$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oCUCDXJ2cFLRtkM6kXuj00d3UNE.roa File: oCUCDXJ2cFLRtkM6kXuj00d3UNE.roa (raw, json) Hash identifier: txTTFE+WcOUUMOwKvsayKW6s/aPw5ns87EOeMwyzM44= Subject key identifier: A0:25:02:0D:72:76:70:52:D1:B6:43:3A:91:7B:A3:D3:47:77:50:D1 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3B01 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oCUCDXJ2cFLRtkM6kXuj00d3UNE.roa Signing time: Fri 22 Aug 2025 08:47:59 +0000 ROA not before: Fri 22 Aug 2025 08:47:59 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.194.76.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 21:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15105 (0x3b01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:47:59 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A025020D72767052D1B6433A917BA3D3477750D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:10:e7:45:da:00:02:9f:b6:e0:0b:33:6b:b0: a5:65:3b:29:65:c3:1c:5d:7d:76:2f:e3:4c:6d:e7: 2a:60:c9:d6:ac:42:e8:43:21:a5:03:70:29:11:4a: 7b:df:b4:c5:b3:77:22:33:be:05:37:03:ef:b1:74: 14:70:7f:52:fa:a0:21:a9:8f:df:ef:04:a1:b7:9b: 13:24:7b:27:23:63:9a:7a:4e:91:02:01:f0:0a:25: 04:13:a7:44:fa:94:2c:f9:fb:cb:77:91:46:5f:a1: a5:26:a0:c3:da:21:9f:b7:ec:67:f8:31:0e:f3:85: fe:64:b2:53:b0:de:1c:2e:4d:e4:51:15:6c:3c:83: 81:33:fe:9a:8f:f3:39:d1:d4:b0:38:d6:f7:a3:35: 92:2c:1c:4b:06:e9:2e:66:dc:e9:c4:49:e0:27:a5: 0c:71:bc:70:97:d5:10:ba:6a:e1:a5:a8:1d:52:6b: d4:c2:d6:ff:d1:89:e3:00:6f:c9:57:80:ff:e3:37: 5f:87:47:bb:f0:1f:0e:74:4f:67:07:6c:7a:2b:01: 1d:06:cd:d5:fd:bf:6d:7a:d0:8d:a6:b9:3f:15:d0: 69:ea:be:36:7b:81:d7:59:81:06:44:05:bb:fc:33: 92:57:ae:3c:04:20:af:28:9f:bc:b1:6b:b1:44:36: e7:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:25:02:0D:72:76:70:52:D1:B6:43:3A:91:7B:A3:D3:47:77:50:D1 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oCUCDXJ2cFLRtkM6kXuj00d3UNE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.76.0/22 Signature Algorithm: sha256WithRSAEncryption 67:17:03:84:db:10:5e:bb:e8:23:67:df:9b:00:b3:ce:35:fc: 55:78:39:73:a7:4c:c1:d9:6e:9d:d3:18:e6:09:19:56:f3:e3: 61:db:17:df:18:da:69:0d:16:4f:97:84:85:3c:d4:d3:f4:32: 24:f0:7d:90:46:cf:46:70:86:1a:d8:22:15:3d:32:c2:c4:06: a9:a8:b4:54:e2:b2:0e:a4:cd:c1:20:40:c7:b5:74:cb:41:b1: 8e:e1:60:aa:77:4b:80:54:7c:b6:32:91:c3:72:d7:cb:6c:9c: fa:2d:9a:c8:37:24:0e:72:e4:fb:52:c9:79:54:9b:26:26:c6: b2:6b:90:8c:8e:b5:0b:aa:13:16:3d:cf:45:61:1a:3b:fc:53: 5f:da:f3:85:ad:51:e0:6d:87:a4:e5:12:83:02:7d:73:d1:d7: f2:18:8d:1e:a3:77:42:79:73:03:f1:23:e5:79:8e:aa:28:4e: 0b:87:29:ce:b8:3e:de:6b:86:21:3c:f4:61:3d:df:ad:28:5c: 2c:73:af:da:d7:44:27:80:34:c0:33:aa:2e:1c:38:46:64:d0: ac:ac:34:ad:08:60:e8:ef:3e:2b:99:7a:c9:5c:96:b8:2a:49: 38:13:09:63:86:74:34:c7:3c:18:f7:ee:2d:92:b1:00:1d:bf: 34:14:29:67 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOwEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ3NTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEEwMjUwMjBENzI3Njcw NTJEMUI2NDMzQTkxN0JBM0QzNDc3NzUwRDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfEOdF2gACn7bgCzNrsKVlOyllwxxdfXYv40xt5ypgydasQuhD IaUDcCkRSnvftMWzdyIzvgU3A++xdBRwf1L6oCGpj9/vBKG3mxMkeycjY5p6TpEC AfAKJQQTp0T6lCz5+8t3kUZfoaUmoMPaIZ+37Gf4MQ7zhf5kslOw3hwuTeRRFWw8 g4Ez/pqP8znR1LA41vejNZIsHEsG6S5m3OnESeAnpQxxvHCX1RC6auGlqB1Sa9TC 1v/RieMAb8lXgP/jN1+HR7vwHw50T2cHbHorAR0GzdX9v2160I2muT8V0GnqvjZ7 gddZgQZEBbv8M5JXrjwEIK8on7yxa7FENucjAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUoCUCDXJ2cFLRtkM6kXuj00d3UNEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL29DVUNEWEoyY0ZMUnRrTTZr WHVqMDBkM1VORS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wkwwDQYJKoZIhvcNAQELBQADggEBAGcXA4TbEF676CNn35sAs841/FV4OXOnTMHZ bp3TGOYJGVbz42HbF98Y2mkNFk+XhIU81NP0MiTwfZBGz0ZwhhrYIhU9MsLEBqmo tFTisg6kzcEgQMe1dMtBsY7hYKp3S4BUfLYykcNy18tsnPotmsg3JA5y5PtSyXlU myYmxrJrkIyOtQuqExY9z0VhGjv8U1/a84WtUeBth6TlEoMCfXPR1/IYjR6jd0J5 cwPxI+V5jqooTguHKc64Pt5rhiE89GE9360oXCxzr9rXRCeANMAzqi4cOEZk0Kys NK0IYOjvPiuZeslclrgqSTgTCWOGdDTHPBj37i2SsQAdvzQUKWc= -----END CERTIFICATE-----Generated at Fri Oct 24 19:27:51 2025 by rpki-client