$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IMvhG7zTClMlUIM2h4p9wT1Frno.roa File: IMvhG7zTClMlUIM2h4p9wT1Frno.roa (raw, json) Hash identifier: PrBQoSSg0bHbhHUQBIw4Hu40Duv1Q6lvjWpcvUmYd14= Subject key identifier: 20:CB:E1:1B:BC:D3:0A:53:25:50:83:36:87:8A:7D:C1:3D:45:AE:7A Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3670 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IMvhG7zTClMlUIM2h4p9wT1Frno.roa Signing time: Mon 10 Feb 2025 13:54:19 +0000 ROA not before: Mon 10 Feb 2025 13:54:19 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 180.177.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13936 (0x3670) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:54:19 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=20CBE11BBCD30A5325508336878A7DC13D45AE7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:c0:44:c2:9f:6e:aa:ca:45:be:53:9d:04:a2: 89:a0:69:be:93:50:28:53:58:dd:50:5a:f2:54:52: c2:e4:f3:db:07:8b:c2:34:54:dc:a5:e7:7b:9d:dd: 2d:69:d7:45:65:c7:d0:9e:a4:e9:80:4d:c3:f3:88: de:f7:1f:3d:dc:3e:ad:0e:3b:fe:88:71:e8:e5:ad: 9b:3b:b5:2a:03:60:63:9f:98:8d:93:61:83:80:4d: cd:67:d8:63:66:24:9e:2a:ea:22:b2:bf:98:16:19: f4:28:fd:39:f0:04:d2:11:93:eb:6c:2b:c5:b1:d7: a8:0a:c2:a4:8e:fb:0d:d2:0b:81:26:92:5c:4c:0e: e8:c5:33:61:88:00:1e:8b:25:71:a1:14:ae:4b:da: 58:be:50:13:62:c9:3a:e0:44:39:09:ef:f3:f3:17: 67:7f:87:a9:d0:63:5a:a8:52:e5:86:42:a4:9c:5b: 37:c7:2d:3f:0c:fb:42:14:42:9b:a0:75:55:8b:9e: 77:3f:e1:b2:9c:2b:91:2f:51:d9:78:72:37:ea:2a: c8:0b:1a:a7:2f:d6:6b:1c:fe:f5:a9:f4:c0:ad:e6: 09:9e:2a:d4:c0:a8:1d:46:f8:a6:e5:cd:bd:dc:42: 24:9c:7c:12:9d:67:e4:b3:eb:2d:f4:81:9c:8f:35: 93:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:CB:E1:1B:BC:D3:0A:53:25:50:83:36:87:8A:7D:C1:3D:45:AE:7A X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IMvhG7zTClMlUIM2h4p9wT1Frno.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.177.64.0/20 Signature Algorithm: sha256WithRSAEncryption 20:d8:85:dd:70:87:9f:91:db:a3:a1:31:11:a7:3d:8e:0c:36: 90:f8:94:12:b3:59:bc:a1:9e:de:9a:18:e1:b3:68:3b:e1:a7: ea:c7:be:11:03:7e:a3:2c:7d:68:7a:87:12:f1:98:bb:da:f6: 5e:74:37:7c:1b:8d:78:68:bf:ca:0a:46:60:6e:9c:b8:31:3b: 1d:d8:aa:2c:05:c6:0b:ae:70:36:a5:26:ab:6b:f5:fc:81:fc: 62:39:e4:ad:94:99:f8:e2:02:ab:6c:4a:2d:c5:bf:ea:a0:f8: c8:9a:11:4f:61:04:aa:4d:18:2f:28:df:d3:d6:1d:c7:0f:5e: e9:59:16:3a:b8:08:a3:e5:31:5e:b3:3b:d2:34:83:5b:06:08: 87:91:8c:b3:e4:4e:53:f0:65:33:72:3d:9a:52:68:8d:ce:f9: da:51:51:8d:f7:55:9f:ed:bb:6d:df:f9:13:45:2c:41:43:70: 46:75:22:c6:d3:5e:bb:d3:27:c5:ab:09:d2:b7:6f:d0:70:c2: c5:e5:39:4d:55:f8:fc:23:51:b2:88:58:15:51:05:07:98:e4: 7d:04:b9:51:ab:ec:51:9f:b9:39:f0:62:49:85:08:aa:4b:61: e4:0b:b8:2e:6f:c0:00:7f:36:8e:14:fb:18:70:ad:cf:35:11: a9:9b:21:a1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNnAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzU0MTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIwQ0JFMTFCQkNEMzBB NTMyNTUwODMzNjg3OEE3REMxM0Q0NUFFN0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgwETCn26qykW+U50Eoomgab6TUChTWN1QWvJUUsLk89sHi8I0 VNyl53ud3S1p10Vlx9CepOmATcPziN73Hz3cPq0OO/6IcejlrZs7tSoDYGOfmI2T YYOATc1n2GNmJJ4q6iKyv5gWGfQo/TnwBNIRk+tsK8Wx16gKwqSO+w3SC4EmklxM DujFM2GIAB6LJXGhFK5L2li+UBNiyTrgRDkJ7/PzF2d/h6nQY1qoUuWGQqScWzfH LT8M+0IUQpugdVWLnnc/4bKcK5EvUdl4cjfqKsgLGqcv1msc/vWp9MCt5gmeKtTA qB1G+Kblzb3cQiScfBKdZ+Sz6y30gZyPNZPBAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUIMvhG7zTClMlUIM2h4p9wT1FrnowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0lNdmhHN3pUQ2xNbFVJTTJo NHA5d1QxRnJuby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAS0 sUAwDQYJKoZIhvcNAQELBQADggEBACDYhd1wh5+R26OhMRGnPY4MNpD4lBKzWbyh nt6aGOGzaDvhp+rHvhEDfqMsfWh6hxLxmLva9l50N3wbjXhov8oKRmBunLgxOx3Y qiwFxguucDalJqtr9fyB/GI55K2UmfjiAqtsSi3Fv+qg+MiaEU9hBKpNGC8o39PW HccPXulZFjq4CKPlMV6zO9I0g1sGCIeRjLPkTlPwZTNyPZpSaI3O+dpRUY33VZ/t u23f+RNFLEFDcEZ1IsbTXrvTJ8WrCdK3b9BwwsXlOU1V+PwjUbKIWBVRBQeY5H0E uVGr7FGfuTnwYkmFCKpLYeQLuC5vwAB/No4U+xhwrc81EambIaE= -----END CERTIFICATE-----Generated at Fri Apr 18 22:59:11 2025 by rpki-client