:4b:52:f6:b9:54:5f:6b:20:c9:a0:0f: ab:71:cf:09:b3:d9:e4:be:b2:a5:3b:37:54:8e:5e:50:7d:ef: 88:31:9a:7e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOaEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MjlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdGRDA4NDg3Qjg3RDgy MDAyNkEzOUQ1REZCQUNCRTU1OUU0MDlGQ0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5dMk6qrqCEjYROs7ns9tEEaeP8UPojJF780RBUEObiN4KufbW Hgypcczcl927OSg+e8uritSOx/jlQlybkf9RZW5TWVrl+zPdjs6L6bk1o0HEn1/T lfF2Rjf1Iu0FhYg4yHODHdZeTnxD6fCSgbkWFCjmfSnUtmKIIhfDsHsOADnlnF9y aFXUnLv8e3N39MYv/uGbB7SkzynKqWufnjmKLMmRPpxubd4VqmYY10NvSD3CdD/y HIQ3H867k1cf4CK58tflOxFkaRB8rA+TjL6iSGngqJZYVaMM/EbU6RheZgpz0yRg T4DEYE+qETByYl1aF3DIYUFaT3w8K/dkfECzAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUf9CEh7h9ggAmo51d+6y+VZ5An8wwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2Y5Q0VoN2g5Z2dBbW81MWQt NnktVlo1QW44dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR7 w5AwDQYJKoZIhvcNAQELBQADggEBACT+1se3BB8SOdLaX1zmrAdHy/NyhgXliSnT h81FDZ8i/QKdNuciTw8M44I5RPYRnmDNvX8NmaR/2mxZZOkJTa7vfcG0/b2JxEGs ntxsuxw/SJ+Cs2I/HCnq40Sy4oInhxRkRdayG2mgIR5JIv7HAuuc9FsrK0eJZMXE 8Fm8hbQz2E1OERwuqHEYqNgr7+Vcb2O3Wb7HyDCfi7CK6z10xXIO6TScDtCAl87H MYFgQLTWaWw4aUSkggLqXLtnuhdSYyOgoGJf4P4Ompr8Qgx9FtbHckJ9CtovubMj CCXyS9pLUva5VF9rIMmgD6txzwmz2eS+sqU7N1SOXlB974gxmn4= -----END CERTIFICATE-----Generated at Sun Aug 24 07:31:59 2025 by rpki-client