$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8y8dtS550EkI1AtCWpWHleSkKsg.roa File: 8y8dtS550EkI1AtCWpWHleSkKsg.roa (raw, json) Hash identifier: T56MeomlWTUjM5j0qywcWdn8qEv1YRvD7I+cjs6BIGU= Subject key identifier: F3:2F:1D:B5:2E:79:D0:49:08:D4:0B:42:5A:95:87:95:E4:A4:2A:C8 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 36AF Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8y8dtS550EkI1AtCWpWHleSkKsg.roa Signing time: Mon 10 Feb 2025 13:54:34 +0000 ROA not before: Mon 10 Feb 2025 13:54:34 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 2407:4d00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13999 (0x36af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:54:34 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F32F1DB52E79D04908D40B425A958795E4A42AC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b5:52:5e:63:02:46:7b:7f:2c:3b:8e:3a:68: 8f:27:02:b6:a9:ec:33:a3:3f:61:4e:50:7d:81:bb: 4e:59:da:ea:ae:c5:96:8f:ac:af:e6:82:03:22:bd: 1b:b7:78:60:12:35:ec:81:8a:5d:25:9c:6e:cd:a8: 13:b6:25:3a:cc:e0:57:eb:18:59:41:9f:fb:22:eb: a1:66:6f:1c:42:85:ad:2f:b3:cc:97:61:22:85:23: df:06:be:a6:b0:1b:63:8c:97:cb:a3:9a:e9:e4:b6: 8c:65:10:32:47:9e:28:ff:73:4a:99:b4:48:da:e6: f6:cf:70:f8:c4:02:a4:f4:58:cf:a0:f0:21:55:a7: 7a:a1:ea:64:ff:1d:6f:07:8d:c0:13:11:0e:9b:3b: 74:2e:90:67:ce:65:62:e2:d3:fc:4f:f4:8d:5b:51: ed:53:2e:e7:cc:42:99:c4:2e:1f:1d:31:c0:bc:88: 0b:63:b9:72:07:f6:cf:9b:06:41:e9:b4:a7:58:9d: 54:f8:f5:36:b7:88:d3:35:8e:e5:5c:4d:bc:e7:84: aa:e3:e4:7d:a3:3f:df:31:0f:43:a1:fa:c3:40:f6: 97:5d:a4:f5:e1:96:38:17:32:63:fd:8b:bf:ae:fb: 9e:69:08:bc:a7:07:7c:b2:09:6d:a6:03:28:36:7e: ec:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:2F:1D:B5:2E:79:D0:49:08:D4:0B:42:5A:95:87:95:E4:A4:2A:C8 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8y8dtS550EkI1AtCWpWHleSkKsg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:4d00::/32 Signature Algorithm: sha256WithRSAEncryption 50:b1:ff:4e:29:95:6a:9f:24:31:ad:b1:09:f4:7e:e7:ef:09: de:58:6f:2a:be:90:37:54:e1:8c:32:8d:c1:e8:15:d0:8e:e8: 1d:7b:fb:9b:e7:6a:d7:29:dd:b9:c4:c6:ee:48:2a:ce:5a:16: c1:3d:da:ce:eb:52:20:dc:6a:3e:38:a9:a6:ee:91:98:a3:da: d9:95:f9:ef:2c:e7:74:1a:ce:27:1a:f6:c0:4b:e2:0c:bf:cc: 85:08:55:06:0f:3e:df:ab:3f:9c:2a:23:a3:85:6c:53:c4:66: 11:fb:f5:c2:2e:fd:32:b5:e1:01:c8:ab:4b:e6:6a:d3:22:f6: a3:f5:40:bd:73:19:7b:5c:5c:7a:67:a6:80:eb:76:5f:87:10: 29:b2:c5:fc:89:3f:34:b0:c3:e5:14:e5:1c:58:0e:01:f2:f0: 00:df:7a:0c:a6:86:a7:6b:ee:27:0d:d9:da:bf:ba:42:e4:91: 80:00:8a:af:3b:94:af:01:8b:38:3e:15:57:46:58:6d:32:d5: 4b:31:58:73:69:8e:bf:d3:73:13:34:fa:7c:e4:fc:3b:c4:78: 5a:f3:b5:62:b4:86:40:d9:55:6f:24:26:cc:8c:1f:93:7a:99: e7:88:06:ae:a4:95:8e:f9:62:06:15:05:f7:0f:b5:2e:09:8d: d5:8e:a1:a5 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICNq8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzU0MzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYzMkYxREI1MkU3OUQw NDkwOEQ0MEI0MjVBOTU4Nzk1RTRBNDJBQzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1tVJeYwJGe38sO446aI8nArap7DOjP2FOUH2Bu05Z2uquxZaP rK/mggMivRu3eGASNeyBil0lnG7NqBO2JTrM4FfrGFlBn/si66FmbxxCha0vs8yX YSKFI98GvqawG2OMl8ujmunktoxlEDJHnij/c0qZtEja5vbPcPjEAqT0WM+g8CFV p3qh6mT/HW8HjcATEQ6bO3QukGfOZWLi0/xP9I1bUe1TLufMQpnELh8dMcC8iAtj uXIH9s+bBkHptKdYnVT49Ta3iNM1juVcTbznhKrj5H2jP98xD0Oh+sNA9pddpPXh ljgXMmP9i7+u+55pCLynB3yyCW2mAyg2fuy/AgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQU8y8dtS550EkI1AtCWpWHleSkKsgwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzh5OGR0UzU1MEVrSTFBdENX cFdIbGVTa0tzZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk B00AMA0GCSqGSIb3DQEBCwUAA4IBAQBQsf9OKZVqnyQxrbEJ9H7n7wneWG8qvpA3 VOGMMo3B6BXQjugde/ub52rXKd25xMbuSCrOWhbBPdrO61Ig3Go+OKmm7pGYo9rZ lfnvLOd0Gs4nGvbAS+IMv8yFCFUGDz7fqz+cKiOjhWxTxGYR+/XCLv0yteEByKtL 5mrTIvaj9UC9cxl7XFx6Z6aA63ZfhxApssX8iT80sMPlFOUcWA4B8vAA33oMpoan a+4nDdnav7pC5JGAAIqvO5SvAYs4PhVXRlhtMtVLMVhzaY6/03MTNPp85Pw7xHha 87VitIZA2VVvJCbMjB+TepnniAaupJWO+WIGFQX3D7UuCY3VjqGl -----END CERTIFICATE-----Generated at Wed Feb 19 21:59:41 2025 by rpki-client