$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XNIZHPVIUxLgCuuW1E9dD6ikclA.roa File: XNIZHPVIUxLgCuuW1E9dD6ikclA.roa (raw, json) Hash identifier: P2rsjUvwJNl6XJpoOXp4La/GJpju++ZH/Au4N0jwA1k= Subject key identifier: 5C:D2:19:1C:F5:48:53:12:E0:0A:EB:96:D4:4F:5D:0F:A8:A4:72:50 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3576 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XNIZHPVIUxLgCuuW1E9dD6ikclA.roa Signing time: Mon 10 Feb 2025 13:53:22 +0000 ROA not before: Mon 10 Feb 2025 13:53:22 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 180.177.144.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 01:48:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13686 (0x3576) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:53:22 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5CD2191CF5485312E00AEB96D44F5D0FA8A47250 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:6c:92:7d:5f:f1:20:a2:1c:09:8d:f2:38:89: 86:9f:80:09:f9:34:71:5f:6b:89:e3:7b:ca:93:3b: 17:08:cb:09:08:8c:d9:ec:72:d0:ab:00:95:ab:8e: 6f:34:f1:d6:d3:c4:f6:9a:8f:a8:7e:6d:63:18:38: b2:49:a3:ce:75:b6:4f:a5:76:39:26:aa:7c:89:53: fb:05:e7:01:e9:83:ba:e0:ff:2f:51:7d:33:52:e0: cc:58:81:6d:d3:eb:6f:d7:95:e1:97:14:06:dc:45: 03:fe:3f:3f:73:8c:8a:5b:1d:00:3d:9a:39:2e:58: c3:75:90:2c:86:71:d7:98:f9:1f:42:1e:8d:46:ac: 20:b4:27:81:87:44:b2:60:63:51:e3:7f:2d:61:8f: 3b:3a:14:4d:e2:fd:84:59:12:f1:73:1a:d5:a4:2f: 70:00:39:a9:3f:63:ec:54:fc:0d:2b:f6:28:d5:17: b1:0e:ce:3f:e0:e9:4d:52:13:6a:b9:07:8f:6b:4e: b6:df:74:09:49:02:1b:bb:a7:76:40:7a:17:d2:82: be:42:8b:c3:f9:75:14:81:ac:6e:09:33:17:65:f0: 3c:67:c6:83:8d:02:3e:f9:a7:87:c0:02:d8:c9:de: c1:22:3f:06:6d:e3:e0:85:57:18:62:a9:2b:46:77: dc:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:D2:19:1C:F5:48:53:12:E0:0A:EB:96:D4:4F:5D:0F:A8:A4:72:50 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XNIZHPVIUxLgCuuW1E9dD6ikclA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.177.144.0/21 Signature Algorithm: sha256WithRSAEncryption 83:dc:86:be:68:2b:6a:1a:b6:2d:5f:2f:81:b8:53:bd:07:d3: 2a:c8:50:29:b0:8f:b8:5f:29:2f:97:14:25:15:39:20:0c:8e: ec:c2:40:0c:56:4c:0f:11:8a:63:1a:6f:4f:35:5c:d3:21:b9: 17:f3:e0:9c:18:16:43:05:47:1d:5f:b6:5a:37:71:6a:f6:18: d1:db:47:74:16:ab:19:2b:bc:d1:d9:32:aa:87:7c:61:59:55: aa:f2:fd:46:fc:5d:c3:bd:5b:1a:ee:3b:be:52:4d:67:b9:f9: 6c:eb:8d:b4:50:7b:24:10:62:df:02:8f:b7:cf:e9:62:dc:5b: 76:5c:72:98:be:96:4f:e4:d7:43:99:a6:bd:26:92:71:3a:de: 03:37:a9:1c:0d:4e:09:cd:8d:24:12:3e:3a:dd:49:18:7b:5e: fa:9f:68:ed:42:28:93:28:b9:7c:8c:7b:97:26:0a:bb:f8:91: 7a:e2:4a:0d:36:dc:9e:1c:99:bb:f9:88:a0:5d:50:a1:1e:53: c3:d9:ae:25:ac:6d:07:d4:1a:2d:09:5e:3a:69:6a:da:0c:30: 92:09:98:27:41:9a:97:9e:87:da:be:da:f9:51:b0:33:7c:eb: 94:a3:26:62:5f:84:e9:57:83:77:b3:f8:a9:dd:51:1c:74:b2: ff:21:33:d3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUzMjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVDRDIxOTFDRjU0ODUz MTJFMDBBRUI5NkQ0NEY1RDBGQThBNDcyNTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/bJJ9X/EgohwJjfI4iYafgAn5NHFfa4nje8qTOxcIywkIjNns ctCrAJWrjm808dbTxPaaj6h+bWMYOLJJo851tk+ldjkmqnyJU/sF5wHpg7rg/y9R fTNS4MxYgW3T62/XleGXFAbcRQP+Pz9zjIpbHQA9mjkuWMN1kCyGcdeY+R9CHo1G rCC0J4GHRLJgY1Hjfy1hjzs6FE3i/YRZEvFzGtWkL3AAOak/Y+xU/A0r9ijVF7EO zj/g6U1SE2q5B49rTrbfdAlJAhu7p3ZAehfSgr5Ci8P5dRSBrG4JMxdl8DxnxoON Aj75p4fAAtjJ3sEiPwZt4+CFVxhiqStGd9zrAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUXNIZHPVIUxLgCuuW1E9dD6ikclAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1hOSVpIUFZJVXhMZ0N1dVcx RTlkRDZpa2NsQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 sZAwDQYJKoZIhvcNAQELBQADggEBAIPchr5oK2oati1fL4G4U70H0yrIUCmwj7hf KS+XFCUVOSAMjuzCQAxWTA8RimMab081XNMhuRfz4JwYFkMFRx1ftlo3cWr2GNHb R3QWqxkrvNHZMqqHfGFZVary/Ub8XcO9WxruO75STWe5+WzrjbRQeyQQYt8Cj7fP 6WLcW3Zccpi+lk/k10OZpr0mknE63gM3qRwNTgnNjSQSPjrdSRh7XvqfaO1CKJMo uXyMe5cmCrv4kXriSg023J4cmbv5iKBdUKEeU8PZriWsbQfUGi0JXjppatoMMJIJ mCdBmpeeh9q+2vlRsDN865SjJmJfhOlXg3ez+KndURx0sv8hM9M= -----END CERTIFICATE-----Generated at Wed Apr 23 00:29:38 2025 by rpki-client