$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7MkDFAJqT1wJ_i-nGo68aVtpE90.roa File: 7MkDFAJqT1wJ_i-nGo68aVtpE90.roa (raw, json) Hash identifier: TYeixZ2hYB1sXPQiH86QA6bW8mLpcCfII9Npgm9zPF0= Subject key identifier: EC:C9:03:14:02:6A:4F:5C:09:FE:2F:A7:1A:8E:BC:69:5B:69:13:DD Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3651 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7MkDFAJqT1wJ_i-nGo68aVtpE90.roa Signing time: Mon 10 Feb 2025 13:54:13 +0000 ROA not before: Mon 10 Feb 2025 13:54:13 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.194.12.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13905 (0x3651) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:54:13 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=ECC90314026A4F5C09FE2FA71A8EBC695B6913DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:78:dd:7c:57:d7:88:de:21:fd:02:a6:af:fe: 06:40:38:8e:d0:37:ad:66:5c:04:2b:5e:ec:f0:42: 75:e8:ad:12:72:c8:da:dd:c7:de:89:eb:0d:f3:ad: f8:df:ac:eb:75:2d:a8:f5:e1:50:04:58:ab:8d:53: 1e:5d:41:43:50:bf:98:ca:63:8f:7b:4f:d3:96:20: b2:b4:70:41:3e:45:e3:7f:4e:de:f4:14:12:13:7f: 36:ea:e2:7b:4f:1f:d4:73:53:55:03:54:57:90:19: da:78:79:75:79:81:79:2c:00:59:f4:f4:58:17:ec: 2f:64:bd:4d:68:6b:04:8a:6f:f3:d1:94:e4:c5:26: d9:7e:a2:46:93:61:a9:42:31:46:ab:b3:39:99:e3: 7f:f0:65:ae:10:0b:c8:84:b4:c5:95:3d:2e:d2:1a: a2:a4:7b:93:f9:9a:07:ac:45:b8:23:b4:b0:56:5b: 06:dd:ba:e4:24:77:9f:c8:73:48:75:2b:4a:df:24: ef:3e:21:54:94:3b:7c:79:d4:f6:1e:dd:df:2f:0c: a0:ec:01:9f:a2:33:06:c6:2d:8e:6f:b1:cd:0d:62: c2:41:8a:8c:f9:ad:a7:b1:1d:75:f6:30:7a:32:c1: 86:86:7f:a1:16:09:aa:29:73:46:a3:18:ba:8f:48: dc:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:C9:03:14:02:6A:4F:5C:09:FE:2F:A7:1A:8E:BC:69:5B:69:13:DD X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7MkDFAJqT1wJ_i-nGo68aVtpE90.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.12.0/22 Signature Algorithm: sha256WithRSAEncryption 76:3c:3f:71:e6:86:83:97:98:0a:f9:be:fa:d7:b3:87:b1:b4: 3e:1c:a4:72:93:86:65:b2:6c:54:23:19:ea:f6:0f:a5:b6:b7: 11:fc:56:f7:bc:21:0f:e9:4b:46:8c:df:9f:ae:11:c6:63:dd: c0:f8:1d:6c:08:3d:f3:85:ed:57:0d:65:09:a8:01:d1:72:16: 9a:1b:63:75:ca:92:e1:74:78:37:a8:cc:c1:34:a2:a6:61:fd: 48:ee:28:38:3d:7c:59:9b:2e:dd:ae:29:8a:e9:bf:aa:86:ca: 11:cb:e5:13:b3:a3:a4:8f:f4:de:cb:7f:6f:55:5d:f2:f7:f6: dc:57:6d:ab:3f:b2:23:fc:13:45:07:1e:5a:77:8d:f8:be:4e: a7:7d:79:fa:ec:b0:d2:65:5c:1b:a0:21:a4:b0:4d:d1:61:92: 76:24:e5:77:79:ce:91:95:bc:f8:d0:f4:b0:52:c5:44:3a:60: db:61:35:f4:3d:56:59:f5:92:3d:e1:08:8a:ce:21:ae:66:ad: 80:a1:61:6a:df:b9:dc:0b:49:b4:1a:04:a6:20:53:90:cb:b0: 1e:e4:bc:aa:6d:b1:ff:9e:f1:de:82:a8:73:47:93:a6:79:82: 1b:b3:7e:b4:f8:48:45:b8:dd:be:db:9f:24:9d:bc:a4:37:b4: fd:ae:ee:34 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNlEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzU0MTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVDQzkwMzE0MDI2QTRG NUMwOUZFMkZBNzFBOEVCQzY5NUI2OTEzREQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3eN18V9eI3iH9Aqav/gZAOI7QN61mXAQrXuzwQnXorRJyyNrd x96J6w3zrfjfrOt1Laj14VAEWKuNUx5dQUNQv5jKY497T9OWILK0cEE+ReN/Tt70 FBITfzbq4ntPH9RzU1UDVFeQGdp4eXV5gXksAFn09FgX7C9kvU1oawSKb/PRlOTF Jtl+okaTYalCMUarszmZ43/wZa4QC8iEtMWVPS7SGqKke5P5mgesRbgjtLBWWwbd uuQkd5/Ic0h1K0rfJO8+IVSUO3x51PYe3d8vDKDsAZ+iMwbGLY5vsc0NYsJBioz5 raexHXX2MHoywYaGf6EWCaopc0ajGLqPSNypAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU7MkDFAJqT1wJ/i+nGo68aVtpE90wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzdNa0RGQUpxVDF3Sl9pLW5H bzY4YVZ0cEU5MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wgwwDQYJKoZIhvcNAQELBQADggEBAHY8P3HmhoOXmAr5vvrXs4extD4cpHKThmWy bFQjGer2D6W2txH8Vve8IQ/pS0aM35+uEcZj3cD4HWwIPfOF7VcNZQmoAdFyFpob Y3XKkuF0eDeozME0oqZh/UjuKDg9fFmbLt2uKYrpv6qGyhHL5ROzo6SP9N7Lf29V XfL39txXbas/siP8E0UHHlp3jfi+Tqd9efrssNJlXBugIaSwTdFhknYk5Xd5zpGV vPjQ9LBSxUQ6YNthNfQ9Vln1kj3hCIrOIa5mrYChYWrfudwLSbQaBKYgU5DLsB7k vKptsf+e8d6CqHNHk6Z5ghuzfrT4SEW43b7bnySdvKQ3tP2u7jQ= -----END CERTIFICATE-----Generated at Wed Feb 19 22:08:24 2025 by rpki-client