$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HzLuCWuicvm9VC7xpDOupmBNehI.roa File: HzLuCWuicvm9VC7xpDOupmBNehI.roa (raw, json) Hash identifier: w8wOMItgy58MDR/LFXuW5Dw0vz0Lz50A0FFC762g1AQ= Subject key identifier: 1F:32:EE:09:6B:A2:72:F9:BD:54:2E:F1:A4:33:AE:A6:60:4D:7A:12 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 34B6 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HzLuCWuicvm9VC7xpDOupmBNehI.roa Signing time: Mon 10 Feb 2025 13:52:38 +0000 ROA not before: Mon 10 Feb 2025 13:52:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.194.152.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13494 (0x34b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:52:38 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1F32EE096BA272F9BD542EF1A433AEA6604D7A12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:96:c5:24:c7:71:34:b7:45:60:1e:c9:ec:90: 53:74:ac:79:c2:86:ff:a0:7f:94:fd:22:73:27:94: a3:c3:ec:ab:d5:11:b8:9e:ec:5a:e6:a5:8e:82:03: 50:48:10:21:86:c0:e0:4a:d2:ba:c4:61:4a:59:89: 99:e9:8c:3b:5a:1f:5a:66:cf:f4:74:22:df:3f:21: 5f:e7:eb:f9:72:df:90:76:1b:a5:10:db:8a:81:96: fd:69:fa:23:38:64:64:06:df:71:c5:32:3f:77:e8: e6:22:a4:02:a6:10:f9:2d:ab:99:49:84:af:6e:c8: 28:8b:a7:45:8f:1f:dc:5a:5a:36:4f:72:bc:7d:53: 7f:4d:22:b8:02:a4:b2:9a:0a:56:ed:78:26:3f:ae: 13:71:bf:fc:35:1d:a6:eb:cc:6a:98:69:7a:58:ca: a0:48:ff:6f:e1:16:5c:85:ec:96:dd:6d:5e:e8:9c: 16:53:4b:5a:3b:12:8b:95:b4:7e:b9:df:ea:5c:ed: 50:66:c4:2c:95:e4:c6:8f:49:0a:3f:53:9c:92:39: 93:82:45:a2:70:3f:61:36:ce:25:28:e0:2d:98:51: 99:24:09:cd:7d:5d:c5:f2:6f:ed:9a:76:21:10:68: ad:3c:63:44:6d:25:d3:8c:af:67:b9:04:f7:37:36: 34:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:32:EE:09:6B:A2:72:F9:BD:54:2E:F1:A4:33:AE:A6:60:4D:7A:12 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HzLuCWuicvm9VC7xpDOupmBNehI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.152.0/21 Signature Algorithm: sha256WithRSAEncryption 2e:64:9f:20:51:a9:ff:9c:cb:94:52:dd:bd:99:9b:ad:4e:97: 12:ae:64:15:d2:8c:35:b4:be:fe:c4:70:06:7b:ef:97:25:7e: 26:54:42:84:99:2b:28:97:3a:d4:24:bf:1e:f1:d1:81:0e:3b: 44:00:73:cc:39:4d:71:70:8e:2f:53:70:db:d9:85:41:74:5b: 99:96:f9:07:81:0c:35:6c:7d:85:c6:3c:01:ae:5c:97:97:ef: 2d:c4:8b:46:c7:cc:e8:1a:52:0a:64:fb:a2:72:9a:3e:f9:d1: ee:bd:ea:b7:e2:2d:04:ec:6b:13:95:d0:66:d2:dd:83:9b:c5: 2b:7e:5a:13:38:74:e2:dd:e2:a3:f9:8c:77:68:d3:ed:dd:5b: 5c:bc:7a:7d:a3:d3:26:b6:75:c5:f3:73:1a:a8:b3:d0:6f:f0: 62:b5:b3:24:98:02:ba:12:f7:e6:8b:67:4b:c5:47:38:49:b6: d1:13:f6:2a:58:86:88:a7:22:e1:47:5f:6f:7a:18:c2:73:e1: a9:68:7c:5f:70:64:c1:39:38:13:ec:7a:cc:06:8e:91:0f:e4: 88:46:92:9e:e3:7a:bb:97:c7:92:84:f7:16:22:eb:80:25:fe: f6:15:10:a4:de:bb:30:9a:56:92:15:22:2c:3b:09:09:3c:b6: e2:98:b7:9f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNLYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUyMzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFGMzJFRTA5NkJBMjcy RjlCRDU0MkVGMUE0MzNBRUE2NjA0RDdBMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0lsUkx3E0t0VgHsnskFN0rHnChv+gf5T9InMnlKPD7KvVEbie 7FrmpY6CA1BIECGGwOBK0rrEYUpZiZnpjDtaH1pmz/R0It8/IV/n6/ly35B2G6UQ 24qBlv1p+iM4ZGQG33HFMj936OYipAKmEPktq5lJhK9uyCiLp0WPH9xaWjZPcrx9 U39NIrgCpLKaClbteCY/rhNxv/w1HabrzGqYaXpYyqBI/2/hFlyF7JbdbV7onBZT S1o7EouVtH653+pc7VBmxCyV5MaPSQo/U5ySOZOCRaJwP2E2ziUo4C2YUZkkCc19 XcXyb+2adiEQaK08Y0RtJdOMr2e5BPc3NjTRAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUHzLuCWuicvm9VC7xpDOupmBNehIwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0h6THVDV3VpY3ZtOVZDN3hw RE91cG1CTmVoSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wpgwDQYJKoZIhvcNAQELBQADggEBAC5knyBRqf+cy5RS3b2Zm61OlxKuZBXSjDW0 vv7EcAZ775clfiZUQoSZKyiXOtQkvx7x0YEOO0QAc8w5TXFwji9TcNvZhUF0W5mW +QeBDDVsfYXGPAGuXJeX7y3Ei0bHzOgaUgpk+6Jymj750e696rfiLQTsaxOV0GbS 3YObxSt+WhM4dOLd4qP5jHdo0+3dW1y8en2j0ya2dcXzcxqos9Bv8GK1sySYAroS 9+aLZ0vFRzhJttET9ipYhoinIuFHX296GMJz4alofF9wZME5OBPseswGjpEP5IhG kp7jeruXx5KE9xYi64Al/vYVEKTeuzCaVpIVIiw7CQk8tuKYt58= -----END CERTIFICATE-----Generated at Wed Feb 19 22:05:37 2025 by rpki-client