$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Lm1CScYVff58nycaO7cCdI0S6_0.roa File: Lm1CScYVff58nycaO7cCdI0S6_0.roa (raw, json) Hash identifier: 7MmZh/OtcUbcq5Jv42b80P3C+iUrNx0SkmuOKrFRdwk= Subject key identifier: 2E:6D:42:49:C6:15:7D:FE:7C:9F:27:1A:3B:B7:02:74:8D:12:EB:FD Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 35B4 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Lm1CScYVff58nycaO7cCdI0S6_0.roa Signing time: Mon 10 Feb 2025 13:53:37 +0000 ROA not before: Mon 10 Feb 2025 13:53:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.233.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13748 (0x35b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:53:37 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2E6D4249C6157DFE7C9F271A3BB702748D12EBFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:36:15:f6:a3:51:99:47:6c:12:a4:f3:32:8f: ae:f3:4e:1e:8d:1a:ac:ec:27:51:66:e3:14:41:58: 88:86:63:2f:0f:f4:07:44:13:55:a0:1a:d8:d3:32: e4:ca:d8:34:e7:60:6b:a9:80:ce:34:18:d7:1c:0b: d7:79:a4:db:70:a6:11:c7:4b:0d:24:f2:6b:c2:c8: 11:a0:d3:78:3a:c5:4c:a0:86:2b:fa:07:60:21:f9: 36:93:29:c1:44:7d:cb:0f:1c:6e:1d:1a:e5:52:b5: 79:d8:55:93:fb:14:ac:0c:3d:65:a3:8c:0d:26:e7: f3:10:e2:08:ca:89:62:8e:b9:64:2e:54:b6:7f:19: 03:c2:43:7b:4b:20:6c:f7:7e:ec:84:f6:77:1b:75: 78:0b:18:fa:0d:83:df:53:f5:5a:b8:08:43:f5:e4: 68:99:91:b2:41:90:d1:36:9c:98:37:9d:95:a7:77: e6:b7:1a:54:34:6c:ae:cd:d6:11:f8:32:c9:d8:5f: 24:bf:88:4c:b2:95:34:05:82:b0:e3:fb:97:e7:35: c6:27:00:b7:ed:3b:4a:62:3b:e2:cd:61:62:3a:93: 7c:39:35:52:1b:27:fe:70:77:37:17:23:31:da:d1: 85:0b:d5:b6:12:ea:a3:4d:cd:27:14:5e:08:19:ce: 86:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:6D:42:49:C6:15:7D:FE:7C:9F:27:1A:3B:B7:02:74:8D:12:EB:FD X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Lm1CScYVff58nycaO7cCdI0S6_0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.0.0/21 Signature Algorithm: sha256WithRSAEncryption b3:78:ae:49:93:1f:da:33:fc:af:28:0e:f2:d1:1f:ca:1e:1e: ea:e3:92:c4:84:0c:aa:b5:5a:f2:20:8e:83:10:fb:1a:1e:2a: 6e:cc:5c:c2:1b:16:ba:b0:28:37:fe:db:86:ca:93:20:3f:03: 89:15:6d:59:91:0c:70:34:9b:bb:79:38:20:4a:af:3b:01:8a: ed:d5:64:5c:00:0c:83:c8:e5:77:f7:2a:90:23:52:d8:25:40: 08:f9:27:8f:6e:90:a4:93:81:71:45:48:10:20:cb:3f:12:b6: 0b:15:49:54:37:06:22:70:c9:2f:b5:23:ce:08:41:4a:eb:37: f8:50:e4:19:0a:81:4b:9a:8c:79:28:65:da:da:a2:fc:8b:63: d4:63:63:6d:44:46:ea:a0:1d:03:eb:15:fa:8f:38:87:d9:39: 50:c6:7e:66:12:31:3f:f5:7f:f5:82:44:99:a0:08:3b:5a:34: f7:af:ce:c9:24:95:2d:ec:e3:ca:e6:df:c2:83:3e:f9:75:c8: d8:c1:c9:82:0e:ef:21:e2:c1:a0:ca:7e:cf:a9:e8:2a:d1:e7: eb:b1:1d:ff:49:51:33:5b:dd:23:7d:87:9a:c0:30:b0:69:b9: fb:a3:e7:a6:73:d7:c6:68:bc:01:3d:27:2a:44:47:99:bf:cd: e1:70:0c:da -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNbQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUzMzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJFNkQ0MjQ5QzYxNTdE RkU3QzlGMjcxQTNCQjcwMjc0OEQxMkVCRkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+NhX2o1GZR2wSpPMyj67zTh6NGqzsJ1Fm4xRBWIiGYy8P9AdE E1WgGtjTMuTK2DTnYGupgM40GNccC9d5pNtwphHHSw0k8mvCyBGg03g6xUyghiv6 B2Ah+TaTKcFEfcsPHG4dGuVStXnYVZP7FKwMPWWjjA0m5/MQ4gjKiWKOuWQuVLZ/ GQPCQ3tLIGz3fuyE9ncbdXgLGPoNg99T9Vq4CEP15GiZkbJBkNE2nJg3nZWnd+a3 GlQ0bK7N1hH4MsnYXyS/iEyylTQFgrDj+5fnNcYnALftO0piO+LNYWI6k3w5NVIb J/5wdzcXIzHa0YUL1bYS6qNNzScUXggZzoZHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQULm1CScYVff58nycaO7cCdI0S6/0wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0xtMUNTY1lWZmY1OG55Y2FP N2NDZEkwUzZfMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6QAwDQYJKoZIhvcNAQELBQADggEBALN4rkmTH9oz/K8oDvLRH8oeHurjksSEDKq1 WvIgjoMQ+xoeKm7MXMIbFrqwKDf+24bKkyA/A4kVbVmRDHA0m7t5OCBKrzsBiu3V ZFwADIPI5Xf3KpAjUtglQAj5J49ukKSTgXFFSBAgyz8StgsVSVQ3BiJwyS+1I84I QUrrN/hQ5BkKgUuajHkoZdraovyLY9RjY21ERuqgHQPrFfqPOIfZOVDGfmYSMT/1 f/WCRJmgCDtaNPevzskklS3s48rm38KDPvl1yNjByYIO7yHiwaDKfs+p6CrR5+ux Hf9JUTNb3SN9h5rAMLBpufuj56Zz18ZovAE9JypER5m/zeFwDNo= -----END CERTIFICATE-----Generated at Wed Feb 19 22:04:58 2025 by rpki-client