$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mlz-z3iMvz1MoHdnHxGMZlJLQwQ.roa File: mlz-z3iMvz1MoHdnHxGMZlJLQwQ.roa (raw, json) Hash identifier: 0gtu1bj2A79a9Pafy9MyXZPHNCf7WS4KSz7vnY5EswE= Subject key identifier: 9A:5C:FE:CF:78:8C:BF:3D:4C:A0:77:67:1F:11:8C:66:52:4B:43:04 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3A76 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mlz-z3iMvz1MoHdnHxGMZlJLQwQ.roa Signing time: Fri 22 Aug 2025 08:47:22 +0000 ROA not before: Fri 22 Aug 2025 08:47:22 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.195.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14966 (0x3a76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:22 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9A5CFECF788CBF3D4CA077671F118C66524B4304 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:89:45:fd:61:bd:8e:06:db:6e:f0:77:d6:02: a6:98:3f:62:cc:12:51:7c:fc:1d:51:ea:81:97:39: 36:86:a1:2f:b1:31:1a:75:15:e8:29:55:62:25:91: be:89:90:6f:5b:31:f9:c7:06:ea:86:78:9d:f6:5f: 1c:e5:d7:17:bd:18:b2:9f:af:40:d6:60:2c:77:bc: 7d:f3:6e:a2:63:43:7e:12:b3:3e:5b:de:54:bc:e0: dc:bb:ce:08:64:65:0b:79:f5:ea:ef:eb:af:48:e9: 32:62:88:fb:32:ae:8e:26:fb:64:70:63:5a:25:c7: 0b:52:ba:3a:5e:7b:ad:1f:5e:e0:74:3c:6a:70:73: 9e:5a:21:db:0c:11:4e:2b:ed:8c:3e:4f:f0:1f:ea: d3:39:d0:2e:38:a0:ca:4f:30:43:8a:19:8f:4f:ff: 85:d0:d0:90:1c:36:6a:97:4a:78:76:72:e5:a0:4e: c8:b9:42:48:6f:41:e6:2a:1a:7e:0e:36:d9:c0:aa: ac:cf:c1:71:e3:94:73:5f:56:1a:e4:5b:82:f9:3f: 96:3b:7f:c6:7b:1e:9a:fc:28:e4:03:10:13:09:e8: 12:72:37:9c:9d:ef:74:2f:99:af:2b:ed:c9:11:e9: ee:3e:58:21:7c:38:26:83:05:63:94:20:69:6b:bc: b9:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:5C:FE:CF:78:8C:BF:3D:4C:A0:77:67:1F:11:8C:66:52:4B:43:04 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mlz-z3iMvz1MoHdnHxGMZlJLQwQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.128.0/20 Signature Algorithm: sha256WithRSAEncryption 46:60:0b:a4:c6:89:eb:20:ae:ff:45:94:c6:3d:93:13:ef:d3: 0b:89:b3:80:3a:a0:46:52:70:25:76:f1:38:c0:ff:cd:f7:52: 75:52:cf:c7:b5:66:12:df:98:e7:5c:6d:a8:04:b6:3b:06:af: e2:b3:58:4a:59:4e:3b:74:81:a5:d3:cc:8c:98:86:d1:a6:53: 72:4b:3a:8d:23:9a:d8:89:3f:b0:d1:32:e4:63:1c:36:f5:8b: 1f:d0:75:ad:8e:80:fc:4d:9d:76:be:ff:12:b5:9d:28:6c:8b: f0:66:46:19:6b:46:6d:47:b3:e8:fe:99:8e:57:43:e7:03:31: 08:4f:31:48:21:91:24:09:64:bc:6b:7d:99:e7:07:e8:d7:6a: 6c:da:e6:71:1e:4f:60:61:44:d4:02:a2:1d:82:a0:e0:93:ee: b1:04:52:a1:6d:ff:10:64:2f:4b:07:98:0a:12:18:87:65:6f: 36:6b:9c:52:d5:b3:4d:90:ed:66:c5:8b:47:ad:4b:ff:a7:4f: 8e:62:19:37:a3:4e:1b:2f:d6:29:cc:1a:a0:9d:bb:f0:73:d2: 0b:4d:79:91:ea:8e:f2:23:32:56:35:02:51:ce:be:02:52:a3: 94:76:8e:b3:94:df:d7:50:cc:8e:5d:41:f4:e2:bf:33:08:9a: 9f:d4:af:4b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOnYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3MjJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlBNUNGRUNGNzg4Q0JG M0Q0Q0EwNzc2NzFGMTE4QzY2NTI0QjQzMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+iUX9Yb2OBttu8HfWAqaYP2LMElF8/B1R6oGXOTaGoS+xMRp1 FegpVWIlkb6JkG9bMfnHBuqGeJ32Xxzl1xe9GLKfr0DWYCx3vH3zbqJjQ34Ssz5b 3lS84Ny7zghkZQt59erv669I6TJiiPsyro4m+2RwY1olxwtSujpee60fXuB0PGpw c55aIdsMEU4r7Yw+T/Af6tM50C44oMpPMEOKGY9P/4XQ0JAcNmqXSnh2cuWgTsi5 QkhvQeYqGn4ONtnAqqzPwXHjlHNfVhrkW4L5P5Y7f8Z7Hpr8KOQDEBMJ6BJyN5yd 73Qvma8r7ckR6e4+WCF8OCaDBWOUIGlrvLkzAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUmlz+z3iMvz1MoHdnHxGMZlJLQwQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL21sei16M2lNdnoxTW9IZG5I eEdNWmxKTFF3US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR7 w4AwDQYJKoZIhvcNAQELBQADggEBAEZgC6TGiesgrv9FlMY9kxPv0wuJs4A6oEZS cCV28TjA/833UnVSz8e1ZhLfmOdcbagEtjsGr+KzWEpZTjt0gaXTzIyYhtGmU3JL Oo0jmtiJP7DRMuRjHDb1ix/Qda2OgPxNnXa+/xK1nShsi/BmRhlrRm1Hs+j+mY5X Q+cDMQhPMUghkSQJZLxrfZnnB+jXamza5nEeT2BhRNQCoh2CoOCT7rEEUqFt/xBk L0sHmAoSGIdlbzZrnFLVs02Q7WbFi0etS/+nT45iGTejThsv1inMGqCdu/Bz0gtN eZHqjvIjMlY1AlHOvgJSo5R2jrOU39dQzI5dQfTivzMImp/Ur0s= -----END CERTIFICATE-----Generated at Sun Aug 24 07:32:00 2025 by rpki-client