$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/H_Vj0sYa_yt1qTgqiQpJm5ph3cI.roa File: H_Vj0sYa_yt1qTgqiQpJm5ph3cI.roa (raw, json) Hash identifier: 6/Y3FzxnYq0TuWFKRtl4QPDR03pnLDYRF8B0D7BwJt4= Subject key identifier: 1F:F5:63:D2:C6:1A:FF:2B:75:A9:38:2A:89:0A:49:9B:9A:61:DD:C2 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 339B Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/H_Vj0sYa_yt1qTgqiQpJm5ph3cI.roa Signing time: Mon 10 Feb 2025 13:51:35 +0000 ROA not before: Mon 10 Feb 2025 13:51:35 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 211.76.126.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13211 (0x339b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:51:35 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1FF563D2C61AFF2B75A9382A890A499B9A61DDC2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:2b:4e:77:2b:42:71:bd:40:7a:00:93:0d:c4: 14:80:e7:be:dc:d6:67:7b:18:b7:2c:80:c1:00:a2: b5:b6:fb:ec:dc:57:aa:e1:fb:76:e9:a5:71:c1:fd: 69:2f:8e:10:91:f1:0e:20:d1:d2:e0:a4:e8:c4:d0: f0:de:79:dd:50:16:40:f8:46:71:9f:fc:4c:a3:9d: 11:b2:0a:0c:35:bc:83:4d:40:2e:6d:b2:9f:77:a5: 55:98:b2:c2:f9:94:ce:6e:d1:30:7e:b5:dc:1d:4d: 6e:4d:41:d4:55:e6:32:ba:f4:fc:e4:3d:9e:90:a5: 6a:8c:9a:06:f3:3d:ca:9f:7e:1c:2f:d3:17:32:d9: 77:6c:78:fc:55:f9:be:b1:e2:9c:7a:7f:a1:3d:97: 78:1e:06:e0:2c:6c:20:66:3f:8f:ed:ae:e7:40:5c: c3:d3:00:f2:12:8d:9b:3e:e8:51:24:f8:5b:14:bc: 77:ed:16:e3:e0:8c:d6:9b:ea:50:05:23:d2:81:8c: 4a:c3:46:de:45:5f:3a:e0:fd:e5:0f:3e:33:e1:44: 0a:c2:90:d7:54:e8:c8:de:6b:5c:65:9b:d3:47:d0: ae:93:59:eb:f9:68:f1:86:29:7a:2f:d8:32:08:fa: 6c:c9:84:8a:57:14:69:51:88:1e:28:7f:d6:b8:43: ff:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:F5:63:D2:C6:1A:FF:2B:75:A9:38:2A:89:0A:49:9B:9A:61:DD:C2 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/H_Vj0sYa_yt1qTgqiQpJm5ph3cI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.126.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:4a:97:38:3a:a5:ed:71:18:b6:f1:c1:71:a9:f3:79:56:2c: d1:bd:46:18:b8:97:0f:1f:93:7e:07:b3:99:51:0a:68:02:ea: e9:7b:b6:8a:ef:df:6c:7c:bf:0e:d2:23:eb:48:d6:ea:0f:9b: 3e:be:62:1b:c8:55:6c:68:c1:02:9f:5f:7b:5a:3b:f9:7f:d1: de:ed:f7:08:49:c6:83:cc:e3:af:12:e9:ce:e2:9c:80:f1:c8: e3:65:98:c3:e0:d3:67:98:23:22:fd:30:98:dd:75:d5:38:37: 54:3c:eb:40:e2:34:e4:ac:34:e6:73:1d:30:f8:17:df:52:29: 12:63:e0:33:40:04:a7:be:0e:31:71:68:f5:ba:f9:27:aa:fa: 65:f1:4b:a4:04:05:5f:64:3a:46:b7:16:91:40:ba:d0:c4:4c: 7e:d4:d6:b8:c7:7e:f0:5e:25:f0:ac:7f:a9:b6:d7:01:3b:27: e0:ce:38:ec:45:dc:f6:3f:6c:ee:b0:da:68:d7:04:4e:f0:9c: c9:ad:48:82:0f:5b:03:eb:25:25:6b:5b:c1:71:71:8b:b3:11: 52:e2:58:cd:9b:88:62:0e:91:26:30:b1:97:54:9f:97:e8:ae: ec:e3:56:46:f8:56:34:48:a0:73:76:3f:a8:79:b8:37:db:c2: 6e:29:b5:23 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICM5swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUxMzVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFGRjU2M0QyQzYxQUZG MkI3NUE5MzgyQTg5MEE0OTlCOUE2MUREQzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqK053K0JxvUB6AJMNxBSA577c1md7GLcsgMEAorW2++zcV6rh +3bppXHB/WkvjhCR8Q4g0dLgpOjE0PDeed1QFkD4RnGf/EyjnRGyCgw1vINNQC5t sp93pVWYssL5lM5u0TB+tdwdTW5NQdRV5jK69PzkPZ6QpWqMmgbzPcqffhwv0xcy 2XdsePxV+b6x4px6f6E9l3geBuAsbCBmP4/trudAXMPTAPISjZs+6FEk+FsUvHft FuPgjNab6lAFI9KBjErDRt5FXzrg/eUPPjPhRArCkNdU6Mjea1xlm9NH0K6TWev5 aPGGKXov2DII+mzJhIpXFGlRiB4of9a4Q/+fAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUH/Vj0sYa/yt1qTgqiQpJm5ph3cIwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0hfVmowc1lhX3l0MXFUZ3Fp UXBKbTVwaDNjSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHT TH4wDQYJKoZIhvcNAQELBQADggEBAF9Klzg6pe1xGLbxwXGp83lWLNG9Rhi4lw8f k34Hs5lRCmgC6ul7torv32x8vw7SI+tI1uoPmz6+YhvIVWxowQKfX3taO/l/0d7t 9whJxoPM468S6c7inIDxyONlmMPg02eYIyL9MJjdddU4N1Q860DiNOSsNOZzHTD4 F99SKRJj4DNABKe+DjFxaPW6+Seq+mXxS6QEBV9kOka3FpFAutDETH7U1rjHfvBe JfCsf6m21wE7J+DOOOxF3PY/bO6w2mjXBE7wnMmtSIIPWwPrJSVrW8FxcYuzEVLi WM2biGIOkSYwsZdUn5foruzjVkb4VjRIoHN2P6h5uDfbwm4ptSM= -----END CERTIFICATE-----Generated at Wed Feb 19 22:01:05 2025 by rpki-client