$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mRWJXYx4naqhh19YUxadupRGAq8.roa File: mRWJXYx4naqhh19YUxadupRGAq8.roa (raw, json) Hash identifier: Fm8ij1fnPLxoRn17ncpsMGNdanhOkoSqdq+CX28/wqU= Subject key identifier: 99:15:89:5D:8C:78:9D:AA:A1:87:5F:58:53:16:9D:BA:94:46:02:AF Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 397F Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mRWJXYx4naqhh19YUxadupRGAq8.roa Signing time: Fri 22 Aug 2025 08:46:21 +0000 ROA not before: Fri 22 Aug 2025 08:46:21 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.193.88.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14719 (0x397f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:21 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9915895D8C789DAAA1875F5853169DBA944602AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:1c:55:16:37:f8:0c:51:f6:4e:02:e2:96:09: c7:b3:18:62:f6:46:c2:4b:a9:fa:48:ef:5b:32:7c: 86:90:9e:e2:29:24:68:77:45:6a:da:20:81:aa:58: d6:6c:77:6e:23:35:b5:6e:19:fd:8c:aa:1e:c4:8e: d0:2c:a4:85:30:a3:35:75:36:74:12:f3:15:ab:2e: 3e:1e:6a:46:e4:5c:0a:fa:21:6b:39:13:1e:6f:8f: d1:d3:39:1a:5b:39:4c:f4:05:d2:52:31:94:68:a6: 55:65:16:22:c5:22:4e:39:73:fb:56:f4:ba:93:e8: d7:06:23:c1:ee:44:f5:7f:eb:2e:03:e7:15:07:c2: 61:64:7c:55:70:8a:f5:f1:ce:f7:12:b7:31:2c:4d: c8:20:14:51:f8:39:36:14:f0:bf:21:a1:07:53:90: 12:3d:7c:2b:38:22:f8:ee:f7:fa:e4:f1:c3:d9:a1: 60:b3:af:1f:34:ec:8d:f0:c7:a7:67:3f:6a:96:53: 3c:db:f2:4c:31:53:bc:5d:f0:d4:f5:78:ef:00:4c: b7:cd:69:83:b4:bd:10:54:75:7a:58:95:08:59:1f: 2d:0a:ac:64:67:99:6b:83:06:7d:0d:62:8a:01:1f: a8:97:db:a3:71:6e:28:35:d2:b3:0b:30:08:51:dd: 32:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:15:89:5D:8C:78:9D:AA:A1:87:5F:58:53:16:9D:BA:94:46:02:AF X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mRWJXYx4naqhh19YUxadupRGAq8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.88.0/22 Signature Algorithm: sha256WithRSAEncryption 34:4b:e5:ca:38:01:d3:b5:9c:b5:18:7c:11:f0:a6:53:6a:5e: 3b:67:46:43:8c:4a:dd:15:4d:1f:fd:c6:2c:9c:69:0f:e1:85: af:29:e0:e9:5f:bf:2b:05:24:fd:7f:e1:a0:08:d5:41:6f:0d: 7a:28:0d:c4:8e:f8:28:a1:0e:bb:a3:f7:c0:56:96:19:74:1a: cb:1a:4f:b9:b9:83:5e:04:93:8f:89:31:60:70:6f:af:be:20: 14:4b:48:ed:93:f9:c0:11:cc:59:b8:ec:c9:2a:04:a9:e1:ec: 9d:06:5a:9c:7f:58:69:3e:6b:fc:af:49:dc:1d:e4:9f:c3:b7: 86:d0:4a:20:44:a2:77:02:f4:c3:05:90:63:64:2a:d6:42:2e: dc:68:16:35:4d:44:24:82:8a:ef:4e:4e:b0:3d:6c:51:f4:bc: e1:48:bf:66:87:43:1f:3d:a0:e4:e5:51:01:47:74:bb:6a:48: 73:34:14:d0:56:84:12:0c:de:68:c9:1b:ac:24:88:ed:62:c2: bd:88:61:c4:d7:36:01:e6:ff:63:d8:f3:8e:9c:65:f1:fa:20: 4d:27:71:df:1f:e0:f2:03:87:92:df:27:5c:9e:74:e9:aa:79: 6e:1b:40:f2:43:51:bb:6c:0f:2a:ec:08:78:96:ca:a8:ce:ac: ef:ed:e6:18 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOX8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MjFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk5MTU4OTVEOEM3ODlE QUFBMTg3NUY1ODUzMTY5REJBOTQ0NjAyQUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVHFUWN/gMUfZOAuKWCcezGGL2RsJLqfpI71syfIaQnuIpJGh3 RWraIIGqWNZsd24jNbVuGf2Mqh7EjtAspIUwozV1NnQS8xWrLj4eakbkXAr6IWs5 Ex5vj9HTORpbOUz0BdJSMZRoplVlFiLFIk45c/tW9LqT6NcGI8HuRPV/6y4D5xUH wmFkfFVwivXxzvcStzEsTcggFFH4OTYU8L8hoQdTkBI9fCs4Ivju9/rk8cPZoWCz rx807I3wx6dnP2qWUzzb8kwxU7xd8NT1eO8ATLfNaYO0vRBUdXpYlQhZHy0KrGRn mWuDBn0NYooBH6iX26Nxbig10rMLMAhR3TJJAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUmRWJXYx4naqhh19YUxadupRGAq8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL21SV0pYWXg0bmFxaGgxOVlV eGFkdXBSR0FxOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wVgwDQYJKoZIhvcNAQELBQADggEBADRL5co4AdO1nLUYfBHwplNqXjtnRkOMSt0V TR/9xiycaQ/hha8p4OlfvysFJP1/4aAI1UFvDXooDcSO+CihDruj98BWlhl0Gssa T7m5g14Ek4+JMWBwb6++IBRLSO2T+cARzFm47MkqBKnh7J0GWpx/WGk+a/yvSdwd 5J/Dt4bQSiBEoncC9MMFkGNkKtZCLtxoFjVNRCSCiu9OTrA9bFH0vOFIv2aHQx89 oOTlUQFHdLtqSHM0FNBWhBIM3mjJG6wkiO1iwr2IYcTXNgHm/2PY846cZfH6IE0n cd8f4PIDh5LfJ1yedOmqeW4bQPJDUbtsDyrsCHiWyqjOrO/t5hg= -----END CERTIFICATE-----Generated at Sun Aug 24 07:33:15 2025 by rpki-client