$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2xBkEA6-2Uq3Jr_w7gswbPUi3Ig.roa File: 2xBkEA6-2Uq3Jr_w7gswbPUi3Ig.roa (raw, json) Hash identifier: tccBO3ylBhA9uA2vvJJidaqdXwh2vl9eqziTC3TJfzk= Subject key identifier: DB:10:64:10:0E:BE:D9:4A:B7:26:BF:F0:EE:0B:30:6C:F5:22:DC:88 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3637 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2xBkEA6-2Uq3Jr_w7gswbPUi3Ig.roa Signing time: Mon 10 Feb 2025 13:54:06 +0000 ROA not before: Mon 10 Feb 2025 13:54:06 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.232.64.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13879 (0x3637) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:54:06 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DB1064100EBED94AB726BFF0EE0B306CF522DC88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:2a:38:a8:7c:05:1e:77:bb:76:30:cc:d0:71: 86:76:a0:f6:d1:ae:15:7a:47:01:41:88:68:77:dd: ce:17:b8:1c:85:2d:b2:ff:36:99:cb:3d:44:1f:69: be:7d:6c:0d:3f:4f:bf:95:87:c5:c7:35:0e:07:72: 09:77:12:b6:a9:fc:6e:68:40:2f:b9:59:31:2c:00: b1:02:42:e2:c7:b9:f1:f3:2c:82:1c:b8:6e:99:22: 18:42:5f:bb:fe:e5:66:f0:16:f8:ea:e8:e4:d4:64: c8:fe:38:65:1c:df:db:3a:1e:69:a7:89:e5:1a:27: 99:33:0b:c6:76:e5:03:96:14:f8:29:db:a0:29:30: c0:13:8b:21:95:0c:31:0b:81:01:81:02:1c:b5:7d: 10:01:87:c1:2f:82:36:41:75:34:fb:86:e4:13:cb: c9:28:50:20:fa:04:bc:0e:e4:a1:8f:08:bc:db:c6: db:19:64:25:0e:d6:17:de:c6:5f:2d:4f:7e:21:3d: a4:ab:2f:6b:02:87:31:cd:32:eb:7d:c4:d7:37:53: d1:ea:16:48:eb:fb:cb:6c:f8:93:58:d5:cf:d3:01: 38:d8:e8:0a:6b:ef:e7:a9:0e:e9:be:12:5c:d0:29: 09:55:d1:a0:58:8d:4f:1f:e8:20:e9:71:16:78:89: 0f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:10:64:10:0E:BE:D9:4A:B7:26:BF:F0:EE:0B:30:6C:F5:22:DC:88 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2xBkEA6-2Uq3Jr_w7gswbPUi3Ig.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.64.0/21 Signature Algorithm: sha256WithRSAEncryption 7f:12:37:0e:84:06:8d:66:54:f8:c3:dc:ca:93:8d:ec:d0:b2: 5d:c6:56:9a:d2:fe:ab:6a:f3:3e:95:f7:5b:3d:5e:b2:57:68: 24:74:50:f8:25:da:fd:e3:18:69:9e:81:e3:c2:43:f1:7b:c2: e6:6e:99:37:85:6e:0e:4d:dc:10:b4:fa:3c:48:59:54:37:07: 59:97:c7:ff:a4:fd:91:03:46:d0:96:b3:4c:26:c2:cc:ff:ae: a7:d7:56:29:92:e9:e7:e0:c6:54:da:d0:40:72:4d:db:f0:3e: dc:35:cd:de:c0:8d:45:49:d8:5d:f5:79:6d:5f:a7:0b:ba:63: ab:44:51:d0:7c:9b:e6:3c:15:34:6e:aa:76:9d:4b:61:52:69: 29:1d:e6:aa:63:7d:2f:c9:70:36:79:5f:72:59:ef:e2:22:33: 13:3c:a4:24:12:e1:28:65:ab:97:2d:66:43:ae:90:0f:52:88: c2:4c:b5:98:b4:89:58:4d:b6:0d:8d:62:ad:6d:a9:b8:67:ba: 62:3a:5d:09:63:83:5b:3c:87:ba:0c:45:6e:9b:f6:4f:7c:25: 93:d9:86:60:f2:54:ea:c1:19:91:c0:c9:a4:f2:9f:39:8a:6e: 2d:07:e8:dc:a2:32:ba:ba:b3:53:80:e0:de:9c:f8:99:37:44: 13:f0:3b:09 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNjcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzU0MDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERCMTA2NDEwMEVCRUQ5 NEFCNzI2QkZGMEVFMEIzMDZDRjUyMkRDODgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRKjiofAUed7t2MMzQcYZ2oPbRrhV6RwFBiGh33c4XuByFLbL/ NpnLPUQfab59bA0/T7+Vh8XHNQ4Hcgl3Erap/G5oQC+5WTEsALECQuLHufHzLIIc uG6ZIhhCX7v+5WbwFvjq6OTUZMj+OGUc39s6HmmnieUaJ5kzC8Z25QOWFPgp26Ap MMATiyGVDDELgQGBAhy1fRABh8EvgjZBdTT7huQTy8koUCD6BLwO5KGPCLzbxtsZ ZCUO1hfexl8tT34hPaSrL2sChzHNMut9xNc3U9HqFkjr+8ts+JNY1c/TATjY6Apr 7+epDum+ElzQKQlV0aBYjU8f6CDpcRZ4iQ9RAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU2xBkEA6+2Uq3Jr/w7gswbPUi3IgwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzJ4QmtFQTYtMlVxM0pyX3c3 Z3N3YlBVaTNJZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6EAwDQYJKoZIhvcNAQELBQADggEBAH8SNw6EBo1mVPjD3MqTjezQsl3GVprS/qtq 8z6V91s9XrJXaCR0UPgl2v3jGGmegePCQ/F7wuZumTeFbg5N3BC0+jxIWVQ3B1mX x/+k/ZEDRtCWs0wmwsz/rqfXVimS6efgxlTa0EByTdvwPtw1zd7AjUVJ2F31eW1f pwu6Y6tEUdB8m+Y8FTRuqnadS2FSaSkd5qpjfS/JcDZ5X3JZ7+IiMxM8pCQS4Shl q5ctZkOukA9SiMJMtZi0iVhNtg2NYq1tqbhnumI6XQljg1s8h7oMRW6b9k98JZPZ hmDyVOrBGZHAyaTynzmKbi0H6NyiMrq6s1OA4N6c+Jk3RBPwOwk= -----END CERTIFICATE-----Generated at Wed Feb 19 22:09:59 2025 by rpki-client