$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/U6IEFMYQrEqSRcXrRKIfiMHQBQw.roa File: U6IEFMYQrEqSRcXrRKIfiMHQBQw.roa (raw, json) Hash identifier: kikCE2C9GUolqTFCrhvbqsrI4iijDlVBGlTVjECcc7E= Subject key identifier: 53:A2:04:14:C6:10:AC:4A:92:45:C5:EB:44:A2:1F:88:C1:D0:05:0C Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 396E Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/U6IEFMYQrEqSRcXrRKIfiMHQBQw.roa Signing time: Fri 22 Aug 2025 08:46:17 +0000 ROA not before: Fri 22 Aug 2025 08:46:17 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.194.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 21:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14702 (0x396e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:17 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=53A20414C610AC4A9245C5EB44A21F88C1D0050C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ba:96:7f:50:6d:bc:54:51:b5:54:3f:23:fd: 5d:c4:a0:b0:3b:68:7e:8c:8d:b9:e9:0d:5e:50:8f: f5:55:09:28:19:e2:d9:45:1f:bd:c1:64:fa:1d:96: e3:79:5b:d9:1a:d9:f2:72:29:4d:28:01:9a:39:d9: 58:d1:4a:a5:dd:ca:9d:7a:35:50:2d:e0:34:27:62: c4:7f:f7:32:b0:80:e5:87:35:a9:56:80:da:c9:f0: b7:3a:23:26:c4:e8:46:d8:c8:a3:77:84:5d:9e:83: 11:cb:b2:bf:be:aa:af:27:92:6a:4b:a5:44:fe:92: 92:55:2d:31:06:8e:e5:f4:28:45:d1:85:37:7f:49: 12:73:63:b7:5b:0b:b8:92:0c:6e:7b:5a:6e:fd:6b: 5e:61:81:47:c8:44:18:d0:d8:b2:bb:de:45:89:e8: 2e:00:2a:6f:15:66:2a:e4:50:2b:94:64:f8:e8:85: 64:51:eb:94:99:a9:8d:3e:7d:da:f4:61:d0:b6:97: c5:d5:d4:79:2d:33:b3:40:3b:01:f1:74:4d:65:d8: 32:be:d2:43:a6:ea:3a:7e:ad:91:05:f8:05:ab:6c: f1:fc:6c:e4:40:f4:7d:9e:1a:a7:c0:d3:f4:e5:3c: 78:d0:41:c4:65:01:49:ea:f4:13:ea:7d:a0:7f:a9: 4c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:A2:04:14:C6:10:AC:4A:92:45:C5:EB:44:A2:1F:88:C1:D0:05:0C X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/U6IEFMYQrEqSRcXrRKIfiMHQBQw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.252.0/22 Signature Algorithm: sha256WithRSAEncryption 6a:e1:23:9c:cf:fa:ac:6f:91:d9:d0:c9:24:52:13:84:67:67: 0a:60:10:fa:86:d8:c0:1b:4b:15:fa:f9:50:4b:b6:da:08:c4: e2:b4:d0:4d:c1:ec:18:28:d9:2d:6f:c0:36:76:ff:57:6c:f7: 18:83:d4:95:9d:73:98:5c:5f:ca:c3:b0:50:09:bc:ff:55:eb: da:46:3e:b7:77:11:d4:c1:b2:a6:a6:6d:9a:f2:0e:ef:93:97: 20:ba:9a:17:4c:42:8c:ab:75:87:c1:84:d7:97:62:33:c4:38: e2:38:3d:bb:1e:8b:00:64:47:b0:38:fa:37:21:dc:77:40:90: fd:10:d3:0b:02:4b:2c:10:8c:75:7f:eb:a5:c1:32:03:62:c3: 02:cc:f2:1c:a6:4f:b0:3a:7c:09:af:99:f4:38:e8:5c:ae:74: 9a:66:81:b2:84:d7:9a:82:40:c3:67:fd:8f:b9:49:90:ca:44: 55:af:ca:70:53:f2:70:ae:04:a9:f4:a5:e0:8a:87:d5:68:27: 10:9d:23:40:46:81:bc:bd:b8:59:a1:21:42:67:5a:7b:2d:5d: f5:21:1d:dc:39:e3:98:ea:01:95:a7:6b:22:21:5d:a7:01:45: d4:ed:cc:9d:ee:e1:f9:e4:83:47:b4:30:25:f4:a0:38:dd:8d: 54:4d:b0:d7 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOW4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDUzQTIwNDE0QzYxMEFD NEE5MjQ1QzVFQjQ0QTIxRjg4QzFEMDA1MEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsupZ/UG28VFG1VD8j/V3EoLA7aH6MjbnpDV5Qj/VVCSgZ4tlF H73BZPodluN5W9ka2fJyKU0oAZo52VjRSqXdyp16NVAt4DQnYsR/9zKwgOWHNalW gNrJ8Lc6IybE6EbYyKN3hF2egxHLsr++qq8nkmpLpUT+kpJVLTEGjuX0KEXRhTd/ SRJzY7dbC7iSDG57Wm79a15hgUfIRBjQ2LK73kWJ6C4AKm8VZirkUCuUZPjohWRR 65SZqY0+fdr0YdC2l8XV1HktM7NAOwHxdE1l2DK+0kOm6jp+rZEF+AWrbPH8bORA 9H2eGqfA0/TlPHjQQcRlAUnq9BPqfaB/qUyhAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUU6IEFMYQrEqSRcXrRKIfiMHQBQwwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1U2SUVGTVlRckVxU1JjWHJS S0lmaU1IUUJRdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wvwwDQYJKoZIhvcNAQELBQADggEBAGrhI5zP+qxvkdnQySRSE4RnZwpgEPqG2MAb SxX6+VBLttoIxOK00E3B7Bgo2S1vwDZ2/1ds9xiD1JWdc5hcX8rDsFAJvP9V69pG Prd3EdTBsqambZryDu+TlyC6mhdMQoyrdYfBhNeXYjPEOOI4PbseiwBkR7A4+jch 3HdAkP0Q0wsCSywQjHV/66XBMgNiwwLM8hymT7A6fAmvmfQ46FyudJpmgbKE15qC QMNn/Y+5SZDKRFWvynBT8nCuBKn0peCKh9VoJxCdI0BGgby9uFmhIUJnWnstXfUh Hdw545jqAZWnayIhXacBRdTtzJ3u4fnkg0e0MCX0oDjdjVRNsNc= -----END CERTIFICATE-----Generated at Fri Oct 24 19:21:52 2025 by rpki-client