$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lgOQlCbNpRQ4hqw3kCPaeHFJAwo.roa File: lgOQlCbNpRQ4hqw3kCPaeHFJAwo.roa (raw, json) Hash identifier: N3wwF8yHXznYXEW2pP+Msf0T38sLlbrftAUTWlBttDs= Subject key identifier: 96:03:90:94:26:CD:A5:14:38:86:AC:37:90:23:DA:78:71:49:03:0A Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3967 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lgOQlCbNpRQ4hqw3kCPaeHFJAwo.roa Signing time: Fri 22 Aug 2025 08:46:16 +0000 ROA not before: Fri 22 Aug 2025 08:46:16 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.194.120.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14695 (0x3967) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:16 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9603909426CDA5143886AC379023DA787149030A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:44:46:8a:a4:ce:9e:a2:48:81:50:e6:2f:d9: f0:13:b3:38:77:4b:96:b5:6f:98:51:4a:3e:6a:36: ec:09:c2:72:41:e6:a9:ed:c1:dc:47:21:99:d5:0c: 50:8c:73:fa:80:80:8a:97:a2:0c:52:82:96:f3:ac: 72:9e:45:12:94:b9:66:01:48:9e:87:02:26:72:f7: 79:63:04:e5:d6:a9:b5:6f:84:e7:1e:a0:82:fa:cb: 82:dc:6b:57:2b:8f:df:5f:3b:96:76:66:72:c1:09: f0:3c:27:88:72:15:79:90:5b:94:18:54:67:48:53: 93:9f:96:f3:06:08:fe:de:7d:5e:81:87:25:ab:c7: 48:fd:72:12:bb:cd:31:8d:21:cc:e1:e4:ff:63:bd: c3:aa:e1:e5:09:22:da:8a:6b:eb:9b:55:99:6e:27: 17:5e:02:e4:8c:95:4c:92:96:19:b3:51:6a:a1:63: 66:8c:78:ec:a2:ac:dd:14:90:1a:f5:94:3d:53:3e: df:a8:9b:88:25:1c:81:6e:ef:3e:09:66:d9:5b:8e: c6:47:62:c8:32:f8:e9:17:85:18:44:54:4c:94:a1: a8:a4:b2:4d:d8:3f:48:50:63:e2:b1:4a:25:9d:38: b3:cf:7c:64:ab:b5:02:dd:53:aa:6b:8a:8a:3c:5a: df:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:03:90:94:26:CD:A5:14:38:86:AC:37:90:23:DA:78:71:49:03:0A X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lgOQlCbNpRQ4hqw3kCPaeHFJAwo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.120.0/21 Signature Algorithm: sha256WithRSAEncryption 1f:fd:09:71:92:89:4e:25:4d:4a:1c:0c:f9:9a:56:c9:91:d9: 44:61:73:81:4d:9a:99:96:5b:a7:19:55:8f:d9:68:a1:84:fd: 42:4e:c6:06:e2:73:96:ea:4e:d5:e5:29:7e:54:9f:c5:24:59: c8:2f:24:30:1a:23:8f:02:20:66:ef:92:1c:74:fa:a7:bc:d7: e2:6e:a8:92:c2:ee:7b:3b:00:04:64:d2:4f:fe:bc:bc:89:51: 40:93:fd:d5:57:2f:0d:0e:63:2e:16:e7:b0:39:92:1a:a4:94: 3b:33:cb:ed:8a:3f:c8:b4:3d:7d:00:9a:a9:d0:de:f3:18:27: c4:e2:fe:51:6a:e9:7a:54:e5:39:16:e1:03:bc:5e:ab:82:bb: f6:52:25:56:c7:b1:88:ef:9b:94:96:c5:96:97:76:1f:3b:33: 0b:8a:cf:2b:5f:f8:e2:b9:bb:ad:d3:3a:70:21:02:20:f3:34: d9:85:da:74:0d:e1:f9:4e:bb:b0:83:3b:89:23:6d:a8:c6:84: 3c:e6:31:cd:b8:fb:79:a8:b7:75:25:60:67:18:ef:9f:8b:09: 05:d1:95:41:13:54:56:19:15:ed:e9:f0:3b:51:b5:c2:f0:81: 4b:0d:e8:7f:43:a1:6f:de:40:65:d8:9b:f1:b6:60:cc:b4:b1: 66:2b:ef:cd -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOWcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk2MDM5MDk0MjZDREE1 MTQzODg2QUMzNzkwMjNEQTc4NzE0OTAzMEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9REaKpM6eokiBUOYv2fATszh3S5a1b5hRSj5qNuwJwnJB5qnt wdxHIZnVDFCMc/qAgIqXogxSgpbzrHKeRRKUuWYBSJ6HAiZy93ljBOXWqbVvhOce oIL6y4Lca1crj99fO5Z2ZnLBCfA8J4hyFXmQW5QYVGdIU5OflvMGCP7efV6BhyWr x0j9chK7zTGNIczh5P9jvcOq4eUJItqKa+ubVZluJxdeAuSMlUySlhmzUWqhY2aM eOyirN0UkBr1lD1TPt+om4glHIFu7z4JZtlbjsZHYsgy+OkXhRhEVEyUoaiksk3Y P0hQY+KxSiWdOLPPfGSrtQLdU6prioo8Wt9NAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUlgOQlCbNpRQ4hqw3kCPaeHFJAwowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2xnT1FsQ2JOcFJRNGhxdzNr Q1BhZUhGSkF3by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wngwDQYJKoZIhvcNAQELBQADggEBAB/9CXGSiU4lTUocDPmaVsmR2URhc4FNmpmW W6cZVY/ZaKGE/UJOxgbic5bqTtXlKX5Un8UkWcgvJDAaI48CIGbvkhx0+qe81+Ju qJLC7ns7AARk0k/+vLyJUUCT/dVXLw0OYy4W57A5khqklDszy+2KP8i0PX0AmqnQ 3vMYJ8Ti/lFq6XpU5TkW4QO8XquCu/ZSJVbHsYjvm5SWxZaXdh87MwuKzytf+OK5 u63TOnAhAiDzNNmF2nQN4flOu7CDO4kjbajGhDzmMc24+3mot3UlYGcY75+LCQXR lUETVFYZFe3p8DtRtcLwgUsN6H9DoW/eQGXYm/G2YMy0sWYr780= -----END CERTIFICATE-----Generated at Sun Aug 24 05:32:11 2025 by rpki-client