$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3K1uitC_dkGKCqrJ5Mb7Vl8IH6Y.roa File: 3K1uitC_dkGKCqrJ5Mb7Vl8IH6Y.roa (raw, json) Hash identifier: oOeRzRj/2Uua5QFg1IxOBNVMf0hIWfuKO/z6hby/cnA= Subject key identifier: DC:AD:6E:8A:D0:BF:76:41:8A:0A:AA:C9:E4:C6:FB:56:5F:08:1F:A6 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 33F9 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3K1uitC_dkGKCqrJ5Mb7Vl8IH6Y.roa Signing time: Mon 10 Feb 2025 13:51:57 +0000 ROA not before: Mon 10 Feb 2025 13:51:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.233.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13305 (0x33f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:51:57 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DCAD6E8AD0BF76418A0AAAC9E4C6FB565F081FA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:45:12:3d:5a:a3:4e:79:81:35:30:83:a9:6e: 1a:c6:3d:3b:cf:8f:1e:bb:36:13:a0:54:2c:0b:e4: ec:fb:2b:06:2f:94:89:29:ff:85:d4:ae:7f:13:09: 5a:15:7f:91:de:5a:88:e5:a6:7c:7f:b8:94:e1:ff: 2d:da:10:29:c2:7f:b0:93:3a:aa:53:2e:4c:12:1b: df:6d:bd:d8:a0:ee:3d:21:20:a2:db:14:fd:f8:c0: d8:77:d1:e2:55:9d:f1:97:99:4b:a0:07:a9:45:51: b5:84:be:77:ce:64:91:c9:77:de:b1:d9:87:ab:f9: 29:f1:d1:e7:24:82:cf:c3:6a:37:d2:7b:8c:c5:4e: 79:6c:bb:d3:1e:2f:67:08:f5:3f:e6:6a:f3:24:a7: 13:eb:c3:97:a2:eb:6f:1b:77:47:b8:73:51:bf:1e: 6f:56:99:25:75:c6:b6:79:51:b7:95:3a:4d:18:9c: 67:e5:26:8d:a5:f4:73:c6:2e:c9:7b:b7:88:fd:e2: aa:2f:f8:09:34:ff:57:bd:ab:65:25:3b:98:68:d1: f4:84:1a:c1:e2:ee:d8:c2:bc:9c:32:e6:92:e0:e4: 78:68:a2:c1:fa:65:9f:5e:4e:6c:e3:b8:92:fc:1c: 3b:19:35:36:31:e1:f2:b8:92:18:45:b0:b4:5e:5f: 8f:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:AD:6E:8A:D0:BF:76:41:8A:0A:AA:C9:E4:C6:FB:56:5F:08:1F:A6 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3K1uitC_dkGKCqrJ5Mb7Vl8IH6Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.152.0/21 Signature Algorithm: sha256WithRSAEncryption 5d:9c:64:08:f2:d7:8d:61:c4:e1:df:b5:3a:b6:66:e7:2a:56: a5:bc:e7:8d:e5:e4:55:c9:35:2a:0a:d5:7a:1b:a2:e9:59:73: 38:f8:0a:9b:55:28:32:0a:6e:62:0e:9e:bd:02:d1:2e:7a:38: 9a:5b:8c:01:1b:1e:f3:7c:fc:2f:24:e5:ec:a3:18:78:af:ce: 6e:8d:e8:f8:3b:f9:01:58:a4:7c:c0:6f:6d:53:fd:6a:f3:e3: 73:df:0f:1b:25:a6:dd:d3:d7:98:bb:45:b5:9c:bd:d7:40:ba: 2d:dd:14:19:dd:f6:71:31:77:9a:e4:55:1e:57:bc:24:cf:82: 51:9f:a6:84:89:cc:a2:3c:a8:d4:3e:71:1c:65:fa:3d:7e:a0: 26:01:12:68:8d:a7:f3:23:71:f2:96:7c:ca:eb:ab:e2:dd:1d: f4:04:87:43:10:b8:3e:ff:50:68:bd:59:59:34:10:4f:6b:d1: 22:be:ab:94:4b:b3:19:13:01:b0:d4:46:df:ab:53:04:b2:8d: fd:81:2b:b2:99:5b:b6:94:06:c6:56:3e:12:23:d4:1d:86:28: d4:82:f7:e9:26:44:36:88:bb:7f:91:6e:56:1b:6d:dd:5d:03: 87:d2:26:bb:bb:a6:8c:ed:95:d9:32:f3:19:0c:49:0d:4d:0e: 77:85:60:15 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICM/kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUxNTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERDQUQ2RThBRDBCRjc2 NDE4QTBBQUFDOUU0QzZGQjU2NUYwODFGQTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQRRI9WqNOeYE1MIOpbhrGPTvPjx67NhOgVCwL5Oz7KwYvlIkp /4XUrn8TCVoVf5HeWojlpnx/uJTh/y3aECnCf7CTOqpTLkwSG99tvdig7j0hIKLb FP34wNh30eJVnfGXmUugB6lFUbWEvnfOZJHJd96x2Yer+Snx0eckgs/DajfSe4zF Tnlsu9MeL2cI9T/mavMkpxPrw5ei628bd0e4c1G/Hm9WmSV1xrZ5UbeVOk0YnGfl Jo2l9HPGLsl7t4j94qov+Ak0/1e9q2UlO5ho0fSEGsHi7tjCvJwy5pLg5HhoosH6 ZZ9eTmzjuJL8HDsZNTYx4fK4khhFsLReX49fAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU3K1uitC/dkGKCqrJ5Mb7Vl8IH6YwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzNLMXVpdENfZGtHS0Nxcko1 TWI3Vmw4SUg2WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6ZgwDQYJKoZIhvcNAQELBQADggEBAF2cZAjy141hxOHftTq2ZucqVqW8543l5FXJ NSoK1XoboulZczj4CptVKDIKbmIOnr0C0S56OJpbjAEbHvN8/C8k5eyjGHivzm6N 6Pg7+QFYpHzAb21T/Wrz43PfDxslpt3T15i7RbWcvddAui3dFBnd9nExd5rkVR5X vCTPglGfpoSJzKI8qNQ+cRxl+j1+oCYBEmiNp/MjcfKWfMrrq+LdHfQEh0MQuD7/ UGi9WVk0EE9r0SK+q5RLsxkTAbDURt+rUwSyjf2BK7KZW7aUBsZWPhIj1B2GKNSC 9+kmRDaIu3+RblYbbd1dA4fSJru7poztldky8xkMSQ1NDneFYBU= -----END CERTIFICATE-----Generated at Wed Feb 19 22:07:27 2025 by rpki-client