$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/s8ACqLRyQ6Macl8cPvZgEe9v3GM.roa File: s8ACqLRyQ6Macl8cPvZgEe9v3GM.roa (raw, json) Hash identifier: wNmpLOWtEWOufWVwg/m/85tTe5YvsZZPzCQZcGwzITE= Subject key identifier: B3:C0:02:A8:B4:72:43:A3:1A:72:5F:1C:3E:F6:60:11:EF:6F:DC:63 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3960 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/s8ACqLRyQ6Macl8cPvZgEe9v3GM.roa Signing time: Fri 22 Aug 2025 08:46:14 +0000 ROA not before: Fri 22 Aug 2025 08:46:14 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38841 IP address blocks: 123.194.72.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 21:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14688 (0x3960) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 22 08:46:14 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B3C002A8B47243A31A725F1C3EF66011EF6FDC63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:57:4f:83:02:fc:36:3e:51:7c:c9:bf:ae:d2: 50:56:44:2b:b7:4f:ac:f1:d5:50:d7:e1:3b:85:38: 09:dd:58:a2:9e:f3:ab:ac:14:0c:d5:eb:29:f9:b2: 0c:9d:30:d4:ad:62:cc:f9:e5:5a:64:95:08:39:09: 95:98:b3:8e:28:9d:0c:27:8c:7d:8a:98:1b:b2:22: 76:b8:41:b7:bd:5c:b4:ce:be:dd:44:05:17:5b:27: 4b:86:50:cf:77:38:0b:83:91:34:a0:4f:dc:1c:8c: dd:af:64:ad:de:1e:c4:39:70:92:59:ed:c1:4d:06: 96:9c:db:0a:ac:21:17:aa:e1:b7:de:05:d1:fb:a0: 11:ad:f6:b0:59:9c:9d:58:37:8a:69:a2:b2:59:05: 8a:0c:0a:47:a4:37:14:c1:89:35:df:85:80:fa:45: 7d:a2:73:5e:d3:03:b2:d4:96:b6:10:8d:c4:86:c2: 1f:3c:03:8e:b9:aa:53:67:40:a0:8f:9f:86:08:7f: af:73:8e:ed:87:74:72:cd:20:e2:0f:98:df:e4:f1: db:5c:dd:17:8a:51:76:46:ea:dc:81:f4:fd:86:47: a6:69:fe:1a:3c:0e:49:7b:c2:df:56:7d:c2:0a:fc: f5:59:0b:cc:83:36:7e:96:59:8f:51:0c:96:e4:d4: c9:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:C0:02:A8:B4:72:43:A3:1A:72:5F:1C:3E:F6:60:11:EF:6F:DC:63 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/s8ACqLRyQ6Macl8cPvZgEe9v3GM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.72.0/22 Signature Algorithm: sha256WithRSAEncryption 5f:bd:7d:ee:a5:8d:cf:3e:87:8a:b5:21:c3:82:a1:3d:86:a5: 12:cf:b6:a8:a1:cc:9b:89:d3:27:4b:60:4f:bf:d9:89:a1:db: ec:35:c8:3b:d8:2a:f0:b5:6a:2b:a1:21:dc:ae:ef:6f:ea:f7: 16:78:1b:bb:8d:93:31:2e:38:4a:c4:7a:e9:64:90:54:76:e7: 48:4f:25:fc:11:9d:45:94:37:26:c1:69:20:a2:83:4f:b8:7e: fc:df:74:ae:09:06:62:c1:f0:ca:29:7e:d7:39:82:18:43:25: a1:d8:44:e7:2b:49:06:ef:42:18:51:bd:d1:91:90:92:49:93: ef:22:5d:a0:f7:6e:e0:5b:e6:aa:88:57:9a:3d:b9:71:86:d1: 56:cf:fb:87:87:bf:2d:d0:2a:c8:d6:d7:18:ea:54:6d:ba:7f: 87:f7:a9:4f:84:67:6a:16:0e:81:4f:9e:c1:77:bc:a5:3d:7e: 65:8b:aa:f4:66:a2:66:b1:31:1f:bc:1b:bb:02:c7:18:ae:ef: 65:1f:e2:ef:06:b6:75:ce:0f:de:ba:92:5e:b8:6c:ab:19:22: c7:27:ab:fd:21:8f:22:97:3a:4f:86:23:d0:a1:06:b8:fb:5d: e7:aa:c7:d5:8c:d1:9a:73:c3:b9:89:fe:6e:de:86:60:3c:60: ef:ea:9b:6b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICOWAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTA4MjIw ODQ2MTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEIzQzAwMkE4QjQ3MjQz QTMxQTcyNUYxQzNFRjY2MDExRUY2RkRDNjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjV0+DAvw2PlF8yb+u0lBWRCu3T6zx1VDX4TuFOAndWKKe86us FAzV6yn5sgydMNStYsz55VpklQg5CZWYs44onQwnjH2KmBuyIna4Qbe9XLTOvt1E BRdbJ0uGUM93OAuDkTSgT9wcjN2vZK3eHsQ5cJJZ7cFNBpac2wqsIReq4bfeBdH7 oBGt9rBZnJ1YN4pporJZBYoMCkekNxTBiTXfhYD6RX2ic17TA7LUlrYQjcSGwh88 A465qlNnQKCPn4YIf69zju2HdHLNIOIPmN/k8dtc3ReKUXZG6tyB9P2GR6Zp/ho8 Dkl7wt9WfcIK/PVZC8yDNn6WWY9RDJbk1MlZAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUs8ACqLRyQ6Macl8cPvZgEe9v3GMwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3M4QUNxTFJ5UTZNYWNsOGNQ dlpnRWU5djNHTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wkgwDQYJKoZIhvcNAQELBQADggEBAF+9fe6ljc8+h4q1IcOCoT2GpRLPtqihzJuJ 0ydLYE+/2Ymh2+w1yDvYKvC1aiuhIdyu72/q9xZ4G7uNkzEuOErEeulkkFR250hP JfwRnUWUNybBaSCig0+4fvzfdK4JBmLB8Mopftc5ghhDJaHYROcrSQbvQhhRvdGR kJJJk+8iXaD3buBb5qqIV5o9uXGG0VbP+4eHvy3QKsjW1xjqVG26f4f3qU+EZ2oW DoFPnsF3vKU9fmWLqvRmomaxMR+8G7sCxxiu72Uf4u8GtnXOD966kl64bKsZIscn q/0hjyKXOk+GI9ChBrj7Xeeqx9WM0Zpzw7mJ/m7ehmA8YO/qm2s= -----END CERTIFICATE-----Generated at Fri Oct 24 19:25:01 2025 by rpki-client