$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Aug3RhPgtFhXKqxwlt3tepOtzms.roa File: Aug3RhPgtFhXKqxwlt3tepOtzms.roa (raw, json) Hash identifier: 68py5gkxMYXlYyqc7n2usSiEVPW3dAEJdQATrXFDxT4= Subject key identifier: 02:E8:37:46:13:E0:B4:58:57:2A:AC:70:96:DD:ED:7A:93:AD:CE:6B Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 33BA Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Aug3RhPgtFhXKqxwlt3tepOtzms.roa Signing time: Mon 10 Feb 2025 13:51:43 +0000 ROA not before: Mon 10 Feb 2025 13:51:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.233.80.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13242 (0x33ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:51:43 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=02E8374613E0B458572AAC7096DDED7A93ADCE6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:da:76:49:6c:9d:4f:71:17:46:55:c6:1d:e4: ee:70:04:ec:a9:57:51:af:08:79:d6:72:c0:6f:3a: 50:69:be:e1:f0:44:1b:78:47:7e:9f:6a:8c:82:21: 61:f0:d7:c3:e5:92:f0:73:08:45:ab:aa:f4:98:d2: 11:23:b4:45:83:a4:8b:f5:b8:20:b0:4e:75:5a:91: cd:a5:34:e9:97:b5:23:d3:50:59:58:81:40:e1:a9: 9d:71:68:5e:2f:51:9f:81:46:4d:2a:e2:9a:a6:56: 37:7b:6d:57:89:02:fb:c4:ae:7a:89:76:f9:b2:eb: 11:83:4f:f7:93:ed:ff:b0:2c:92:f0:9b:57:35:5e: 70:bf:71:0d:5b:64:01:77:52:58:cc:e5:53:1e:c1: 14:1a:24:e5:11:c9:03:08:cb:cf:60:ce:77:59:f0: 54:1d:9d:cb:c4:db:ad:5b:17:de:58:17:2d:8c:a4: cf:96:30:a5:a4:c1:8e:cb:10:f9:f6:66:16:d8:49: f0:5a:a6:fb:de:0b:f7:37:b0:f8:30:31:d6:26:60: cf:0e:82:01:5f:0c:1f:cc:ad:5d:84:5c:89:b5:47: 8d:ad:8f:56:5e:f4:16:a8:a2:e3:3d:1f:b2:1c:16: 6d:66:c1:30:b1:b6:d0:0b:47:5c:2e:14:d6:a1:cc: 10:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:E8:37:46:13:E0:B4:58:57:2A:AC:70:96:DD:ED:7A:93:AD:CE:6B X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Aug3RhPgtFhXKqxwlt3tepOtzms.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.80.0/22 Signature Algorithm: sha256WithRSAEncryption 89:75:ff:f9:50:15:5b:41:f6:43:b4:58:27:e7:eb:7e:3d:5b: dc:f4:14:a8:ca:fc:a3:7f:c1:dc:ed:79:bd:24:70:69:d7:01: 2c:d9:34:a4:f6:cf:da:4d:f3:12:11:cd:f0:d9:25:50:6b:5c: 2d:d2:39:45:3c:66:69:47:e8:3d:d7:db:1a:91:68:78:4c:f9: 9d:bf:c0:d4:23:e3:a8:50:76:0b:f5:29:d7:75:d3:e6:2d:16: f5:be:00:66:b8:c5:ab:7b:ea:6f:b2:be:8e:2a:91:6c:72:e2: 53:6f:3d:77:e0:d6:6e:fe:a9:09:7f:d0:42:06:5c:aa:b6:06: ce:8d:2f:33:27:8a:50:d8:1f:4d:5a:36:bc:3d:80:8c:71:1b: 01:84:85:1a:e4:b4:2e:dd:f8:45:e1:bc:d1:43:2f:c6:4b:d7: ff:ea:80:34:fa:06:2f:d9:c2:81:bb:74:f7:09:b9:e2:84:94: 75:7e:0a:56:5d:d9:3c:3d:dd:c8:c0:ba:69:97:fb:a6:e5:59: fb:8c:d6:a7:2f:bc:87:2a:9e:53:fd:cd:cb:0a:06:72:2d:ac: f7:59:d1:63:25:37:72:5d:51:a9:a1:da:e0:c0:5a:d4:bf:b0: a4:cb:91:d7:b8:7b:11:ae:8b:c4:a4:66:03:de:c9:62:51:ee: 5a:c1:81:9e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICM7owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUxNDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDAyRTgzNzQ2MTNFMEI0 NTg1NzJBQUM3MDk2RERFRDdBOTNBRENFNkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDL2nZJbJ1PcRdGVcYd5O5wBOypV1GvCHnWcsBvOlBpvuHwRBt4 R36faoyCIWHw18PlkvBzCEWrqvSY0hEjtEWDpIv1uCCwTnVakc2lNOmXtSPTUFlY gUDhqZ1xaF4vUZ+BRk0q4pqmVjd7bVeJAvvErnqJdvmy6xGDT/eT7f+wLJLwm1c1 XnC/cQ1bZAF3UljM5VMewRQaJOURyQMIy89gzndZ8FQdncvE261bF95YFy2MpM+W MKWkwY7LEPn2ZhbYSfBapvveC/c3sPgwMdYmYM8OggFfDB/MrV2EXIm1R42tj1Ze 9BaoouM9H7IcFm1mwTCxttALR1wuFNahzBC1AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUAug3RhPgtFhXKqxwlt3tepOtzmswHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0F1ZzNSaFBndEZoWEtxeHds dDN0ZXBPdHptcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6VAwDQYJKoZIhvcNAQELBQADggEBAIl1//lQFVtB9kO0WCfn6349W9z0FKjK/KN/ wdzteb0kcGnXASzZNKT2z9pN8xIRzfDZJVBrXC3SOUU8ZmlH6D3X2xqRaHhM+Z2/ wNQj46hQdgv1Kdd10+YtFvW+AGa4xat76m+yvo4qkWxy4lNvPXfg1m7+qQl/0EIG XKq2Bs6NLzMnilDYH01aNrw9gIxxGwGEhRrktC7d+EXhvNFDL8ZL1//qgDT6Bi/Z woG7dPcJueKElHV+ClZd2Tw93cjAummX+6blWfuM1qcvvIcqnlP9zcsKBnItrPdZ 0WMlN3JdUamh2uDAWtS/sKTLkde4exGui8SkZgPeyWJR7lrBgZ4= -----END CERTIFICATE-----Generated at Wed Feb 19 21:57:02 2025 by rpki-client