$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3qFltKhzETJDFdxpmh1f_z64x8U.roa File: 3qFltKhzETJDFdxpmh1f_z64x8U.roa (raw, json) Hash identifier: uJkHjQacHpaDRRcrU2dNvIshk4fgdlSe/VbnNJmmQHc= Subject key identifier: DE:A1:65:B4:A8:73:11:32:43:15:DC:69:9A:1D:5F:FF:3E:B8:C7:C5 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 359F Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3qFltKhzETJDFdxpmh1f_z64x8U.roa Signing time: Mon 10 Feb 2025 13:53:31 +0000 ROA not before: Mon 10 Feb 2025 13:53:31 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 180.176.196.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13727 (0x359f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:53:31 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DEA165B4A87311324315DC699A1D5FFF3EB8C7C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1d:94:52:5c:c5:8f:82:6d:82:5d:2f:0f:33: 24:33:ae:6b:e9:1c:e3:65:9b:6e:f9:4b:19:1f:2a: 7e:c0:23:32:24:ec:05:84:46:ee:7e:90:86:cf:8d: 6a:d8:ef:13:2e:98:20:f6:fb:93:37:39:a8:5d:72: 67:37:b6:69:07:7b:52:2e:e0:32:83:39:f6:86:d2: 6a:d0:9c:96:e9:89:22:d8:3b:0c:73:f5:54:b6:77: b6:22:a5:95:8d:55:41:74:b5:6d:d4:39:14:46:69: 26:60:f4:dc:c5:fa:15:51:e6:f3:67:46:87:45:79: d5:79:af:ce:3a:59:6b:69:6f:24:50:17:fc:56:f9: c0:f7:8d:c8:f0:21:71:ee:6b:2d:ea:2c:ab:c7:55: c1:7e:2e:fe:e7:09:ce:5b:85:a1:5a:80:9d:1a:2d: 42:cc:52:a2:84:93:d0:85:b6:1e:2a:72:8c:0f:c6: f2:e3:d2:a8:9f:b3:a0:ca:40:98:26:24:d1:06:93: d2:7f:7a:bd:10:6e:36:ee:0e:23:38:41:75:2a:7f: ef:b1:cd:71:db:c5:e5:b1:25:28:54:0e:50:f8:3d: 19:28:1a:d8:7f:4c:a8:2c:69:cf:43:df:ff:f0:bb: 9a:e8:c4:9a:26:ee:ef:bf:d4:30:a7:cf:bd:04:4d: a2:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:A1:65:B4:A8:73:11:32:43:15:DC:69:9A:1D:5F:FF:3E:B8:C7:C5 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3qFltKhzETJDFdxpmh1f_z64x8U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.176.196.0/22 Signature Algorithm: sha256WithRSAEncryption 49:20:c4:59:e0:5e:86:df:69:1e:c0:4e:a2:42:35:73:cc:d5: 7a:50:fb:58:61:6d:20:77:3f:9f:d1:53:f7:b7:1f:88:f6:fe: 5d:2d:4b:44:03:c4:ad:89:e8:ce:e4:9d:5a:fb:2b:de:55:1d: 13:05:b9:1f:58:f4:07:31:24:cc:db:da:ee:d2:af:d1:d5:3d: 9c:12:ae:2b:31:56:a7:48:0b:5e:bd:fd:16:78:c3:24:b6:aa: dc:9b:2a:c9:63:47:a5:bd:66:27:fe:ee:0b:92:5f:01:60:a5: f7:72:7c:6e:37:97:3b:6b:36:11:94:57:4c:a7:84:99:db:f3: 28:b3:f5:f5:4c:4c:ff:08:bb:47:c6:54:7f:8e:32:ef:ce:bb: e1:8e:54:17:2a:13:54:34:44:aa:3c:87:e1:db:a4:5d:10:53: 8e:2f:da:18:33:84:c6:04:fc:7c:d3:fc:7f:da:a6:be:48:5b: ab:8f:c9:59:a0:f3:e6:ea:59:df:b9:76:92:2d:a0:f1:87:ce: 46:2b:7c:25:27:bd:08:ca:0d:3b:7c:e3:d5:cf:c0:b5:44:55: 9b:72:4b:3e:0a:40:34:be:37:d8:b1:27:17:82:e8:b6:80:0e: 79:5d:20:c6:99:ce:ce:b4:ab:75:02:0e:32:d8:02:f3:67:94: fb:7c:f6:75 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNZ8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUzMzFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERFQTE2NUI0QTg3MzEx MzI0MzE1REM2OTlBMUQ1RkZGM0VCOEM3QzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+HZRSXMWPgm2CXS8PMyQzrmvpHONlm275SxkfKn7AIzIk7AWE Ru5+kIbPjWrY7xMumCD2+5M3Oahdcmc3tmkHe1Iu4DKDOfaG0mrQnJbpiSLYOwxz 9VS2d7YipZWNVUF0tW3UORRGaSZg9NzF+hVR5vNnRodFedV5r846WWtpbyRQF/xW +cD3jcjwIXHuay3qLKvHVcF+Lv7nCc5bhaFagJ0aLULMUqKEk9CFth4qcowPxvLj 0qifs6DKQJgmJNEGk9J/er0QbjbuDiM4QXUqf++xzXHbxeWxJShUDlD4PRkoGth/ TKgsac9D3//wu5roxJom7u+/1DCnz70ETaJLAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU3qFltKhzETJDFdxpmh1f/z64x8UwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzNxRmx0S2h6RVRKREZkeHBt aDFmX3o2NHg4VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 sMQwDQYJKoZIhvcNAQELBQADggEBAEkgxFngXobfaR7ATqJCNXPM1XpQ+1hhbSB3 P5/RU/e3H4j2/l0tS0QDxK2J6M7knVr7K95VHRMFuR9Y9AcxJMzb2u7Sr9HVPZwS risxVqdIC169/RZ4wyS2qtybKsljR6W9Zif+7guSXwFgpfdyfG43lztrNhGUV0yn hJnb8yiz9fVMTP8Iu0fGVH+OMu/Ou+GOVBcqE1Q0RKo8h+HbpF0QU44v2hgzhMYE /HzT/H/apr5IW6uPyVmg8+bqWd+5dpItoPGHzkYrfCUnvQjKDTt849XPwLVEVZty Sz4KQDS+N9ixJxeC6LaADnldIMaZzs60q3UCDjLYAvNnlPt89nU= -----END CERTIFICATE-----Generated at Wed Feb 19 22:05:11 2025 by rpki-client