$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/M2BWrLSRoyZymXM9RXGyIL1WwJ8.roa File: M2BWrLSRoyZymXM9RXGyIL1WwJ8.roa (raw, json) Hash identifier: rvXF0LN1JMYb5bNypO+4Xq20UYLtwprk28zxQ1/+bSc= Subject key identifier: 33:60:56:AC:B4:91:A3:26:72:99:73:3D:45:71:B2:20:BD:56:C0:9F Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3441 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/M2BWrLSRoyZymXM9RXGyIL1WwJ8.roa Signing time: Mon 10 Feb 2025 13:52:12 +0000 ROA not before: Mon 10 Feb 2025 13:52:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.176.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13377 (0x3441) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:52:12 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=336056ACB491A3267299733D4571B220BD56C09F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b1:76:79:de:01:4f:63:0f:d4:38:15:c0:a2: 49:f8:93:a4:05:96:37:34:64:43:46:7c:a9:69:71: b4:d7:42:15:33:75:38:f9:e3:1d:ce:c8:6f:08:50: a2:b6:46:18:50:cf:4a:86:0b:89:42:63:65:38:59: 5b:ae:31:0b:5f:ab:4b:b6:74:f9:75:77:01:cf:91: 4f:b0:9b:5b:1b:22:5d:16:27:d5:25:d3:01:2e:e5: df:48:2f:3e:28:bd:cb:af:30:65:cc:89:c6:5e:11: 9b:be:6d:8f:cf:1d:a3:a3:17:34:97:ad:3e:b7:ff: a6:3f:20:d8:08:44:96:6b:5c:3f:fd:0a:0a:3c:5c: 23:8a:d9:bb:dc:c5:39:32:f6:cf:de:44:2d:d3:60: 74:55:14:d4:03:d5:d4:8d:a8:65:c3:13:76:b9:12: f6:f1:3c:a0:dc:2e:81:d6:ff:01:ea:67:bf:6e:6c: c5:09:44:9f:86:53:0e:bf:82:06:92:a2:93:c8:a0: 3a:67:6e:84:8d:a6:14:74:ee:46:2c:38:d5:77:66: fa:97:bb:fb:f5:68:1b:36:4b:2c:47:a9:cd:2e:e0: c1:a4:c1:e5:2f:24:4d:4c:46:69:ce:76:3f:0b:2c: ee:cf:ea:2a:ea:ad:e4:8d:18:ca:00:51:44:47:20: f5:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:60:56:AC:B4:91:A3:26:72:99:73:3D:45:71:B2:20:BD:56:C0:9F X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/M2BWrLSRoyZymXM9RXGyIL1WwJ8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.176.0/22 Signature Algorithm: sha256WithRSAEncryption 85:f5:e2:50:19:e6:fc:e8:b7:14:25:cf:90:b0:98:8f:d4:19: 0d:6a:6a:b5:ba:b0:9b:ed:f6:43:0a:1c:e5:1c:51:9c:e0:3c: 8d:b6:b1:98:b3:88:62:48:d4:1c:d5:45:c2:be:79:05:f0:64: 31:16:23:d9:48:59:92:89:0d:9e:30:e7:ab:c3:3c:b2:43:08: 82:54:40:8e:dc:66:a7:d5:98:02:b5:96:47:3d:e8:6c:16:32: c3:a9:bc:30:1d:a6:c3:7c:cd:5d:07:da:b9:0c:f3:3a:4b:6b: d4:4b:17:43:8e:b0:d5:4e:59:1a:1c:e9:1f:8d:33:c2:51:7b: d7:5e:ff:3f:6e:a2:a6:84:4a:48:f8:3d:b5:d3:18:1f:8e:24: 51:84:ae:87:04:e4:d9:fd:25:37:cb:c7:2b:53:1d:b6:7e:1b: 2e:cb:ec:e0:b8:5d:e9:0d:ce:4b:c8:6c:e5:24:d8:be:4a:9c: 45:9d:d4:f3:86:85:23:bd:7c:64:da:a5:65:ce:38:81:b4:81: 8e:7b:81:91:e2:8e:5f:53:b5:35:d9:7d:8d:d9:dc:93:44:0a: 82:f5:8e:b9:a3:12:14:83:68:48:20:f0:d7:8e:fa:eb:f8:c6: bf:9a:4e:dd:fc:6a:ce:59:f4:49:be:22:49:9e:30:96:4b:ac: ad:b0:d9:bf -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNEEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUyMTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMzNjA1NkFDQjQ5MUEz MjY3Mjk5NzMzRDQ1NzFCMjIwQkQ1NkMwOUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmsXZ53gFPYw/UOBXAokn4k6QFljc0ZENGfKlpcbTXQhUzdTj5 4x3OyG8IUKK2RhhQz0qGC4lCY2U4WVuuMQtfq0u2dPl1dwHPkU+wm1sbIl0WJ9Ul 0wEu5d9ILz4ovcuvMGXMicZeEZu+bY/PHaOjFzSXrT63/6Y/INgIRJZrXD/9Cgo8 XCOK2bvcxTky9s/eRC3TYHRVFNQD1dSNqGXDE3a5EvbxPKDcLoHW/wHqZ79ubMUJ RJ+GUw6/ggaSopPIoDpnboSNphR07kYsONV3ZvqXu/v1aBs2SyxHqc0u4MGkweUv JE1MRmnOdj8LLO7P6irqreSNGMoAUURHIPVtAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUM2BWrLSRoyZymXM9RXGyIL1WwJ8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL00yQldyTFNSb3laeW1YTTlS WEd5SUwxV3dKOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq AbAwDQYJKoZIhvcNAQELBQADggEBAIX14lAZ5vzotxQlz5CwmI/UGQ1qarW6sJvt 9kMKHOUcUZzgPI22sZiziGJI1BzVRcK+eQXwZDEWI9lIWZKJDZ4w56vDPLJDCIJU QI7cZqfVmAK1lkc96GwWMsOpvDAdpsN8zV0H2rkM8zpLa9RLF0OOsNVOWRoc6R+N M8JRe9de/z9uoqaESkj4PbXTGB+OJFGErocE5Nn9JTfLxytTHbZ+Gy7L7OC4XekN zkvIbOUk2L5KnEWd1POGhSO9fGTapWXOOIG0gY57gZHijl9TtTXZfY3Z3JNECoL1 jrmjEhSDaEgg8NeO+uv4xr+aTt38as5Z9Em+IkmeMJZLrK2w2b8= -----END CERTIFICATE-----Generated at Wed Feb 19 21:56:36 2025 by rpki-client