$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/O4w8T4hyG2Se_ZVeSetX09lbyCM.roa File: O4w8T4hyG2Se_ZVeSetX09lbyCM.roa (raw, json) Hash identifier: 4Mid330xlcAnCVf1QDUAqMzoyijYczwzP6bBVhm26bw= Subject key identifier: 3B:8C:3C:4F:88:72:1B:64:9E:FD:95:5E:49:EB:57:D3:D9:5B:C8:23 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 347E Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/O4w8T4hyG2Se_ZVeSetX09lbyCM.roa Signing time: Mon 10 Feb 2025 13:52:26 +0000 ROA not before: Mon 10 Feb 2025 13:52:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.194.205.128/28 maxlen: 28 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13438 (0x347e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:52:26 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3B8C3C4F88721B649EFD955E49EB57D3D95BC823 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:6f:6c:e8:cc:8d:59:09:0a:47:88:ad:28:68: 7b:f8:9d:fa:de:27:b1:58:5a:30:cb:3b:c8:58:9d: 5a:62:f0:ae:60:ad:02:ae:ce:17:fe:c4:93:6d:92: 72:dc:80:98:3f:7d:63:84:9e:ef:02:62:d8:d4:5b: b2:f6:40:51:fb:38:8d:6f:6a:37:80:c8:eb:a2:13: 54:ba:5a:cd:16:7f:de:e2:18:ba:25:e4:4e:46:4a: 0e:7d:3d:54:1d:bd:82:b8:34:31:b7:13:1b:4b:62: a7:e9:1b:9c:bf:c7:d1:06:f0:b5:84:3d:d1:4d:98: 7f:a8:88:99:1f:7e:01:70:af:16:c0:b7:16:b0:5d: 79:ed:75:f0:b9:18:0c:1d:63:dd:a2:e9:b2:86:b1: 51:98:7d:04:e3:8d:33:78:d3:58:58:a3:1e:6d:ef: 18:35:e7:63:39:04:35:91:12:3d:f6:80:d3:14:16: 4f:a0:0b:89:a1:eb:50:0a:3f:1e:18:4e:2e:b2:0d: 42:66:dd:ad:72:0d:71:8e:04:4e:3d:24:a0:a9:0a: 7c:1c:86:d5:ef:18:77:e6:a7:c8:49:75:59:58:d0: e9:1f:a7:58:ae:db:e2:f9:c1:42:4d:50:81:bc:61: 3a:c6:69:51:e3:c4:19:61:e4:60:ae:79:91:df:ba: 97:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:8C:3C:4F:88:72:1B:64:9E:FD:95:5E:49:EB:57:D3:D9:5B:C8:23 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/O4w8T4hyG2Se_ZVeSetX09lbyCM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.205.128/28 Signature Algorithm: sha256WithRSAEncryption 19:97:fd:9b:e2:29:04:54:29:46:17:68:17:96:5e:cf:cc:7e: 0c:c9:58:a3:74:49:27:80:01:99:c0:af:11:ac:15:f7:cf:44: ba:d8:b9:de:15:d2:91:57:78:00:fa:63:97:ba:7d:7d:cb:87: 9b:bc:63:cf:b8:ee:9a:8c:50:19:91:ee:6a:48:b6:a5:f4:d5: 26:66:97:18:06:e5:6a:b8:2d:4e:1b:6a:32:32:c8:f3:7a:f3: 71:ec:80:c7:1a:e6:d2:48:71:65:a4:a2:09:60:3c:8c:33:fb: f8:65:69:3d:03:6e:f1:b2:38:6d:e7:fd:3a:3a:21:13:c0:14: 56:04:f7:a7:d3:07:c1:a9:6a:49:3f:6e:c9:ab:7e:70:ee:ce: 3a:4e:a1:f2:01:88:bb:e9:de:2e:40:f9:c5:6e:b3:88:6a:3f: 00:91:47:24:2e:5c:45:bc:06:ba:02:ae:ab:68:9b:2f:e2:15: 88:5d:19:6d:15:e4:de:43:da:9b:32:50:a0:cd:ca:ec:4e:f6: b9:54:0e:c3:a8:19:03:2e:ef:b3:bc:04:f3:bb:0d:3a:3b:48: 22:3d:ef:7c:ed:bf:3a:e5:5a:a7:32:99:41:a2:05:64:f3:1d: 91:85:93:be:10:4e:87:22:85:27:4d:5c:7f:0a:e5:fd:1b:00: 3d:b7:e3:0c -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICNH4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUyMjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNCOEMzQzRGODg3MjFC NjQ5RUZEOTU1RTQ5RUI1N0QzRDk1QkM4MjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrb2zozI1ZCQpHiK0oaHv4nfreJ7FYWjDLO8hYnVpi8K5grQKu zhf+xJNtknLcgJg/fWOEnu8CYtjUW7L2QFH7OI1vajeAyOuiE1S6Ws0Wf97iGLol 5E5GSg59PVQdvYK4NDG3ExtLYqfpG5y/x9EG8LWEPdFNmH+oiJkffgFwrxbAtxaw XXntdfC5GAwdY92i6bKGsVGYfQTjjTN401hYox5t7xg152M5BDWREj32gNMUFk+g C4mh61AKPx4YTi6yDUJm3a1yDXGOBE49JKCpCnwchtXvGHfmp8hJdVlY0Okfp1iu 2+L5wUJNUIG8YTrGaVHjxBlh5GCueZHfupdrAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUO4w8T4hyG2Se/ZVeSetX09lbyCMwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL080dzhUNGh5RzJTZV9aVmVT ZXRYMDlsYnlDTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQR7 ws2AMA0GCSqGSIb3DQEBCwUAA4IBAQAZl/2b4ikEVClGF2gXll7PzH4MyVijdEkn gAGZwK8RrBX3z0S62LneFdKRV3gA+mOXun19y4ebvGPPuO6ajFAZke5qSLal9NUm ZpcYBuVquC1OG2oyMsjzevNx7IDHGubSSHFlpKIJYDyMM/v4ZWk9A27xsjht5/06 OiETwBRWBPen0wfBqWpJP27Jq35w7s46TqHyAYi76d4uQPnFbrOIaj8AkUckLlxF vAa6Aq6raJsv4hWIXRltFeTeQ9qbMlCgzcrsTva5VA7DqBkDLu+zvATzuw06O0gi Pe987b865VqnMplBogVk8x2RhZO+EE6HIoUnTVx/CuX9GwA9t+MM -----END CERTIFICATE-----Generated at Wed Feb 19 22:10:12 2025 by rpki-client