$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qh41RdPIT4ICs1SfU2S5N3ug3tM.roa File: qh41RdPIT4ICs1SfU2S5N3ug3tM.roa (raw, json) Hash identifier: TCYcg3V8o/DGmty3yF10ZSJBUirpm8j/6LDgMN/BkvA= Subject key identifier: AA:1E:35:45:D3:C8:4F:82:02:B3:54:9F:53:64:B9:37:7B:A0:DE:D3 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 38E4 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qh41RdPIT4ICs1SfU2S5N3ug3tM.roa Signing time: Fri 22 Aug 2025 08:45:44 +0000 ROA not before: Fri 22 Aug 2025 08:45:44 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.194.40.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14564 (0x38e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:44 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=AA1E3545D3C84F8202B3549F5364B9377BA0DED3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d9:ee:46:1d:bb:27:a2:e9:60:bd:3f:88:95: 71:33:be:47:42:7a:6d:e3:c5:86:ac:5f:b2:57:67: 0e:cc:bc:1b:7b:e3:37:f5:c7:e9:5a:1f:b0:41:1b: 70:b1:b3:02:b5:b7:44:f5:e8:52:a4:45:35:3f:33: 5c:f1:76:1e:3f:47:11:27:e0:ad:3f:7f:34:7f:1c: 07:09:8f:2d:02:14:fa:1f:57:62:d5:73:5f:9d:60: 38:37:6f:25:99:12:e8:f9:52:43:0d:f6:83:30:78: 3f:f7:18:16:7f:c6:57:c8:3c:8c:b9:94:26:4c:b1: ae:d7:d5:e4:df:9f:10:0b:99:8c:dc:e1:a0:d1:82: 67:57:8f:9b:12:e7:2e:71:7a:b7:e0:1c:71:aa:17: 00:43:bc:ef:f6:3d:45:ec:17:53:05:7f:98:6a:f3: 89:67:c8:01:39:f7:b1:d7:75:33:fb:52:93:56:5a: 1a:dd:2e:17:7a:64:b9:42:7d:5b:70:49:93:f1:0e: ed:0b:e5:16:6e:f6:b8:5c:7b:4a:44:b1:df:ad:bc: dd:8a:f1:1e:e0:fb:8a:cb:5e:8b:d5:18:91:c4:ba: 0c:5e:14:53:31:e6:07:1a:f5:46:0f:f9:73:d7:ae: 55:1c:10:90:04:3c:a5:e5:0e:8b:ea:9e:c0:52:3c: 1d:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:1E:35:45:D3:C8:4F:82:02:B3:54:9F:53:64:B9:37:7B:A0:DE:D3 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qh41RdPIT4ICs1SfU2S5N3ug3tM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.40.0/22 Signature Algorithm: sha256WithRSAEncryption a1:40:34:be:6b:ea:93:00:f3:44:2e:d5:1b:ff:48:dd:a4:80: 74:fa:66:47:ce:2b:5a:18:a4:a9:54:fe:31:0d:f0:e0:78:a4: 47:6c:94:c5:9b:8b:68:56:34:3e:15:5c:dc:7d:87:2f:63:45: 38:6d:9c:0a:4d:e8:1c:ae:a8:2b:99:cc:6b:2c:e2:cd:59:de: b0:c3:d7:61:b1:07:5c:36:eb:2d:68:7d:cd:67:fe:74:e8:7d: 32:e0:29:c5:1d:ab:9e:9e:50:1e:45:0c:51:a2:6b:e9:32:ef: 39:8b:db:00:6c:2b:14:89:98:89:f3:52:bc:c5:50:21:69:57: 40:0d:f7:08:f1:27:5a:03:e3:94:d6:bb:c3:cd:d0:40:15:d2: c4:7e:c6:bc:72:55:e8:ef:bd:b6:54:2c:fa:18:ab:78:b9:d5: bc:b9:dc:41:59:71:9f:a7:b5:47:29:5d:67:bb:eb:a3:d2:b3: b3:21:c9:64:9e:1f:66:27:e0:9e:b6:dd:34:74:9c:ef:45:71: 93:e8:a1:5b:1a:1d:f5:9b:87:dd:33:f1:6e:e6:71:cd:0d:94: a1:29:27:c7:ed:83:5f:98:0c:9e:d1:d2:31:82:3c:3c:8a:1d: 0d:50:1e:fe:13:27:f6:ca:f7:67:81:71:20:69:5d:96:a8:3d: ab:32:a6:1d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOOQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1NDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEFBMUUzNTQ1RDNDODRG ODIwMkIzNTQ5RjUzNjRCOTM3N0JBMERFRDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDI2e5GHbsnoulgvT+IlXEzvkdCem3jxYasX7JXZw7MvBt74zf1 x+laH7BBG3CxswK1t0T16FKkRTU/M1zxdh4/RxEn4K0/fzR/HAcJjy0CFPofV2LV c1+dYDg3byWZEuj5UkMN9oMweD/3GBZ/xlfIPIy5lCZMsa7X1eTfnxALmYzc4aDR gmdXj5sS5y5xerfgHHGqFwBDvO/2PUXsF1MFf5hq84lnyAE597HXdTP7UpNWWhrd Lhd6ZLlCfVtwSZPxDu0L5RZu9rhce0pEsd+tvN2K8R7g+4rLXovVGJHEugxeFFMx 5gca9UYP+XPXrlUcEJAEPKXlDovqnsBSPB2pAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUqh41RdPIT4ICs1SfU2S5N3ug3tMwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3FoNDFSZFBJVDRJQ3MxU2ZV MlM1TjN1ZzN0TS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wigwDQYJKoZIhvcNAQELBQADggEBAKFANL5r6pMA80Qu1Rv/SN2kgHT6ZkfOK1oY pKlU/jEN8OB4pEdslMWbi2hWND4VXNx9hy9jRThtnApN6ByuqCuZzGss4s1Z3rDD 12GxB1w26y1ofc1n/nTofTLgKcUdq56eUB5FDFGia+ky7zmL2wBsKxSJmInzUrzF UCFpV0AN9wjxJ1oD45TWu8PN0EAV0sR+xrxyVejvvbZULPoYq3i51by53EFZcZ+n tUcpXWe766PSs7MhyWSeH2Yn4J623TR0nO9FcZPooVsaHfWbh90z8W7mcc0NlKEp J8ftg1+YDJ7R0jGCPDyKHQ1QHv4TJ/bK92eBcSBpXZaoPasyph0= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:51 2025 by rpki-client