$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lr1I6CahY1nCD-vNp_6KNj9BhYE.roa File: lr1I6CahY1nCD-vNp_6KNj9BhYE.roa (raw, json) Hash identifier: ckMfsB7iMcxxbvQ38m9lfQEalBjwy2udKULAeQYog3c= Subject key identifier: 96:BD:48:E8:26:A1:63:59:C2:0F:EB:CD:A7:FE:8A:36:3F:41:85:81 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 39AF Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lr1I6CahY1nCD-vNp_6KNj9BhYE.roa Signing time: Fri 22 Aug 2025 08:46:33 +0000 ROA not before: Fri 22 Aug 2025 08:46:33 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.194.204.96/29 maxlen: 29 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 21:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14767 (0x39af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:33 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=96BD48E826A16359C20FEBCDA7FE8A363F418581 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:01:e3:46:d0:65:4f:3d:ce:89:5b:cf:c0:55: b5:c2:98:0c:a3:a2:4a:4a:86:73:2b:68:4e:9d:df: 80:9c:95:38:2d:bf:a3:9b:26:3f:80:ab:76:ff:44: bb:89:40:1e:6c:da:1e:3b:29:30:23:34:66:f7:30: 5f:70:97:e7:55:e7:57:62:71:7e:c7:96:8d:6e:cf: 85:e7:72:35:17:c7:5b:09:4a:ee:61:28:a6:73:d6: 06:5f:8d:d9:6a:cf:75:a0:9a:45:17:f1:2e:91:5e: 8f:a2:33:2e:10:54:51:c2:90:f7:ce:ac:8c:0a:3b: 12:f8:dd:c7:b1:08:8b:97:67:b0:e6:b5:b7:e5:31: 5c:bb:5e:3b:2d:fd:23:f5:c5:92:55:7a:2c:10:8b: 46:8e:cd:3e:be:6f:93:91:87:68:83:50:c8:bf:d0: 11:3d:ef:7f:d5:23:8c:21:21:52:9f:02:51:3b:80: a6:2e:99:72:c8:aa:73:e4:b8:bf:8b:55:b4:cb:83: 27:7f:66:94:05:c4:5c:a4:1a:8b:b1:65:43:69:86: 5e:ee:d3:55:70:23:e8:ea:8f:97:55:ab:6d:f3:74: 42:31:51:4e:9f:cf:2f:f9:eb:29:eb:53:41:58:78: 07:d5:c6:2f:20:35:14:80:7d:a7:43:8f:d5:bf:2e: c7:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:BD:48:E8:26:A1:63:59:C2:0F:EB:CD:A7:FE:8A:36:3F:41:85:81 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lr1I6CahY1nCD-vNp_6KNj9BhYE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.204.96/29 Signature Algorithm: sha256WithRSAEncryption 57:18:2d:57:0d:30:7c:80:b1:0d:2b:a4:fc:d4:f5:0b:77:03: c5:62:42:d4:53:01:97:d5:c5:3a:c7:bb:ed:1e:dd:ee:f7:64: b5:89:ee:91:51:b6:80:b1:c8:f3:b4:e5:58:8d:7f:dd:17:97: 5a:86:bb:5b:a5:5e:85:03:ad:a9:70:36:59:72:d9:a2:0f:22: a8:69:63:18:b2:b4:d6:f6:1c:11:a5:a2:ac:03:7f:7b:67:08: 94:3b:83:8f:64:94:90:11:bf:4d:81:63:81:a4:d7:d3:b0:5f: 81:aa:7f:4f:e4:b7:2c:1c:0c:55:93:5a:c0:46:c3:8c:6a:b5: e8:5b:14:e6:e5:5b:91:29:d5:d8:35:75:29:ad:06:38:50:69: d1:e2:a7:a4:10:e1:3e:33:4c:3c:da:b7:d7:e8:4e:c2:7a:7f: 19:56:c6:5a:92:3b:43:cd:b2:4b:ca:4c:1a:86:97:51:07:1b: ed:38:86:2d:85:93:36:df:a3:28:53:66:23:42:1a:53:23:05: fe:48:93:e0:15:bc:97:5e:81:3d:50:13:57:8d:ab:9e:6e:05: 0a:3f:8d:5f:8b:3e:d9:ad:30:33:48:91:7b:de:c3:5c:7d:e0: 3e:09:6e:e6:37:10:be:d0:9b:20:00:1b:a1:9f:71:ef:d4:90: 6b:15:05:7a -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICOa8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MzNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk2QkQ0OEU4MjZBMTYz NTlDMjBGRUJDREE3RkU4QTM2M0Y0MTg1ODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKAeNG0GVPPc6JW8/AVbXCmAyjokpKhnMraE6d34CclTgtv6Ob Jj+Aq3b/RLuJQB5s2h47KTAjNGb3MF9wl+dV51dicX7Hlo1uz4XncjUXx1sJSu5h KKZz1gZfjdlqz3WgmkUX8S6RXo+iMy4QVFHCkPfOrIwKOxL43cexCIuXZ7Dmtbfl MVy7Xjst/SP1xZJVeiwQi0aOzT6+b5ORh2iDUMi/0BE973/VI4whIVKfAlE7gKYu mXLIqnPkuL+LVbTLgyd/ZpQFxFykGouxZUNphl7u01VwI+jqj5dVq23zdEIxUU6f zy/56ynrU0FYeAfVxi8gNRSAfadDj9W/Lsc3AgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUlr1I6CahY1nCD+vNp/6KNj9BhYEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2xyMUk2Q2FoWTFuQ0Qtdk5w XzZLTmo5QmhZRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQN7 wsxgMA0GCSqGSIb3DQEBCwUAA4IBAQBXGC1XDTB8gLENK6T81PULdwPFYkLUUwGX 1cU6x7vtHt3u92S1ie6RUbaAscjztOVYjX/dF5dahrtbpV6FA62pcDZZctmiDyKo aWMYsrTW9hwRpaKsA397ZwiUO4OPZJSQEb9NgWOBpNfTsF+Bqn9P5LcsHAxVk1rA RsOMarXoWxTm5VuRKdXYNXUprQY4UGnR4qekEOE+M0w82rfX6E7Cen8ZVsZakjtD zbJLykwahpdRBxvtOIYthZM236MoU2YjQhpTIwX+SJPgFbyXXoE9UBNXjauebgUK P41fiz7ZrTAzSJF73sNcfeA+CW7mNxC+0JsgABuhn3Hv1JBrFQV6 -----END CERTIFICATE-----Generated at Fri Oct 24 19:21:27 2025 by rpki-client