$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Cp3kUIFWNOcUUWE9P9zDcvlM8YA.roa File: Cp3kUIFWNOcUUWE9P9zDcvlM8YA.roa (raw, json) Hash identifier: OG3Y/neWx8PTljSXpEw1TrA7iwubq7o7IsmE7mLbg2A= Subject key identifier: 0A:9D:E4:50:81:56:34:E7:14:51:61:3D:3F:DC:C3:72:F9:4C:F1:80 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 35C5 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Cp3kUIFWNOcUUWE9P9zDcvlM8YA.roa Signing time: Mon 10 Feb 2025 13:53:40 +0000 ROA not before: Mon 10 Feb 2025 13:53:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.195.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13765 (0x35c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:53:40 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0A9DE450815634E71451613D3FDCC372F94CF180 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:9f:10:99:a1:fe:c2:0a:a7:f4:49:65:62:c5: 48:ce:3c:a3:62:6b:cd:42:4c:ae:69:1c:7a:6c:a7: 25:cd:53:63:87:1f:4f:f2:56:d3:c3:1f:ee:4f:29: 35:55:bf:dc:40:a8:85:e7:d7:2f:d6:5d:68:c8:71: 0e:d9:fa:8d:81:2f:4a:64:3f:f0:cb:00:47:85:e4: 4d:ae:33:ef:36:7e:0b:83:a9:0d:7b:1e:f4:d0:23: aa:b8:f4:40:cb:a2:79:71:16:38:4e:a9:04:b4:15: 2c:fa:33:04:e9:32:b5:77:db:95:39:21:e6:27:0e: 7f:cb:f0:1a:e8:12:f1:45:43:5b:72:d0:23:f5:c8: 66:6c:62:28:1f:fa:2f:ee:4e:f3:e3:69:e5:94:d4: af:00:12:4e:21:3d:75:71:b4:a6:02:a5:d1:c3:20: c7:92:cb:55:4a:1a:02:5d:85:53:13:95:b9:e7:12: ff:87:33:9d:0c:7c:cd:55:50:50:6c:63:0f:1a:83: d6:45:e2:a8:7c:1c:e4:7e:36:86:a3:1a:a8:ec:63: bc:df:e6:5b:6f:9c:6e:e9:9b:06:45:7e:fa:d9:d1: 39:ab:b7:83:cd:e4:85:b0:e3:dd:72:08:41:17:79: 21:cb:a7:73:53:84:b9:b4:50:51:29:64:a4:86:78: 88:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:9D:E4:50:81:56:34:E7:14:51:61:3D:3F:DC:C3:72:F9:4C:F1:80 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Cp3kUIFWNOcUUWE9P9zDcvlM8YA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.182.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:ea:81:6f:17:80:6a:00:a4:cf:c2:84:c5:d6:a2:c5:6e:f4: 82:08:58:0b:53:4e:4d:45:42:96:4c:90:d5:8e:1f:42:27:20: 47:8c:7d:7e:3c:1e:da:fc:0f:24:69:cb:9f:f6:6c:c0:29:51: 73:bd:d1:ab:02:21:08:e2:55:4b:68:5e:cd:9f:d9:0a:06:fd: b9:17:40:0a:d5:88:22:24:61:bd:a5:43:81:81:5b:80:15:f1: 17:75:da:3c:2f:44:69:30:b0:ee:df:52:ab:8c:41:e8:53:97: 7b:73:67:82:60:81:9c:c3:ab:fc:c1:8a:53:65:f7:3c:07:2d: a0:9d:3c:09:8a:f7:5f:db:f7:28:ac:89:c0:e3:4b:b8:45:53: 0c:49:69:e5:c1:02:1f:63:c4:52:04:1e:4e:53:5a:d6:65:e9: 29:8d:f5:27:e3:3b:e2:30:42:01:a6:30:03:50:22:58:45:64: 29:c2:82:0d:3d:c7:44:3a:8b:62:08:0d:6a:80:44:93:0f:de: ec:38:8a:b8:1c:2d:d4:1f:1f:87:f9:49:fb:48:8b:44:3d:ee: d4:33:9e:52:f3:1e:fc:21:08:f4:67:9c:c7:bf:e7:1d:80:2c: cd:cb:26:d5:98:4b:bc:e2:84:17:4b:99:a8:90:95:d0:68:1e: 00:d4:3e:87 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNcUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUzNDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBBOURFNDUwODE1NjM0 RTcxNDUxNjEzRDNGRENDMzcyRjk0Q0YxODAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRnxCZof7CCqf0SWVixUjOPKNia81CTK5pHHpspyXNU2OHH0/y VtPDH+5PKTVVv9xAqIXn1y/WXWjIcQ7Z+o2BL0pkP/DLAEeF5E2uM+82fguDqQ17 HvTQI6q49EDLonlxFjhOqQS0FSz6MwTpMrV325U5IeYnDn/L8BroEvFFQ1ty0CP1 yGZsYigf+i/uTvPjaeWU1K8AEk4hPXVxtKYCpdHDIMeSy1VKGgJdhVMTlbnnEv+H M50MfM1VUFBsYw8ag9ZF4qh8HOR+NoajGqjsY7zf5ltvnG7pmwZFfvrZ0Tmrt4PN 5IWw491yCEEXeSHLp3NThLm0UFEpZKSGeIi3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUCp3kUIFWNOcUUWE9P9zDcvlM8YAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0NwM2tVSUZXTk9jVVVXRTlQ OXpEY3ZsTThZQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB7 w7YwDQYJKoZIhvcNAQELBQADggEBAGzqgW8XgGoApM/ChMXWosVu9IIIWAtTTk1F QpZMkNWOH0InIEeMfX48Htr8DyRpy5/2bMApUXO90asCIQjiVUtoXs2f2QoG/bkX QArViCIkYb2lQ4GBW4AV8Rd12jwvRGkwsO7fUquMQehTl3tzZ4JggZzDq/zBilNl 9zwHLaCdPAmK91/b9yisicDjS7hFUwxJaeXBAh9jxFIEHk5TWtZl6SmN9SfjO+Iw QgGmMANQIlhFZCnCgg09x0Q6i2IIDWqARJMP3uw4irgcLdQfH4f5SftIi0Q97tQz nlLzHvwhCPRnnMe/5x2ALM3LJtWYS7zihBdLmaiQldBoHgDUPoc= -----END CERTIFICATE-----Generated at Wed Feb 19 22:00:09 2025 by rpki-client