$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CdXNqtAhZJiEH0mZe0sv5Acxexw.roa File: CdXNqtAhZJiEH0mZe0sv5Acxexw.roa (raw, json) Hash identifier: C7pyiK3ZJ3qvmrzo8LQsTHTKjAvVnO3ZAEsMvyRagRs= Subject key identifier: 09:D5:CD:AA:D0:21:64:98:84:1F:49:99:7B:4B:2F:E4:07:31:7B:1C Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3531 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CdXNqtAhZJiEH0mZe0sv5Acxexw.roa Signing time: Mon 10 Feb 2025 13:53:07 +0000 ROA not before: Mon 10 Feb 2025 13:53:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.193.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13617 (0x3531) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:53:07 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=09D5CDAAD0216498841F49997B4B2FE407317B1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:6e:c2:a3:e7:63:2d:fd:52:23:45:fa:d8:18: 9a:8f:9c:f5:4c:65:c7:00:4a:ca:93:c3:0f:9b:0f: 40:90:81:13:cc:73:dd:ee:a2:f7:89:c3:2f:26:60: 72:f9:f3:56:0b:7b:f5:84:24:9c:d5:ef:56:94:e7: 0c:de:82:72:7d:4d:af:86:8c:c7:80:24:47:c9:8c: 12:c3:76:25:df:95:86:56:10:dd:f7:b8:ad:14:3c: 1b:ef:ce:7a:40:11:10:3f:65:52:ac:a7:a9:69:25: d7:b5:ef:2b:93:42:2d:52:49:36:8f:d2:7a:10:f2: 3c:ba:9d:37:6a:d9:e7:05:8c:f2:3e:57:3a:bd:85: 62:1f:8a:2e:1f:60:41:7a:de:4f:f2:68:d6:3e:3e: 83:5f:52:31:47:52:5c:4e:72:a7:18:c8:0e:77:59: 19:61:68:b6:dd:56:9a:56:62:6a:b3:f5:07:b8:a2: 49:2e:d8:2a:2d:a0:26:42:93:e4:a6:8f:49:d4:36: 61:52:44:82:51:eb:dc:b9:af:f7:69:00:b0:84:39: 8d:40:cb:86:e9:f7:dd:d8:bf:f5:ca:f5:22:ba:42: e0:7d:93:31:a7:40:63:74:98:92:4c:21:4b:c5:e2: 94:e6:14:b8:87:87:e2:bc:62:bb:48:95:e3:4c:8d: 89:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:D5:CD:AA:D0:21:64:98:84:1F:49:99:7B:4B:2F:E4:07:31:7B:1C X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CdXNqtAhZJiEH0mZe0sv5Acxexw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.8.0/21 Signature Algorithm: sha256WithRSAEncryption 17:8b:46:ec:b1:53:53:2e:99:a3:c4:be:37:cd:9c:1d:2b:e6: d7:10:0a:fd:bd:30:a3:79:6b:a4:0d:4d:21:6b:44:1e:17:7f: a1:b7:ab:09:6d:b6:80:a9:8d:2c:c3:30:fb:67:62:c3:3a:b6: 12:55:b5:5b:2e:27:33:34:44:aa:51:40:39:ee:9b:b7:6a:b3: e8:54:35:77:80:fb:90:6e:e9:c0:96:b5:76:31:e8:74:df:2d: 15:d6:98:81:a9:71:e6:8e:c7:bc:ae:a7:ce:cf:f9:48:7e:e6: ab:4d:b8:b0:33:0c:aa:a1:b9:91:7b:a0:a4:f3:f6:e4:37:b6: 85:48:d2:08:ce:d1:6e:26:d2:af:29:99:f7:8b:0a:a1:04:20: 97:4e:a9:39:79:85:8b:74:10:11:eb:b6:c9:14:56:72:04:b3: 2e:64:01:91:0a:17:ed:b9:05:91:ee:03:65:82:b7:0b:72:7d: 32:3b:5f:80:d7:e8:51:8d:5f:a3:0e:ea:3b:8f:f4:66:ed:9b: c1:2c:c8:53:8c:bb:75:91:63:40:a0:ae:29:42:98:2d:ab:cb: f6:e3:01:26:d0:98:e2:72:5c:6b:55:34:7a:be:6d:52:ad:1f: 6f:e2:c4:70:85:20:e1:3a:b0:61:a4:40:16:cf:1b:ae:64:4a: da:80:97:fe -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNTEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUzMDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA5RDVDREFBRDAyMTY0 OTg4NDFGNDk5OTdCNEIyRkU0MDczMTdCMUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDcbsKj52Mt/VIjRfrYGJqPnPVMZccASsqTww+bD0CQgRPMc93u oveJwy8mYHL581YLe/WEJJzV71aU5wzegnJ9Ta+GjMeAJEfJjBLDdiXflYZWEN33 uK0UPBvvznpAERA/ZVKsp6lpJde17yuTQi1SSTaP0noQ8jy6nTdq2ecFjPI+Vzq9 hWIfii4fYEF63k/yaNY+PoNfUjFHUlxOcqcYyA53WRlhaLbdVppWYmqz9Qe4okku 2CotoCZCk+Smj0nUNmFSRIJR69y5r/dpALCEOY1Ay4bp993Yv/XK9SK6QuB9kzGn QGN0mJJMIUvF4pTmFLiHh+K8YrtIleNMjYmDAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUCdXNqtAhZJiEH0mZe0sv5AcxexwwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0NkWE5xdEFoWkppRUgwbVpl MHN2NUFjeGV4dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wQgwDQYJKoZIhvcNAQELBQADggEBABeLRuyxU1MumaPEvjfNnB0r5tcQCv29MKN5 a6QNTSFrRB4Xf6G3qwlttoCpjSzDMPtnYsM6thJVtVsuJzM0RKpRQDnum7dqs+hU NXeA+5Bu6cCWtXYx6HTfLRXWmIGpceaOx7yup87P+Uh+5qtNuLAzDKqhuZF7oKTz 9uQ3toVI0gjO0W4m0q8pmfeLCqEEIJdOqTl5hYt0EBHrtskUVnIEsy5kAZEKF+25 BZHuA2WCtwtyfTI7X4DX6FGNX6MO6juP9Gbtm8EsyFOMu3WRY0CgrilCmC2ry/bj ASbQmOJyXGtVNHq+bVKtH2/ixHCFIOE6sGGkQBbPG65kStqAl/4= -----END CERTIFICATE-----Generated at Wed Feb 19 22:00:17 2025 by rpki-client