$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IZzzKTK7JWbuy9qM85kTM9R7mgw.roa File: IZzzKTK7JWbuy9qM85kTM9R7mgw.roa (raw, json) Hash identifier: K/KtmMQ4n0CDWnELfeusRYjergVZZklFJjQ12QgeWqE= Subject key identifier: 21:9C:F3:29:32:BB:25:66:EE:CB:DA:8C:F3:99:13:33:D4:7B:9A:0C Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 366A Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IZzzKTK7JWbuy9qM85kTM9R7mgw.roa Signing time: Mon 10 Feb 2025 13:54:18 +0000 ROA not before: Mon 10 Feb 2025 13:54:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.232.240.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13930 (0x366a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:54:18 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=219CF32932BB2566EECBDA8CF3991333D47B9A0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:0f:88:6e:4e:ea:e0:0d:34:87:ca:04:de:51: 35:ec:6d:4a:6d:5e:47:30:fa:44:51:76:2a:ee:a9: cf:9a:6f:53:b9:13:32:78:52:35:c6:24:ba:83:12: 16:1f:ca:13:83:02:f7:b8:8f:32:18:e0:be:60:93: 87:e9:3e:96:69:f9:b7:ec:e0:9b:5b:4a:12:3c:47: 78:60:52:8e:e2:9d:60:9e:96:7d:14:a7:73:a9:89: 96:ed:f2:71:c6:e2:61:9d:1e:6d:a8:a7:32:cc:00: 3d:09:04:b4:69:68:cc:92:4f:df:3d:fa:1d:fb:37: 50:39:16:ef:f5:f6:db:45:36:cf:1d:95:09:37:94: 3f:a8:80:42:b4:d4:8d:da:ae:b0:42:03:12:ec:2d: 51:ff:8f:6d:66:84:da:46:10:63:61:dc:5f:5b:2c: 3b:bc:ad:1e:b3:d6:a0:b1:25:60:4c:c7:c5:ae:fa: 7e:52:e8:be:57:d5:17:1e:81:80:ba:01:a0:e3:f1: 9b:ef:a9:54:3f:46:84:fd:a5:da:da:76:90:98:47: d5:a0:ed:48:93:0d:f9:58:ca:ba:2d:4b:1b:b3:84: ab:4e:fd:37:f8:d2:e8:3e:93:4a:9b:08:2e:cf:b9: 8f:c7:a3:f7:f6:d1:4c:2e:9b:f6:0d:5f:f7:ad:25: 84:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:9C:F3:29:32:BB:25:66:EE:CB:DA:8C:F3:99:13:33:D4:7B:9A:0C X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IZzzKTK7JWbuy9qM85kTM9R7mgw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.240.0/21 Signature Algorithm: sha256WithRSAEncryption 80:f3:d4:98:ff:e2:5b:7c:89:4e:56:88:6c:cc:70:dd:7a:c2: 1f:b7:6b:6c:ce:e7:c4:c6:8b:cc:8e:ef:c0:20:94:93:9c:ea: 87:cf:01:37:59:3d:30:b1:6d:15:1d:5d:cb:0b:5a:70:36:e8: 16:4b:3b:4d:2c:0c:b5:17:35:a6:bf:34:69:72:3f:7d:fc:fa: 47:c8:28:03:18:1e:24:ca:78:85:1b:d4:19:fe:91:d6:9b:5e: b4:8b:fe:5b:2b:24:c3:53:d0:50:a1:04:5d:54:95:19:d3:11: 3b:e3:89:24:1f:db:8f:a4:09:8b:bc:68:41:64:b6:ec:1e:58: 34:e8:ac:d7:44:cd:00:8b:04:0e:24:fc:06:a7:33:06:88:d6: b6:ca:82:71:fb:3c:7d:8a:a0:b9:7d:ca:87:87:1d:92:52:59: 93:1c:8a:46:04:48:1b:f4:80:f2:4a:33:2f:f5:5c:3f:44:3e: a9:6d:dc:ef:01:92:83:20:ee:35:d3:e1:55:b0:c2:d3:5d:63: 85:fd:08:ae:c8:79:57:15:73:a0:27:fa:7e:2d:5e:a3:04:af: 4d:aa:43:99:ee:af:ef:9d:63:7e:b4:cf:09:e4:9d:26:f5:5c: 6f:00:a0:06:83:0a:83:04:4d:44:25:75:d1:9f:c0:ce:39:da: 6a:c8:6f:d5 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNmowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzU0MThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIxOUNGMzI5MzJCQjI1 NjZFRUNCREE4Q0YzOTkxMzMzRDQ3QjlBMEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnD4huTurgDTSHygTeUTXsbUptXkcw+kRRdiruqc+ab1O5EzJ4 UjXGJLqDEhYfyhODAve4jzIY4L5gk4fpPpZp+bfs4JtbShI8R3hgUo7inWCeln0U p3OpiZbt8nHG4mGdHm2opzLMAD0JBLRpaMyST989+h37N1A5Fu/19ttFNs8dlQk3 lD+ogEK01I3arrBCAxLsLVH/j21mhNpGEGNh3F9bLDu8rR6z1qCxJWBMx8Wu+n5S 6L5X1RcegYC6AaDj8ZvvqVQ/RoT9pdradpCYR9Wg7UiTDflYyrotSxuzhKtO/Tf4 0ug+k0qbCC7PuY/Ho/f20Uwum/YNX/etJYSLAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUIZzzKTK7JWbuy9qM85kTM9R7mgwwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0laenpLVEs3SldidXk5cU04 NWtUTTlSN21ndy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6PAwDQYJKoZIhvcNAQELBQADggEBAIDz1Jj/4lt8iU5WiGzMcN16wh+3a2zO58TG i8yO78AglJOc6ofPATdZPTCxbRUdXcsLWnA26BZLO00sDLUXNaa/NGlyP338+kfI KAMYHiTKeIUb1Bn+kdabXrSL/lsrJMNT0FChBF1UlRnTETvjiSQf24+kCYu8aEFk tuweWDTorNdEzQCLBA4k/AanMwaI1rbKgnH7PH2KoLl9yoeHHZJSWZMcikYESBv0 gPJKMy/1XD9EPqlt3O8BkoMg7jXT4VWwwtNdY4X9CK7IeVcVc6An+n4tXqMEr02q Q5nur++dY360zwnknSb1XG8AoAaDCoMETUQlddGfwM452mrIb9U= -----END CERTIFICATE-----Generated at Wed Feb 19 21:56:32 2025 by rpki-client