$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6mrT2jyWOTUeaGcMACa-FjKMIiE.roa File: 6mrT2jyWOTUeaGcMACa-FjKMIiE.roa (raw, json) Hash identifier: IYmAAbmu2oBEjRzY+G01P2cVyZahqwPD05skianL4aA= Subject key identifier: EA:6A:D3:DA:3C:96:39:35:1E:68:67:0C:00:26:BE:16:32:8C:22:21 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3469 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6mrT2jyWOTUeaGcMACa-FjKMIiE.roa Signing time: Mon 10 Feb 2025 13:52:21 +0000 ROA not before: Mon 10 Feb 2025 13:52:21 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.112.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13417 (0x3469) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:52:21 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EA6AD3DA3C9639351E68670C0026BE16328C2221 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d5:fd:8b:47:be:eb:d3:25:82:04:c1:a6:14: b8:de:2e:3f:0c:de:dc:cc:01:40:48:82:af:d8:41: 8a:1b:d6:f7:00:0c:16:87:ce:08:ec:66:87:9a:c3: b3:03:35:bd:35:28:1a:97:85:c5:d4:92:e3:fa:68: 0f:eb:7f:8c:59:0d:53:bc:f2:08:94:69:bc:0f:60: f4:f2:7d:d2:e9:05:d9:30:b0:0c:e4:c1:10:d0:e5: 51:e0:07:e1:7f:57:6a:11:6b:b8:3e:43:f8:1a:6c: b2:3d:79:3b:ef:78:b6:9e:90:61:e9:f7:1c:6a:01: d0:7b:e7:8b:e2:db:9e:48:90:3f:27:50:0e:70:5a: da:30:a9:42:98:4e:b1:c1:27:05:fb:32:26:0e:5b: 26:90:0f:d2:3a:6b:29:07:2d:6e:59:c2:d8:77:b1: 31:73:0a:cb:8e:3e:7e:18:9a:a1:1a:7a:48:cc:9c: ea:e2:c7:a5:06:27:41:84:b1:f7:d6:ae:84:be:fe: 94:61:0e:d7:5b:48:1c:0b:56:08:7b:a3:18:26:c6: db:ee:42:5f:c3:42:52:d0:2b:19:6b:68:78:7e:86: 2e:03:ac:f8:a6:d9:3b:11:ad:4c:13:14:55:03:2f: cf:d5:43:a9:88:1c:49:7a:26:e8:9c:a8:58:fc:65: 6b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:6A:D3:DA:3C:96:39:35:1E:68:67:0C:00:26:BE:16:32:8C:22:21 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6mrT2jyWOTUeaGcMACa-FjKMIiE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.112.0/22 Signature Algorithm: sha256WithRSAEncryption a0:92:d1:e4:a3:fc:19:71:4c:94:8d:d2:eb:81:1c:76:df:5e: ea:54:0d:fb:79:78:0c:30:ae:e7:c1:88:a9:66:66:5a:8c:03: 1c:5f:a5:4e:0e:86:1c:9c:82:46:3a:ff:70:9d:52:6a:fb:1b: 8f:c6:45:77:37:7d:65:5c:f1:c2:b6:12:48:34:bc:61:9b:6a: 63:07:7f:70:87:d5:1a:51:2d:10:9c:66:f8:33:48:ac:b2:11: cc:54:cc:88:30:ac:87:5d:5a:8d:1e:d0:02:1f:14:75:89:a0: 62:24:67:d1:2c:66:c3:71:be:d1:f6:ee:1b:be:f1:73:5f:6d: 85:4e:b5:59:35:a1:46:cb:7d:07:93:30:d7:65:4f:42:fe:bd: b8:48:a1:b6:39:5a:b9:16:7d:f1:3f:ba:6e:a1:7d:77:a7:1a: 83:48:7a:17:30:82:a8:2e:a3:65:1f:0d:9b:f9:e3:80:3d:a5: d9:48:58:87:13:31:76:6a:f7:7c:59:57:d8:bf:27:3c:bc:d4: 3f:f7:b8:f5:58:3c:be:8a:4e:39:d9:ab:fa:28:86:cc:4b:9c: 65:90:cc:e7:30:25:71:a6:38:af:63:9f:df:03:36:94:73:d1: 78:a6:9e:dc:0c:31:61:8b:a4:f6:14:93:91:3a:ed:bf:98:61: 5a:bd:c7:bc -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNGkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUyMjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVBNkFEM0RBM0M5NjM5 MzUxRTY4NjcwQzAwMjZCRTE2MzI4QzIyMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC51f2LR77r0yWCBMGmFLjeLj8M3tzMAUBIgq/YQYob1vcADBaH zgjsZoeaw7MDNb01KBqXhcXUkuP6aA/rf4xZDVO88giUabwPYPTyfdLpBdkwsAzk wRDQ5VHgB+F/V2oRa7g+Q/gabLI9eTvveLaekGHp9xxqAdB754vi255IkD8nUA5w WtowqUKYTrHBJwX7MiYOWyaQD9I6aykHLW5Zwth3sTFzCsuOPn4YmqEaekjMnOri x6UGJ0GEsffWroS+/pRhDtdbSBwLVgh7oxgmxtvuQl/DQlLQKxlraHh+hi4DrPim 2TsRrUwTFFUDL8/VQ6mIHEl6JuicqFj8ZWvFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU6mrT2jyWOTUeaGcMACa+FjKMIiEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzZtclQyanlXT1RVZWFHY01B Q2EtRmpLTUlpRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq AXAwDQYJKoZIhvcNAQELBQADggEBAKCS0eSj/BlxTJSN0uuBHHbfXupUDft5eAww rufBiKlmZlqMAxxfpU4OhhycgkY6/3CdUmr7G4/GRXc3fWVc8cK2Ekg0vGGbamMH f3CH1RpRLRCcZvgzSKyyEcxUzIgwrIddWo0e0AIfFHWJoGIkZ9EsZsNxvtH27hu+ 8XNfbYVOtVk1oUbLfQeTMNdlT0L+vbhIobY5WrkWffE/um6hfXenGoNIehcwgqgu o2UfDZv544A9pdlIWIcTMXZq93xZV9i/Jzy81D/3uPVYPL6KTjnZq/oohsxLnGWQ zOcwJXGmOK9jn98DNpRz0XimntwMMWGLpPYUk5E67b+YYVq9x7w= -----END CERTIFICATE-----Generated at Wed Feb 19 22:10:48 2025 by rpki-client