$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6RDjlhZ0RJ2Rf9yvh1oKuj6BEw4.roa File: 6RDjlhZ0RJ2Rf9yvh1oKuj6BEw4.roa (raw, json) Hash identifier: vqtC9rCceDQ8Sh62uUgGhTra+E7+X82SfvNOBnVhsYU= Subject key identifier: E9:10:E3:96:16:74:44:9D:91:7F:DC:AF:87:5A:0A:BA:3E:81:13:0E Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 34D0 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6RDjlhZ0RJ2Rf9yvh1oKuj6BEw4.roa Signing time: Mon 10 Feb 2025 13:52:42 +0000 ROA not before: Mon 10 Feb 2025 13:52:42 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.193.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13520 (0x34d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:52:42 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E910E3961674449D917FDCAF875A0ABA3E81130E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:05:80:50:63:0f:34:56:c5:64:a7:69:d7:9e: a2:0b:0c:54:ec:f2:00:f8:4c:55:6f:86:d7:fb:9e: 2b:00:0a:d2:c9:bb:58:f9:7b:26:d3:e7:cd:61:30: fb:8b:bc:1e:ef:50:1c:44:e9:d4:d5:14:22:af:52: f2:dc:48:90:32:64:86:c8:bd:a0:d4:95:d7:d5:23: e1:8b:c5:0e:87:9c:76:d4:7a:06:7a:6d:44:78:ea: 09:6d:dc:f5:02:d6:51:4e:9d:51:01:a8:d4:0d:78: b9:5f:07:2c:47:6f:fa:71:45:fd:f4:05:8e:85:3d: 8b:55:ef:8f:ea:ef:f0:0e:25:e4:c2:1f:39:40:91: 56:67:e2:4c:a0:ed:24:6f:ee:b1:a9:79:67:5e:3e: 62:47:11:d0:0b:f7:f1:43:55:67:63:62:74:17:08: 86:e4:fa:fd:b0:93:e3:a1:30:16:b4:12:ab:69:77: f7:ed:0a:44:a7:d1:2e:04:b3:78:d1:3a:53:0d:e8: 08:2a:35:e7:e8:75:27:af:cc:59:3b:ff:4e:f7:7c: 7f:c9:55:f2:6e:0a:61:35:b2:b5:33:2a:b0:8d:14: e6:63:af:6d:b8:bf:8f:c4:97:f1:5e:be:0e:4a:be: 87:cc:ae:f3:6d:f5:21:eb:88:1a:de:9d:aa:3a:4b: 83:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:10:E3:96:16:74:44:9D:91:7F:DC:AF:87:5A:0A:BA:3E:81:13:0E X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6RDjlhZ0RJ2Rf9yvh1oKuj6BEw4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.110.0/24 Signature Algorithm: sha256WithRSAEncryption 34:ae:18:3b:73:9d:6a:86:a4:8f:1a:8d:0b:00:ab:ac:f2:a1: 82:64:cf:8f:a1:a2:df:0e:ae:2d:92:c4:22:ab:e1:2e:13:76: 87:bc:61:ac:be:96:4b:23:40:8a:e2:8a:6a:0c:63:c4:b8:e9: 77:99:9d:59:a1:8c:7f:8e:0d:1c:c5:f1:a4:08:1e:ae:8d:64: ff:74:63:e0:b2:4d:70:f4:a8:86:3f:11:58:74:01:43:33:e9: 12:18:8c:cb:48:74:b8:4d:98:12:eb:11:d9:17:01:bd:e2:8b: eb:12:5a:22:5c:7f:0e:d5:e2:69:c0:10:cb:fd:43:0c:0b:ba: 2d:b2:10:0e:12:b8:15:a3:fe:e7:af:92:e7:6e:7d:f7:0d:ad: 7b:7f:0e:65:5c:51:b6:e9:17:d3:bf:8b:c6:ba:d4:fd:9c:21: 58:4c:0e:00:92:0b:c1:58:f0:4e:11:a5:37:b6:21:6b:71:dc: d3:55:98:c6:54:44:d8:95:53:5f:fd:38:17:66:49:5a:cd:11: 66:52:8a:7c:1f:f3:24:36:b2:a5:e4:5a:cf:32:56:a9:cd:ca: 6c:6a:ee:fb:62:02:82:5a:d8:bc:b4:5f:ad:04:43:87:c4:35: 78:f2:2d:58:cf:d3:4b:87:bc:e4:52:90:fd:46:04:3e:68:16: f7:84:e0:9e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNNAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUyNDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU5MTBFMzk2MTY3NDQ0 OUQ5MTdGRENBRjg3NUEwQUJBM0U4MTEzMEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHBYBQYw80VsVkp2nXnqILDFTs8gD4TFVvhtf7nisACtLJu1j5 eybT581hMPuLvB7vUBxE6dTVFCKvUvLcSJAyZIbIvaDUldfVI+GLxQ6HnHbUegZ6 bUR46glt3PUC1lFOnVEBqNQNeLlfByxHb/pxRf30BY6FPYtV74/q7/AOJeTCHzlA kVZn4kyg7SRv7rGpeWdePmJHEdAL9/FDVWdjYnQXCIbk+v2wk+OhMBa0Eqtpd/ft CkSn0S4Es3jROlMN6AgqNefodSevzFk7/073fH/JVfJuCmE1srUzKrCNFOZjr224 v4/El/Fevg5KvofMrvNt9SHriBrenao6S4OPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU6RDjlhZ0RJ2Rf9yvh1oKuj6BEw4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzZSRGpsaFowUkoyUmY5eXZo MW9LdWo2QkV3NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB7 wW4wDQYJKoZIhvcNAQELBQADggEBADSuGDtznWqGpI8ajQsAq6zyoYJkz4+hot8O ri2SxCKr4S4Tdoe8Yay+lksjQIriimoMY8S46XeZnVmhjH+ODRzF8aQIHq6NZP90 Y+CyTXD0qIY/EVh0AUMz6RIYjMtIdLhNmBLrEdkXAb3ii+sSWiJcfw7V4mnAEMv9 QwwLui2yEA4SuBWj/uevkuduffcNrXt/DmVcUbbpF9O/i8a61P2cIVhMDgCSC8FY 8E4RpTe2IWtx3NNVmMZURNiVU1/9OBdmSVrNEWZSinwf8yQ2sqXkWs8yVqnNymxq 7vtiAoJa2Ly0X60EQ4fENXjyLVjP00uHvORSkP1GBD5oFveE4J4= -----END CERTIFICATE-----Generated at Wed Feb 19 22:10:33 2025 by rpki-client