$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2hqLw9f5jkQOacBd9NgZEK5G8WA.roa File: 2hqLw9f5jkQOacBd9NgZEK5G8WA.roa (raw, json) Hash identifier: FGP4k3CnsLqIuu+tkysu1EJHCiLiysEkOXIFCrIOH7g= Subject key identifier: DA:1A:8B:C3:D7:F9:8E:44:0E:69:C0:5D:F4:D8:19:10:AE:46:F1:60 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 33E0 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2hqLw9f5jkQOacBd9NgZEK5G8WA.roa Signing time: Mon 10 Feb 2025 13:51:52 +0000 ROA not before: Mon 10 Feb 2025 13:51:52 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 123.193.96.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 22:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13280 (0x33e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:51:52 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DA1A8BC3D7F98E440E69C05DF4D81910AE46F160 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:eb:3c:a6:21:86:48:4d:0e:5f:2f:42:02:a0: a6:58:ae:68:56:dc:a8:18:22:6d:89:7f:12:74:de: 4c:4e:3d:b2:9d:e8:22:94:e0:0c:1b:19:41:e8:e9: 4c:39:1f:e4:4f:dd:6d:53:03:6e:87:b8:4c:66:0d: ea:b1:cc:d8:06:6c:bf:bd:bd:e4:8f:52:45:0e:bd: 75:06:2b:8f:b9:11:1c:14:e3:2a:a8:09:ec:0a:81: 00:f1:6f:a1:29:3b:88:b8:62:c9:18:16:7b:91:34: 1a:a2:16:67:30:b9:e9:20:68:7a:cd:d2:f9:52:3c: 69:c4:30:c8:ed:26:4f:2a:e0:df:0c:86:85:cc:30: 23:38:f4:89:d1:16:cb:f2:08:da:a8:b8:d7:87:31: 2c:33:b3:aa:4b:96:dc:49:23:9a:62:6c:98:78:c0: 5c:c3:bd:d6:ca:a7:56:f4:d6:c3:22:47:db:f8:20: 42:d1:4f:5f:3c:81:54:41:89:83:66:07:12:3a:6d: 55:ca:e1:ec:bd:8d:14:da:ad:a5:76:a9:ef:24:5d: 76:34:36:48:f7:f6:c0:14:df:36:44:78:1d:b2:cc: 73:00:65:95:5f:8c:08:ec:12:d5:2c:bb:05:b2:13: 25:31:4e:1e:e1:1c:8f:83:5f:f5:27:0d:69:e5:e8: a0:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:1A:8B:C3:D7:F9:8E:44:0E:69:C0:5D:F4:D8:19:10:AE:46:F1:60 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2hqLw9f5jkQOacBd9NgZEK5G8WA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.96.0/21 Signature Algorithm: sha256WithRSAEncryption 7b:7e:f7:9d:9d:df:af:79:42:34:fb:d2:bb:49:0e:dd:89:5f: 95:b2:2a:93:11:6e:5a:34:8d:cc:ce:14:de:6e:cb:cf:38:ad: 37:72:f8:18:d9:a0:fd:73:5c:4f:ce:cc:d5:9d:27:7a:a4:d0: d6:64:a5:2a:d8:a0:44:91:f5:85:0a:5a:86:dd:e1:86:78:41: 1a:0d:39:5b:9d:dd:01:66:70:18:14:46:c3:77:b1:a1:b5:6a: 42:ea:dc:56:4c:86:7a:f7:03:60:67:87:2a:98:ff:7f:c4:fe: 00:0e:02:86:fc:eb:85:10:e1:50:d4:ee:14:4a:82:a9:30:24: 02:63:93:db:3b:e6:50:5a:df:85:4c:50:bc:39:58:be:a3:bd: a7:24:3a:30:70:5b:8e:8e:43:22:6c:54:49:e8:99:ae:a9:56: d6:4a:83:5f:54:b9:29:5b:ec:e3:31:69:cf:92:d4:55:91:4d: f2:cf:c0:35:02:27:89:3d:1e:3f:4b:e9:c5:60:b4:28:48:bc: 11:3a:5d:e0:4c:a4:20:39:fa:1d:3f:22:c3:36:1c:2e:e8:55: 79:b7:e4:63:88:35:4f:f7:1a:2d:9a:ba:89:3f:0c:a8:89:88: 38:25:3a:94:58:ff:aa:de:19:b2:32:b3:d2:9c:fa:22:cb:b5: 0c:c3:c0:fc -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICM+AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUxNTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERBMUE4QkMzRDdGOThF NDQwRTY5QzA1REY0RDgxOTEwQUU0NkYxNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDg6zymIYZITQ5fL0ICoKZYrmhW3KgYIm2JfxJ03kxOPbKd6CKU 4AwbGUHo6Uw5H+RP3W1TA26HuExmDeqxzNgGbL+9veSPUkUOvXUGK4+5ERwU4yqo CewKgQDxb6EpO4i4YskYFnuRNBqiFmcwuekgaHrN0vlSPGnEMMjtJk8q4N8MhoXM MCM49InRFsvyCNqouNeHMSwzs6pLltxJI5pibJh4wFzDvdbKp1b01sMiR9v4IELR T188gVRBiYNmBxI6bVXK4ey9jRTaraV2qe8kXXY0Nkj39sAU3zZEeB2yzHMAZZVf jAjsEtUsuwWyEyUxTh7hHI+DX/UnDWnl6KApAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU2hqLw9f5jkQOacBd9NgZEK5G8WAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzJocUx3OWY1amtRT2FjQmQ5 TmdaRUs1RzhXQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wWAwDQYJKoZIhvcNAQELBQADggEBAHt+952d3695QjT70rtJDt2JX5WyKpMRblo0 jczOFN5uy884rTdy+BjZoP1zXE/OzNWdJ3qk0NZkpSrYoESR9YUKWobd4YZ4QRoN OVud3QFmcBgURsN3saG1akLq3FZMhnr3A2BnhyqY/3/E/gAOAob864UQ4VDU7hRK gqkwJAJjk9s75lBa34VMULw5WL6jvackOjBwW46OQyJsVEnoma6pVtZKg19UuSlb 7OMxac+S1FWRTfLPwDUCJ4k9Hj9L6cVgtChIvBE6XeBMpCA5+h0/IsM2HC7oVXm3 5GOINU/3Gi2auok/DKiJiDglOpRY/6reGbIys9Kc+iLLtQzDwPw= -----END CERTIFICATE-----Generated at Fri Apr 18 22:36:53 2025 by rpki-client