$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lmxmcho6w2m_iybmwERdrTz8Dpc.roa File: lmxmcho6w2m_iybmwERdrTz8Dpc.roa (raw, json) Hash identifier: Fy7MmDx194kBMHGlms775MBwI9fFIInJP+Q7CR/ipVI= Subject key identifier: 96:6C:66:72:1A:3A:C3:69:BF:8B:26:E6:C0:44:5D:AD:3C:FC:0E:97 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 39D8 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lmxmcho6w2m_iybmwERdrTz8Dpc.roa Signing time: Fri 22 Aug 2025 08:46:44 +0000 ROA not before: Fri 22 Aug 2025 08:46:44 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 180.177.114.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14808 (0x39d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:44 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=966C66721A3AC369BF8B26E6C0445DAD3CFC0E97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7b:ce:fc:60:42:2f:d0:92:ad:c4:cf:5d:e7: 78:a4:78:bc:8d:51:f2:18:87:f6:83:60:3b:5a:26: ce:a1:60:c4:83:54:3e:36:85:3b:0a:ff:65:e0:07: 29:9b:48:e5:44:33:9b:47:1e:d7:c6:16:81:20:b0: c7:61:3e:2a:b7:d5:1b:56:aa:da:dc:76:fa:e0:be: 54:dc:9b:93:40:71:2d:b7:83:96:5a:59:1e:e5:fc: 66:45:15:2d:25:0f:74:95:0e:fc:73:57:07:dc:b8: 68:80:ab:06:2f:97:18:de:53:90:25:3f:e0:42:04: c1:4e:5d:54:68:29:11:65:9a:ae:0f:ca:50:2b:f7: 91:83:a7:53:ae:cd:af:36:74:b1:88:8b:84:95:d9: 8f:7c:ef:f1:56:d3:11:1e:64:97:30:ad:41:09:49: a1:bc:e7:33:63:9f:30:50:ae:92:06:ed:c6:0b:af: 0b:f0:66:83:4b:25:7d:ef:ee:f6:f7:95:61:33:4f: 98:79:f4:25:27:0c:4e:81:d4:23:c8:c6:0d:d7:21: 62:65:06:45:28:64:7b:a1:c8:93:63:a2:17:04:87: a5:28:dd:cf:55:0e:6a:3e:e4:05:29:56:7b:8e:a3: 37:83:7e:9e:92:ea:46:81:f9:96:ce:2d:5b:dd:dd: 84:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:6C:66:72:1A:3A:C3:69:BF:8B:26:E6:C0:44:5D:AD:3C:FC:0E:97 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lmxmcho6w2m_iybmwERdrTz8Dpc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.177.114.0/23 Signature Algorithm: sha256WithRSAEncryption 68:a0:9d:f0:6a:55:42:2d:e9:20:39:db:7f:11:e2:bd:8f:d4: d0:48:69:19:bc:62:75:55:27:d7:b4:52:e4:ba:42:93:13:27: ef:5d:09:d9:50:23:d3:70:e6:2c:69:9a:f7:b2:f9:c1:54:bc: 9d:4a:76:b2:13:74:e1:41:ba:b6:cd:c0:bc:fe:a9:a0:cc:8f: 61:84:81:8a:00:ed:00:f2:fc:d4:89:ff:3d:f2:cf:09:eb:11: 02:c8:eb:0a:cf:a7:9f:7a:9f:6f:90:90:97:c5:13:2e:e9:1a: aa:ef:a5:29:4f:1e:d7:8e:ea:66:1c:bb:d8:bf:86:1e:22:5d: 38:ab:27:00:aa:f3:98:82:d5:f6:93:82:cd:19:d0:bc:ab:0c: 8e:e2:90:60:18:78:13:e6:74:8c:f9:96:3a:f0:2b:31:00:55: a4:19:00:73:fe:7f:d5:f1:17:2e:9f:ef:d7:c5:1e:fd:13:df: ed:de:28:ce:e5:8d:ab:2d:7d:8c:77:bc:ca:d0:65:a3:39:af: 06:7b:d6:c9:82:28:5a:bc:6e:ca:25:e6:20:31:4f:78:e4:e4: 15:2d:3f:8f:12:5d:64:d5:f0:d6:be:d1:96:66:6f:50:e7:a5: 55:e7:62:40:a3:c8:ef:15:ac:c5:09:5e:b5:b0:2c:18:54:e1: 1f:85:8f:0d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOdgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2NDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk2NkM2NjcyMUEzQUMz NjlCRjhCMjZFNkMwNDQ1REFEM0NGQzBFOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7e878YEIv0JKtxM9d53ikeLyNUfIYh/aDYDtaJs6hYMSDVD42 hTsK/2XgBymbSOVEM5tHHtfGFoEgsMdhPiq31RtWqtrcdvrgvlTcm5NAcS23g5Za WR7l/GZFFS0lD3SVDvxzVwfcuGiAqwYvlxjeU5AlP+BCBMFOXVRoKRFlmq4PylAr 95GDp1Ouza82dLGIi4SV2Y987/FW0xEeZJcwrUEJSaG85zNjnzBQrpIG7cYLrwvw ZoNLJX3v7vb3lWEzT5h59CUnDE6B1CPIxg3XIWJlBkUoZHuhyJNjohcEh6Uo3c9V Dmo+5AUpVnuOozeDfp6S6kaB+ZbOLVvd3YRXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUlmxmcho6w2m/iybmwERdrTz8DpcwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2xteG1jaG82dzJtX2l5Ym13 RVJkclR6OERwYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAG0 sXIwDQYJKoZIhvcNAQELBQADggEBAGignfBqVUIt6SA5238R4r2P1NBIaRm8YnVV J9e0UuS6QpMTJ+9dCdlQI9Nw5ixpmvey+cFUvJ1KdrITdOFBurbNwLz+qaDMj2GE gYoA7QDy/NSJ/z3yzwnrEQLI6wrPp596n2+QkJfFEy7pGqrvpSlPHteO6mYcu9i/ hh4iXTirJwCq85iC1faTgs0Z0LyrDI7ikGAYeBPmdIz5ljrwKzEAVaQZAHP+f9Xx Fy6f79fFHv0T3+3eKM7ljastfYx3vMrQZaM5rwZ71smCKFq8bsol5iAxT3jk5BUt P48SXWTV8Na+0ZZmb1DnpVXnYkCjyO8VrMUJXrWwLBhU4R+Fjw0= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:36 2025 by rpki-client