$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0HS58wx2SCaBtVIFfuZ8kqECQow.roa File: 0HS58wx2SCaBtVIFfuZ8kqECQow.roa (raw, json) Hash identifier: uJ02HKA7LjgK4jYoggVXQJnCJBWJk3eJ+CwD+R+cZPA= Subject key identifier: D0:74:B9:F3:0C:76:48:26:81:B5:52:05:7E:E6:7C:92:A1:02:42:8C Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 34DC Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0HS58wx2SCaBtVIFfuZ8kqECQow.roa Signing time: Mon 10 Feb 2025 13:52:45 +0000 ROA not before: Mon 10 Feb 2025 13:52:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.193.160.0/20 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13532 (0x34dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:52:45 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D074B9F30C76482681B552057EE67C92A102428C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:a7:53:d3:33:13:e7:bc:3d:ee:d5:c2:b3:c3: 45:14:f9:89:b1:72:fc:10:4a:08:b0:07:97:92:9a: e5:b4:da:37:8a:a3:8d:57:94:60:45:a9:ff:58:65: a3:47:47:63:b0:48:69:b6:b6:1d:96:77:fd:d9:db: 80:c9:50:2a:c6:35:a4:46:6e:30:5b:04:28:2e:5e: e3:17:c3:79:fe:70:56:d6:ea:a9:2c:d7:6c:72:d7: de:51:26:f0:24:e7:8e:fc:4d:fa:f3:22:6d:05:7f: d3:12:5a:cb:62:63:9e:9a:31:aa:51:ca:e1:a0:82: 74:b2:9e:a8:80:8a:76:47:24:24:43:92:22:a0:9c: f5:5d:1c:97:cb:47:9c:a4:4a:5a:d6:e7:d9:00:2b: 32:c2:41:58:f9:2a:b5:83:2b:df:f1:c0:07:0c:f0: c7:55:a7:46:3d:95:5d:5b:fb:8a:92:a5:2b:2d:ff: fc:0b:98:2f:63:13:e5:36:78:87:fc:d9:ee:5c:06: 61:e4:ec:bb:d3:f8:12:b8:f2:19:dd:4d:2c:3d:a9: 00:6d:b7:74:82:32:1d:e3:01:15:95:7f:ed:21:9a: fe:9f:0a:0e:2b:56:a4:b3:1a:22:ff:f2:65:91:e7: a3:20:11:83:c7:b8:24:68:5a:86:a8:84:92:64:5f: c8:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:74:B9:F3:0C:76:48:26:81:B5:52:05:7E:E6:7C:92:A1:02:42:8C X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0HS58wx2SCaBtVIFfuZ8kqECQow.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.160.0/20 Signature Algorithm: sha256WithRSAEncryption 91:d4:2b:54:4e:7c:ed:1b:bc:23:70:17:60:b1:d5:06:eb:a5: af:cc:17:e2:b7:2e:0f:07:4e:81:8c:c9:a5:b3:13:6e:73:e3: 84:d3:1b:0a:f4:7b:03:ab:be:a0:fb:98:28:08:79:eb:ab:10: 6c:19:98:1d:9b:5b:a2:43:9c:13:5b:89:1f:ab:34:02:9a:76: 64:27:65:01:9e:2d:1a:55:11:b6:3f:1e:98:7b:ff:1a:e9:b8: b6:45:b8:6c:0b:ed:28:cb:fc:0b:2b:0d:cf:ff:05:44:56:c8: 26:73:ef:31:de:f7:6d:89:a5:94:9a:13:9f:6d:61:ba:87:54: 92:db:61:ea:e3:af:c0:64:78:84:f3:3a:dc:3c:87:64:10:3d: 14:78:fe:62:58:e0:9b:7a:7b:37:77:a5:f5:ef:88:8a:3e:23: 7f:9e:54:df:70:9c:d6:ba:12:91:d9:6a:d9:d9:6c:bd:af:15: 38:99:14:5f:27:bd:66:58:34:8e:4b:bb:48:bd:18:14:df:76: d9:85:c7:a0:ca:a5:7f:aa:5b:35:3e:df:60:3f:ba:0b:81:01: 3f:ba:02:85:fe:f1:90:89:8c:24:f0:e2:b8:99:6e:f6:ab:18: 46:15:86:7b:b8:29:fe:22:f2:11:ad:21:93:96:8b:a0:48:38: e2:3e:0e:85 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNNwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUyNDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQwNzRCOUYzMEM3NjQ4 MjY4MUI1NTIwNTdFRTY3QzkyQTEwMjQyOEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkp1PTMxPnvD3u1cKzw0UU+YmxcvwQSgiwB5eSmuW02jeKo41X lGBFqf9YZaNHR2OwSGm2th2Wd/3Z24DJUCrGNaRGbjBbBCguXuMXw3n+cFbW6qks 12xy195RJvAk5478TfrzIm0Ff9MSWstiY56aMapRyuGggnSynqiAinZHJCRDkiKg nPVdHJfLR5ykSlrW59kAKzLCQVj5KrWDK9/xwAcM8MdVp0Y9lV1b+4qSpSst//wL mC9jE+U2eIf82e5cBmHk7LvT+BK48hndTSw9qQBtt3SCMh3jARWVf+0hmv6fCg4r VqSzGiL/8mWR56MgEYPHuCRoWoaohJJkX8ihAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU0HS58wx2SCaBtVIFfuZ8kqECQowwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzBIUzU4d3gyU0NhQnRWSUZm dVo4a3FFQ1Fvdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR7 waAwDQYJKoZIhvcNAQELBQADggEBAJHUK1ROfO0bvCNwF2Cx1Qbrpa/MF+K3Lg8H ToGMyaWzE25z44TTGwr0ewOrvqD7mCgIeeurEGwZmB2bW6JDnBNbiR+rNAKadmQn ZQGeLRpVEbY/Hph7/xrpuLZFuGwL7SjL/AsrDc//BURWyCZz7zHe922JpZSaE59t YbqHVJLbYerjr8BkeITzOtw8h2QQPRR4/mJY4Jt6ezd3pfXviIo+I3+eVN9wnNa6 EpHZatnZbL2vFTiZFF8nvWZYNI5Lu0i9GBTfdtmFx6DKpX+qWzU+32A/uguBAT+6 AoX+8ZCJjCTw4riZbvarGEYVhnu4Kf4i8hGtIZOWi6BIOOI+DoU= -----END CERTIFICATE-----Generated at Wed Feb 19 21:56:10 2025 by rpki-client