$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2tb9V3KLE31qzF09DH1E2uZo0yw.roa File: 2tb9V3KLE31qzF09DH1E2uZo0yw.roa (raw, json) Hash identifier: zVHD6Tp5TkVKbS+xgC4UCMSF+qzdAQlbgRp7sUJHbEA= Subject key identifier: DA:D6:FD:57:72:8B:13:7D:6A:CC:5D:3D:0C:7D:44:DA:E6:68:D3:2C Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3559 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2tb9V3KLE31qzF09DH1E2uZo0yw.roa Signing time: Mon 10 Feb 2025 13:53:16 +0000 ROA not before: Mon 10 Feb 2025 13:53:16 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.195.9.64/26 maxlen: 26 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13657 (0x3559) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:53:16 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DAD6FD57728B137D6ACC5D3D0C7D44DAE668D32C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:8a:0e:a7:a3:32:05:f9:2d:dd:59:ef:45:e7: 67:32:06:6f:c4:57:1a:8b:6b:ec:bd:88:50:92:6f: 36:4b:c9:06:a2:45:f9:fb:18:94:06:4e:fb:68:20: 51:46:45:49:4e:a0:da:0b:38:85:49:15:7e:ed:df: 58:23:ec:6f:d8:7d:bc:90:2f:c6:21:96:18:a7:97: 0d:c2:2d:3b:0b:e8:d7:f2:b8:b4:da:5b:a1:de:ee: fb:69:7f:bb:d7:cf:af:d2:e4:e5:4d:5e:c0:f4:9d: da:bd:3e:3c:73:cd:00:c6:f1:d7:54:4a:12:b0:63: 72:cc:5c:e4:9d:ee:d2:7d:74:47:ab:43:df:8a:10: 21:08:71:f9:a9:e7:fd:9a:73:bc:b0:9c:e8:ab:66: e0:9f:0f:e9:c2:33:75:fa:a5:7e:9f:1b:8e:60:e8: 12:08:47:de:0e:1a:69:4c:ce:d1:39:01:e7:98:ae: 21:4e:12:38:48:7a:86:91:d4:7d:60:08:59:0d:bb: 6d:fd:80:4e:ee:75:74:84:1a:b7:b3:59:c8:11:f1: 39:63:2d:17:d0:e3:39:c3:d4:cd:74:63:91:dc:e9: c6:99:62:b8:35:dd:0e:33:fa:3b:5b:63:26:36:48: 18:3d:8d:aa:9a:8f:f5:87:ac:7a:2e:23:73:8d:d2: 19:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:D6:FD:57:72:8B:13:7D:6A:CC:5D:3D:0C:7D:44:DA:E6:68:D3:2C X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2tb9V3KLE31qzF09DH1E2uZo0yw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.9.64/26 Signature Algorithm: sha256WithRSAEncryption 40:bb:d4:11:90:dc:56:2d:99:c4:fe:00:e6:0f:f8:84:e2:ce: ad:56:14:73:cb:8d:5d:f5:fa:84:c5:1e:50:9f:62:8e:d7:59: 76:97:6a:c5:f1:87:84:e4:bc:f2:01:f5:13:e9:8f:94:29:61: 87:28:e2:ce:5d:fd:dd:29:fa:f3:7d:86:49:86:2b:43:43:06: 0f:eb:89:16:cf:a7:0c:38:57:a6:a6:23:14:b9:60:06:1a:6c: d3:d4:ab:5e:e2:f0:c0:8b:cb:2f:0a:f8:c5:f5:32:5e:eb:8e: 08:ab:2d:9c:37:f3:f7:83:e5:2a:33:18:b8:25:e1:39:de:05: 3c:33:83:cf:e8:b3:0a:e7:ec:92:3e:00:4e:d3:04:08:10:d6: 9a:e1:d9:79:18:c5:55:6e:a7:ab:35:9e:34:2a:d3:44:6a:2e: 9a:01:11:83:18:56:0e:d7:43:25:32:cc:1d:a9:36:ae:fd:16: 22:a5:aa:4d:91:45:c6:1c:3c:a7:d1:c8:fa:62:b4:56:cd:22: 94:82:d1:81:21:ff:ba:3f:63:70:00:06:b8:5f:f4:2f:c4:30: e9:e2:f3:e0:c4:f1:d4:bc:39:63:7c:ad:c5:76:48:a3:6c:24: aa:09:7b:56:4d:1b:53:50:5b:cf:e9:88:51:a0:a0:59:06:65: f7:3d:12:18 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICNVkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUzMTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERBRDZGRDU3NzI4QjEz N0Q2QUNDNUQzRDBDN0Q0NERBRTY2OEQzMkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWig6nozIF+S3dWe9F52cyBm/EVxqLa+y9iFCSbzZLyQaiRfn7 GJQGTvtoIFFGRUlOoNoLOIVJFX7t31gj7G/YfbyQL8Yhlhinlw3CLTsL6NfyuLTa W6He7vtpf7vXz6/S5OVNXsD0ndq9PjxzzQDG8ddUShKwY3LMXOSd7tJ9dEerQ9+K ECEIcfmp5/2ac7ywnOirZuCfD+nCM3X6pX6fG45g6BIIR94OGmlMztE5AeeYriFO EjhIeoaR1H1gCFkNu239gE7udXSEGrezWcgR8TljLRfQ4znD1M10Y5Hc6caZYrg1 3Q4z+jtbYyY2SBg9jaqaj/WHrHouI3ON0hlbAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQU2tb9V3KLE31qzF09DH1E2uZo0ywwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzJ0YjlWM0tMRTMxcXpGMDlE SDFFMnVabzB5dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQZ7 wwlAMA0GCSqGSIb3DQEBCwUAA4IBAQBAu9QRkNxWLZnE/gDmD/iE4s6tVhRzy41d 9fqExR5Qn2KO11l2l2rF8YeE5LzyAfUT6Y+UKWGHKOLOXf3dKfrzfYZJhitDQwYP 64kWz6cMOFempiMUuWAGGmzT1Kte4vDAi8svCvjF9TJe644Iqy2cN/P3g+UqMxi4 JeE53gU8M4PP6LMK5+ySPgBO0wQIENaa4dl5GMVVbqerNZ40KtNEai6aARGDGFYO 10MlMswdqTau/RYipapNkUXGHDyn0cj6YrRWzSKUgtGBIf+6P2NwAAa4X/QvxDDp 4vPgxPHUvDljfK3FdkijbCSqCXtWTRtTUFvP6YhRoKBZBmX3PRIY -----END CERTIFICATE-----Generated at Wed Feb 19 22:02:04 2025 by rpki-client