$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-IG3dxZfcysJ1tBg7Yg_jK89CBQ.roa File: -IG3dxZfcysJ1tBg7Yg_jK89CBQ.roa (raw, json) Hash identifier: //6cS8cx6ChANyq0NDkNj913uyyWuermtBdQsnD17mw= Subject key identifier: F8:81:B7:77:16:5F:73:2B:09:D6:D0:60:ED:88:3F:8C:AF:3D:08:14 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 347D Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-IG3dxZfcysJ1tBg7Yg_jK89CBQ.roa Signing time: Mon 10 Feb 2025 13:52:26 +0000 ROA not before: Mon 10 Feb 2025 13:52:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.232.56.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13437 (0x347d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:52:26 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F881B777165F732B09D6D060ED883F8CAF3D0814 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:7b:fe:4a:88:39:6c:70:d5:ee:36:23:b2:3a: 6f:18:02:f1:a0:b4:aa:c6:f5:4a:04:6e:39:a7:77: 98:a5:00:aa:84:56:e8:91:92:4f:fc:c4:a2:f5:ef: c6:1f:12:8c:2f:4a:12:8d:52:2e:25:e9:32:eb:22: ee:e0:1b:04:89:0c:80:5d:47:b8:ae:6f:ae:a6:3c: 57:75:d1:dc:fe:36:12:29:6e:92:9a:24:f1:0b:ce: 51:f6:26:0e:57:c5:13:7b:cd:cd:4e:e1:fc:eb:7e: 11:f9:79:97:67:9e:db:b8:bb:62:58:77:98:3b:72: 31:76:f0:1d:63:5c:75:7b:47:36:94:cf:66:be:fd: e4:5b:bc:5e:45:7d:95:85:21:8d:52:b9:be:6f:b4: ee:26:2e:e0:f7:c0:d9:bc:be:51:b2:80:96:b2:9a: 89:c7:90:19:05:92:3c:39:a8:6c:85:90:4e:86:96: d1:74:5a:e3:d9:b8:82:c1:a3:b1:b0:15:85:42:c5: 57:a7:67:89:6e:84:d2:4e:a6:8a:b4:8c:80:73:78: 83:41:71:60:8c:52:95:07:2e:ec:b0:6e:21:2d:ee: 25:d0:c8:8e:a3:79:75:e5:b7:5f:64:d6:3e:14:34: 3b:64:70:aa:e3:9b:fc:d7:98:5e:67:35:b6:4e:5e: ad:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:81:B7:77:16:5F:73:2B:09:D6:D0:60:ED:88:3F:8C:AF:3D:08:14 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-IG3dxZfcysJ1tBg7Yg_jK89CBQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.56.0/21 Signature Algorithm: sha256WithRSAEncryption 33:2f:41:34:60:4c:6d:70:85:d1:93:86:5d:39:cd:a5:b4:72: a5:a5:ba:1e:a4:40:f4:95:4d:98:11:61:44:61:9b:d0:96:91: 35:5a:8f:59:ec:c7:fe:df:2d:b3:21:76:af:c7:7e:81:4e:49: 37:33:3d:83:94:b6:6c:8d:cd:fb:b3:09:86:4b:38:1d:4d:26: 0c:b7:cc:8c:9d:fc:93:09:a6:56:1b:0f:60:c3:28:4d:cc:7b: 76:57:52:c6:dd:0b:33:78:2a:b0:57:69:dd:4f:54:ee:4c:d8: 05:73:fa:91:b0:f8:22:b8:62:b5:04:4d:04:28:49:c6:b2:2a: 35:11:75:fc:3a:d5:1f:04:cf:1c:03:cb:2f:3b:fc:fd:3e:1e: 21:4d:57:f0:4b:11:45:4f:04:0f:5d:5c:39:28:ff:33:8d:3c: c8:7e:1e:08:4d:59:fc:02:43:70:c5:85:e8:35:6b:46:77:42: f7:85:8c:b7:9b:da:2f:3e:d9:6b:d7:9a:ec:28:d0:5a:9f:c7: ba:8c:ca:d1:e1:15:2b:9f:77:02:b6:a3:5c:a0:18:fa:56:a8: 71:95:7d:3b:2e:fc:b1:53:12:3a:21:5e:08:4a:2b:c3:0c:81: 1b:49:c1:88:35:79:47:3d:13:9d:52:ef:bd:fb:2d:5f:35:39: 4b:2d:92:48 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNH0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUyMjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY4ODFCNzc3MTY1Rjcz MkIwOUQ2RDA2MEVEODgzRjhDQUYzRDA4MTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCZe/5KiDlscNXuNiOyOm8YAvGgtKrG9UoEbjmnd5ilAKqEVuiR kk/8xKL178YfEowvShKNUi4l6TLrIu7gGwSJDIBdR7iub66mPFd10dz+NhIpbpKa JPELzlH2Jg5XxRN7zc1O4fzrfhH5eZdnntu4u2JYd5g7cjF28B1jXHV7RzaUz2a+ /eRbvF5FfZWFIY1Sub5vtO4mLuD3wNm8vlGygJaymonHkBkFkjw5qGyFkE6GltF0 WuPZuILBo7GwFYVCxVenZ4luhNJOpoq0jIBzeINBcWCMUpUHLuywbiEt7iXQyI6j eXXlt19k1j4UNDtkcKrjm/zXmF5nNbZOXq2tAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU+IG3dxZfcysJ1tBg7Yg/jK89CBQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLy1JRzNkeFpmY3lzSjF0Qmc3 WWdfaks4OUNCUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6DgwDQYJKoZIhvcNAQELBQADggEBADMvQTRgTG1whdGThl05zaW0cqWluh6kQPSV TZgRYURhm9CWkTVaj1nsx/7fLbMhdq/HfoFOSTczPYOUtmyNzfuzCYZLOB1NJgy3 zIyd/JMJplYbD2DDKE3Me3ZXUsbdCzN4KrBXad1PVO5M2AVz+pGw+CK4YrUETQQo ScayKjURdfw61R8EzxwDyy87/P0+HiFNV/BLEUVPBA9dXDko/zONPMh+HghNWfwC Q3DFheg1a0Z3QveFjLeb2i8+2WvXmuwo0Fqfx7qMytHhFSufdwK2o1ygGPpWqHGV fTsu/LFTEjohXghKK8MMgRtJwYg1eUc9E51S7737LV81OUstkkg= -----END CERTIFICATE-----Generated at Wed Feb 19 22:09:43 2025 by rpki-client