$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xM30E7QEs1fX4LgmkUefSC7gG3Q.roa File: xM30E7QEs1fX4LgmkUefSC7gG3Q.roa (raw, json) Hash identifier: 3WApZPrBjb2v3xqacUkstQyTsZyRvwTAy8n2RL9Ip80= Subject key identifier: C4:CD:F4:13:B4:04:B3:57:D7:E0:B8:26:91:47:9F:48:2E:E0:1B:74 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3868 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xM30E7QEs1fX4LgmkUefSC7gG3Q.roa Signing time: Fri 22 Aug 2025 08:45:15 +0000 ROA not before: Fri 22 Aug 2025 08:45:15 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.195.168.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14440 (0x3868) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:15 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C4CDF413B404B357D7E0B82691479F482EE01B74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:17:6e:a1:8a:15:82:e5:e3:ea:7b:46:52:09: 37:1e:94:ed:73:72:f8:dd:da:73:12:5c:9e:c9:57: c2:33:6b:6b:07:ad:7d:6a:0c:53:9a:cf:25:ac:3a: 0f:8b:e9:4a:62:11:59:37:ed:43:88:e1:2c:08:b9: 5f:c3:0d:c0:2f:57:3f:ba:e1:67:59:9d:0d:46:48: 10:71:cd:c4:43:91:0e:2c:3f:ac:9f:43:0a:d2:d4: 38:9a:79:04:26:71:31:dd:43:84:cc:04:dd:ed:ad: e6:56:5a:5a:1c:1a:4f:41:ac:51:96:57:62:01:d2: fd:5e:e4:27:c2:33:dd:ec:fe:2c:aa:cc:8d:b7:ff: 55:a8:78:63:30:f5:2d:4d:1d:f6:f6:00:b7:7b:90: 63:29:b2:39:f6:22:2d:72:45:4f:46:ec:f3:bb:a0: be:1c:b8:74:ac:4b:3f:66:6c:4f:73:aa:5b:6b:ab: 26:ea:30:30:f2:e9:97:5c:cf:5c:26:d0:6b:ec:7d: 47:e7:39:55:70:0a:9f:9a:34:10:2d:b4:17:16:f3: a4:da:df:ed:bd:a6:30:a4:04:f4:07:80:6d:be:9b: 3b:01:ad:6c:b2:8f:af:18:d0:6e:90:6b:f1:01:db: 21:fa:a3:83:aa:fc:1b:e1:fb:4a:b4:0b:14:b6:4d: c8:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:CD:F4:13:B4:04:B3:57:D7:E0:B8:26:91:47:9F:48:2E:E0:1B:74 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xM30E7QEs1fX4LgmkUefSC7gG3Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.168.0/22 Signature Algorithm: sha256WithRSAEncryption 88:0a:45:90:8e:01:59:87:27:a0:82:fa:1a:1f:20:50:f3:77: 3b:c6:8e:b6:3f:ca:e4:d1:07:f2:b5:7d:90:95:67:2a:c2:b2: cd:73:e6:2f:bc:e6:9d:87:27:26:27:5e:2f:4d:a4:c0:53:92: b7:ba:e2:0f:e1:8f:81:32:da:a1:97:f7:c6:65:9c:b6:ef:50: 30:bf:b3:fb:93:48:5b:e5:4d:0e:b6:00:02:94:71:9b:a2:85: 01:93:fa:2a:36:c7:3e:25:6d:af:5a:46:db:2a:2c:cc:a1:41: 9b:cc:d6:45:c4:26:15:5e:04:a7:aa:e4:9a:66:ed:6a:fa:25: 6e:cf:21:c2:02:c7:ab:26:aa:fa:1f:90:0e:96:8c:30:26:79: 2b:cd:d4:b4:d8:28:78:06:ab:d3:3b:ab:6a:98:50:9e:d6:ff: 07:54:3c:0d:68:7e:1e:c1:5a:00:43:35:39:be:ea:d3:88:05: 1f:dd:8d:10:fa:1c:c1:35:90:17:be:f4:96:66:d5:fd:b1:48: 6e:9a:2c:49:c1:d5:1a:46:d3:f6:33:de:dd:ec:b7:c7:07:dd: ee:63:b9:93:70:6e:84:a6:28:33:bf:4d:b5:1e:93:34:fd:60: 1c:2f:1f:49:ae:0a:99:9b:8d:9b:b5:ea:bb:88:a0:9f:6d:77: 3e:d9:79:1b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOGgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1MTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM0Q0RGNDEzQjQwNEIz NTdEN0UwQjgyNjkxNDc5RjQ4MkVFMDFCNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDmF26hihWC5ePqe0ZSCTcelO1zcvjd2nMSXJ7JV8Iza2sHrX1q DFOazyWsOg+L6UpiEVk37UOI4SwIuV/DDcAvVz+64WdZnQ1GSBBxzcRDkQ4sP6yf QwrS1DiaeQQmcTHdQ4TMBN3treZWWlocGk9BrFGWV2IB0v1e5CfCM93s/iyqzI23 /1WoeGMw9S1NHfb2ALd7kGMpsjn2Ii1yRU9G7PO7oL4cuHSsSz9mbE9zqltrqybq MDDy6Zdcz1wm0GvsfUfnOVVwCp+aNBAttBcW86Ta3+29pjCkBPQHgG2+mzsBrWyy j68Y0G6Qa/EB2yH6o4Oq/Bvh+0q0CxS2TcgnAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUxM30E7QEs1fX4LgmkUefSC7gG3QwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3hNMzBFN1FFczFmWDRMZ21r VWVmU0M3Z0czUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 w6gwDQYJKoZIhvcNAQELBQADggEBAIgKRZCOAVmHJ6CC+hofIFDzdzvGjrY/yuTR B/K1fZCVZyrCss1z5i+85p2HJyYnXi9NpMBTkre64g/hj4Ey2qGX98ZlnLbvUDC/ s/uTSFvlTQ62AAKUcZuihQGT+io2xz4lba9aRtsqLMyhQZvM1kXEJhVeBKeq5Jpm 7Wr6JW7PIcICx6smqvofkA6WjDAmeSvN1LTYKHgGq9M7q2qYUJ7W/wdUPA1ofh7B WgBDNTm+6tOIBR/djRD6HME1kBe+9JZm1f2xSG6aLEnB1RpG0/Yz3t3st8cH3e5j uZNwboSmKDO/TbUekzT9YBwvH0muCpmbjZu16ruIoJ9tdz7ZeRs= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:21 2025 by rpki-client