$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3dHD7XKTtCm5gQMwjc7KTstcUmI.roa File: 3dHD7XKTtCm5gQMwjc7KTstcUmI.roa (raw, json) Hash identifier: hnxJPj6Ciu8labFL77tcQ8522U4UJvTjUtTxqm9q9eY= Subject key identifier: DD:D1:C3:ED:72:93:B4:29:B9:81:03:30:8D:CE:CA:4E:CB:5C:52:62 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 35D3 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3dHD7XKTtCm5gQMwjc7KTstcUmI.roa Signing time: Mon 10 Feb 2025 13:53:43 +0000 ROA not before: Mon 10 Feb 2025 13:53:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.195.96.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13779 (0x35d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:53:43 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DDD1C3ED7293B429B98103308DCECA4ECB5C5262 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:de:d9:5c:c2:4e:3f:64:4b:15:e4:52:91:c8: 3a:e1:fb:d5:05:b0:de:f3:5b:f0:7a:65:a8:8a:32: 65:76:4e:51:54:fe:ec:d7:cd:ba:cf:ef:a4:f4:e2: a9:57:9c:da:da:cf:0d:81:52:5d:3e:ed:e5:aa:d9: f0:f5:60:17:30:16:41:48:2b:9f:cb:9b:98:fb:76: 69:f6:88:d9:d4:d4:b0:c3:5d:e7:af:35:5f:4d:df: 51:9d:85:8b:cd:53:35:c5:c9:01:b7:2b:17:91:6b: 0d:75:d6:c1:6c:03:1e:26:ca:08:0e:b0:18:0d:8d: 4a:fe:67:8a:dd:3b:18:32:51:37:de:c2:09:70:6a: 5b:d8:77:ef:51:e6:63:2e:e4:ee:15:ba:b9:4d:3b: b0:6f:15:41:70:37:9c:68:a8:19:8e:18:56:15:65: 92:a8:c4:09:eb:67:b7:3d:7b:85:d6:17:42:0e:e9: ef:75:8f:69:1c:8a:81:85:21:f2:5d:05:f1:56:16: 4f:c1:50:c2:bf:32:24:f0:eb:ea:18:a5:0d:3d:d8: a5:8f:d8:4b:78:cd:83:5b:23:ba:e1:fd:01:b2:01: ef:b8:54:60:b6:a9:00:9b:c3:c3:cd:ab:c9:ff:ee: 12:f0:57:c7:62:30:5d:50:98:a4:57:4d:b4:6c:23: 74:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:D1:C3:ED:72:93:B4:29:B9:81:03:30:8D:CE:CA:4E:CB:5C:52:62 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3dHD7XKTtCm5gQMwjc7KTstcUmI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.96.0/21 Signature Algorithm: sha256WithRSAEncryption 33:78:44:59:83:44:d9:5d:17:6a:87:32:68:46:03:fc:e4:00: fa:d9:95:bd:00:74:0f:43:b5:ef:81:99:51:2a:a3:1e:5b:bc: b5:dd:b5:a7:a0:c2:65:d8:68:0f:7c:72:da:8a:0c:65:de:18: 01:6a:65:4a:f8:a2:b7:44:12:bc:f9:0e:d4:e8:49:87:65:38: b0:55:7d:dc:cb:70:fd:64:89:f2:d8:84:df:52:36:0e:cc:a9: 51:1e:ba:1f:c1:c6:39:50:43:6d:a6:7d:de:93:ac:12:93:ee: 13:54:72:5a:99:bb:d7:b3:9c:f9:ce:62:ae:34:76:78:a4:73: 61:cb:95:9e:69:d5:57:53:10:62:94:85:86:f4:cb:94:01:43: 0f:65:37:2d:02:cc:09:30:50:c0:46:8d:8c:31:c9:80:17:1f: 8f:b7:a2:fe:5e:39:52:1a:0e:d0:1b:14:8f:21:3e:5b:a3:e9: 0c:e1:e8:0b:6c:31:24:06:b4:47:4d:0f:78:0c:03:e7:e2:59: 62:27:c7:a4:21:90:2f:5f:f3:39:a3:f0:02:77:33:9b:eb:94: f3:e1:71:5c:14:71:23:f6:55:71:d2:cc:d5:6d:2e:0d:79:56: 16:7f:76:8e:d3:2d:d1:5d:7c:0d:a2:6f:0e:0d:d6:2a:2f:ba: 36:df:fd:45 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNdMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUzNDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERERDFDM0VENzI5M0I0 MjlCOTgxMDMzMDhEQ0VDQTRFQ0I1QzUyNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDC3tlcwk4/ZEsV5FKRyDrh+9UFsN7zW/B6ZaiKMmV2TlFU/uzX zbrP76T04qlXnNrazw2BUl0+7eWq2fD1YBcwFkFIK5/Lm5j7dmn2iNnU1LDDXeev NV9N31GdhYvNUzXFyQG3KxeRaw111sFsAx4myggOsBgNjUr+Z4rdOxgyUTfewglw alvYd+9R5mMu5O4VurlNO7BvFUFwN5xoqBmOGFYVZZKoxAnrZ7c9e4XWF0IO6e91 j2kcioGFIfJdBfFWFk/BUMK/MiTw6+oYpQ092KWP2Et4zYNbI7rh/QGyAe+4VGC2 qQCbw8PNq8n/7hLwV8diMF1QmKRXTbRsI3Q/AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU3dHD7XKTtCm5gQMwjc7KTstcUmIwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzNkSEQ3WEtUdENtNWdRTXdq YzdLVHN0Y1VtSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 w2AwDQYJKoZIhvcNAQELBQADggEBADN4RFmDRNldF2qHMmhGA/zkAPrZlb0AdA9D te+BmVEqox5bvLXdtaegwmXYaA98ctqKDGXeGAFqZUr4ordEErz5DtToSYdlOLBV fdzLcP1kifLYhN9SNg7MqVEeuh/BxjlQQ22mfd6TrBKT7hNUclqZu9eznPnOYq40 dnikc2HLlZ5p1VdTEGKUhYb0y5QBQw9lNy0CzAkwUMBGjYwxyYAXH4+3ov5eOVIa DtAbFI8hPluj6Qzh6AtsMSQGtEdND3gMA+fiWWInx6QhkC9f8zmj8AJ3M5vrlPPh cVwUcSP2VXHSzNVtLg15VhZ/do7TLdFdfA2ibw4N1iovujbf/UU= -----END CERTIFICATE-----Generated at Wed Feb 19 22:10:33 2025 by rpki-client