$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CfFeQlGqC5D4LX3c7nj98yzjR2k.roa File: CfFeQlGqC5D4LX3c7nj98yzjR2k.roa (raw, json) Hash identifier: xPK/Fhr6s75MUcEZ21jXJU22ft1CIb0WharmkAZjxF8= Subject key identifier: 09:F1:5E:42:51:AA:0B:90:F8:2D:7D:DC:EE:78:FD:F3:2C:E3:47:69 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 34EC Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CfFeQlGqC5D4LX3c7nj98yzjR2k.roa Signing time: Mon 10 Feb 2025 13:52:50 +0000 ROA not before: Mon 10 Feb 2025 13:52:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.195.237.0/25 maxlen: 25 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13548 (0x34ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:52:50 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=09F15E4251AA0B90F82D7DDCEE78FDF32CE34769 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:85:1e:81:fd:79:4d:cb:4d:90:d8:5c:4f:b5: 17:0e:66:67:4c:b9:62:6d:30:a8:1f:c9:4e:70:b9: e1:62:d8:8c:33:e4:80:55:ce:54:d1:4d:ab:a4:67: 8c:bf:1b:b7:cc:d6:2d:69:4d:c4:7b:59:f2:48:d6: 11:94:35:e8:39:d0:ab:ea:cf:e7:8e:f0:a7:c7:b6: 12:b9:20:75:88:80:02:53:1d:d6:01:48:df:82:23: f6:58:95:c5:44:27:32:47:34:a5:d4:ab:38:7b:d7: cf:dc:04:6f:67:81:5b:c8:06:09:b6:04:07:92:9e: f8:1b:1a:b6:2e:40:c4:98:76:38:14:2d:d5:49:a0: 70:03:a1:8c:60:3f:54:3b:1c:eb:86:8a:d5:f6:04: 87:ec:46:af:b6:c1:c3:26:85:25:ba:ea:c0:b7:d2: ac:57:bb:cb:23:0a:51:8c:73:44:8b:a2:4c:81:2a: 22:0c:ad:bc:5b:2e:13:5b:e1:30:b3:61:9a:72:f2: ac:b8:34:07:de:a7:e8:68:44:b6:f1:7b:fa:18:19: f7:f1:63:9a:bb:b8:35:d0:b3:bf:20:06:f3:b8:e3: b7:bf:53:44:d0:21:2a:3b:9e:f7:a1:93:cf:ec:6c: d6:c6:83:41:ce:31:88:12:18:42:8d:d3:c5:fd:fa: 67:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:F1:5E:42:51:AA:0B:90:F8:2D:7D:DC:EE:78:FD:F3:2C:E3:47:69 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CfFeQlGqC5D4LX3c7nj98yzjR2k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.237.0/25 Signature Algorithm: sha256WithRSAEncryption 85:52:a6:1d:6f:2f:75:cd:b9:08:e0:13:1e:ed:3c:a2:f8:5e: 4f:1b:5d:31:ac:f0:a5:c7:5f:f4:18:6f:fa:8a:9e:88:16:32: 2c:d8:34:14:fd:4c:72:b6:46:1d:5d:aa:12:2c:af:07:82:54: ce:ba:2c:c3:b3:74:85:d5:f7:67:05:fb:b2:9b:24:ec:11:14: a5:40:44:52:1c:73:db:76:84:1a:5d:7d:98:42:f6:4e:51:96: bd:37:bf:c9:58:74:07:07:f5:4e:83:db:a1:d6:d0:6f:12:61: 5f:ca:61:9d:39:f4:5c:26:4f:3a:a1:61:0a:6b:c0:05:cc:13: 88:09:c2:cc:7b:72:cc:a8:2a:4c:9f:7f:a5:f1:25:3f:3f:5d: 3c:89:84:0c:65:39:17:95:f8:09:ca:9a:22:ad:8d:69:cd:98: 9f:3b:65:f0:c2:3b:61:3c:e6:7b:c4:84:1b:7b:ec:81:41:21: 73:ed:f5:ad:86:fa:a1:cb:c2:db:f9:30:9a:ba:ed:85:7a:86: 8e:29:33:db:6f:32:4d:21:4f:a0:c7:00:ac:e4:dc:2f:05:ec: 6c:ad:91:1f:74:c7:87:a2:d9:94:10:8f:09:8d:cc:d1:88:00: 91:9d:7b:04:46:09:43:7f:b5:e3:4c:c6:1f:31:04:70:43:79: 17:c3:b4:86 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICNOwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUyNTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA5RjE1RTQyNTFBQTBC OTBGODJEN0REQ0VFNzhGREYzMkNFMzQ3NjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCghR6B/XlNy02Q2FxPtRcOZmdMuWJtMKgfyU5wueFi2Iwz5IBV zlTRTaukZ4y/G7fM1i1pTcR7WfJI1hGUNeg50Kvqz+eO8KfHthK5IHWIgAJTHdYB SN+CI/ZYlcVEJzJHNKXUqzh718/cBG9ngVvIBgm2BAeSnvgbGrYuQMSYdjgULdVJ oHADoYxgP1Q7HOuGitX2BIfsRq+2wcMmhSW66sC30qxXu8sjClGMc0SLokyBKiIM rbxbLhNb4TCzYZpy8qy4NAfep+hoRLbxe/oYGffxY5q7uDXQs78gBvO447e/U0TQ ISo7nvehk8/sbNbGg0HOMYgSGEKN08X9+mddAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUCfFeQlGqC5D4LX3c7nj98yzjR2kwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0NmRmVRbEdxQzVENExYM2M3 bmo5OHl6alIyay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQd7 w+0AMA0GCSqGSIb3DQEBCwUAA4IBAQCFUqYdby91zbkI4BMe7Tyi+F5PG10xrPCl x1/0GG/6ip6IFjIs2DQU/UxytkYdXaoSLK8HglTOuizDs3SF1fdnBfuymyTsERSl QERSHHPbdoQaXX2YQvZOUZa9N7/JWHQHB/VOg9uh1tBvEmFfymGdOfRcJk86oWEK a8AFzBOICcLMe3LMqCpMn3+l8SU/P108iYQMZTkXlfgJypoirY1pzZifO2Xwwjth POZ7xIQbe+yBQSFz7fWthvqhy8Lb+TCauu2FeoaOKTPbbzJNIU+gxwCs5NwvBexs rZEfdMeHotmUEI8JjczRiACRnXsERglDf7XjTMYfMQRwQ3kXw7SG -----END CERTIFICATE-----Generated at Wed Feb 19 21:57:07 2025 by rpki-client