$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hCd9O35W56F-pXWuF3NMuNGpMTw.roa File: hCd9O35W56F-pXWuF3NMuNGpMTw.roa (raw, json) Hash identifier: bvtasRvbeicC4BAE3dkDRUPfF/5tU2RhBEkRu6uqbW4= Subject key identifier: 84:27:7D:3B:7E:56:E7:A1:7E:A5:75:AE:17:73:4C:B8:D1:A9:31:3C Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 392B Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hCd9O35W56F-pXWuF3NMuNGpMTw.roa Signing time: Fri 22 Aug 2025 08:46:03 +0000 ROA not before: Fri 22 Aug 2025 08:46:03 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.192.48.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14635 (0x392b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:03 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=84277D3B7E56E7A17EA575AE17734CB8D1A9313C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:93:2c:bf:1e:c5:c1:31:ce:a8:fd:33:41:8b: 95:6e:59:48:4f:6c:e9:e2:3a:a0:41:bd:95:0d:de: b2:0f:80:db:d1:25:9e:53:7c:bd:f5:27:71:d8:6c: c9:e9:e7:8e:81:29:43:cf:89:1a:0b:93:81:af:02: e6:ce:59:a0:83:82:3e:40:24:67:91:6d:d0:70:4e: e4:fc:b4:09:59:6b:2e:fe:45:15:08:1a:6d:ab:12: 2d:93:f3:6e:df:d7:94:d0:99:77:ef:f1:0b:0b:59: 8a:75:10:40:32:ae:78:64:00:2a:db:48:fc:bc:5e: 5a:c0:30:a9:fd:0e:54:09:dd:41:5a:f5:ab:e8:d7: bd:8e:52:65:2e:8a:51:03:10:76:fc:13:22:da:57: aa:f2:86:6e:1c:f5:24:bb:90:d6:35:f1:ef:6a:ec: 6f:ee:d4:63:e2:50:a8:e8:19:4c:2b:77:ee:cd:99: e6:2f:fe:0a:60:5a:31:33:38:1a:e7:d2:54:66:8e: 37:fe:f5:ba:cf:b8:ad:c4:ff:b8:eb:ab:4a:4c:73: 80:92:95:af:8d:de:d3:87:6d:6e:92:3d:c5:16:9a: c1:61:36:e8:6e:26:83:e6:73:d4:4a:b6:79:a7:96: c4:68:d3:f0:18:ac:fe:ac:91:90:d3:f7:2a:60:98: 7a:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:27:7D:3B:7E:56:E7:A1:7E:A5:75:AE:17:73:4C:B8:D1:A9:31:3C X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hCd9O35W56F-pXWuF3NMuNGpMTw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.192.48.0/20 Signature Algorithm: sha256WithRSAEncryption 77:87:b8:e3:45:d3:41:5c:dc:52:4c:ca:f8:f6:fe:36:ec:c4: 79:a2:f8:57:eb:86:4b:7a:5f:aa:ca:06:f5:40:ac:d9:31:24: 6c:e5:ff:8b:1f:af:59:95:72:07:98:ff:ed:0c:87:72:7d:42: f1:5b:02:d9:14:1f:bc:61:ac:f8:67:56:82:0e:3f:37:6b:28: dd:c2:c9:81:37:17:17:52:66:70:21:8e:2a:43:57:cc:1e:9f: b2:17:40:19:c3:fa:6b:98:28:b5:9e:3c:ad:21:f7:dc:f8:5f: e7:ea:30:70:7e:60:69:f6:b7:6e:c8:45:3d:e7:e5:d7:a2:19: 80:6f:85:13:c8:90:b9:23:23:9c:da:54:98:a5:b9:db:b8:1d: 06:1a:6e:ec:4d:9f:18:58:d7:91:1a:8f:fe:a9:85:c5:70:37: cc:bb:06:dd:50:ce:c7:9d:79:0c:15:26:2b:3e:22:7c:ca:48: 7d:e6:56:8b:74:8b:30:fe:51:00:71:47:1f:5d:f4:33:df:a7: 69:a4:5f:32:e5:02:f2:01:eb:a2:b4:80:f8:c5:7f:04:a6:0a: 3e:3f:93:bd:97:e4:a2:bb:30:c4:29:72:50:60:c7:32:5d:b5: e9:c3:47:9d:97:5f:6c:a3:92:aa:eb:8f:ea:28:37:36:11:ad: 77:a5:69:3c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOSswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDg0Mjc3RDNCN0U1NkU3 QTE3RUE1NzVBRTE3NzM0Q0I4RDFBOTMxM0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/kyy/HsXBMc6o/TNBi5VuWUhPbOniOqBBvZUN3rIPgNvRJZ5T fL31J3HYbMnp546BKUPPiRoLk4GvAubOWaCDgj5AJGeRbdBwTuT8tAlZay7+RRUI Gm2rEi2T827f15TQmXfv8QsLWYp1EEAyrnhkACrbSPy8XlrAMKn9DlQJ3UFa9avo 172OUmUuilEDEHb8EyLaV6ryhm4c9SS7kNY18e9q7G/u1GPiUKjoGUwrd+7NmeYv /gpgWjEzOBrn0lRmjjf+9brPuK3E/7jrq0pMc4CSla+N3tOHbW6SPcUWmsFhNuhu JoPmc9RKtnmnlsRo0/AYrP6skZDT9ypgmHpNAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUhCd9O35W56F+pXWuF3NMuNGpMTwwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2hDZDlPMzVXNTZGLXBYV3VG M05NdU5HcE1Udy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR7 wDAwDQYJKoZIhvcNAQELBQADggEBAHeHuONF00Fc3FJMyvj2/jbsxHmi+Ffrhkt6 X6rKBvVArNkxJGzl/4sfr1mVcgeY/+0Mh3J9QvFbAtkUH7xhrPhnVoIOPzdrKN3C yYE3FxdSZnAhjipDV8wen7IXQBnD+muYKLWePK0h99z4X+fqMHB+YGn2t27IRT3n 5deiGYBvhRPIkLkjI5zaVJiludu4HQYabuxNnxhY15Eaj/6phcVwN8y7Bt1Qzsed eQwVJis+InzKSH3mVot0izD+UQBxRx9d9DPfp2mkXzLlAvIB66K0gPjFfwSmCj4/ k72X5KK7MMQpclBgxzJdtenDR52XX2yjkqrrj+ooNzYRrXelaTw= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:27 2025 by rpki-client