$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4Y1bcFZl4A7ZElW5D_UZy1KHBBc.roa File: 4Y1bcFZl4A7ZElW5D_UZy1KHBBc.roa (raw, json) Hash identifier: N50uLfPSaRB/VJwch7kP27AJp8XbKbKXCMs0e1Zfhmk= Subject key identifier: E1:8D:5B:70:56:65:E0:0E:D9:12:55:B9:0F:F5:19:CB:52:87:04:17 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3405 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4Y1bcFZl4A7ZElW5D_UZy1KHBBc.roa Signing time: Mon 10 Feb 2025 13:52:00 +0000 ROA not before: Mon 10 Feb 2025 13:52:00 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 118.232.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13317 (0x3405) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:52:00 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E18D5B705665E00ED91255B90FF519CB52870417 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f2:fa:91:d3:d9:ce:24:57:4e:c2:fd:53:d1: dc:04:6a:eb:f9:c9:09:77:24:e8:bd:5b:85:c1:64: 15:81:6b:bb:df:89:23:07:0d:7b:68:33:24:1d:ec: c2:fa:82:48:83:63:e9:2e:9c:b9:c0:d4:6f:1c:96: ce:bf:80:74:7f:d6:c1:3b:6e:b0:ed:45:f7:ed:ba: c8:64:70:c8:ca:77:2d:fb:46:02:d5:f7:fe:9a:59: 0f:fb:21:b6:79:f5:2f:32:d0:a4:0b:d2:db:c0:d8: 9b:95:c2:9e:64:45:13:cc:ff:ed:62:8f:ca:4b:55: ee:3c:35:fe:4d:53:ff:f5:dc:83:de:0d:ee:b5:6d: 60:23:86:9a:c0:87:86:45:a5:2b:a4:bc:c5:c5:52: 0e:71:2b:5c:b0:2e:7a:78:9d:07:61:de:3f:76:59: b0:e5:54:dc:4c:fc:c4:b9:5b:30:06:a6:71:54:62: 30:0b:d1:4b:51:90:40:75:36:95:94:d5:33:e0:0f: ba:34:72:e0:2a:1f:f1:02:2f:d2:fc:ae:d8:9f:b8: 48:2e:af:5e:c7:32:1c:84:93:cd:2a:87:bd:bd:4b: bc:53:99:b0:9b:36:6c:d4:69:42:54:65:3b:b4:d0: 7d:4e:21:42:24:62:90:f2:f5:1f:e2:14:68:a6:ab: e1:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:8D:5B:70:56:65:E0:0E:D9:12:55:B9:0F:F5:19:CB:52:87:04:17 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4Y1bcFZl4A7ZElW5D_UZy1KHBBc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.0.0/19 Signature Algorithm: sha256WithRSAEncryption b2:d5:63:59:1d:96:c4:68:31:40:83:78:2f:55:09:f0:1c:fb: fd:f2:2e:be:bf:8f:5e:ce:5b:da:ea:4e:b0:20:55:d7:df:9b: 70:47:cd:2e:99:08:8e:c1:df:b6:c9:bb:f5:a8:a7:57:0f:8c: 3b:f4:c4:22:b8:a0:90:fd:da:57:e9:b6:7d:b3:48:84:68:15: 7c:26:9d:c0:61:96:89:59:99:75:69:39:9f:9f:35:d5:84:08: 45:a4:b8:ea:55:d6:0f:b2:12:0e:c6:28:de:07:e6:7f:66:e8: b2:bf:c9:09:e3:64:05:7b:ed:d6:12:10:c7:ea:14:47:3e:33: f0:79:99:f8:d9:9c:6a:14:ce:9d:10:f1:19:6c:91:69:d6:fb: f0:d3:f4:2c:ad:87:cb:9d:b4:39:4a:ad:9f:d2:8c:81:6d:1f: 86:1a:24:76:4f:de:23:88:7e:d0:5d:15:01:cb:17:86:3a:67: b6:a5:a0:d8:87:68:ee:84:b4:2f:9a:e1:8b:1b:04:17:47:b5: 2e:eb:ce:3d:2f:77:44:f6:29:1b:45:62:8f:23:cc:f5:6a:98: ff:6f:e2:68:62:30:d0:e1:fe:0e:97:a6:16:84:ce:6a:2d:89: b5:55:13:3c:85:34:44:e6:81:15:b7:25:77:87:47:77:55:f0: 93:b9:69:63 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNAUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUyMDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEUxOEQ1QjcwNTY2NUUw MEVEOTEyNTVCOTBGRjUxOUNCNTI4NzA0MTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCq8vqR09nOJFdOwv1T0dwEauv5yQl3JOi9W4XBZBWBa7vfiSMH DXtoMyQd7ML6gkiDY+kunLnA1G8cls6/gHR/1sE7brDtRfftushkcMjKdy37RgLV 9/6aWQ/7IbZ59S8y0KQL0tvA2JuVwp5kRRPM/+1ij8pLVe48Nf5NU//13IPeDe61 bWAjhprAh4ZFpSukvMXFUg5xK1ywLnp4nQdh3j92WbDlVNxM/MS5WzAGpnFUYjAL 0UtRkEB1NpWU1TPgD7o0cuAqH/ECL9L8rtifuEgur17HMhyEk80qh729S7xTmbCb NmzUaUJUZTu00H1OIUIkYpDy9R/iFGimq+G9AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU4Y1bcFZl4A7ZElW5D/UZy1KHBBcwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzRZMWJjRlpsNEE3WkVsVzVE X1VaeTFLSEJCYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV2 6AAwDQYJKoZIhvcNAQELBQADggEBALLVY1kdlsRoMUCDeC9VCfAc+/3yLr6/j17O W9rqTrAgVdffm3BHzS6ZCI7B37bJu/Wop1cPjDv0xCK4oJD92lfptn2zSIRoFXwm ncBhlolZmXVpOZ+fNdWECEWkuOpV1g+yEg7GKN4H5n9m6LK/yQnjZAV77dYSEMfq FEc+M/B5mfjZnGoUzp0Q8RlskWnW+/DT9Cyth8udtDlKrZ/SjIFtH4YaJHZP3iOI ftBdFQHLF4Y6Z7aloNiHaO6EtC+a4YsbBBdHtS7rzj0vd0T2KRtFYo8jzPVqmP9v 4mhiMNDh/g6XphaEzmotibVVEzyFNETmgRW3JXeHR3dV8JO5aWM= -----END CERTIFICATE-----Generated at Wed Feb 19 22:06:40 2025 by rpki-client