$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kcLYHCY2pNMGiQXLVMPzPUUVmAA.roa File: kcLYHCY2pNMGiQXLVMPzPUUVmAA.roa (raw, json) Hash identifier: +k5+B6g0jhLjY0u18PeDGP9gkafWuoNfMhggyQc4QhM= Subject key identifier: 91:C2:D8:1C:26:36:A4:D3:06:89:05:CB:54:C3:F3:3D:45:15:98:00 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3946 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kcLYHCY2pNMGiQXLVMPzPUUVmAA.roa Signing time: Fri 22 Aug 2025 08:46:08 +0000 ROA not before: Fri 22 Aug 2025 08:46:07 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.192.180.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14662 (0x3946) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:07 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=91C2D81C2636A4D3068905CB54C3F33D45159800 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:59:9e:c2:90:b2:14:a2:9e:fc:a9:d6:24:74: 00:09:36:6c:39:55:8a:6a:57:74:06:f2:f4:24:b8: e0:1c:ad:c6:c7:15:9b:3f:4e:da:08:40:e8:d9:5b: 9f:79:e1:86:96:31:0d:15:20:bb:d6:3a:0e:9b:18: ed:71:f8:65:06:b7:e8:4a:ef:4c:83:35:1a:42:bc: 32:ae:66:5f:1b:84:a5:2f:53:5f:d4:27:34:00:1f: e1:8a:5c:36:08:1d:d5:5a:c1:0f:e7:c7:57:6e:65: 28:62:14:44:7a:54:f0:93:11:4e:cf:0d:12:ef:c8: e5:d2:ff:30:3a:47:67:be:26:0e:65:72:98:53:62: b8:2b:7c:ad:a8:96:e1:55:df:8b:45:ab:c5:ad:6a: 1f:92:c5:90:91:e3:f4:b9:1e:5e:a7:2b:d4:18:8c: c2:64:4e:29:03:c4:6e:74:6a:d0:d8:61:b2:d1:7b: 5b:2a:38:bc:6b:67:f6:fc:4a:c7:78:78:83:38:43: 9c:09:2f:73:f8:f5:65:9a:52:a7:31:03:a3:00:d1: 08:e7:01:68:6f:04:74:b5:d7:b3:bc:a6:99:66:d0: de:52:43:63:42:a2:9f:a1:c5:cb:16:62:29:35:81: 32:e8:cf:80:94:a5:83:f1:dd:f1:7a:72:26:7a:9f: 55:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:C2:D8:1C:26:36:A4:D3:06:89:05:CB:54:C3:F3:3D:45:15:98:00 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kcLYHCY2pNMGiQXLVMPzPUUVmAA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.192.180.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:8f:b4:67:0b:67:4c:bc:1f:92:78:7d:98:94:75:98:de:a3: be:7e:d9:d5:98:8f:7e:b9:f1:3d:3e:ba:f4:14:0e:75:56:74: 59:c8:3f:7f:90:e1:ca:07:40:f0:a1:d2:37:4c:5f:f3:fd:27: bb:df:43:e8:b5:27:e9:6a:3a:f1:68:6f:f5:56:90:9c:19:14: 78:83:d4:ca:df:97:7c:a9:dc:37:7d:ed:2f:17:00:58:40:dc: d1:29:d6:b3:18:c9:54:b7:6b:4e:57:d3:cb:a3:66:9f:b2:2c: 88:ba:b2:c1:32:79:19:04:e0:74:24:69:76:49:22:c0:c4:09: 73:f1:d4:b1:d2:f4:b4:45:93:b0:76:2d:8d:21:1e:4b:82:e8: b6:dc:98:0b:cc:ce:ae:77:9a:e8:ea:21:7b:2d:27:91:03:9b: bb:79:05:36:55:a9:2f:1a:e6:cf:fa:d1:4e:1a:5a:f9:53:6d: a3:6a:48:c4:57:aa:14:66:36:cb:bd:de:88:0d:51:aa:0b:b0: f6:1b:09:35:8b:9d:04:12:00:2a:26:3a:a3:fb:6f:62:34:4c: 95:bf:18:cb:b7:27:e7:e8:54:6d:6e:c1:e6:55:a0:17:3a:0c: b0:4f:8c:18:35:b4:d0:ec:33:fb:63:de:13:05:f5:08:63:ee: 3c:e0:87:62 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOUYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDkxQzJEODFDMjYzNkE0 RDMwNjg5MDVDQjU0QzNGMzNENDUxNTk4MDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhWZ7CkLIUop78qdYkdAAJNmw5VYpqV3QG8vQkuOAcrcbHFZs/ TtoIQOjZW5954YaWMQ0VILvWOg6bGO1x+GUGt+hK70yDNRpCvDKuZl8bhKUvU1/U JzQAH+GKXDYIHdVawQ/nx1duZShiFER6VPCTEU7PDRLvyOXS/zA6R2e+Jg5lcphT YrgrfK2oluFV34tFq8Wtah+SxZCR4/S5Hl6nK9QYjMJkTikDxG50atDYYbLRe1sq OLxrZ/b8Ssd4eIM4Q5wJL3P49WWaUqcxA6MA0QjnAWhvBHS117O8pplm0N5SQ2NC op+hxcsWYik1gTLoz4CUpYPx3fF6ciZ6n1VFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUkcLYHCY2pNMGiQXLVMPzPUUVmAAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2tjTFlIQ1kycE5NR2lRWExW TVB6UFVVVm1BQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wLQwDQYJKoZIhvcNAQELBQADggEBAE2PtGcLZ0y8H5J4fZiUdZjeo75+2dWYj365 8T0+uvQUDnVWdFnIP3+Q4coHQPCh0jdMX/P9J7vfQ+i1J+lqOvFob/VWkJwZFHiD 1Mrfl3yp3Dd97S8XAFhA3NEp1rMYyVS3a05X08ujZp+yLIi6ssEyeRkE4HQkaXZJ IsDECXPx1LHS9LRFk7B2LY0hHkuC6LbcmAvMzq53mujqIXstJ5EDm7t5BTZVqS8a 5s/60U4aWvlTbaNqSMRXqhRmNsu93ogNUaoLsPYbCTWLnQQSAComOqP7b2I0TJW/ GMu3J+foVG1uweZVoBc6DLBPjBg1tNDsM/tj3hMF9Qhj7jzgh2I= -----END CERTIFICATE-----Generated at Sun Aug 24 07:24:09 2025 by rpki-client