$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gIDOPdwnIswvHIeN2ZQCjYBsEvo.roa File: gIDOPdwnIswvHIeN2ZQCjYBsEvo.roa (raw, json) Hash identifier: DeHpMywdbkzlaVqUxx6dP/2I6DWekkKcqlIOVGpSWxg= Subject key identifier: 80:80:CE:3D:DC:27:22:CC:2F:1C:87:8D:D9:94:02:8D:80:6C:12:FA Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3951 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gIDOPdwnIswvHIeN2ZQCjYBsEvo.roa Signing time: Fri 22 Aug 2025 08:46:11 +0000 ROA not before: Fri 22 Aug 2025 08:46:11 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.195.8.0/26 maxlen: 26 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14673 (0x3951) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:11 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8080CE3DDC2722CC2F1C878DD994028D806C12FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b7:32:3b:f6:19:54:f9:00:1a:39:59:10:f6: ee:dc:52:b0:7c:d1:77:6d:bb:03:f2:1e:f6:4f:be: a2:50:a8:d3:af:fc:d5:f0:da:d8:26:f2:da:2a:09: c8:27:f8:c2:c9:36:00:00:83:a9:52:c4:70:1a:f6: 81:64:19:e4:35:ec:88:35:25:46:09:cb:6f:ee:3c: e2:45:7a:50:55:89:37:60:ff:8e:26:63:4e:69:e2: e0:56:46:4c:5e:09:56:1e:2b:9f:ed:73:52:d9:63: a0:60:12:ea:79:79:fc:71:03:5b:88:74:9e:6b:71: bf:5c:7b:61:16:b7:b6:1a:20:cf:7f:5b:cb:18:bf: 23:75:9e:93:84:db:30:2d:df:a2:b7:91:b2:11:80: 5d:a2:43:0f:03:65:e8:aa:46:64:3b:7f:22:7c:f1: 26:98:8f:7c:21:89:f8:a8:bd:86:35:de:e8:d7:d1: c3:85:75:1b:27:64:be:c0:67:a1:7d:c5:69:f5:d9: c8:f6:91:ac:44:45:b5:7f:5b:e1:9b:c9:7b:8d:22: 6e:57:5d:c9:61:40:4a:be:db:34:c7:e4:b7:2d:8e: d6:60:44:93:92:9a:79:01:0d:e8:37:f4:0a:50:2d: 3a:9a:f3:be:82:6c:09:2d:d2:a4:80:bc:3d:5f:ce: a0:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:80:CE:3D:DC:27:22:CC:2F:1C:87:8D:D9:94:02:8D:80:6C:12:FA X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gIDOPdwnIswvHIeN2ZQCjYBsEvo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.8.0/26 Signature Algorithm: sha256WithRSAEncryption a2:12:ea:1c:e4:9f:00:8c:7a:9a:f3:3b:2f:64:89:29:f5:ee: 4f:6f:11:ff:5a:31:97:13:fb:e0:c5:1f:d9:4f:eb:22:c0:01: 01:3b:ba:df:77:55:0d:d9:9e:d9:cb:f4:78:70:2a:7c:92:9d: ce:4b:be:54:56:e5:fe:cd:44:ee:32:a7:6a:32:7d:91:6d:26: d1:3d:9c:c5:73:a7:ec:f5:16:0a:7b:db:58:e6:73:25:24:d2: 40:83:ae:29:3b:05:83:5d:9d:9c:a5:22:52:51:3e:eb:b5:c5: cd:2c:41:27:7d:85:40:2e:06:22:34:af:dc:66:b7:f4:d4:cc: 7e:64:e4:33:5f:83:4c:73:a0:22:89:00:fb:ba:36:db:8c:77: 6f:83:22:da:28:36:0c:82:3c:78:f2:d1:8c:79:45:d3:8a:b7: 83:d5:10:86:07:98:df:2d:30:52:6a:c2:b0:14:71:81:da:22: 58:65:11:c2:66:86:8e:ff:e6:e7:f0:3e:4a:31:40:8a:aa:80: c0:fe:e8:49:7a:30:d1:09:45:d1:3e:6b:e1:25:60:8e:20:2e: d7:eb:51:3c:0f:63:51:e3:91:0f:b6:29:a9:15:cb:58:91:67: 04:cb:4d:36:25:bc:31:ff:13:6c:c9:ac:63:f6:79:eb:02:24: a9:fe:82:cd -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICOVEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDgwODBDRTNEREMyNzIy Q0MyRjFDODc4REQ5OTQwMjhEODA2QzEyRkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOtzI79hlU+QAaOVkQ9u7cUrB80XdtuwPyHvZPvqJQqNOv/NXw 2tgm8toqCcgn+MLJNgAAg6lSxHAa9oFkGeQ17Ig1JUYJy2/uPOJFelBViTdg/44m Y05p4uBWRkxeCVYeK5/tc1LZY6BgEup5efxxA1uIdJ5rcb9ce2EWt7YaIM9/W8sY vyN1npOE2zAt36K3kbIRgF2iQw8DZeiqRmQ7fyJ88SaYj3whifiovYY13ujX0cOF dRsnZL7AZ6F9xWn12cj2kaxERbV/W+GbyXuNIm5XXclhQEq+2zTH5LctjtZgRJOS mnkBDeg39ApQLTqa876CbAkt0qSAvD1fzqAVAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUgIDOPdwnIswvHIeN2ZQCjYBsEvowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2dJRE9QZHduSXN3dkhJZU4y WlFDallCc0V2by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQZ7 wwgAMA0GCSqGSIb3DQEBCwUAA4IBAQCiEuoc5J8AjHqa8zsvZIkp9e5PbxH/WjGX E/vgxR/ZT+siwAEBO7rfd1UN2Z7Zy/R4cCp8kp3OS75UVuX+zUTuMqdqMn2RbSbR PZzFc6fs9RYKe9tY5nMlJNJAg64pOwWDXZ2cpSJSUT7rtcXNLEEnfYVALgYiNK/c Zrf01Mx+ZOQzX4NMc6AiiQD7ujbbjHdvgyLaKDYMgjx48tGMeUXTireD1RCGB5jf LTBSasKwFHGB2iJYZRHCZoaO/+bn8D5KMUCKqoDA/uhJejDRCUXRPmvhJWCOIC7X 61E8D2NR45EPtimpFctYkWcEy002Jbwx/xNsyaxj9nnrAiSp/oLN -----END CERTIFICATE-----Generated at Sun Aug 24 07:25:26 2025 by rpki-client