$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FKNCt5esSs9UE27OHhbH1h_7mbY.roa File: FKNCt5esSs9UE27OHhbH1h_7mbY.roa (raw, json) Hash identifier: EO1DQQUvUDJT+le+ESXcj9omr9dgGJrU6rK0W7KScTY= Subject key identifier: 14:A3:42:B7:97:AC:4A:CF:54:13:6E:CE:1E:16:C7:D6:1F:FB:99:B6 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 33FE Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FKNCt5esSs9UE27OHhbH1h_7mbY.roa Signing time: Mon 10 Feb 2025 13:51:58 +0000 ROA not before: Mon 10 Feb 2025 13:51:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.233.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13310 (0x33fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:51:58 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=14A342B797AC4ACF54136ECE1E16C7D61FFB99B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:57:08:18:bd:42:4c:fc:fd:ea:19:70:e9:f5: ac:e0:3a:fc:52:25:2a:7e:30:d4:d3:33:f8:62:3a: 1c:58:0d:03:2b:cb:e2:f9:1d:7f:12:e1:27:a4:2d: 1b:4a:51:f1:8c:70:27:c3:c1:60:0e:55:d6:4a:f1: a8:7e:1a:e1:c5:94:87:00:e0:31:7c:50:5a:1b:fd: c0:5d:f5:14:fb:1e:3c:5d:b6:3c:db:f2:da:6d:5c: a3:28:06:8e:d4:b3:6e:fb:ac:d7:47:69:de:a2:fa: 5c:68:07:af:3e:2c:b6:d5:86:59:41:1e:29:a6:70: ea:b2:15:3c:04:91:4a:55:33:ef:c3:23:a1:81:ad: a2:2c:4a:3f:ba:2d:fc:eb:ed:e3:77:4b:80:7e:c7: 93:58:32:ef:dd:75:0c:f5:27:ee:34:a7:f2:a3:89: 94:10:0b:a5:a8:b4:da:8f:a9:89:99:55:d9:0e:28: 01:69:42:10:bc:22:18:85:a5:f1:36:91:cd:d5:cc: 4e:e4:cf:92:3a:ea:5e:66:09:82:97:74:fd:13:f7: 31:28:6e:df:d3:37:14:0f:af:cf:1f:90:80:98:66: 41:51:f6:02:29:54:b4:86:5f:5d:c0:22:d8:71:2f: 1c:b8:7d:65:14:cb:14:82:79:9b:19:41:33:d8:c9: e5:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:A3:42:B7:97:AC:4A:CF:54:13:6E:CE:1E:16:C7:D6:1F:FB:99:B6 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FKNCt5esSs9UE27OHhbH1h_7mbY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.124.0/22 Signature Algorithm: sha256WithRSAEncryption 38:7a:5b:f5:08:53:75:84:20:6a:ab:d8:52:34:f4:1f:9d:0d: 9f:0c:7b:45:77:26:db:5f:85:d1:41:d5:b8:6d:08:79:58:9a: aa:51:dc:f5:05:dc:8d:55:40:c9:f3:e1:05:9b:2d:5f:9b:ae: b9:2d:a3:a7:fb:74:78:38:1e:de:b4:40:07:9c:d5:53:a4:d8: 02:26:28:d9:31:27:48:44:29:9e:b5:a6:1b:7f:20:d7:a2:2d: 28:99:cb:b4:8e:61:14:99:93:9f:ed:c9:c6:46:88:99:b2:d4: 5d:5d:f1:8c:fc:1b:29:23:2e:90:a9:97:96:b5:ea:40:be:4f: 11:46:57:ae:35:73:d7:79:d7:ed:5c:a5:96:f7:05:1c:8c:1a: f9:75:1d:8d:ac:ee:1c:c0:9d:53:b8:a0:ec:5c:e4:a5:cf:91: b9:b7:bc:20:96:3e:30:4d:aa:7f:51:74:bf:18:71:27:ee:71: 1a:d4:7b:b4:6e:d2:78:46:80:c4:1f:09:f6:90:b4:8f:05:eb: 3d:51:e4:f8:d5:01:fb:0b:9e:f7:63:0f:e9:69:3f:86:e0:2f: fd:eb:82:87:5f:f4:43:49:35:4b:35:7d:0b:d6:f7:ca:48:e6: ec:c3:79:94:5f:6b:58:1f:4f:b9:e2:39:9d:90:35:31:2c:a2: db:54:29:14 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICM/4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUxNThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE0QTM0MkI3OTdBQzRB Q0Y1NDEzNkVDRTFFMTZDN0Q2MUZGQjk5QjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDmVwgYvUJM/P3qGXDp9azgOvxSJSp+MNTTM/hiOhxYDQMry+L5 HX8S4SekLRtKUfGMcCfDwWAOVdZK8ah+GuHFlIcA4DF8UFob/cBd9RT7Hjxdtjzb 8tptXKMoBo7Us277rNdHad6i+lxoB68+LLbVhllBHimmcOqyFTwEkUpVM+/DI6GB raIsSj+6Lfzr7eN3S4B+x5NYMu/ddQz1J+40p/KjiZQQC6WotNqPqYmZVdkOKAFp QhC8IhiFpfE2kc3VzE7kz5I66l5mCYKXdP0T9zEobt/TNxQPr88fkICYZkFR9gIp VLSGX13AIthxLxy4fWUUyxSCeZsZQTPYyeVxAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUFKNCt5esSs9UE27OHhbH1h/7mbYwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0ZLTkN0NWVzU3M5VUUyN09I aGJIMWhfN21iWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6XwwDQYJKoZIhvcNAQELBQADggEBADh6W/UIU3WEIGqr2FI09B+dDZ8Me0V3Jttf hdFB1bhtCHlYmqpR3PUF3I1VQMnz4QWbLV+brrkto6f7dHg4Ht60QAec1VOk2AIm KNkxJ0hEKZ61pht/INeiLSiZy7SOYRSZk5/tycZGiJmy1F1d8Yz8GykjLpCpl5a1 6kC+TxFGV641c9d51+1cpZb3BRyMGvl1HY2s7hzAnVO4oOxc5KXPkbm3vCCWPjBN qn9RdL8YcSfucRrUe7Ru0nhGgMQfCfaQtI8F6z1R5PjVAfsLnvdjD+lpP4bgL/3r godf9ENJNUs1fQvW98pI5uzDeZRfa1gfT7niOZ2QNTEsottUKRQ= -----END CERTIFICATE-----Generated at Wed Feb 19 22:09:37 2025 by rpki-client