$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LjWtoPS0CEtqrNe1qrDiH7KTM20.roa File: LjWtoPS0CEtqrNe1qrDiH7KTM20.roa (raw, json) Hash identifier: Ym/BeYD2IE2tQFAN9EWpCxQB4sghTg5rRbA9Jpgq8OY= Subject key identifier: 2E:35:AD:A0:F4:B4:08:4B:6A:AC:D7:B5:AA:B0:E2:1F:B2:93:33:6D Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 363B Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LjWtoPS0CEtqrNe1qrDiH7KTM20.roa Signing time: Mon 10 Feb 2025 13:54:07 +0000 ROA not before: Mon 10 Feb 2025 13:54:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 211.76.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 22:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13883 (0x363b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:54:07 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2E35ADA0F4B4084B6AACD7B5AAB0E21FB293336D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:aa:c8:12:c3:12:d0:9d:78:0f:f3:80:a1:57: af:24:fb:0d:f7:3d:55:fc:4d:f8:05:68:cc:1c:19: e4:62:1f:88:9b:7c:09:ec:c9:ee:cc:27:52:de:db: 88:25:0a:14:21:13:93:50:d1:3a:dd:6f:29:92:5e: e2:e3:8c:89:92:ed:90:79:16:a2:ce:b0:d1:f5:04: 4a:99:7f:e3:bc:8d:ad:84:dd:7a:f8:a9:60:fa:4a: 77:54:0e:7d:dd:c9:55:59:d2:e7:11:e2:cd:b8:c2: 5d:62:cd:f2:7d:3b:41:83:a1:a1:80:7c:bf:de:45: 15:1b:b5:a5:4b:7e:a7:b0:92:fe:44:80:f5:1d:9d: 96:05:98:da:96:de:f0:1f:d8:78:dc:55:14:83:d2: 17:ad:27:af:2e:5b:4d:52:57:45:fb:69:a7:c7:66: 9b:1d:73:32:14:a4:d2:29:08:44:f5:bd:ea:74:d6: e7:57:84:a7:8b:96:c3:ce:ac:f2:67:50:df:6e:61: d4:d6:d5:46:74:b3:66:7d:5f:9b:39:63:d7:15:a5: cb:07:97:a9:c9:11:4c:53:d8:a7:72:bf:c4:fe:84: 89:2b:47:81:fe:d6:1c:65:0a:6f:b1:09:01:e5:29: 7a:b0:38:97:b6:d2:96:d3:0f:63:d6:ec:42:3e:48: 27:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:35:AD:A0:F4:B4:08:4B:6A:AC:D7:B5:AA:B0:E2:1F:B2:93:33:6D X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LjWtoPS0CEtqrNe1qrDiH7KTM20.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.119.0/24 Signature Algorithm: sha256WithRSAEncryption 96:c7:ec:09:e5:76:df:cb:8a:6e:8a:65:56:96:79:07:7f:94: df:05:e1:e6:7f:c2:3e:fb:08:d8:f4:2b:f8:0c:e5:51:0e:aa: cb:fb:e0:f7:57:e5:8f:4d:3c:eb:13:64:4e:c7:fe:7f:d7:93: 4a:8f:18:67:f6:23:8c:ef:8a:f5:0a:a1:c0:60:42:97:95:64: 97:bc:98:62:02:f1:d7:4f:db:29:9c:b4:d4:d5:1c:ee:7a:0c: dc:83:e7:33:8e:6b:43:f4:f8:b2:f5:44:9e:0f:d4:ad:c3:c7: 54:aa:b3:66:87:6f:a3:ff:21:e8:cd:75:b7:37:07:58:39:96: 86:93:e4:cb:bd:5f:f7:ef:b6:73:74:48:6b:cb:2b:cc:eb:ec: d4:28:80:14:a4:bb:54:ef:5a:4e:5f:24:f6:78:10:a1:4a:d2: 00:19:15:04:40:26:50:0a:0a:11:a2:43:4d:ef:51:6a:57:8c: e0:07:af:da:9d:f4:20:b7:30:dc:52:93:60:2c:3a:62:6c:fd: 4f:35:73:82:e3:05:e7:18:05:74:1d:48:74:b4:16:f0:ef:8a: 9f:7e:7d:d3:05:59:6b:4b:15:21:0e:47:f4:3a:d9:c4:63:fa: ad:38:e0:c2:76:68:cd:b6:0f:71:f1:4b:cb:37:af:91:f0:cc: 50:bf:40:ab -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNjswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzU0MDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJFMzVBREEwRjRCNDA4 NEI2QUFDRDdCNUFBQjBFMjFGQjI5MzMzNkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+qsgSwxLQnXgP84ChV68k+w33PVX8TfgFaMwcGeRiH4ibfAns ye7MJ1Le24glChQhE5NQ0TrdbymSXuLjjImS7ZB5FqLOsNH1BEqZf+O8ja2E3Xr4 qWD6SndUDn3dyVVZ0ucR4s24wl1izfJ9O0GDoaGAfL/eRRUbtaVLfqewkv5EgPUd nZYFmNqW3vAf2HjcVRSD0hetJ68uW01SV0X7aafHZpsdczIUpNIpCET1vep01udX hKeLlsPOrPJnUN9uYdTW1UZ0s2Z9X5s5Y9cVpcsHl6nJEUxT2Kdyv8T+hIkrR4H+ 1hxlCm+xCQHlKXqwOJe20pbTD2PW7EI+SCefAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQULjWtoPS0CEtqrNe1qrDiH7KTM20wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0xqV3RvUFMwQ0V0cXJOZTFx ckRpSDdLVE0yMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADT THcwDQYJKoZIhvcNAQELBQADggEBAJbH7Anldt/Lim6KZVaWeQd/lN8F4eZ/wj77 CNj0K/gM5VEOqsv74PdX5Y9NPOsTZE7H/n/Xk0qPGGf2I4zvivUKocBgQpeVZJe8 mGIC8ddP2ymctNTVHO56DNyD5zOOa0P0+LL1RJ4P1K3Dx1Sqs2aHb6P/IejNdbc3 B1g5loaT5Mu9X/fvtnN0SGvLK8zr7NQogBSku1TvWk5fJPZ4EKFK0gAZFQRAJlAK ChGiQ03vUWpXjOAHr9qd9CC3MNxSk2AsOmJs/U81c4LjBecYBXQdSHS0FvDvip9+ fdMFWWtLFSEOR/Q62cRj+q044MJ2aM22D3HxS8s3r5HwzFC/QKs= -----END CERTIFICATE-----Generated at Fri Apr 18 22:47:27 2025 by rpki-client