$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gpxWUrKmN4jMfCDuUOc98bBvqcM.roa File: gpxWUrKmN4jMfCDuUOc98bBvqcM.roa (raw, json) Hash identifier: 2vT4dfEHVCq+H312eozerlkLVt/QZKMbHZi9Gl+l8nI= Subject key identifier: 82:9C:56:52:B2:A6:37:88:CC:7C:20:EE:50:E7:3D:F1:B0:6F:A9:C3 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3A18 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gpxWUrKmN4jMfCDuUOc98bBvqcM.roa Signing time: Fri 22 Aug 2025 08:47:00 +0000 ROA not before: Fri 22 Aug 2025 08:47:00 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 180.177.144.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 21:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14872 (0x3a18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:00 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=829C5652B2A63788CC7C20EE50E73DF1B06FA9C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:4d:d3:e3:81:2a:b9:39:d1:d2:86:0f:c4:7b: 27:1f:8e:2c:e5:3c:aa:4e:10:ba:d2:ab:20:21:bd: 25:2f:0d:bb:c2:5f:27:81:1c:93:34:53:58:68:79: 51:10:d9:71:e5:9f:10:be:62:49:da:90:c1:9b:7f: 1d:a7:3d:df:96:7e:28:a0:5f:d5:05:48:9b:2d:8a: 58:88:64:a8:cd:a1:94:c0:6d:2f:9d:87:0a:18:24: 06:ac:62:75:7a:10:63:60:e1:1c:22:ce:f8:e2:45: 89:6f:1e:66:55:a1:fb:24:67:40:24:43:e4:33:6e: bd:7e:f3:3b:ca:df:99:30:c7:da:6a:a8:54:45:3a: 7f:a3:d7:13:e2:a5:ec:96:58:d4:58:41:a2:0f:df: eb:0d:0b:36:dc:96:3f:b8:ab:68:c4:c9:e7:14:db: 17:39:85:44:54:e8:d5:db:89:0b:f1:01:46:08:20: 74:0d:6b:c4:b0:19:94:ce:a3:cc:2f:62:0f:f2:ea: b7:73:a9:56:13:3e:b2:09:14:31:2b:79:fb:04:36: d6:48:c8:4f:ce:f6:99:f9:a9:5f:38:3a:3e:a3:51: 45:a1:cc:15:53:60:03:ce:c8:75:e9:b0:82:3f:55: 7c:94:e5:1e:31:13:86:63:b9:06:3d:91:ae:20:fb: d6:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:9C:56:52:B2:A6:37:88:CC:7C:20:EE:50:E7:3D:F1:B0:6F:A9:C3 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gpxWUrKmN4jMfCDuUOc98bBvqcM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.177.144.0/21 Signature Algorithm: sha256WithRSAEncryption 24:2f:ce:9f:47:db:55:ff:8c:95:e8:67:5b:24:ec:16:bc:34: 5c:a5:7b:63:87:b4:60:86:c3:70:fd:fc:a4:c9:45:09:8c:cc: bb:cc:ac:88:03:e7:8a:10:fc:3c:26:54:60:d0:94:09:d1:57: b0:0c:23:82:69:3c:ad:82:36:bc:78:21:25:2c:4d:fb:cd:69: b1:70:71:70:60:3f:24:3d:68:e8:a2:e9:1b:59:cf:c7:2a:df: 54:03:3b:1f:a1:84:d0:85:81:38:b5:39:bb:5a:a8:4c:6b:dc: 63:23:01:9a:d0:f2:3f:83:3e:d4:6e:77:85:a1:a7:06:33:5f: 13:84:96:50:cc:c4:f2:84:fc:df:f6:89:10:17:6f:77:23:11: ac:5a:08:71:f9:8f:23:18:99:d7:e9:3d:66:4b:33:06:65:ec: b6:56:00:45:7f:92:a4:c7:64:40:70:91:ec:83:b2:a6:f9:82: d8:95:29:59:6a:f4:aa:28:e5:98:74:a5:82:b3:5e:99:3d:53: f3:87:28:aa:8d:a1:d8:5a:e8:3d:2f:a1:ae:54:69:52:f1:fb: 84:b1:b3:c3:86:42:36:64:08:5b:f1:6a:86:f2:d2:6f:91:f3: 99:2e:57:24:4a:78:96:0a:7b:23:cd:ab:f6:6e:d7:d5:ce:d9: d4:8c:0c:f2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOhgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3MDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDgyOUM1NjUyQjJBNjM3 ODhDQzdDMjBFRTUwRTczREYxQjA2RkE5QzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCVTdPjgSq5OdHShg/EeycfjizlPKpOELrSqyAhvSUvDbvCXyeB HJM0U1hoeVEQ2XHlnxC+YknakMGbfx2nPd+WfiigX9UFSJstiliIZKjNoZTAbS+d hwoYJAasYnV6EGNg4RwizvjiRYlvHmZVofskZ0AkQ+Qzbr1+8zvK35kwx9pqqFRF On+j1xPipeyWWNRYQaIP3+sNCzbclj+4q2jEyecU2xc5hURU6NXbiQvxAUYIIHQN a8SwGZTOo8wvYg/y6rdzqVYTPrIJFDErefsENtZIyE/O9pn5qV84Oj6jUUWhzBVT YAPOyHXpsII/VXyU5R4xE4ZjuQY9ka4g+9a7AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUgpxWUrKmN4jMfCDuUOc98bBvqcMwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2dweFdVckttTjRqTWZDRHVV T2M5OGJCdnFjTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 sZAwDQYJKoZIhvcNAQELBQADggEBACQvzp9H21X/jJXoZ1sk7Ba8NFyle2OHtGCG w3D9/KTJRQmMzLvMrIgD54oQ/DwmVGDQlAnRV7AMI4JpPK2CNrx4ISUsTfvNabFw cXBgPyQ9aOii6RtZz8cq31QDOx+hhNCFgTi1ObtaqExr3GMjAZrQ8j+DPtRud4Wh pwYzXxOEllDMxPKE/N/2iRAXb3cjEaxaCHH5jyMYmdfpPWZLMwZl7LZWAEV/kqTH ZEBwkeyDsqb5gtiVKVlq9Koo5Zh0pYKzXpk9U/OHKKqNodha6D0voa5UaVLx+4Sx s8OGQjZkCFvxaoby0m+R85kuVyRKeJYKeyPNq/Zu19XO2dSMDPI= -----END CERTIFICATE-----Generated at Fri Oct 24 19:27:41 2025 by rpki-client