$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qGAL350cZRCcMtqJIc0dv0bYm7s.roa File: qGAL350cZRCcMtqJIc0dv0bYm7s.roa (raw, json) Hash identifier: s5NyhzXNxfKU7yU/gYHIYgNuZkHZIVkxT877lr4UVho= Subject key identifier: A8:60:0B:DF:9D:1C:65:10:9C:32:DA:89:21:CD:1D:BF:46:D8:9B:BB Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3B3B Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qGAL350cZRCcMtqJIc0dv0bYm7s.roa Signing time: Fri 22 Aug 2025 08:48:12 +0000 ROA not before: Fri 22 Aug 2025 08:48:12 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 123.195.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15163 (0x3b3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:48:12 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A8600BDF9D1C65109C32DA8921CD1DBF46D89BBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:0e:95:68:e1:4b:df:9d:d8:1e:bb:eb:f0:fb: 58:94:db:8b:36:24:10:56:f4:72:83:b2:3f:f1:5c: ec:5d:f2:e3:ea:26:96:26:0a:7c:55:85:02:d2:0c: fb:a2:a4:5d:fa:b4:5c:1a:d2:f1:07:4e:e9:12:19: 53:11:c9:e6:0d:10:ff:d0:3e:44:24:70:f8:06:87: 6f:a5:23:94:8d:fe:ac:24:b4:20:27:d6:5e:d3:1a: a3:8d:74:76:ee:6f:42:11:ac:52:c9:d8:17:4c:82: 83:26:1b:94:3c:6a:dc:b0:0a:56:5a:a1:4d:f3:22: 29:d3:4e:d5:d8:1e:a3:cb:c6:af:a8:b8:c5:c6:33: 11:1d:30:71:75:5c:85:9d:f5:1f:ac:13:67:53:95: 45:ff:73:bf:e3:b5:d6:ad:d1:d3:c0:28:20:b6:39: e8:53:ee:22:57:d7:99:df:32:fc:69:a2:31:bf:eb: cd:5d:f3:f4:90:5a:e3:6b:66:18:d0:c8:f2:1c:43: 0c:e0:22:eb:66:56:d5:5a:41:83:6f:0f:71:5e:58: ab:78:92:38:ab:4f:4d:f0:0b:b7:b4:03:96:5d:2b: 6f:20:2d:0d:c9:0f:fe:ec:2b:5c:35:48:49:4f:14: 17:e7:8f:39:a2:b4:28:c5:16:a8:e8:88:94:04:04: eb:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:60:0B:DF:9D:1C:65:10:9C:32:DA:89:21:CD:1D:BF:46:D8:9B:BB X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qGAL350cZRCcMtqJIc0dv0bYm7s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.0.0/16 Signature Algorithm: sha256WithRSAEncryption 00:ba:5c:6c:ae:59:71:88:16:ea:28:ff:2a:ea:fe:e8:b7:4d: 24:49:64:ed:c7:e1:73:49:82:09:4f:10:1a:89:39:88:67:3e: 44:32:5d:7c:b3:fa:9b:4f:8a:ed:5d:bc:18:af:aa:b9:52:bf: 71:65:d8:73:a5:32:95:3a:58:50:61:36:41:1a:f5:e1:d6:ed: 44:8c:2b:87:92:3d:98:17:63:c5:82:dc:a6:b1:a3:1d:06:61: f5:5d:8d:c2:40:6b:19:72:ee:c3:c2:bd:46:fd:54:97:a6:f6: 45:af:50:02:5a:c1:78:4e:27:ea:ad:93:34:23:03:84:12:5d: b6:e7:55:a5:f6:2b:09:ed:fc:80:f1:04:c3:eb:37:b5:d6:b0: eb:c6:cd:a7:ad:50:e4:18:12:90:e2:fb:ff:a5:76:f3:57:c6: fb:09:17:94:f9:54:a8:62:24:2f:de:e2:3b:8c:e9:41:13:20: 55:cf:6a:2f:6a:d9:3c:04:30:87:77:3a:e1:05:90:91:47:84: 4e:6e:d0:3c:80:d7:52:06:53:4b:a1:d1:54:42:d7:42:07:0a: 70:89:a1:24:10:21:a9:18:d5:94:50:f8:49:c5:f3:03:df:f5: 4b:5b:21:ff:99:6c:13:75:3a:61:e1:20:b6:a1:8d:3a:8b:71: ce:b5:58:1e -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICOzswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ4MTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEE4NjAwQkRGOUQxQzY1 MTA5QzMyREE4OTIxQ0QxREJGNDZEODlCQkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPDpVo4Uvfndgeu+vw+1iU24s2JBBW9HKDsj/xXOxd8uPqJpYm CnxVhQLSDPuipF36tFwa0vEHTukSGVMRyeYNEP/QPkQkcPgGh2+lI5SN/qwktCAn 1l7TGqONdHbub0IRrFLJ2BdMgoMmG5Q8atywClZaoU3zIinTTtXYHqPLxq+ouMXG MxEdMHF1XIWd9R+sE2dTlUX/c7/jtdat0dPAKCC2OehT7iJX15nfMvxpojG/681d 8/SQWuNrZhjQyPIcQwzgIutmVtVaQYNvD3FeWKt4kjirT03wC7e0A5ZdK28gLQ3J D/7sK1w1SElPFBfnjzmitCjFFqjoiJQEBOt9AgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUqGAL350cZRCcMtqJIc0dv0bYm7swHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3FHQUwzNTBjWlJDY010cUpJ YzBkdjBiWW03cy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwB7 wzANBgkqhkiG9w0BAQsFAAOCAQEAALpcbK5ZcYgW6ij/Kur+6LdNJElk7cfhc0mC CU8QGok5iGc+RDJdfLP6m0+K7V28GK+quVK/cWXYc6UylTpYUGE2QRr14dbtRIwr h5I9mBdjxYLcprGjHQZh9V2NwkBrGXLuw8K9Rv1Ul6b2Ra9QAlrBeE4n6q2TNCMD hBJdtudVpfYrCe38gPEEw+s3tdaw68bNp61Q5BgSkOL7/6V281fG+wkXlPlUqGIk L97iO4zpQRMgVc9qL2rZPAQwh3c64QWQkUeETm7QPIDXUgZTS6HRVELXQgcKcImh JBAhqRjVlFD4ScXzA9/1S1sh/5lsE3U6YeEgtqGNOotxzrVYHg== -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:40 2025 by rpki-client