$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8yWU3WKEJ1Z4_pp0EIaoQgoP-Fk.roa File: 8yWU3WKEJ1Z4_pp0EIaoQgoP-Fk.roa (raw, json) Hash identifier: EgWYYq8JixksSiPBjukQMzK+b7QxoLq22ByeeSJBVxw= Subject key identifier: F3:25:94:DD:62:84:27:56:78:FE:9A:74:10:86:A8:42:0A:0F:F8:59 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3694 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8yWU3WKEJ1Z4_pp0EIaoQgoP-Fk.roa Signing time: Mon 10 Feb 2025 13:54:27 +0000 ROA not before: Mon 10 Feb 2025 13:54:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.193.0.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13972 (0x3694) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:54:27 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F32594DD6284275678FE9A741086A8420A0FF859 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:c8:d3:af:7f:67:0f:5d:17:49:88:b6:7e:b4: 4d:fb:29:62:22:4f:a4:14:72:f8:63:92:b8:3a:2e: e8:72:ec:54:e1:97:8e:6b:d9:93:c3:2f:45:f1:42: ad:6d:e1:18:4d:e9:c1:2b:a1:ae:1d:20:59:9e:ce: d1:d6:ec:ba:39:08:94:4e:e7:3e:f1:11:42:af:bd: 7c:12:af:6c:47:6d:e3:f1:f6:aa:12:3f:0c:2a:e9: 43:de:a1:6f:bb:d9:01:b2:1b:5a:0b:9e:aa:70:0f: 52:a9:3a:0e:34:24:3d:29:43:09:04:1f:19:77:1b: 82:3c:b9:e8:09:1e:6b:e8:b2:df:00:45:a3:e0:56: a4:4d:a8:4f:ce:19:9b:cb:8c:f7:b0:96:1a:c1:6b: 5c:e8:82:d2:20:9f:ab:9d:84:ae:cb:3f:04:73:d3: ce:d5:1e:da:80:ed:f4:f9:67:93:38:89:20:a2:a0: ca:5f:bd:d9:ce:82:03:4b:2e:07:63:e5:66:6b:2a: 1c:77:62:50:05:88:36:56:45:25:ed:20:bf:0e:72: e5:a2:de:f6:c5:e5:f7:28:54:3a:3e:41:dd:53:ab: 4e:76:8d:9d:47:80:aa:ae:48:0d:66:db:12:79:8b: 6f:3c:29:3a:a1:77:47:d0:61:79:c3:a6:de:a9:cf: 7d:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:25:94:DD:62:84:27:56:78:FE:9A:74:10:86:A8:42:0A:0F:F8:59 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8yWU3WKEJ1Z4_pp0EIaoQgoP-Fk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.0.0/20 Signature Algorithm: sha256WithRSAEncryption 23:80:ab:30:48:05:6c:8d:14:f6:d3:e6:5b:38:26:d0:ac:af: 96:2c:e0:19:8c:97:2f:46:6c:11:6b:17:4b:2a:8d:e2:9b:53: 07:d1:77:46:29:82:ce:7a:3c:31:c5:96:9f:bb:a2:eb:56:8f: 72:c0:29:a5:7c:6d:c6:c9:eb:0f:db:be:5b:a7:0c:b4:54:4a: b3:8a:2f:2d:1d:c8:82:9c:5c:2a:bb:2e:2b:12:92:fe:07:bb: 5e:d9:f9:0f:25:4d:48:8b:05:33:31:df:40:83:7e:7e:51:8a: 2f:d8:dc:43:07:43:9c:f5:2c:f0:1d:54:b8:54:7d:6e:bf:d1: 31:9d:fa:c8:ab:ef:2f:71:cf:6f:1f:f7:d8:a6:32:bf:ce:ee: b8:ac:7d:71:b2:5b:51:85:10:2f:7b:ba:1f:ba:a0:c0:6f:ab: c1:45:13:d2:55:5f:7e:4c:85:d3:f0:fa:f5:f1:d6:68:fb:c2: e8:b4:55:3b:fb:a5:8b:48:2a:47:04:69:6e:37:d4:0c:79:1d: 8d:1d:00:45:63:0c:ff:cf:e5:6c:a4:c2:76:58:db:4f:0f:30: 99:46:46:e5:17:44:07:8c:d9:66:5c:8f:c2:63:49:e9:ed:ad: 5b:c1:de:ad:cd:00:b1:94:e1:e5:e2:77:fd:50:52:0a:3a:10: a2:12:f4:b4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNpQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzU0MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYzMjU5NERENjI4NDI3 NTY3OEZFOUE3NDEwODZBODQyMEEwRkY4NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCRyNOvf2cPXRdJiLZ+tE37KWIiT6QUcvhjkrg6Luhy7FThl45r 2ZPDL0XxQq1t4RhN6cEroa4dIFmeztHW7Lo5CJRO5z7xEUKvvXwSr2xHbePx9qoS Pwwq6UPeoW+72QGyG1oLnqpwD1KpOg40JD0pQwkEHxl3G4I8uegJHmvost8ARaPg VqRNqE/OGZvLjPewlhrBa1zogtIgn6udhK7LPwRz087VHtqA7fT5Z5M4iSCioMpf vdnOggNLLgdj5WZrKhx3YlAFiDZWRSXtIL8OcuWi3vbF5fcoVDo+Qd1Tq052jZ1H gKquSA1m2xJ5i288KTqhd0fQYXnDpt6pz30jAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU8yWU3WKEJ1Z4/pp0EIaoQgoP+FkwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzh5V1UzV0tFSjFaNF9wcDBF SWFvUWdvUC1Gay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR7 wQAwDQYJKoZIhvcNAQELBQADggEBACOAqzBIBWyNFPbT5ls4JtCsr5Ys4BmMly9G bBFrF0sqjeKbUwfRd0Ypgs56PDHFlp+7outWj3LAKaV8bcbJ6w/bvlunDLRUSrOK Ly0dyIKcXCq7LisSkv4Hu17Z+Q8lTUiLBTMx30CDfn5Rii/Y3EMHQ5z1LPAdVLhU fW6/0TGd+sir7y9xz28f99imMr/O7risfXGyW1GFEC97uh+6oMBvq8FFE9JVX35M hdPw+vXx1mj7wui0VTv7pYtIKkcEaW431Ax5HY0dAEVjDP/P5WykwnZY208PMJlG RuUXRAeM2WZcj8JjSentrVvB3q3NALGU4eXid/1QUgo6EKIS9LQ= -----END CERTIFICATE-----Generated at Wed Feb 19 21:58:07 2025 by rpki-client