$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zjvr24gtKgToJagFXogohNabCr8.roa File: zjvr24gtKgToJagFXogohNabCr8.roa (raw, json) Hash identifier: E+8BMn0nuLglfpcxAiAfPZg9E+3zu21SuR1bCsIOjYc= Subject key identifier: CE:3B:EB:DB:88:2D:2A:04:E8:25:A8:05:5E:88:28:84:D6:9B:0A:BF Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3395 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zjvr24gtKgToJagFXogohNabCr8.roa Signing time: Mon 10 Feb 2025 13:51:34 +0000 ROA not before: Mon 10 Feb 2025 13:51:34 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.194.224.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 06:18:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13205 (0x3395) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:51:34 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CE3BEBDB882D2A04E825A8055E882884D69B0ABF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d4:f2:c7:73:f2:8d:54:84:a3:74:38:45:15: 09:b4:3c:0c:95:b7:5b:b9:c7:3c:dc:1f:9d:4f:82: 09:bb:e3:a9:65:96:b9:15:d8:18:3b:91:0d:62:54: 42:09:d6:04:29:a2:24:10:31:7a:50:b0:4b:37:ff: 6b:63:54:79:db:fe:32:d9:cf:48:7d:82:0b:81:44: 11:7d:1b:08:1c:79:98:8a:26:73:d3:3d:2d:b9:26: 8a:5a:8e:48:91:58:fc:e4:20:83:fc:9e:60:b2:30: 47:41:56:c1:da:96:0d:94:f0:29:fe:8b:8b:6f:c9: f4:b0:57:06:2e:4e:82:b6:13:7a:94:9c:e3:0c:0e: df:a9:fa:5f:57:3f:01:7b:41:72:76:3d:b7:07:e3: 00:70:07:7f:b2:3a:03:d6:28:2a:d4:dc:e6:17:1d: ac:21:4d:6d:af:0e:70:b9:c2:5d:b7:04:6d:28:c1: c3:4c:20:a0:b3:d8:79:c5:eb:02:33:93:58:14:b1: 7f:00:62:82:af:e7:29:6f:6e:77:22:5a:cc:94:99: f1:0b:2b:2a:ed:53:0b:f5:d0:90:09:8d:88:f6:8b: 3e:83:b4:36:2e:97:c8:87:00:ea:50:70:cb:af:25: 9b:2b:b1:66:dd:69:ea:45:db:aa:4d:0b:8d:82:41: a2:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:3B:EB:DB:88:2D:2A:04:E8:25:A8:05:5E:88:28:84:D6:9B:0A:BF X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zjvr24gtKgToJagFXogohNabCr8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.224.0/22 Signature Algorithm: sha256WithRSAEncryption 6c:72:28:4e:e1:80:55:bf:f0:09:15:f8:e9:32:7a:37:61:7a: 14:df:69:b0:e7:56:53:07:7c:8c:75:0b:7b:cd:b9:45:da:51: a9:f6:32:f7:ba:a2:9c:20:16:67:32:90:d1:18:d8:3b:94:be: a0:16:c1:d4:fe:6b:41:b1:0e:b7:a7:41:6a:e5:d4:05:6b:5d: 91:7c:15:9e:38:74:fa:4c:70:ab:1c:d4:38:86:c2:10:2f:9e: cc:46:8a:38:0e:2f:1c:58:44:ba:96:d6:26:70:b4:dc:7c:ec: 89:af:c0:83:20:6f:88:e0:c9:53:d7:83:14:e7:e5:0d:53:82: 37:d5:58:ae:c5:a4:87:ab:cb:cf:f0:90:68:de:cf:20:06:29: cc:cb:d6:c5:b3:0d:34:a9:05:68:11:26:08:da:b2:a4:7e:8f: 8d:c7:54:48:db:58:8a:a0:78:c5:7a:a1:ac:24:66:13:18:7e: 6f:78:c0:6c:18:e0:da:df:ad:64:ec:c2:fd:29:ff:f9:a4:71: 5b:73:fa:3e:e0:04:4f:73:b7:27:f7:d4:8c:ac:5e:83:c1:ff: 93:2f:f9:f0:df:f0:6a:66:a6:c1:c1:b6:5f:1d:d2:6d:7d:2f: 77:a8:6c:99:ba:9a:f9:70:34:e5:93:42:e0:1f:f8:f3:ba:72: 73:74:80:a3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICM5UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUxMzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENFM0JFQkRCODgyRDJB MDRFODI1QTgwNTVFODgyODg0RDY5QjBBQkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDW1PLHc/KNVISjdDhFFQm0PAyVt1u5xzzcH51Pggm746lllrkV 2Bg7kQ1iVEIJ1gQpoiQQMXpQsEs3/2tjVHnb/jLZz0h9gguBRBF9GwgceZiKJnPT PS25JopajkiRWPzkIIP8nmCyMEdBVsHalg2U8Cn+i4tvyfSwVwYuToK2E3qUnOMM Dt+p+l9XPwF7QXJ2PbcH4wBwB3+yOgPWKCrU3OYXHawhTW2vDnC5wl23BG0owcNM IKCz2HnF6wIzk1gUsX8AYoKv5ylvbnciWsyUmfELKyrtUwv10JAJjYj2iz6DtDYu l8iHAOpQcMuvJZsrsWbdaepF26pNC42CQaKLAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUzjvr24gtKgToJagFXogohNabCr8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3pqdnIyNGd0S2dUb0phZ0ZY b2dvaE5hYkNyOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wuAwDQYJKoZIhvcNAQELBQADggEBAGxyKE7hgFW/8AkV+OkyejdhehTfabDnVlMH fIx1C3vNuUXaUan2Mve6opwgFmcykNEY2DuUvqAWwdT+a0GxDrenQWrl1AVrXZF8 FZ44dPpMcKsc1DiGwhAvnsxGijgOLxxYRLqW1iZwtNx87ImvwIMgb4jgyVPXgxTn 5Q1TgjfVWK7FpIery8/wkGjezyAGKczL1sWzDTSpBWgRJgjasqR+j43HVEjbWIqg eMV6oawkZhMYfm94wGwY4NrfrWTswv0p//mkcVtz+j7gBE9ztyf31IysXoPB/5Mv +fDf8GpmpsHBtl8d0m19L3eobJm6mvlwNOWTQuAf+PO6cnN0gKM= -----END CERTIFICATE-----Generated at Wed Apr 23 04:49:13 2025 by rpki-client