$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wtX5ZfdzrBIiArN7GR4PakcKoP8.roa File: wtX5ZfdzrBIiArN7GR4PakcKoP8.roa (raw, json) Hash identifier: vEOyjhedrbqarCyfRNsejBENLRrXapvHgPiACd26pgw= Subject key identifier: C2:D5:F9:65:F7:73:AC:12:22:02:B3:7B:19:1E:0F:6A:47:0A:A0:FF Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 340D Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wtX5ZfdzrBIiArN7GR4PakcKoP8.roa Signing time: Mon 10 Feb 2025 13:52:02 +0000 ROA not before: Mon 10 Feb 2025 13:52:02 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.195.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13325 (0x340d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:52:02 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C2D5F965F773AC122202B37B191E0F6A470AA0FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:30:a8:76:2b:39:07:75:12:76:8c:34:95:5d: 6e:99:97:56:e6:92:14:f8:00:73:87:ee:2c:3f:99: 94:85:a1:8c:c4:a1:ea:a4:58:1a:8a:f7:6b:d3:ad: ee:4e:6a:15:fa:06:51:23:b1:9f:1b:4a:4e:67:40: 42:e7:48:ce:ff:43:fb:48:f9:5a:3b:e5:9a:d5:79: f7:69:8e:d4:5f:4e:7e:b9:82:5f:a2:75:72:55:ed: 74:6f:4a:35:e3:8c:4e:43:dc:d0:a2:0a:5f:04:fc: 6f:95:3e:03:a4:97:cf:1b:d9:7d:21:53:bb:01:6c: c5:6e:7e:14:f3:ec:5f:ad:4d:4b:9d:50:c0:21:6a: c9:74:a3:73:d1:fa:f0:8a:e5:6c:35:d0:92:e4:06: 4f:9f:99:7c:ca:8c:3b:d0:b2:46:ed:3c:6b:b8:60: 90:e1:43:56:d0:77:c3:39:c9:fb:0d:f3:fd:69:21: 87:5a:f8:a1:be:d4:5e:17:fa:9b:3d:9c:ce:e0:92: 37:9f:5b:c9:46:de:a8:9f:ca:1f:ba:00:e3:7a:61: ea:67:49:93:7c:0c:5e:e9:56:80:05:64:e0:68:50: 2e:68:f1:c1:e5:e3:9d:9e:b9:b2:28:cd:fd:2b:ca: e5:48:2d:52:ec:7c:9f:b5:5f:f9:b9:77:0b:d1:60: 2b:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:D5:F9:65:F7:73:AC:12:22:02:B3:7B:19:1E:0F:6A:47:0A:A0:FF X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wtX5ZfdzrBIiArN7GR4PakcKoP8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.179.0/24 Signature Algorithm: sha256WithRSAEncryption 95:3f:c1:08:f3:27:13:32:98:d4:a9:2f:8e:5c:42:87:fb:51: 6b:12:5f:e9:eb:9e:af:fc:7f:0a:09:73:5c:d4:03:1b:b9:75: e8:c5:d9:84:f2:86:88:3d:a7:1f:76:f4:09:87:b4:c5:e1:cc: 02:38:6c:f9:14:1d:78:f6:3d:9c:99:77:90:9e:d7:92:01:a2: 4c:f4:be:c6:ea:6d:f3:74:36:93:fe:4a:31:f4:77:77:1b:e1: 0a:e4:1a:fa:06:48:0d:bb:ee:45:41:32:2e:9e:bf:9c:cf:d4: f0:bd:a1:1f:12:a0:76:ee:8c:2b:83:ab:91:b7:b6:2d:15:ae: 66:99:da:f6:08:58:85:36:7b:65:07:49:e3:72:74:a5:6d:a6: b6:58:0f:9d:e5:e9:0e:70:2a:bf:1f:5d:5e:66:b3:fe:ba:7e: 91:b8:ec:09:b2:ee:c3:d4:ad:34:3a:3e:12:a2:14:a4:ac:30: 3c:9d:09:ad:32:83:74:ee:0e:46:4c:69:ef:0b:48:25:a8:48: 74:96:91:30:50:43:4f:bc:77:62:94:92:31:6f:59:1d:9b:1e: 07:4b:bb:97:1e:1c:49:b5:fa:32:83:e6:cc:9d:18:7c:55:86: 24:b8:dd:c8:68:cb:25:6a:aa:d0:2c:5a:7b:d6:a5:24:84:d0: be:c3:ea:92 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNA0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUyMDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMyRDVGOTY1Rjc3M0FD MTIyMjAyQjM3QjE5MUUwRjZBNDcwQUEwRkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwMKh2KzkHdRJ2jDSVXW6Zl1bmkhT4AHOH7iw/mZSFoYzEoeqk WBqK92vTre5OahX6BlEjsZ8bSk5nQELnSM7/Q/tI+Vo75ZrVefdpjtRfTn65gl+i dXJV7XRvSjXjjE5D3NCiCl8E/G+VPgOkl88b2X0hU7sBbMVufhTz7F+tTUudUMAh asl0o3PR+vCK5Ww10JLkBk+fmXzKjDvQskbtPGu4YJDhQ1bQd8M5yfsN8/1pIYda +KG+1F4X+ps9nM7gkjefW8lG3qifyh+6AON6YepnSZN8DF7pVoAFZOBoUC5o8cHl 452eubIozf0ryuVILVLsfJ+1X/m5dwvRYCvTAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUwtX5ZfdzrBIiArN7GR4PakcKoP8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3d0WDVaZmR6ckJJaUFyTjdH UjRQYWtjS29QOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB7 w7MwDQYJKoZIhvcNAQELBQADggEBAJU/wQjzJxMymNSpL45cQof7UWsSX+nrnq/8 fwoJc1zUAxu5dejF2YTyhog9px929AmHtMXhzAI4bPkUHXj2PZyZd5Ce15IBokz0 vsbqbfN0NpP+SjH0d3cb4QrkGvoGSA277kVBMi6ev5zP1PC9oR8SoHbujCuDq5G3 ti0VrmaZ2vYIWIU2e2UHSeNydKVtprZYD53l6Q5wKr8fXV5ms/66fpG47Amy7sPU rTQ6PhKiFKSsMDydCa0yg3TuDkZMae8LSCWoSHSWkTBQQ0+8d2KUkjFvWR2bHgdL u5ceHEm1+jKD5sydGHxVhiS43choyyVqqtAsWnvWpSSE0L7D6pI= -----END CERTIFICATE-----Generated at Fri Apr 18 23:00:30 2025 by rpki-client