$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/vcDU_hPwo5WPrI9kdnsV8YLTmFs.roa File: vcDU_hPwo5WPrI9kdnsV8YLTmFs.roa (raw, json) Hash identifier: 08MoP3z+MOj6aT6Ew1UM9dbOT+GGWsT01lkhyktSyoU= Subject key identifier: BD:C0:D4:FE:13:F0:A3:95:8F:AC:8F:64:76:7B:15:F1:82:D3:98:5B Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3B39 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/vcDU_hPwo5WPrI9kdnsV8YLTmFs.roa Signing time: Fri 22 Aug 2025 08:48:11 +0000 ROA not before: Fri 22 Aug 2025 08:48:11 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.193.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15161 (0x3b39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:48:11 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BDC0D4FE13F0A3958FAC8F64767B15F182D3985B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f7:db:4f:b0:9a:1e:eb:58:99:13:bf:6b:fc: 77:1f:5b:9d:c3:a1:b9:d9:75:36:a1:cc:2f:09:e1: b7:aa:17:13:49:92:6b:65:3d:c9:ec:42:24:df:23: 9e:43:f1:20:b1:2d:76:ce:69:39:7f:16:41:57:f5: a7:dc:47:11:c7:54:e7:d0:e6:77:b3:b3:29:90:d0: fd:ac:e7:9d:94:86:7f:27:e6:d4:82:97:65:15:be: e7:16:dc:bf:50:1e:91:d7:d7:f2:17:8e:d9:d6:50: 8a:82:8e:ea:91:37:82:2e:0c:6b:a0:2c:e6:0a:07: b4:e6:88:d7:e0:42:4e:78:37:24:d1:0d:23:fb:a7: 27:05:ea:72:ef:8c:fd:b4:3e:4a:aa:b5:77:7a:b1: 6c:80:75:3f:d8:6d:35:34:44:14:a3:bb:ce:a9:86: 6c:dd:6a:56:2f:8d:57:3d:5a:d0:37:38:3c:f1:8e: 94:9e:4e:9c:af:d4:f2:19:40:dd:77:ad:fa:04:e5: e0:b7:bb:58:4b:ea:84:a4:2b:0a:52:a3:be:00:b5: 03:54:fc:5b:4f:bd:af:12:68:9e:35:c7:9e:83:a4: 09:aa:87:22:cc:ee:ab:88:55:a6:f1:a2:75:e1:af: 38:2f:4e:53:d9:eb:0d:66:4e:c3:f4:80:45:3a:a5: d0:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:C0:D4:FE:13:F0:A3:95:8F:AC:8F:64:76:7B:15:F1:82:D3:98:5B X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/vcDU_hPwo5WPrI9kdnsV8YLTmFs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.4.0/22 Signature Algorithm: sha256WithRSAEncryption 63:7b:a3:f6:9e:a1:9a:f4:d4:8d:eb:b1:5c:4d:b4:43:61:73: c4:fc:cf:a3:9b:7a:fb:72:d5:c3:7e:46:a9:0d:06:87:5a:c0: 8c:28:c1:58:5c:e7:63:4b:b6:ac:0c:57:f3:76:f4:ec:8b:26: 18:d4:f1:6a:66:57:9c:47:18:8c:65:37:70:28:b1:06:d0:18: 20:14:ac:27:2f:6d:48:08:ee:e1:c1:1e:00:0a:d7:5d:fd:86: 1b:12:6d:8e:74:5a:dc:cd:01:c8:4b:3b:c3:01:46:c5:ab:dc: 72:3e:72:e8:11:a1:d5:5f:3d:7e:c2:9b:2e:cc:7a:d1:25:74: 19:ec:3f:09:42:71:e1:c3:14:e7:92:7c:3c:8c:33:ac:1c:41: e6:8e:76:28:ea:d2:b7:d7:99:1d:ed:9d:6a:77:52:c2:9e:f7: 68:cc:81:cd:b0:f6:79:c0:07:e9:22:ad:d6:4b:0d:d9:79:84: 50:b9:56:6e:b4:26:49:e2:84:2e:b1:b1:35:49:99:ca:b6:f8: a4:b7:93:6e:1b:8c:41:34:ed:6e:f7:d8:aa:98:13:91:1a:98: 2d:5a:c2:c1:41:cd:89:77:de:b8:20:a8:c1:7c:10:9f:2c:55: ed:b7:ee:9f:f7:7e:31:18:18:0f:97:82:b6:9c:54:5d:33:eb: 83:dc:72:40 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOzkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ4MTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJEQzBENEZFMTNGMEEz OTU4RkFDOEY2NDc2N0IxNUYxODJEMzk4NUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCu99tPsJoe61iZE79r/HcfW53DobnZdTahzC8J4beqFxNJkmtl PcnsQiTfI55D8SCxLXbOaTl/FkFX9afcRxHHVOfQ5nezsymQ0P2s552Uhn8n5tSC l2UVvucW3L9QHpHX1/IXjtnWUIqCjuqRN4IuDGugLOYKB7TmiNfgQk54NyTRDSP7 pycF6nLvjP20PkqqtXd6sWyAdT/YbTU0RBSju86phmzdalYvjVc9WtA3ODzxjpSe Tpyv1PIZQN13rfoE5eC3u1hL6oSkKwpSo74AtQNU/FtPva8SaJ41x56DpAmqhyLM 7quIVabxonXhrzgvTlPZ6w1mTsP0gEU6pdCJAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUvcDU/hPwo5WPrI9kdnsV8YLTmFswHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3ZjRFVfaFB3bzVXUHJJOWtk bnNWOFlMVG1Gcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wQQwDQYJKoZIhvcNAQELBQADggEBAGN7o/aeoZr01I3rsVxNtENhc8T8z6Obevty 1cN+RqkNBodawIwowVhc52NLtqwMV/N29OyLJhjU8WpmV5xHGIxlN3AosQbQGCAU rCcvbUgI7uHBHgAK1139hhsSbY50WtzNAchLO8MBRsWr3HI+cugRodVfPX7Cmy7M etEldBnsPwlCceHDFOeSfDyMM6wcQeaOdijq0rfXmR3tnWp3UsKe92jMgc2w9nnA B+kirdZLDdl5hFC5Vm60JknihC6xsTVJmcq2+KS3k24bjEE07W732KqYE5EamC1a wsFBzYl33rggqMF8EJ8sVe237p/3fjEYGA+XgracVF0z64PcckA= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:57 2025 by rpki-client