$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/42Af07Wdjo7hlwLIuql9sge8byU.roa File: 42Af07Wdjo7hlwLIuql9sge8byU.roa (raw, json) Hash identifier: oCnkoqBtKyfIknu0JQgEnMFschWWROMLjPvi9GTvrjM= Subject key identifier: E3:60:1F:D3:B5:9D:8E:8E:E1:97:02:C8:BA:A9:7D:B2:07:BC:6F:25 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3496 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/42Af07Wdjo7hlwLIuql9sge8byU.roa Signing time: Mon 10 Feb 2025 13:52:31 +0000 ROA not before: Mon 10 Feb 2025 13:52:31 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 123.195.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13462 (0x3496) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:52:31 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E3601FD3B59D8E8EE19702C8BAA97DB207BC6F25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e5:72:93:68:cd:69:3a:b6:2a:4e:b6:ce:4f: b6:0c:7d:36:2c:82:0b:ad:57:fd:24:36:14:ed:7e: a9:e5:6b:91:ec:93:0c:bf:8f:f5:e1:48:d8:ac:a7: 71:8d:4f:c4:3c:d7:a1:95:e4:0c:c7:4b:39:7c:e9: ea:d3:9c:a2:bd:de:29:b5:49:5f:ec:c4:1b:63:ef: e5:63:63:6e:72:c1:d8:34:f8:86:ae:bd:1a:0b:8d: bc:06:26:e1:0a:41:89:88:b5:18:0c:b7:9f:99:c1: 6d:3b:e7:33:4e:d9:bd:60:db:aa:1a:58:a2:92:f4: 04:c9:29:68:f9:bc:59:14:25:18:13:ed:e3:e3:eb: a8:4a:c1:59:d1:dd:37:e1:aa:7e:f7:10:0a:4c:12: fe:a8:bf:43:62:9b:5b:23:79:58:bc:55:ff:62:86: 86:fb:1d:37:1b:6d:bb:77:de:17:90:74:c5:d3:40: 34:85:61:bd:fb:67:70:b7:74:b9:77:1a:73:a0:d8: 25:53:f4:a6:22:a6:f9:be:f6:42:e3:ba:1a:9e:3a: 89:97:b7:03:4f:91:ba:1e:79:56:e4:7d:17:a7:01: 95:9e:f7:b6:13:09:83:7e:0c:a1:a7:d1:47:00:29: 52:7a:27:f7:84:34:28:6f:70:f7:d8:57:af:d8:41: 23:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:60:1F:D3:B5:9D:8E:8E:E1:97:02:C8:BA:A9:7D:B2:07:BC:6F:25 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/42Af07Wdjo7hlwLIuql9sge8byU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.128.0/18 Signature Algorithm: sha256WithRSAEncryption 8f:43:ef:91:0b:8f:88:da:bd:d9:3d:54:25:35:0a:67:dc:21: 58:03:f7:c5:99:53:58:fc:54:4e:ab:82:92:8d:7c:b7:18:b4: 9c:1f:9d:54:d5:b0:b8:29:9a:b3:9f:00:1b:9c:2a:e4:32:81: 1d:3b:02:97:d3:dc:b2:64:6c:27:bc:bb:e0:ab:b8:c1:5e:df: 7d:82:ed:39:ef:05:de:3e:70:9d:fe:ae:77:fa:a5:a8:f7:00: 43:d7:43:06:0b:a4:09:fd:2a:60:ce:bc:cc:f1:15:8a:10:ef: 31:db:53:27:d7:bc:a8:36:d7:87:9a:cc:47:33:3b:bd:4d:ee: 1a:94:21:2b:50:32:9f:06:a8:4e:f2:dd:82:19:b1:e0:fb:58: 45:fc:59:c4:c9:b1:17:b5:b2:08:fd:75:b3:b3:a9:38:e8:e1: c7:8e:4e:eb:e9:70:ad:1f:d5:f5:ec:83:0c:1b:ef:6d:97:dc: cd:98:ae:a2:69:69:81:63:7d:32:5e:c0:e5:77:e9:72:e3:60: 06:a9:c0:54:e4:f7:20:25:f5:e3:ee:b2:2d:38:3e:b2:fa:65: 5b:c1:5d:63:5d:fb:6f:bb:b6:41:9b:57:77:ab:af:3c:0b:2c: 54:21:2d:dd:c3:7e:47:c0:cb:80:a2:ca:e5:c2:1c:a8:dd:88: 22:62:e4:98 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNJYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUyMzFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEUzNjAxRkQzQjU5RDhF OEVFMTk3MDJDOEJBQTk3REIyMDdCQzZGMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDW5XKTaM1pOrYqTrbOT7YMfTYsggutV/0kNhTtfqnla5Hskwy/ j/XhSNisp3GNT8Q816GV5AzHSzl86erTnKK93im1SV/sxBtj7+VjY25ywdg0+Iau vRoLjbwGJuEKQYmItRgMt5+ZwW075zNO2b1g26oaWKKS9ATJKWj5vFkUJRgT7ePj 66hKwVnR3Tfhqn73EApMEv6ov0Nim1sjeVi8Vf9ihob7HTcbbbt33heQdMXTQDSF Yb37Z3C3dLl3GnOg2CVT9KYipvm+9kLjuhqeOomXtwNPkboeeVbkfRenAZWe97YT CYN+DKGn0UcAKVJ6J/eENChvcPfYV6/YQSNxAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU42Af07Wdjo7hlwLIuql9sge8byUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzQyQWYwN1dkam83aGx3TEl1 cWw5c2dlOGJ5VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ7 w4AwDQYJKoZIhvcNAQELBQADggEBAI9D75ELj4javdk9VCU1CmfcIVgD98WZU1j8 VE6rgpKNfLcYtJwfnVTVsLgpmrOfABucKuQygR07ApfT3LJkbCe8u+CruMFe332C 7TnvBd4+cJ3+rnf6paj3AEPXQwYLpAn9KmDOvMzxFYoQ7zHbUyfXvKg214eazEcz O71N7hqUIStQMp8GqE7y3YIZseD7WEX8WcTJsRe1sgj9dbOzqTjo4ceOTuvpcK0f 1fXsgwwb722X3M2YrqJpaYFjfTJewOV36XLjYAapwFTk9yAl9ePusi04PrL6ZVvB XWNd+2+7tkGbV3errzwLLFQhLd3DfkfAy4CiyuXCHKjdiCJi5Jg= -----END CERTIFICATE-----Generated at Wed Feb 19 22:10:09 2025 by rpki-client