$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lh1RVB7W70hrPqWNTBEcPlaZG_U.roa File: lh1RVB7W70hrPqWNTBEcPlaZG_U.roa (raw, json) Hash identifier: sr8Et0s9eCxovXxR0bZ8YBjgvUF7u8Hi/rG6wVLS7/E= Subject key identifier: 96:1D:51:54:1E:D6:EF:48:6B:3E:A5:8D:4C:11:1C:3E:56:99:1B:F5 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 39DA Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lh1RVB7W70hrPqWNTBEcPlaZG_U.roa Signing time: Fri 22 Aug 2025 08:46:44 +0000 ROA not before: Fri 22 Aug 2025 08:46:44 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.195.200.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14810 (0x39da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:44 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=961D51541ED6EF486B3EA58D4C111C3E56991BF5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:35:6f:e2:b2:dd:55:04:10:57:5b:25:02:67: 89:87:c4:c6:d5:bc:39:f2:ad:4b:61:04:2d:dc:49: 8e:22:d7:56:3d:b9:fe:b7:3e:d7:7a:8c:02:2a:55: 05:e4:79:2d:ad:15:db:24:91:cb:1e:05:14:25:b5: 2a:43:d0:7b:a9:48:5d:ae:7c:5a:f2:07:a8:97:aa: a0:14:cf:bf:02:8f:1b:8e:c0:29:5e:1b:06:b9:b2: 09:f3:86:9b:3d:84:b8:c5:72:d3:33:f7:de:99:5e: a9:ef:5d:d0:0c:8f:29:f1:bf:a0:8e:5d:8b:5f:75: dd:b1:13:19:38:f8:71:24:a1:cb:82:b0:78:0e:ae: 49:aa:de:e7:fe:1b:af:47:4a:cb:0a:22:b0:c2:d4: 39:7f:e1:a7:d0:fa:5a:a8:f5:3d:b2:fb:5f:10:e9: 61:ec:a2:0e:7a:a1:84:39:c7:51:42:1f:9c:22:86: 96:b4:b4:fc:50:9a:70:ab:07:28:b2:f8:ec:be:0d: 85:30:b7:6a:37:37:47:7a:a1:94:ae:45:e5:8d:f6: fe:da:8b:70:7d:bb:a2:72:44:c3:c3:8c:fc:fc:74: 21:0f:05:83:c1:58:7a:91:62:18:92:ff:d9:d8:9f: 1d:f8:b6:33:f2:cf:2e:d4:d7:b7:28:6c:95:34:35: 22:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:1D:51:54:1E:D6:EF:48:6B:3E:A5:8D:4C:11:1C:3E:56:99:1B:F5 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lh1RVB7W70hrPqWNTBEcPlaZG_U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.200.0/22 Signature Algorithm: sha256WithRSAEncryption 0c:16:23:88:4e:46:04:0c:38:26:ba:6a:d5:77:df:5c:cb:c2: 0d:80:59:4a:72:aa:fa:13:ca:0e:d6:17:b9:a6:8c:56:76:ac: f3:19:06:68:b4:a8:50:29:5e:da:59:2a:72:be:be:5c:ee:ae: a9:80:c9:28:f1:54:b2:42:ee:68:d4:44:c7:9c:57:84:34:22: d5:48:2a:aa:c1:c8:36:f1:5c:f6:09:86:d2:22:f3:ad:6a:38: 92:48:6c:5a:f8:4c:eb:78:b7:e3:31:f9:46:2b:38:65:e9:53: 98:28:a4:ce:80:9d:27:c4:62:81:75:a5:c9:bc:af:48:6a:57: 84:51:40:32:f8:6c:2a:68:2e:d7:d4:0d:ab:fe:95:25:68:24: 5d:be:76:0b:ab:03:4e:4d:d8:a9:55:cf:e4:87:70:de:4b:53: 34:47:2d:cc:58:ef:fe:81:ae:0a:78:99:11:de:23:ad:ff:e1: 40:6e:e0:52:2d:09:7c:ff:b1:1f:b1:22:49:2c:19:0d:a9:3b: 53:13:fd:82:a4:e8:ce:0f:27:d6:f1:16:da:9c:35:6a:34:29: 1e:1e:c7:ba:3d:04:be:9b:b3:68:8a:94:0c:eb:d2:e1:43:bc: 10:d1:27:6d:a9:36:06:1e:5d:bb:cb:d9:22:77:6c:9a:35:80: 40:f1:4c:ae -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOdowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2NDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk2MUQ1MTU0MUVENkVG NDg2QjNFQTU4RDRDMTExQzNFNTY5OTFCRjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXNW/ist1VBBBXWyUCZ4mHxMbVvDnyrUthBC3cSY4i11Y9uf63 Ptd6jAIqVQXkeS2tFdskkcseBRQltSpD0HupSF2ufFryB6iXqqAUz78CjxuOwCle Gwa5sgnzhps9hLjFctMz996ZXqnvXdAMjynxv6COXYtfdd2xExk4+HEkocuCsHgO rkmq3uf+G69HSssKIrDC1Dl/4afQ+lqo9T2y+18Q6WHsog56oYQ5x1FCH5wihpa0 tPxQmnCrByiy+Oy+DYUwt2o3N0d6oZSuReWN9v7ai3B9u6JyRMPDjPz8dCEPBYPB WHqRYhiS/9nYnx34tjPyzy7U17cobJU0NSLTAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUlh1RVB7W70hrPqWNTBEcPlaZG/UwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2xoMVJWQjdXNzBoclBxV05U QkVjUGxhWkdfVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 w8gwDQYJKoZIhvcNAQELBQADggEBAAwWI4hORgQMOCa6atV331zLwg2AWUpyqvoT yg7WF7mmjFZ2rPMZBmi0qFApXtpZKnK+vlzurqmAySjxVLJC7mjURMecV4Q0ItVI KqrByDbxXPYJhtIi861qOJJIbFr4TOt4t+Mx+UYrOGXpU5gopM6AnSfEYoF1pcm8 r0hqV4RRQDL4bCpoLtfUDav+lSVoJF2+dgurA05N2KlVz+SHcN5LUzRHLcxY7/6B rgp4mRHeI63/4UBu4FItCXz/sR+xIkksGQ2pO1MT/YKk6M4PJ9bxFtqcNWo0KR4e x7o9BL6bs2iKlAzr0uFDvBDRJ22pNgYeXbvL2SJ3bJo1gEDxTK4= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:23 2025 by rpki-client