$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-Hj76MaMhtT0okIkUWwXNvBKdrM.roa File: -Hj76MaMhtT0okIkUWwXNvBKdrM.roa (raw, json) Hash identifier: 19jhoQB2PjbM1Jehx6f6Az6LO8ybwt+0YYKlmp0U8HE= Subject key identifier: F8:78:FB:E8:C6:8C:86:D4:F4:A2:42:24:51:6C:17:36:F0:4A:76:B3 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3624 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-Hj76MaMhtT0okIkUWwXNvBKdrM.roa Signing time: Mon 10 Feb 2025 13:54:01 +0000 ROA not before: Mon 10 Feb 2025 13:54:01 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13860 (0x3624) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:54:01 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F878FBE8C68C86D4F4A24224516C1736F04A76B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a0:46:ad:a6:9f:69:2e:47:11:a3:9e:98:37: d0:ad:31:85:22:6e:1d:9f:81:3b:a2:91:45:ea:2b: 87:61:3e:c5:e1:de:ec:4e:12:7b:8f:cd:9b:46:ff: 69:17:90:53:cd:86:59:88:90:af:cc:a2:b4:b2:d8: 81:e7:25:bb:af:d1:ea:ce:ba:a4:17:bc:66:c9:18: 4f:62:7a:0e:f0:fa:27:a0:b1:32:4d:20:4c:36:e0: d0:04:56:f7:d0:a6:1f:36:93:fa:87:93:08:bc:51: 19:e8:3b:56:c5:e4:3c:d8:11:48:ea:c9:c6:b0:a0: ce:c1:5d:e3:3a:21:37:0e:cf:ac:76:56:c5:30:01: 9b:24:48:22:c1:a5:12:70:09:71:c8:e7:5c:3e:6e: de:66:10:55:ff:c9:16:82:f2:01:64:32:9f:dd:ab: e8:23:b0:3a:ac:49:f1:3a:e9:e3:4d:c5:92:8a:d0: a5:44:bb:0c:79:b3:ae:a9:fd:06:ba:8d:79:94:67: 39:82:1b:1e:0c:10:85:ce:8c:38:7f:30:30:97:9f: 28:39:a5:96:36:fc:d0:5b:17:cb:0d:71:9f:49:3e: 73:1b:28:d4:ca:ee:8b:e2:d2:2c:9a:99:2a:8e:cb: 1a:07:a0:68:2d:5e:97:ff:6c:6c:eb:a5:b1:70:59: 9c:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:78:FB:E8:C6:8C:86:D4:F4:A2:42:24:51:6C:17:36:F0:4A:76:B3 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-Hj76MaMhtT0okIkUWwXNvBKdrM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.215.0/24 Signature Algorithm: sha256WithRSAEncryption 05:d7:82:3d:95:74:b8:42:14:82:d5:b6:26:3b:eb:36:92:0a: ce:f8:cf:d2:84:c4:fb:66:8d:cc:08:4e:da:15:de:01:5f:a0: ae:91:d7:e0:c8:0f:b9:51:fe:54:cf:2d:8c:39:c3:4e:b5:30: 0d:f8:6e:cb:1e:9c:cf:27:c6:f4:ca:fe:05:14:ab:8f:11:6b: e0:ed:85:6a:27:fe:9b:15:e5:8e:8b:da:37:29:8e:fb:04:dd: a0:7f:fc:b1:c7:fe:3b:fc:47:3e:97:17:f2:87:5e:61:55:52: 34:c1:8f:9e:38:ba:7c:20:a8:c4:e3:70:49:ed:60:a0:b3:90: 93:45:46:cc:05:9f:f1:1e:b8:f9:fc:2c:a7:9e:00:ea:8b:2f: 66:4f:f0:85:7c:d0:c9:3e:9d:ac:2a:5c:12:41:d6:87:58:9e: f1:73:ef:9e:2d:18:8d:ef:51:62:7a:e6:c0:bc:2d:cc:40:d7: 55:8b:92:30:6a:a4:9d:80:3a:e2:a1:c2:9a:91:d9:7a:43:a9: a0:1a:c9:9b:a7:c3:f1:c2:08:4f:e2:72:03:ee:a7:df:9d:3e: ce:22:eb:4c:c6:1a:df:e8:6f:a9:5b:21:5a:72:ba:49:59:dc: 4f:aa:32:cc:87:4b:d6:f9:e2:e6:8e:a0:25:10:01:49:92:ac: 62:ee:c4:42 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNiQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzU0MDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY4NzhGQkU4QzY4Qzg2 RDRGNEEyNDIyNDUxNkMxNzM2RjA0QTc2QjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2oEatpp9pLkcRo56YN9CtMYUibh2fgTuikUXqK4dhPsXh3uxO EnuPzZtG/2kXkFPNhlmIkK/MorSy2IHnJbuv0erOuqQXvGbJGE9ieg7w+iegsTJN IEw24NAEVvfQph82k/qHkwi8URnoO1bF5DzYEUjqycawoM7BXeM6ITcOz6x2VsUw AZskSCLBpRJwCXHI51w+bt5mEFX/yRaC8gFkMp/dq+gjsDqsSfE66eNNxZKK0KVE uwx5s66p/Qa6jXmUZzmCGx4MEIXOjDh/MDCXnyg5pZY2/NBbF8sNcZ9JPnMbKNTK 7ovi0iyamSqOyxoHoGgtXpf/bGzrpbFwWZwjAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU+Hj76MaMhtT0okIkUWwXNvBKdrMwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLy1Iajc2TWFNaHRUMG9rSWtV V3dYTnZCS2RyTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq AdcwDQYJKoZIhvcNAQELBQADggEBAAXXgj2VdLhCFILVtiY76zaSCs74z9KExPtm jcwITtoV3gFfoK6R1+DID7lR/lTPLYw5w061MA34bssenM8nxvTK/gUUq48Ra+Dt hWon/psV5Y6L2jcpjvsE3aB//LHH/jv8Rz6XF/KHXmFVUjTBj544unwgqMTjcEnt YKCzkJNFRswFn/EeuPn8LKeeAOqLL2ZP8IV80Mk+nawqXBJB1odYnvFz754tGI3v UWJ65sC8LcxA11WLkjBqpJ2AOuKhwpqR2XpDqaAayZunw/HCCE/icgPup9+dPs4i 60zGGt/ob6lbIVpyuklZ3E+qMsyHS9b54uaOoCUQAUmSrGLuxEI= -----END CERTIFICATE-----Generated at Wed Feb 19 22:03:57 2025 by rpki-client