$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UGZjgLYvQOOaOQLMYJDvThsNeaI.roa File: UGZjgLYvQOOaOQLMYJDvThsNeaI.roa (raw, json) Hash identifier: B8+4LiC9xfictIC+oY8kNgms0yn4q9QdGHdhd2OMrak= Subject key identifier: 50:66:63:80:B6:2F:40:E3:9A:39:02:CC:60:90:EF:4E:1B:0D:79:A2 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3859 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UGZjgLYvQOOaOQLMYJDvThsNeaI.roa Signing time: Fri 22 Aug 2025 08:45:12 +0000 ROA not before: Fri 22 Aug 2025 08:45:12 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.194.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 21:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14425 (0x3859) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:45:12 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=50666380B62F40E39A3902CC6090EF4E1B0D79A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:92:84:98:e3:91:89:0c:65:bb:0b:3e:f5:5f: 3a:3f:14:9c:25:bc:4d:f6:60:25:d8:89:9a:65:4c: 49:14:9e:76:5a:21:59:b8:62:43:60:71:eb:4b:fe: 94:05:9d:56:4b:c7:85:f5:c1:66:c5:18:31:38:96: 34:f6:56:cc:b6:76:bb:0c:3d:24:f1:e2:35:8a:fc: 15:92:f1:4f:34:fe:dd:67:6c:ef:d3:0c:50:c4:d6: 6c:32:da:d4:ec:65:ae:37:d0:95:98:11:e3:8c:f0: 97:d8:c0:16:68:49:82:9e:d8:2f:c3:f7:56:f4:5e: be:b4:bf:94:30:5d:27:37:ff:00:85:53:2b:71:7a: 96:36:39:b8:99:c4:2d:86:46:97:23:a5:33:e2:f8: 70:e1:10:5e:ea:7b:aa:8d:d0:45:23:6b:19:70:d1: fe:f7:fe:0a:2e:d8:c9:47:00:e5:f4:23:5a:66:72: 89:d5:55:69:a2:02:44:75:af:43:c2:0a:53:97:34: ea:54:4f:78:55:cb:55:43:a5:de:4a:91:b1:9f:78: bb:76:d1:1a:ae:33:7e:03:42:53:40:9e:32:41:3a: 35:38:ff:51:fb:d7:46:c3:91:b4:d8:6c:97:6f:6c: 54:b5:ab:fb:ff:76:f8:85:e1:00:4a:62:c9:4e:14: ad:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:66:63:80:B6:2F:40:E3:9A:39:02:CC:60:90:EF:4E:1B:0D:79:A2 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UGZjgLYvQOOaOQLMYJDvThsNeaI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.144.0/20 Signature Algorithm: sha256WithRSAEncryption 83:59:85:6a:e5:bb:34:e5:68:f7:c0:31:94:7a:2a:94:60:d4: 85:70:27:f6:fd:c7:2b:08:f4:49:99:3a:69:0b:6d:be:0f:85: 7f:96:67:6b:29:b3:d3:85:cf:33:04:df:fe:0d:5a:9c:00:9a: 02:17:de:c2:5a:fa:2b:1b:cf:41:c0:cd:ac:88:39:f3:ae:b2: 5d:f3:6d:28:fb:c7:f1:dd:aa:18:1b:58:c9:ac:c9:29:4e:70: 55:df:47:4d:c9:38:d9:f6:c9:4d:b0:bf:ca:42:bb:70:f0:77: 8b:71:58:77:ca:07:ad:94:51:5d:1e:5e:cf:eb:19:57:17:cc: 81:72:22:f5:c6:cc:ad:b4:dd:00:61:cb:46:7d:0a:7d:6f:21: b4:4d:f3:81:ea:06:bc:b5:28:aa:6a:a3:f8:f7:3b:aa:68:0d: 69:5b:20:07:f0:11:9e:a6:06:67:b2:d0:50:43:5f:72:fd:d2: a1:ad:e6:d5:b3:5f:94:6f:3e:44:b7:93:e3:13:41:21:3b:41: 25:d4:5b:34:b9:55:61:ba:a2:c5:35:f9:08:6f:a3:8d:ac:2c: 6b:f4:50:b0:5f:1f:72:db:a6:0b:ec:2e:d4:06:2a:6c:d4:82: d5:35:3d:26:6f:df:6f:36:9e:7e:44:e0:c7:99:93:d9:13:6d: f4:22:fb:dd -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOFkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ1MTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDUwNjY2MzgwQjYyRjQw RTM5QTM5MDJDQzYwOTBFRjRFMUIwRDc5QTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+koSY45GJDGW7Cz71Xzo/FJwlvE32YCXYiZplTEkUnnZaIVm4 YkNgcetL/pQFnVZLx4X1wWbFGDE4ljT2Vsy2drsMPSTx4jWK/BWS8U80/t1nbO/T DFDE1mwy2tTsZa430JWYEeOM8JfYwBZoSYKe2C/D91b0Xr60v5QwXSc3/wCFUytx epY2ObiZxC2GRpcjpTPi+HDhEF7qe6qN0EUjaxlw0f73/gou2MlHAOX0I1pmconV VWmiAkR1r0PCClOXNOpUT3hVy1VDpd5KkbGfeLt20RquM34DQlNAnjJBOjU4/1H7 10bDkbTYbJdvbFS1q/v/dviF4QBKYslOFK35AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUUGZjgLYvQOOaOQLMYJDvThsNeaIwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1VHWmpnTFl2UU9PYU9RTE1Z SkR2VGhzTmVhSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR7 wpAwDQYJKoZIhvcNAQELBQADggEBAINZhWrluzTlaPfAMZR6KpRg1IVwJ/b9xysI 9EmZOmkLbb4PhX+WZ2sps9OFzzME3/4NWpwAmgIX3sJa+isbz0HAzayIOfOusl3z bSj7x/HdqhgbWMmsySlOcFXfR03JONn2yU2wv8pCu3Dwd4txWHfKB62UUV0eXs/r GVcXzIFyIvXGzK203QBhy0Z9Cn1vIbRN84HqBry1KKpqo/j3O6poDWlbIAfwEZ6m Bmey0FBDX3L90qGt5tWzX5RvPkS3k+MTQSE7QSXUWzS5VWG6osU1+Qhvo42sLGv0 ULBfH3LbpgvsLtQGKmzUgtU1PSZv3282nn5E4MeZk9kTbfQi+90= -----END CERTIFICATE-----Generated at Fri Oct 24 19:27:49 2025 by rpki-client