$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/C8bgilWF8kpLIgzt3JPMzBbR-xA.roa File: C8bgilWF8kpLIgzt3JPMzBbR-xA.roa (raw, json) Hash identifier: Snp/cdXnZFRidOXk8zpMBmsH7aX4v6nLPD1erXcEFH0= Subject key identifier: 0B:C6:E0:8A:55:85:F2:4A:4B:22:0C:ED:DC:93:CC:CC:16:D1:FB:10 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 34F1 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/C8bgilWF8kpLIgzt3JPMzBbR-xA.roa Signing time: Mon 10 Feb 2025 13:52:51 +0000 ROA not before: Mon 10 Feb 2025 13:52:51 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 123.194.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13553 (0x34f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:52:51 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0BC6E08A5585F24A4B220CEDDC93CCCC16D1FB10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:54:cd:24:0b:93:4a:71:16:fc:4f:5f:f8:dd: 55:d9:2e:d5:7b:d0:5c:86:19:72:8c:26:63:30:53: 16:73:4e:79:c5:77:1e:86:67:7c:07:4b:72:f8:a4: 63:f7:68:b3:9a:78:4c:ae:56:ed:a5:e0:ec:f4:56: 44:43:10:45:08:9e:46:8e:5b:c0:e5:d4:02:7f:44: cc:76:30:c6:d0:f2:c8:01:c2:96:ec:29:37:67:de: 03:8c:ce:2a:69:31:e9:50:24:82:78:58:d5:bb:3a: ce:3d:2b:78:43:27:4c:de:ba:f8:7e:21:2a:1b:76: 8a:9f:ca:0a:55:43:e2:de:1f:5f:c5:71:b4:90:38: 6c:8a:2a:f1:d1:a5:46:81:f4:68:d5:0e:e8:7a:d9: 9d:6f:ac:5d:e4:06:fe:ee:85:54:ce:11:15:5d:9d: 57:d0:68:ef:bf:ee:25:ab:a4:79:7e:4f:bc:44:b2: d5:79:b2:00:70:c8:aa:7b:f0:05:a0:6c:02:6f:75: 1e:2e:8f:6a:0b:69:f6:d5:b3:6e:0f:7b:f6:2f:fd: 5d:4f:c4:2e:7b:4d:ba:e9:f1:0f:34:cf:12:be:55: 07:bf:77:f3:50:19:ee:1e:ed:84:c2:0b:91:df:40: 2f:a5:b5:50:31:b6:b4:f2:9e:e2:d8:85:a0:da:c6: 34:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:C6:E0:8A:55:85:F2:4A:4B:22:0C:ED:DC:93:CC:CC:16:D1:FB:10 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/C8bgilWF8kpLIgzt3JPMzBbR-xA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.160.0/19 Signature Algorithm: sha256WithRSAEncryption 0d:ca:1e:9f:8a:56:33:2d:a4:9a:a8:3f:0c:e0:bc:30:fa:a6: ae:fc:93:d2:0c:b1:78:71:18:90:cb:0c:82:b4:86:ae:02:4d: 4b:88:81:06:2e:76:68:8e:91:a6:dd:39:66:3b:65:9c:78:00: 3c:ae:6d:6a:51:7b:3d:7b:80:49:e5:97:bd:0f:c3:20:78:d0: 71:78:78:d4:08:97:80:f5:a2:21:68:9d:ba:02:69:d8:2d:2a: 2a:a0:14:4d:57:71:0b:50:a8:1c:12:25:bb:19:db:38:d4:e8: ae:85:4e:07:ab:65:d9:d5:5f:15:89:87:f2:7b:96:0e:37:13: f7:5d:7b:60:ed:97:ee:ed:c6:2e:90:b7:40:ca:bb:56:ac:46: 3a:f6:ee:dc:9c:30:82:fa:c3:a7:9b:bf:22:d0:3b:f1:ba:50: 0d:4d:fb:93:23:d6:03:be:da:4b:8a:31:53:aa:6f:b7:f9:c5: 23:19:ed:1e:41:f0:ef:3d:0e:f7:1b:b8:df:6c:c5:2b:79:23: 9a:07:3e:83:2a:35:b3:4e:00:12:39:01:59:16:c2:a2:90:07: 2f:18:13:99:4e:21:30:d3:92:64:8e:de:e4:cb:fb:28:e8:c3: 35:ae:59:c0:6b:25:10:1e:a6:b6:c1:aa:ed:95:ee:87:8e:d6: 58:83:c2:be -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNPEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUyNTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBCQzZFMDhBNTU4NUYy NEE0QjIyMENFRERDOTNDQ0NDMTZEMUZCMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0VM0kC5NKcRb8T1/43VXZLtV70FyGGXKMJmMwUxZzTnnFdx6G Z3wHS3L4pGP3aLOaeEyuVu2l4Oz0VkRDEEUInkaOW8Dl1AJ/RMx2MMbQ8sgBwpbs KTdn3gOMzippMelQJIJ4WNW7Os49K3hDJ0zeuvh+ISobdoqfygpVQ+LeH1/FcbSQ OGyKKvHRpUaB9GjVDuh62Z1vrF3kBv7uhVTOERVdnVfQaO+/7iWrpHl+T7xEstV5 sgBwyKp78AWgbAJvdR4uj2oLafbVs24Pe/Yv/V1PxC57Tbrp8Q80zxK+VQe/d/NQ Ge4e7YTCC5HfQC+ltVAxtrTynuLYhaDaxjTtAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUC8bgilWF8kpLIgzt3JPMzBbR+xAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0M4YmdpbFdGOGtwTElnenQz SlBNekJiUi14QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV7 wqAwDQYJKoZIhvcNAQELBQADggEBAA3KHp+KVjMtpJqoPwzgvDD6pq78k9IMsXhx GJDLDIK0hq4CTUuIgQYudmiOkabdOWY7ZZx4ADyubWpRez17gEnll70PwyB40HF4 eNQIl4D1oiFonboCadgtKiqgFE1XcQtQqBwSJbsZ2zjU6K6FTgerZdnVXxWJh/J7 lg43E/dde2Dtl+7txi6Qt0DKu1asRjr27tycMIL6w6ebvyLQO/G6UA1N+5Mj1gO+ 2kuKMVOqb7f5xSMZ7R5B8O89DvcbuN9sxSt5I5oHPoMqNbNOABI5AVkWwqKQBy8Y E5lOITDTkmSO3uTL+yjowzWuWcBrJRAeprbBqu2V7oeO1liDwr4= -----END CERTIFICATE-----Generated at Wed Feb 19 22:04:55 2025 by rpki-client