$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5hu-E7fIA_ssLEzFxC3I27C6HDo.roa File: 5hu-E7fIA_ssLEzFxC3I27C6HDo.roa (raw, json) Hash identifier: Y2/wttawlga/q9hpRfCLdupbhIa0bBuLCIPl/zkk0Kk= Subject key identifier: E6:1B:BE:13:B7:C8:03:FB:2C:2C:4C:C5:C4:2D:C8:DB:B0:BA:1C:3A Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 34E2 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5hu-E7fIA_ssLEzFxC3I27C6HDo.roa Signing time: Mon 10 Feb 2025 13:52:47 +0000 ROA not before: Mon 10 Feb 2025 13:52:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.192.164.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13538 (0x34e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:52:47 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E61BBE13B7C803FB2C2C4CC5C42DC8DBB0BA1C3A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:cd:ed:c7:94:fe:b8:b9:6b:fc:f2:b6:18:81: 2c:8a:88:33:81:8e:56:30:56:f4:2c:11:6e:58:b9: 71:4a:24:f4:af:d3:e7:ea:59:ea:f5:43:e5:c8:3f: bf:b2:cc:8a:24:7e:3f:bb:2e:73:dd:2d:af:23:9e: eb:69:0d:98:7a:f0:0f:76:2e:0f:4f:6d:33:d7:14: c3:75:8f:df:7c:41:40:a9:11:58:3a:26:3e:01:d9: c5:31:8b:f4:a4:33:6c:a5:bf:df:a4:72:fc:39:84: 80:3c:bb:4b:c6:10:13:ac:9d:f6:28:f6:fd:a7:6d: f4:10:08:be:d7:76:27:c0:e4:6d:c2:a4:96:eb:99: ac:e6:c4:3d:df:76:1a:bb:15:e0:5b:51:a7:0a:b8: b7:94:63:cb:8f:db:12:ce:da:06:0a:2f:47:93:89: 8b:bc:fd:4c:06:18:de:6d:a4:6c:ce:56:3d:a5:5f: 73:4a:77:69:e0:80:b5:fa:71:98:28:60:65:c6:e4: 00:af:f8:42:c3:04:43:91:70:f3:5d:21:47:de:c3: 00:b0:d2:0e:21:01:09:d0:9c:4d:22:52:fb:e3:3a: 05:f5:f7:db:65:2c:8a:fb:aa:ed:db:29:e2:54:c0: ee:40:1f:76:cd:f3:c7:28:b5:63:63:9f:67:e8:63: 50:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:1B:BE:13:B7:C8:03:FB:2C:2C:4C:C5:C4:2D:C8:DB:B0:BA:1C:3A X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5hu-E7fIA_ssLEzFxC3I27C6HDo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.192.164.0/22 Signature Algorithm: sha256WithRSAEncryption 1f:02:6a:36:2f:9e:6c:c1:8d:64:da:cb:40:b6:ba:8f:98:c7: 66:66:9e:33:d1:38:00:eb:ee:1d:46:59:fe:aa:8d:b3:76:ea: 46:ff:a1:d3:bc:86:28:c5:e1:44:64:88:4c:74:d2:70:0e:03: 20:49:34:76:a2:53:65:97:66:b8:4c:b4:9d:f0:45:3b:49:0e: 03:92:de:ab:37:d3:5a:63:d9:cb:40:79:e0:44:7d:07:30:54: e1:b4:50:3b:d0:aa:c3:d4:6b:57:36:9c:3c:72:6d:57:a4:91: c5:5f:ed:88:b9:68:bf:44:9d:2f:c7:bf:4b:a5:7c:48:b7:af: 1b:dc:03:e6:39:f3:b1:2f:8e:cb:9e:7c:6a:16:92:cc:97:26: d9:fb:79:0a:5e:8d:95:f6:13:80:9e:da:c1:1c:65:a8:cb:1e: 59:ff:38:ea:a8:0b:5f:ad:06:a4:fb:a0:3a:d0:4a:bf:f3:5f: 07:f6:59:e3:8d:1c:f3:04:4d:38:10:a7:4d:c1:e9:c2:37:76: 11:2c:ac:66:c4:0e:3b:ae:87:2f:63:af:82:e8:26:ee:99:c9: 5e:c4:26:05:ba:70:dd:dc:ef:02:0e:63:72:d1:2c:86:a4:79: c6:95:39:74:e4:14:39:60:07:63:da:ea:03:6d:0c:67:f2:31: f3:58:75:dd -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNOIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUyNDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU2MUJCRTEzQjdDODAz RkIyQzJDNENDNUM0MkRDOERCQjBCQTFDM0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeze3HlP64uWv88rYYgSyKiDOBjlYwVvQsEW5YuXFKJPSv0+fq Wer1Q+XIP7+yzIokfj+7LnPdLa8jnutpDZh68A92Lg9PbTPXFMN1j998QUCpEVg6 Jj4B2cUxi/SkM2ylv9+kcvw5hIA8u0vGEBOsnfYo9v2nbfQQCL7XdifA5G3CpJbr mazmxD3fdhq7FeBbUacKuLeUY8uP2xLO2gYKL0eTiYu8/UwGGN5tpGzOVj2lX3NK d2nggLX6cZgoYGXG5ACv+ELDBEORcPNdIUfewwCw0g4hAQnQnE0iUvvjOgX199tl LIr7qu3bKeJUwO5AH3bN88cotWNjn2foY1A1AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU5hu+E7fIA/ssLEzFxC3I27C6HDowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzVodS1FN2ZJQV9zc0xFekZ4 QzNJMjdDNkhEby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wKQwDQYJKoZIhvcNAQELBQADggEBAB8CajYvnmzBjWTay0C2uo+Yx2ZmnjPROADr 7h1GWf6qjbN26kb/odO8hijF4URkiEx00nAOAyBJNHaiU2WXZrhMtJ3wRTtJDgOS 3qs301pj2ctAeeBEfQcwVOG0UDvQqsPUa1c2nDxybVekkcVf7Yi5aL9EnS/Hv0ul fEi3rxvcA+Y587EvjsuefGoWksyXJtn7eQpejZX2E4Ce2sEcZajLHln/OOqoC1+t BqT7oDrQSr/zXwf2WeONHPMETTgQp03B6cI3dhEsrGbEDjuuhy9jr4LoJu6ZyV7E JgW6cN3c7wIOY3LRLIakecaVOXTkFDlgB2Pa6gNtDGfyMfNYdd0= -----END CERTIFICATE-----Generated at Wed Feb 19 22:07:00 2025 by rpki-client