$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ZGOWPdQKTYZu8gVP76LyhrpcwkQ.roa File: ZGOWPdQKTYZu8gVP76LyhrpcwkQ.roa (raw, json) Hash identifier: R97DxY/rsYecIyoDylOE1lyW6ebvGthuQpysqiVBmRY= Subject key identifier: 64:63:96:3D:D4:0A:4D:86:6E:F2:05:4F:EF:A2:F2:86:BA:5C:C2:44 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 36D3 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ZGOWPdQKTYZu8gVP76LyhrpcwkQ.roa Signing time: Mon 10 Feb 2025 13:54:43 +0000 ROA not before: Mon 10 Feb 2025 13:54:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 2407:4d00:ff06::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14035 (0x36d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:54:43 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6463963DD40A4D866EF2054FEFA2F286BA5CC244 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:fc:77:25:87:55:f7:21:94:36:5f:5e:91:d2: 05:71:f9:f6:9c:2a:82:bb:22:e8:70:27:7d:5f:b4: c6:f3:b8:31:f6:79:9d:57:dc:67:ac:61:e6:ec:68: 53:70:8f:7b:ba:b2:39:a1:2b:e5:ef:f4:8e:d5:96: 4e:8c:bf:d0:1e:26:50:c0:26:2c:fd:c5:2f:87:7a: c4:64:0b:3c:b2:6c:47:03:b7:3b:b4:af:4f:03:fd: 6c:c9:6d:25:8c:c8:59:9f:f2:91:ca:78:99:a0:83: d5:29:c7:fa:6d:bb:d9:a8:83:18:0c:dd:a1:a3:d4: fa:43:01:d8:46:ce:90:c4:dd:23:56:00:16:58:05: 9e:41:9a:7f:28:65:9e:1d:87:37:53:84:3e:90:53: 9e:69:a1:08:5c:ba:8a:12:09:47:8c:7f:2c:47:a3: 62:55:9a:91:34:d3:6b:23:1e:2e:d8:95:e8:af:13: de:f2:92:60:60:45:cf:d3:c7:ad:e3:15:4d:45:12: cb:0b:33:75:d5:1a:2c:1a:f8:05:54:00:a7:26:46: b0:f1:aa:99:16:e1:16:99:27:43:58:7b:e8:2d:ad: 34:69:8d:0d:ad:9f:bd:cb:1a:53:9c:ce:09:2d:be: 01:5e:6a:fe:38:a9:49:11:21:1d:f8:2c:0e:ba:a5: 47:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:63:96:3D:D4:0A:4D:86:6E:F2:05:4F:EF:A2:F2:86:BA:5C:C2:44 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ZGOWPdQKTYZu8gVP76LyhrpcwkQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:4d00:ff06::/48 Signature Algorithm: sha256WithRSAEncryption 6e:9c:ef:24:8f:9d:68:75:dd:e2:d4:58:b4:12:2a:3d:44:09: e3:6b:be:df:0a:70:41:a3:a1:20:cc:24:ff:d8:ec:84:db:f7: 75:f9:47:ef:fe:22:bb:45:26:d7:a6:3c:5e:d9:1b:ef:59:58: 85:b6:d1:c9:e3:f7:cc:64:3d:ce:49:55:a8:f1:36:f2:cc:62: dd:46:d3:18:c9:12:48:d9:a8:a5:f8:84:0a:44:b4:a3:17:2c: a3:fa:6a:b1:9a:09:4b:2e:0f:69:96:1c:44:dc:c6:e5:6b:2f: 73:a3:0b:1b:4f:73:b6:78:3d:24:0e:fa:e4:ca:c8:37:46:92: 7c:9a:4e:0c:fc:5a:88:58:17:c8:46:a8:a8:fc:4a:95:20:98: 4a:e3:86:79:16:4b:fb:0a:bc:4d:9e:16:f8:17:a3:08:65:7d: 15:26:67:33:1e:e8:0e:cc:49:3e:9b:2f:90:5b:a7:66:32:d2: 4c:19:68:49:78:fe:4f:c1:ed:4a:e6:86:b0:10:e3:97:3f:7d: 67:11:f6:e1:d4:f0:b9:c7:72:d0:7f:22:7c:3b:d7:58:85:1a: 97:53:c8:8c:ae:45:1d:cc:3e:2a:01:37:66:de:d9:f0:61:d9: 57:d0:b7:0e:f2:38:7c:e8:9a:b3:b8:5b:76:e9:63:8e:c4:7d: 85:ee:55:7f -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICNtMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzU0NDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY0NjM5NjNERDQwQTRE ODY2RUYyMDU0RkVGQTJGMjg2QkE1Q0MyNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDA/Hclh1X3IZQ2X16R0gVx+facKoK7IuhwJ31ftMbzuDH2eZ1X 3GesYebsaFNwj3u6sjmhK+Xv9I7Vlk6Mv9AeJlDAJiz9xS+HesRkCzyybEcDtzu0 r08D/WzJbSWMyFmf8pHKeJmgg9Upx/ptu9mogxgM3aGj1PpDAdhGzpDE3SNWABZY BZ5Bmn8oZZ4dhzdThD6QU55poQhcuooSCUeMfyxHo2JVmpE002sjHi7YleivE97y kmBgRc/Tx63jFU1FEssLM3XVGiwa+AVUAKcmRrDxqpkW4RaZJ0NYe+gtrTRpjQ2t n73LGlOczgktvgFeav44qUkRIR34LA66pUeDAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUZGOWPdQKTYZu8gVP76LyhrpcwkQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1pHT1dQZFFLVFladThnVlA3 Nkx5aHJwY3drUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk B00A/wYwDQYJKoZIhvcNAQELBQADggEBAG6c7ySPnWh13eLUWLQSKj1ECeNrvt8K cEGjoSDMJP/Y7ITb93X5R+/+IrtFJtemPF7ZG+9ZWIW20cnj98xkPc5JVajxNvLM Yt1G0xjJEkjZqKX4hApEtKMXLKP6arGaCUsuD2mWHETcxuVrL3OjCxtPc7Z4PSQO +uTKyDdGknyaTgz8WohYF8hGqKj8SpUgmErjhnkWS/sKvE2eFvgXowhlfRUmZzMe 6A7MST6bL5Bbp2Yy0kwZaEl4/k/B7UrmhrAQ45c/fWcR9uHU8LnHctB/Inw711iF GpdTyIyuRR3MPioBN2be2fBh2VfQtw7yOHzomrO4W3bpY47EfYXuVX8= -----END CERTIFICATE-----Generated at Fri Apr 18 23:11:19 2025 by rpki-client