$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/k2u1o3OsUS_PSi8kVCYqj56IAic.roa File: k2u1o3OsUS_PSi8kVCYqj56IAic.roa (raw, json) Hash identifier: 9xpf6Sw9AMif82gWdzgVkaxyG9Ft9EWZYCY+SZaPOKI= Subject key identifier: 93:6B:B5:A3:73:AC:51:2F:CF:4A:2F:24:54:26:2A:8F:9E:88:02:27 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 39CA Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/k2u1o3OsUS_PSi8kVCYqj56IAic.roa Signing time: Fri 22 Aug 2025 08:46:40 +0000 ROA not before: Fri 22 Aug 2025 08:46:40 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 211.76.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14794 (0x39ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:40 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=936BB5A373AC512FCF4A2F2454262A8F9E880227 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c4:a3:75:40:80:c6:e5:b0:dc:f1:b5:04:b7: 2c:e7:47:0d:8b:50:70:f7:ab:08:e0:c8:c7:fb:ab: 91:a3:13:f5:b1:b0:d2:c1:73:3f:1b:2a:f0:6f:d2: 43:38:1c:b9:7c:c5:90:cf:01:3d:80:78:f0:0f:4b: dd:94:29:e1:2d:f8:7c:85:6b:f3:37:bf:0f:b4:5c: ad:39:d6:0e:04:74:6d:52:81:2f:62:2b:8a:26:cb: ae:47:6f:29:0e:d8:88:80:6b:64:10:dd:c7:00:c4: 6b:45:41:ee:83:79:90:95:d0:3b:37:c3:a4:2c:7f: 0d:5a:da:22:46:e1:f0:96:20:fd:60:f0:95:e2:cc: 3e:7a:24:6f:e1:cb:f1:99:66:f9:98:19:e6:b2:cf: f3:20:d0:b3:79:4a:aa:ab:37:9f:a1:b2:72:69:08: 79:bb:5d:8a:6a:dc:5a:76:2d:6f:76:ab:e7:fb:c4: 3c:c9:fa:d7:c8:cf:45:21:88:6a:6b:a9:24:fe:b2: ab:a8:1f:cf:a3:63:4c:0f:56:4a:9c:f8:8a:66:e6: d8:99:81:84:88:07:20:02:99:78:c7:7f:35:d8:19: 01:8f:10:a5:85:99:17:10:3b:e0:2c:cb:65:33:69: 6d:f7:4f:49:cc:05:4c:24:99:35:50:97:18:b8:37: c9:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:6B:B5:A3:73:AC:51:2F:CF:4A:2F:24:54:26:2A:8F:9E:88:02:27 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/k2u1o3OsUS_PSi8kVCYqj56IAic.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.123.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:da:4c:2b:6b:d0:f7:c7:6b:1d:8c:77:42:6b:ec:2b:52:55: 69:9e:40:6a:0d:ea:ff:ad:d7:5b:6e:95:c9:4f:ef:ef:4d:44: ef:9b:60:4f:43:32:16:e5:3b:b8:7b:fe:05:2e:f3:a3:34:ab: 1a:7b:a5:a9:0b:1c:bf:a3:bb:99:2e:11:07:66:01:93:b6:e7: 4e:e4:c4:ac:e5:22:d9:6f:b0:e1:c6:f5:94:22:21:7a:40:5c: eb:35:14:07:84:72:37:64:e0:71:46:85:f0:be:e5:e8:fa:37: 5d:fd:76:a9:14:a0:89:f8:3e:32:79:a0:71:a5:e5:20:7d:68: b6:55:4e:58:f1:bd:2f:8b:c1:d4:16:fc:88:66:8d:65:87:89: 57:e8:49:b3:0a:5b:f6:77:6a:a4:5c:81:07:09:72:12:2a:fd: a1:68:c3:af:d4:74:a4:a3:d2:c5:27:3b:80:16:19:dc:95:3d: 88:d1:24:46:43:8e:fa:3b:48:c1:e0:a6:18:b6:53:ca:c6:bf: a5:03:51:76:20:46:36:ef:eb:1c:d4:e0:b8:fe:5a:12:17:a5: a3:57:70:2b:d4:c3:1e:8a:81:7c:49:9c:da:3c:88:ee:e5:3f: 27:1c:14:57:00:75:b4:6a:09:ec:d3:13:cd:78:f1:2f:e3:7b: 01:82:a1:db -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOcowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2NDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDkzNkJCNUEzNzNBQzUx MkZDRjRBMkYyNDU0MjYyQThGOUU4ODAyMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6xKN1QIDG5bDc8bUEtyznRw2LUHD3qwjgyMf7q5GjE/WxsNLB cz8bKvBv0kM4HLl8xZDPAT2AePAPS92UKeEt+HyFa/M3vw+0XK051g4EdG1SgS9i K4omy65HbykO2IiAa2QQ3ccAxGtFQe6DeZCV0Ds3w6Qsfw1a2iJG4fCWIP1g8JXi zD56JG/hy/GZZvmYGeayz/Mg0LN5SqqrN5+hsnJpCHm7XYpq3Fp2LW92q+f7xDzJ +tfIz0UhiGprqST+squoH8+jY0wPVkqc+Ipm5tiZgYSIByACmXjHfzXYGQGPEKWF mRcQO+Asy2UzaW33T0nMBUwkmTVQlxi4N8l5AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUk2u1o3OsUS/PSi8kVCYqj56IAicwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2sydTFvM09zVVNfUFNpOGtW Q1lxajU2SUFpYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADT THswDQYJKoZIhvcNAQELBQADggEBABraTCtr0PfHax2Md0Jr7CtSVWmeQGoN6v+t 11tulclP7+9NRO+bYE9DMhblO7h7/gUu86M0qxp7pakLHL+ju5kuEQdmAZO2507k xKzlItlvsOHG9ZQiIXpAXOs1FAeEcjdk4HFGhfC+5ej6N139dqkUoIn4PjJ5oHGl 5SB9aLZVTljxvS+LwdQW/IhmjWWHiVfoSbMKW/Z3aqRcgQcJchIq/aFow6/UdKSj 0sUnO4AWGdyVPYjRJEZDjvo7SMHgphi2U8rGv6UDUXYgRjbv6xzU4Lj+WhIXpaNX cCvUwx6KgXxJnNo8iO7lPyccFFcAdbRqCezTE8148S/jewGCods= -----END CERTIFICATE-----Generated at Sun Aug 24 07:26:33 2025 by rpki-client