$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lXdtkOL7qG7OgkbH01no6Z-Rh1w.roa File: lXdtkOL7qG7OgkbH01no6Z-Rh1w.roa (raw, json) Hash identifier: CGAW4vZjzAepQf0DlTC16k8qr3JzXEXgRJNhDm/HLyA= Subject key identifier: 95:77:6D:90:E2:FB:A8:6E:CE:82:46:C7:D3:59:E8:E9:9F:91:87:5C Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3928 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lXdtkOL7qG7OgkbH01no6Z-Rh1w.roa Signing time: Fri 22 Aug 2025 08:46:02 +0000 ROA not before: Fri 22 Aug 2025 08:46:02 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 118.232.80.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 21:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14632 (0x3928) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:02 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=95776D90E2FBA86ECE8246C7D359E8E99F91875C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c1:8b:11:b1:97:44:95:44:fd:45:bb:86:77: b8:fb:60:af:87:fe:ed:e5:73:d5:27:56:ad:ff:dd: 83:68:09:f9:b2:de:72:67:74:76:39:0c:e8:2a:09: 1a:5d:20:60:fa:7d:6f:5d:2d:01:44:17:6c:f4:b3: 5e:40:a6:68:7a:86:8d:88:0a:f4:43:dc:90:5f:14: 49:50:81:2b:57:6e:17:6f:63:f0:65:5c:95:b3:c4: 7f:3c:31:3e:fb:85:4c:0e:77:c1:05:fd:75:78:fd: 70:57:60:f7:4e:60:26:83:6f:31:46:99:3d:1d:30: e4:72:8f:8a:71:48:3e:c8:ff:46:3b:a3:44:ee:b5: 17:f2:84:d7:73:56:69:7d:fa:ec:93:be:bb:b5:d5: 61:b1:e5:c4:94:6b:80:40:bf:59:e2:54:5b:0b:32: 50:d4:80:ad:32:bb:be:79:3e:fa:e5:36:d3:7d:d9: 1d:0d:b2:22:4d:13:f4:da:53:c1:4a:8c:d7:ad:6d: ef:61:47:a5:51:fb:28:09:24:28:a2:8a:a0:28:82: a4:b7:96:db:13:77:6a:f7:47:03:ea:b9:cd:d2:d8: 1d:4c:ce:86:b0:45:da:e9:e1:cc:fb:15:18:37:ec: 9c:6a:14:8b:bb:61:07:2d:6d:6d:b8:0c:8e:73:4e: 46:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:77:6D:90:E2:FB:A8:6E:CE:82:46:C7:D3:59:E8:E9:9F:91:87:5C X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lXdtkOL7qG7OgkbH01no6Z-Rh1w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.80.0/22 Signature Algorithm: sha256WithRSAEncryption b0:33:67:af:de:b9:a3:4c:b2:ad:c5:a2:30:dc:9f:31:dd:c7: c2:68:db:dc:23:e4:74:64:9d:0d:4a:70:66:13:d4:f1:3e:a7: 50:6b:eb:8a:b9:3b:e9:98:d7:5a:31:a2:5d:89:1e:68:1d:86: 40:c7:35:52:5c:39:cd:dc:fc:3a:76:fb:c2:cf:9c:b4:ce:60: e8:4d:66:54:05:a5:52:84:eb:04:24:3b:d4:b3:99:fb:8c:fb: 5c:bc:95:b8:7b:9d:48:0a:4c:80:b5:71:6b:7c:25:bb:c2:ac: 11:22:85:23:c4:bf:dc:42:57:8d:58:14:9c:5a:72:c0:29:9e: cf:9f:2f:1a:ed:52:f8:f9:cc:62:ec:eb:2a:61:46:ee:72:94: dd:58:b9:3c:6e:1b:29:46:52:18:3d:43:f2:e0:eb:2a:ca:0f: 51:64:63:0b:32:c5:59:fb:0d:78:13:ec:fd:dc:e2:02:50:87: 9e:a1:97:a0:8f:25:ed:12:7a:47:ab:fe:ab:af:bc:06:6f:9b: 34:76:16:4c:04:ee:75:b0:c4:14:65:5b:9e:cc:90:4e:04:51: 76:4d:bf:fe:cb:2b:2e:01:f1:19:0a:cc:9e:b4:f5:ce:e2:77: bf:55:cc:1f:b5:aa:39:02:6d:c0:e9:0b:de:fe:37:5e:5a:ed: ba:60:37:71 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOSgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk1Nzc2RDkwRTJGQkE4 NkVDRTgyNDZDN0QzNTlFOEU5OUY5MTg3NUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNwYsRsZdElUT9RbuGd7j7YK+H/u3lc9UnVq3/3YNoCfmy3nJn dHY5DOgqCRpdIGD6fW9dLQFEF2z0s15Apmh6ho2ICvRD3JBfFElQgStXbhdvY/Bl XJWzxH88MT77hUwOd8EF/XV4/XBXYPdOYCaDbzFGmT0dMORyj4pxSD7I/0Y7o0Tu tRfyhNdzVml9+uyTvru11WGx5cSUa4BAv1niVFsLMlDUgK0yu755PvrlNtN92R0N siJNE/TaU8FKjNetbe9hR6VR+ygJJCiiiqAogqS3ltsTd2r3RwPquc3S2B1Mzoaw Rdrp4cz7FRg37JxqFIu7YQctbW24DI5zTkYzAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUlXdtkOL7qG7OgkbH01no6Z+Rh1wwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2xYZHRrT0w3cUc3T2drYkgw MW5vNlotUmgxdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6FAwDQYJKoZIhvcNAQELBQADggEBALAzZ6/euaNMsq3FojDcnzHdx8Jo29wj5HRk nQ1KcGYT1PE+p1Br64q5O+mY11oxol2JHmgdhkDHNVJcOc3c/Dp2+8LPnLTOYOhN ZlQFpVKE6wQkO9SzmfuM+1y8lbh7nUgKTIC1cWt8JbvCrBEihSPEv9xCV41YFJxa csApns+fLxrtUvj5zGLs6yphRu5ylN1YuTxuGylGUhg9Q/Lg6yrKD1FkYwsyxVn7 DXgT7P3c4gJQh56hl6CPJe0Seker/quvvAZvmzR2FkwE7nWwxBRlW57MkE4EUXZN v/7LKy4B8RkKzJ609c7id79VzB+1qjkCbcDpC97+N15a7bpgN3E= -----END CERTIFICATE-----Generated at Fri Oct 24 19:21:45 2025 by rpki-client