$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HZpT1dNEFgJy8ESuwpMDyW5kFsA.roa File: HZpT1dNEFgJy8ESuwpMDyW5kFsA.roa (raw, json) Hash identifier: UAX6F/kcymVvthxkQWAabaQjnDTLdYFrL3t/0f5mmHQ= Subject key identifier: 1D:9A:53:D5:D3:44:16:02:72:F0:44:AE:C2:93:03:C9:6E:64:16:C0 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 365D Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HZpT1dNEFgJy8ESuwpMDyW5kFsA.roa Signing time: Mon 10 Feb 2025 13:54:15 +0000 ROA not before: Mon 10 Feb 2025 13:54:15 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 123.193.218.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13917 (0x365d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:54:15 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1D9A53D5D344160272F044AEC29303C96E6416C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:59:b8:46:e0:94:2a:33:dd:d3:0e:71:13:39: 79:20:3c:63:63:de:55:4b:17:7b:ae:72:93:e4:fd: 8c:9d:d6:b4:a6:a8:0f:ca:e6:a7:b6:c2:b3:5c:9f: 97:e5:e0:6c:4f:94:10:ec:fb:b2:0e:5a:49:fc:7c: e9:e1:82:c2:9d:1f:06:73:78:f3:fd:84:74:63:68: ed:2b:0d:1a:3f:83:3d:b5:5a:37:9c:5c:04:fa:d7: fa:fc:5e:2f:0b:53:8f:d2:49:97:c8:ff:84:e4:30: f6:ec:a2:e9:c1:b2:6c:74:7d:83:9c:3d:c6:0b:71: 2c:2f:aa:31:7d:b0:e8:16:b7:64:6e:d0:01:73:f2: 8e:56:97:fb:f1:ff:e5:99:f2:dd:d0:51:2c:ba:0b: 76:24:b7:cc:43:c1:9f:ef:9f:2e:6e:49:16:bb:45: 12:1a:43:85:c9:4c:52:bf:e3:e7:84:85:e8:72:72: 74:eb:a8:97:ac:74:cc:9e:e7:9f:a7:e1:fe:40:97: dd:27:b6:37:dc:dd:22:7a:32:1b:20:71:8a:f5:50: b8:5b:5e:75:03:96:16:33:18:09:dc:05:aa:3a:94: ec:7b:9d:99:d7:4e:15:67:32:3d:66:07:67:e2:38: cf:69:ad:fc:25:23:f2:29:c1:85:6f:be:c6:7d:fa: 47:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:9A:53:D5:D3:44:16:02:72:F0:44:AE:C2:93:03:C9:6E:64:16:C0 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HZpT1dNEFgJy8ESuwpMDyW5kFsA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.218.0/23 Signature Algorithm: sha256WithRSAEncryption 82:a2:fe:d7:78:61:b4:4b:6f:3f:4c:0c:d9:7c:ab:27:4e:8d: fb:38:1d:1e:8a:9b:c7:9d:55:16:7c:1b:9e:75:10:4a:63:a5: 3f:09:f1:29:6b:b3:e6:3c:a9:d5:17:3c:bb:6a:38:b9:ab:8b: ef:f5:3d:1c:8f:50:f8:46:8e:2f:93:08:44:6d:6c:90:37:17: b8:f7:20:01:09:f5:be:56:ff:57:7d:e1:3e:04:5b:a6:6b:1a: 7e:6f:48:46:a2:c4:52:8c:be:f9:c9:f4:07:0e:e0:b8:bf:dc: 90:50:bc:51:be:23:66:3c:02:25:60:ef:53:a9:62:57:e3:40: f5:30:56:83:52:19:79:48:f2:06:de:16:fd:91:db:21:28:50: d0:f6:37:01:69:76:d2:d3:ea:85:6a:7e:46:27:a4:96:a1:55: c7:94:cb:1f:89:97:b3:f6:be:e9:22:b2:c5:34:20:7d:ee:57: 7f:33:0b:31:db:5e:d9:13:70:aa:6b:35:de:5b:d4:7c:47:78: ed:d8:d2:19:d0:72:50:89:3d:22:97:a0:9c:f2:6f:9a:be:29: eb:3f:fa:02:b4:11:ae:74:da:c7:af:30:ca:36:44:84:fa:64: e7:46:79:48:22:0f:f3:b6:42:89:cd:bd:3f:c5:1c:18:2a:28: 3d:62:20:85 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNl0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzU0MTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFEOUE1M0Q1RDM0NDE2 MDI3MkYwNDRBRUMyOTMwM0M5NkU2NDE2QzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSWbhG4JQqM93TDnETOXkgPGNj3lVLF3uucpPk/Yyd1rSmqA/K 5qe2wrNcn5fl4GxPlBDs+7IOWkn8fOnhgsKdHwZzePP9hHRjaO0rDRo/gz21Wjec XAT61/r8Xi8LU4/SSZfI/4TkMPbsounBsmx0fYOcPcYLcSwvqjF9sOgWt2Ru0AFz 8o5Wl/vx/+WZ8t3QUSy6C3Ykt8xDwZ/vny5uSRa7RRIaQ4XJTFK/4+eEhehycnTr qJesdMye55+n4f5Al90ntjfc3SJ6MhsgcYr1ULhbXnUDlhYzGAncBao6lOx7nZnX ThVnMj1mB2fiOM9prfwlI/IpwYVvvsZ9+kdlAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUHZpT1dNEFgJy8ESuwpMDyW5kFsAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0hacFQxZE5FRmdKeThFU3V3 cE1EeVc1a0ZzQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF7 wdowDQYJKoZIhvcNAQELBQADggEBAIKi/td4YbRLbz9MDNl8qydOjfs4HR6Km8ed VRZ8G551EEpjpT8J8Slrs+Y8qdUXPLtqOLmri+/1PRyPUPhGji+TCERtbJA3F7j3 IAEJ9b5W/1d94T4EW6ZrGn5vSEaixFKMvvnJ9AcO4Li/3JBQvFG+I2Y8AiVg71Op YlfjQPUwVoNSGXlI8gbeFv2R2yEoUND2NwFpdtLT6oVqfkYnpJahVceUyx+Jl7P2 vukissU0IH3uV38zCzHbXtkTcKprNd5b1HxHeO3Y0hnQclCJPSKXoJzyb5q+Kes/ +gK0Ea502sevMMo2RIT6ZOdGeUgiD/O2QonNvT/FHBgqKD1iIIU= -----END CERTIFICATE-----Generated at Wed Feb 19 22:10:12 2025 by rpki-client