$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FTywroCWbZiaiGcl-hhJaks_zJo.roa File: FTywroCWbZiaiGcl-hhJaks_zJo.roa (raw, json) Hash identifier: ++2nIrgLNgn6E99dL1N1KxUz0vxRe0aHku/ocnWMsx0= Subject key identifier: 15:3C:B0:AE:80:96:6D:98:9A:88:67:25:FA:18:49:6A:4B:3F:CC:9A Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 351D Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FTywroCWbZiaiGcl-hhJaks_zJo.roa Signing time: Mon 10 Feb 2025 13:53:01 +0000 ROA not before: Mon 10 Feb 2025 13:53:01 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.194.32.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13597 (0x351d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:53:01 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=153CB0AE80966D989A886725FA18496A4B3FCC9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:13:19:d7:f2:5d:34:78:a1:74:f5:9e:48:ef: 78:a0:50:df:46:8d:da:44:22:03:2a:dc:e5:c8:ad: b0:43:47:42:2f:bd:cf:12:ff:6d:dd:67:f1:c7:d7: c1:32:95:dd:f5:aa:03:59:0a:de:0f:93:d8:c2:4e: 63:e5:e8:56:0e:11:83:97:a1:1e:b0:a4:7e:cb:81: d8:96:ff:4d:12:32:4b:aa:62:32:34:53:22:8f:f9: 53:95:0b:34:90:2d:16:29:17:87:b4:d0:fc:d2:92: b9:44:cc:be:c4:dc:76:8a:76:43:f7:dc:70:99:76: 4c:1c:82:1e:ed:99:52:fd:75:1b:b8:32:95:4b:6b: 96:15:0d:52:23:67:ec:11:07:1b:d3:b6:f3:9c:07: f6:b8:54:ff:f9:7a:12:2c:ff:51:ad:c1:1e:d0:8c: 7a:7b:72:f3:a0:3f:2d:ed:b3:fa:98:38:68:da:e1: 7b:69:da:9b:33:20:69:b2:7d:ea:55:f6:d2:13:63: 00:e8:dd:9d:b4:b7:d1:c0:11:6e:f3:63:9c:20:92: b7:f2:fa:7b:ae:ec:75:fd:bf:17:8c:75:3f:2f:bb: 06:7b:25:e2:51:9e:a0:32:14:62:2b:d3:1a:62:40: b4:8e:87:7c:95:4d:15:6e:00:4e:be:ea:31:bf:c4: 60:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:3C:B0:AE:80:96:6D:98:9A:88:67:25:FA:18:49:6A:4B:3F:CC:9A X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FTywroCWbZiaiGcl-hhJaks_zJo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.32.0/21 Signature Algorithm: sha256WithRSAEncryption 23:c2:4a:db:6f:65:14:4d:8e:3d:21:2d:c8:d3:01:e4:ed:66: e5:fe:51:3b:a4:37:3c:43:e3:a0:94:3f:fa:02:77:f7:4d:4a: 68:68:df:4e:1c:89:9f:42:bc:49:57:e4:0e:1f:f1:50:c0:ad: 54:44:3d:5f:e8:f3:85:47:c3:a1:fe:5c:b3:21:12:3a:6c:f9: 65:1e:2f:63:38:5e:90:f7:00:5c:aa:d2:34:2a:40:89:76:1b: 51:40:7b:16:90:41:12:d3:62:25:1b:1c:ae:75:26:83:eb:da: 51:79:a2:3a:c6:d1:c8:bb:75:b5:4a:c3:1e:71:c5:83:50:1e: 92:ec:fb:ee:6d:97:51:74:b9:d0:a4:08:46:d0:ad:21:e1:c2: 48:ba:d6:73:de:d8:00:ee:5b:f0:8f:43:05:b5:b4:2c:df:d5: be:c4:b1:4f:c4:90:80:4a:32:ff:cb:2e:39:0d:4a:1a:1c:41: 97:c7:b0:cb:20:77:47:e5:32:59:d8:10:66:21:71:cb:c5:8c: 49:50:c8:f1:5e:26:e6:d2:e3:ce:ba:63:70:ce:4e:0d:b5:c6: 66:ef:cc:84:a6:0c:14:bb:77:1a:10:72:fb:fd:49:01:94:48: fd:13:5a:07:bc:47:31:bf:87:2c:45:c0:e0:ec:63:60:f1:1c: 31:38:fd:ea -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNR0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUzMDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE1M0NCMEFFODA5NjZE OTg5QTg4NjcyNUZBMTg0OTZBNEIzRkNDOUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqExnX8l00eKF09Z5I73igUN9GjdpEIgMq3OXIrbBDR0Ivvc8S /23dZ/HH18Eyld31qgNZCt4Pk9jCTmPl6FYOEYOXoR6wpH7LgdiW/00SMkuqYjI0 UyKP+VOVCzSQLRYpF4e00PzSkrlEzL7E3HaKdkP33HCZdkwcgh7tmVL9dRu4MpVL a5YVDVIjZ+wRBxvTtvOcB/a4VP/5ehIs/1GtwR7QjHp7cvOgPy3ts/qYOGja4Xtp 2pszIGmyfepV9tITYwDo3Z20t9HAEW7zY5wgkrfy+nuu7HX9vxeMdT8vuwZ7JeJR nqAyFGIr0xpiQLSOh3yVTRVuAE6+6jG/xGCHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUFTywroCWbZiaiGcl+hhJaks/zJowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0ZUeXdyb0NXYlppYWlHY2wt aGhKYWtzX3pKby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wiAwDQYJKoZIhvcNAQELBQADggEBACPCSttvZRRNjj0hLcjTAeTtZuX+UTukNzxD 46CUP/oCd/dNSmho304ciZ9CvElX5A4f8VDArVREPV/o84VHw6H+XLMhEjps+WUe L2M4XpD3AFyq0jQqQIl2G1FAexaQQRLTYiUbHK51JoPr2lF5ojrG0ci7dbVKwx5x xYNQHpLs++5tl1F0udCkCEbQrSHhwki61nPe2ADuW/CPQwW1tCzf1b7EsU/EkIBK Mv/LLjkNShocQZfHsMsgd0flMlnYEGYhccvFjElQyPFeJubS4866Y3DOTg21xmbv zISmDBS7dxoQcvv9SQGUSP0TWge8RzG/hyxFwODsY2DxHDE4/eo= -----END CERTIFICATE-----Generated at Wed Feb 19 22:05:12 2025 by rpki-client