$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IAeVJH4ctZPcoy5TnxQfYS7GHdU.roa File: IAeVJH4ctZPcoy5TnxQfYS7GHdU.roa (raw, json) Hash identifier: ifcSwkzBPq0epgrZd3ew7ukGh4dbA1tdNBaAC8eRkNE= Subject key identifier: 20:07:95:24:7E:1C:B5:93:DC:A3:2E:53:9F:14:1F:61:2E:C6:1D:D5 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 341D Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IAeVJH4ctZPcoy5TnxQfYS7GHdU.roa Signing time: Mon 10 Feb 2025 13:52:05 +0000 ROA not before: Mon 10 Feb 2025 13:52:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 118.232.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13341 (0x341d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:52:05 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=200795247E1CB593DCA32E539F141F612EC61DD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:77:f6:06:32:25:a9:13:71:21:55:ca:bb:6b: a3:ba:d5:fc:9c:c2:36:b3:b8:55:54:98:06:67:2f: b8:c4:b2:8b:04:9a:1b:60:0d:e0:8b:00:37:25:11: 19:94:df:45:c1:1d:b2:6a:18:59:fc:fa:3a:cb:27: c3:bc:a3:df:1a:64:d6:df:d0:35:88:2b:fa:31:16: d9:1a:3a:2f:8d:8c:57:a9:b8:4f:e7:f2:e7:ba:d3: 5c:df:f2:fc:0d:02:13:ba:50:27:ad:43:60:46:32: a5:0f:ce:0a:b9:c5:d0:20:8a:12:2a:92:25:11:b3: d0:e7:a0:c4:bc:a2:ec:82:f4:48:31:e3:fc:b1:98: 48:9f:3c:ba:8b:a1:e3:06:4a:3c:b3:58:34:93:97: 06:5e:9a:4b:2f:3b:b0:80:66:40:b6:9b:40:89:e1: cb:35:f0:e2:41:20:e6:6a:2e:0a:4f:46:65:dd:56: 6e:9d:95:b9:e6:cb:8c:b2:1f:a9:fb:ad:f7:fa:4a: 9c:f2:8e:e4:45:47:7b:1e:3d:0f:e1:27:29:79:e7: 67:7b:d6:8a:b8:ab:64:b3:a8:26:7d:5e:cb:dd:63: a9:54:31:b0:91:34:a3:14:e7:50:07:c4:39:0e:97: 22:e2:67:1e:55:0a:68:fd:86:ef:df:41:cd:22:cf: 17:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:07:95:24:7E:1C:B5:93:DC:A3:2E:53:9F:14:1F:61:2E:C6:1D:D5 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IAeVJH4ctZPcoy5TnxQfYS7GHdU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.160.0/19 Signature Algorithm: sha256WithRSAEncryption 73:d6:31:ad:b7:97:13:c3:15:44:8c:97:53:ee:09:26:93:2d: 0e:c0:bf:b2:0b:77:29:7b:55:62:b6:a7:f8:90:d8:3f:90:4c: a8:9c:fb:5e:56:92:79:2c:cb:37:da:62:0e:2b:ed:f6:ee:09: 31:15:4c:03:73:a4:cb:6d:69:3f:70:45:f0:7a:21:49:06:4b: 07:36:25:3b:bf:cb:db:83:4a:db:be:94:45:00:a1:54:ea:e4: dc:9e:f6:23:d7:67:76:14:53:50:54:c2:67:1e:d2:5e:91:b1: ab:46:ed:12:0e:20:33:79:57:33:ad:9a:d3:20:bc:b6:87:75: 68:1d:36:e9:8c:57:22:a9:42:36:bc:8b:4f:f3:05:31:6f:35: 0f:d6:f6:22:10:4b:52:21:e7:cf:9c:68:f3:b2:ba:76:13:4b: 3c:e4:6b:8f:3e:d9:22:bc:66:29:1e:58:9a:21:95:09:2b:e3: 3c:56:14:0f:c4:17:ef:dd:a4:5f:86:f0:75:d6:7c:0d:cc:64: 64:ee:2a:47:1a:43:d4:f2:c0:69:7e:e4:54:d7:a3:30:eb:14: 00:9c:d2:77:ca:e6:eb:e8:43:58:24:62:de:fa:08:47:e9:c4: 89:1c:29:19:62:0f:87:25:a3:a0:06:1e:56:cd:6d:9c:24:a3: 40:57:7a:d1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNB0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUyMDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIwMDc5NTI0N0UxQ0I1 OTNEQ0EzMkU1MzlGMTQxRjYxMkVDNjFERDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMd/YGMiWpE3EhVcq7a6O61fycwjazuFVUmAZnL7jEsosEmhtg DeCLADclERmU30XBHbJqGFn8+jrLJ8O8o98aZNbf0DWIK/oxFtkaOi+NjFepuE/n 8ue601zf8vwNAhO6UCetQ2BGMqUPzgq5xdAgihIqkiURs9DnoMS8ouyC9Egx4/yx mEifPLqLoeMGSjyzWDSTlwZemksvO7CAZkC2m0CJ4cs18OJBIOZqLgpPRmXdVm6d lbnmy4yyH6n7rff6SpzyjuRFR3sePQ/hJyl552d71oq4q2SzqCZ9XsvdY6lUMbCR NKMU51AHxDkOlyLiZx5VCmj9hu/fQc0izxftAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUIAeVJH4ctZPcoy5TnxQfYS7GHdUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0lBZVZKSDRjdFpQY295NVRu eFFmWVM3R0hkVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV2 6KAwDQYJKoZIhvcNAQELBQADggEBAHPWMa23lxPDFUSMl1PuCSaTLQ7Av7ILdyl7 VWK2p/iQ2D+QTKic+15WknksyzfaYg4r7fbuCTEVTANzpMttaT9wRfB6IUkGSwc2 JTu/y9uDStu+lEUAoVTq5Nye9iPXZ3YUU1BUwmce0l6RsatG7RIOIDN5VzOtmtMg vLaHdWgdNumMVyKpQja8i0/zBTFvNQ/W9iIQS1Ih58+caPOyunYTSzzka48+2SK8 ZikeWJohlQkr4zxWFA/EF+/dpF+G8HXWfA3MZGTuKkcaQ9TywGl+5FTXozDrFACc 0nfK5uvoQ1gkYt76CEfpxIkcKRliD4clo6AGHlbNbZwko0BXetE= -----END CERTIFICATE-----Generated at Wed Feb 19 22:00:31 2025 by rpki-client