$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mzD2p636reOVDoSSW2P5560YH3E.roa File: mzD2p636reOVDoSSW2P5560YH3E.roa (raw, json) Hash identifier: R2v2msIcrBm6sMjgXo7HQSnyjqKpYFYaGlKDyX5F+zU= Subject key identifier: 9B:30:F6:A7:AD:FA:AD:E3:95:0E:84:92:5B:63:F9:E7:AD:18:1F:71 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3851 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mzD2p636reOVDoSSW2P5560YH3E.roa Signing time: Fri 22 Aug 2025 08:45:10 +0000 ROA not before: Fri 22 Aug 2025 08:45:10 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 180.177.52.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14417 (0x3851) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:10 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9B30F6A7ADFAADE3950E84925B63F9E7AD181F71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c3:3c:57:cb:1e:3a:22:2b:8e:72:2d:48:d4: f5:f0:38:84:e3:ce:69:5e:d0:1f:41:da:c8:a1:7a: 62:14:cc:9e:4f:15:c3:06:24:20:36:c9:e9:fc:2b: 6c:b1:7c:cc:d6:17:d0:4e:38:39:15:f6:60:81:e2: 0d:2a:19:bb:e6:3d:01:88:96:87:ee:fc:0f:7d:10: 6d:eb:2b:ef:22:eb:9a:f7:32:0b:9f:19:cd:dd:f1: 54:0b:72:a9:b1:ef:a4:81:31:6d:95:9f:25:f1:df: ca:bd:48:75:59:e4:75:03:75:06:9a:38:e9:37:ee: b3:d7:a7:c9:e3:91:9e:76:b0:da:2b:03:05:b3:91: 7b:f9:7a:50:5e:b0:c4:6f:84:d1:33:92:fa:0d:33: 92:31:83:0b:f1:f5:b4:42:70:fc:f8:cb:6b:66:aa: 6f:f6:ef:59:12:1b:15:ab:4b:f5:62:d1:48:1d:65: 1c:3a:fb:d4:24:ac:9c:5c:ef:0d:14:4e:7b:8c:b4: d8:26:8b:43:24:4b:a4:c7:05:58:cf:fd:d8:e2:70: 37:a8:68:1c:ac:45:78:9e:75:28:c1:e4:70:6e:b0: 4a:ea:73:d9:01:3c:19:0e:26:8a:8d:96:e5:94:04: 64:66:82:91:90:d8:a8:b2:c6:0d:69:21:8d:62:66: eb:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:30:F6:A7:AD:FA:AD:E3:95:0E:84:92:5B:63:F9:E7:AD:18:1F:71 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mzD2p636reOVDoSSW2P5560YH3E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.177.52.0/22 Signature Algorithm: sha256WithRSAEncryption 72:99:75:12:39:e7:6c:68:67:a8:09:2a:21:89:56:29:a2:aa: 15:b0:24:05:9d:0a:d0:54:9c:7c:72:02:f6:c1:96:17:da:55: e6:32:d7:97:58:3d:62:c1:f5:18:e4:66:ae:01:f3:b4:3e:81: a7:d2:68:0a:f7:47:78:7c:e3:ad:74:4b:a2:ef:c2:51:0f:ac: 9b:fd:06:b2:c1:3c:97:5f:1e:b0:09:d4:d1:8d:72:56:e8:cf: 44:32:b3:44:99:83:99:f1:7e:90:e2:d3:59:ed:d8:8b:72:ec: 0f:d1:10:14:4f:8b:c0:35:a4:28:a1:8b:9a:1b:51:36:3b:03: f9:dd:41:b8:30:f5:2d:0c:d9:c9:9f:75:7e:cf:9d:c3:bd:ef: 25:3b:3a:e8:e2:83:4a:6a:66:b9:56:6c:86:e0:75:dc:33:8c: 0e:db:31:a3:0b:db:5b:5e:18:f6:29:1b:20:82:4f:0e:9b:97: a4:97:3d:9a:c0:c0:dd:c7:cc:69:6c:ec:d5:a2:07:60:0e:41: 99:a1:4b:fe:8a:5c:68:43:da:82:82:0c:3d:da:45:79:9b:16: 73:70:67:49:19:49:cf:72:8f:26:b1:2e:a7:d6:c9:2d:bd:63: c1:23:72:0c:6a:06:88:e6:ad:a1:9c:d2:fc:ee:47:fc:e3:53: d0:1f:50:df -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOFEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1MTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlCMzBGNkE3QURGQUFE RTM5NTBFODQ5MjVCNjNGOUU3QUQxODFGNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5wzxXyx46IiuOci1I1PXwOITjzmle0B9B2sihemIUzJ5PFcMG JCA2yen8K2yxfMzWF9BOODkV9mCB4g0qGbvmPQGIlofu/A99EG3rK+8i65r3Mguf Gc3d8VQLcqmx76SBMW2VnyXx38q9SHVZ5HUDdQaaOOk37rPXp8njkZ52sNorAwWz kXv5elBesMRvhNEzkvoNM5Ixgwvx9bRCcPz4y2tmqm/271kSGxWrS/Vi0UgdZRw6 +9QkrJxc7w0UTnuMtNgmi0MkS6THBVjP/djicDeoaBysRXiedSjB5HBusErqc9kB PBkOJoqNluWUBGRmgpGQ2Kiyxg1pIY1iZuu9AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUmzD2p636reOVDoSSW2P5560YH3EwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL216RDJwNjM2cmVPVkRvU1NX MlA1NTYwWUgzRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 sTQwDQYJKoZIhvcNAQELBQADggEBAHKZdRI552xoZ6gJKiGJVimiqhWwJAWdCtBU nHxyAvbBlhfaVeYy15dYPWLB9RjkZq4B87Q+gafSaAr3R3h84610S6LvwlEPrJv9 BrLBPJdfHrAJ1NGNclboz0Qys0SZg5nxfpDi01nt2Ity7A/REBRPi8A1pCihi5ob UTY7A/ndQbgw9S0M2cmfdX7PncO97yU7Oujig0pqZrlWbIbgddwzjA7bMaML21te GPYpGyCCTw6bl6SXPZrAwN3HzGls7NWiB2AOQZmhS/6KXGhD2oKCDD3aRXmbFnNw Z0kZSc9yjyaxLqfWyS29Y8EjcgxqBojmraGc0vzuR/zjU9AfUN8= -----END CERTIFICATE-----Generated at Sun Aug 24 05:34:03 2025 by rpki-client