$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KAfGeamEF4er8y1WvLL5yoTvQSI.roa File: KAfGeamEF4er8y1WvLL5yoTvQSI.roa (raw, json) Hash identifier: XuhtKX24vX1PoBWSKc5kdgYOlUUjDPWKe4POOEsknRQ= Subject key identifier: 28:07:C6:79:A9:84:17:87:AB:F3:2D:56:BC:B2:F9:CA:84:EF:41:22 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3AE8 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KAfGeamEF4er8y1WvLL5yoTvQSI.roa Signing time: Fri 22 Aug 2025 08:47:52 +0000 ROA not before: Fri 22 Aug 2025 08:47:52 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.195.244.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 21:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15080 (0x3ae8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:52 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2807C679A9841787ABF32D56BCB2F9CA84EF4122 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:6d:e6:59:72:a2:fb:50:57:59:2d:f6:b9:e4: 4a:c8:ef:3b:3d:7f:a4:49:1b:81:0f:fa:b7:40:f9: 9a:f1:72:38:e2:9d:03:de:71:97:a2:16:71:1d:59: 9d:da:c5:e4:0b:13:19:b6:b9:78:84:65:9f:46:29: fc:43:2f:bd:6c:53:e4:bc:f3:65:d0:de:36:81:e9: c4:8c:41:44:4e:ce:42:7f:3a:89:e7:5b:4f:0a:92: 4f:5f:4c:be:27:d6:a2:2d:04:ff:c5:32:84:a7:ee: 3a:e0:58:84:65:03:92:48:ca:94:c7:f0:32:de:e3: d4:e4:5f:87:a3:b1:52:78:1d:b2:6d:e4:14:4a:d3: 73:d9:7b:17:1e:00:f2:2f:01:f1:ae:8c:e6:fe:b9: 11:c5:4f:01:80:9b:bd:28:68:7e:1a:93:b7:1a:02: eb:8a:2c:b3:1a:a7:6b:a2:dc:f4:b9:2e:1b:f0:85: 23:00:64:3e:18:98:f8:c2:43:5c:5b:47:8e:79:6c: 63:a2:f0:da:79:9a:04:07:49:05:d8:f8:ba:16:84: 5b:96:95:4e:d8:0c:6e:9f:9a:8b:37:37:be:71:89: a3:45:be:62:86:d0:21:fb:ee:ba:88:3f:a3:92:33: 33:11:d2:5a:be:a6:01:e0:eb:1c:2e:23:cd:20:c1: 01:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:07:C6:79:A9:84:17:87:AB:F3:2D:56:BC:B2:F9:CA:84:EF:41:22 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KAfGeamEF4er8y1WvLL5yoTvQSI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.244.0/22 Signature Algorithm: sha256WithRSAEncryption 00:5d:43:0d:36:24:3d:e0:36:26:c8:87:63:64:05:62:08:f9: 52:18:c1:d8:c7:9b:75:11:b4:95:35:af:f3:1b:41:6c:72:7b: 28:5d:2d:9e:6a:f3:87:29:c9:af:9a:06:11:6c:48:ee:51:92: 7c:16:b3:24:ad:16:bd:f8:97:35:82:dd:66:8d:d3:72:f0:10: ee:37:41:92:61:89:b4:7b:98:80:52:c3:85:e7:73:4e:d4:03: 0a:e7:74:7d:87:88:cd:a8:df:92:03:a4:3e:54:9f:08:a5:f1: d7:ea:f6:89:62:88:c9:cc:73:ae:66:a3:f4:49:cb:98:d6:25: ae:fd:de:f7:4d:75:32:da:86:2c:4f:34:8b:e7:74:c8:41:f2: fd:1d:dc:9f:17:f4:cc:2f:49:6e:e1:f9:c2:2f:04:6b:39:93: 85:f1:24:75:9c:17:bd:24:30:16:e1:d9:06:e1:e2:f2:b8:53: 40:b8:a5:11:3a:64:08:44:c1:e3:72:f1:9e:44:79:ce:a5:32: 85:c6:55:d7:7f:0e:3e:99:1e:ab:64:8f:9d:8b:87:b5:c4:6a: 76:54:ef:a0:32:6a:f8:87:74:78:67:4c:87:68:9c:7a:25:15: cb:65:64:8a:76:a2:4c:11:59:0a:bd:c1:36:d7:f9:d1:2c:74: 07:07:ab:0f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOugwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3NTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI4MDdDNjc5QTk4NDE3 ODdBQkYzMkQ1NkJDQjJGOUNBODRFRjQxMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCYbeZZcqL7UFdZLfa55ErI7zs9f6RJG4EP+rdA+ZrxcjjinQPe cZeiFnEdWZ3axeQLExm2uXiEZZ9GKfxDL71sU+S882XQ3jaB6cSMQUROzkJ/Oonn W08Kkk9fTL4n1qItBP/FMoSn7jrgWIRlA5JIypTH8DLe49TkX4ejsVJ4HbJt5BRK 03PZexceAPIvAfGujOb+uRHFTwGAm70oaH4ak7caAuuKLLMap2ui3PS5LhvwhSMA ZD4YmPjCQ1xbR455bGOi8Np5mgQHSQXY+LoWhFuWlU7YDG6fmos3N75xiaNFvmKG 0CH77rqIP6OSMzMR0lq+pgHg6xwuI80gwQFXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUKAfGeamEF4er8y1WvLL5yoTvQSIwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0tBZkdlYW1FRjRlcjh5MVd2 TEw1eW9UdlFTSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 w/QwDQYJKoZIhvcNAQELBQADggEBAABdQw02JD3gNibIh2NkBWII+VIYwdjHm3UR tJU1r/MbQWxyeyhdLZ5q84cpya+aBhFsSO5RknwWsyStFr34lzWC3WaN03LwEO43 QZJhibR7mIBSw4Xnc07UAwrndH2HiM2o35IDpD5Unwil8dfq9oliiMnMc65mo/RJ y5jWJa793vdNdTLahixPNIvndMhB8v0d3J8X9MwvSW7h+cIvBGs5k4XxJHWcF70k MBbh2Qbh4vK4U0C4pRE6ZAhEweNy8Z5Eec6lMoXGVdd/Dj6ZHqtkj52Lh7XEanZU 76AyaviHdHhnTIdonHolFctlZIp2okwRWQq9wTbX+dEsdAcHqw8= -----END CERTIFICATE-----Generated at Fri Oct 24 19:24:58 2025 by rpki-client