$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PVGdwy56CdENuePpKZT0CcNCpNo.roa File: PVGdwy56CdENuePpKZT0CcNCpNo.roa (raw, json) Hash identifier: HoFg4ZB163dwfVK1t/An63dsWU7V+CWpo+svcinsi/U= Subject key identifier: 3D:51:9D:C3:2E:7A:09:D1:0D:B9:E3:E9:29:94:F4:09:C3:42:A4:DA Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 36AA Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PVGdwy56CdENuePpKZT0CcNCpNo.roa Signing time: Mon 10 Feb 2025 13:54:33 +0000 ROA not before: Mon 10 Feb 2025 13:54:33 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.233.96.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13994 (0x36aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:54:33 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3D519DC32E7A09D10DB9E3E92994F409C342A4DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f0:85:a5:c3:60:d4:f7:19:9f:3f:3a:50:0d: 4c:e8:7e:c9:6f:6e:69:2a:b3:ac:48:17:51:9c:00: de:87:3d:da:61:dd:db:6d:89:1a:f4:25:a1:c4:18: cc:4b:95:fb:78:76:d9:fe:c8:23:95:51:0b:4d:87: 04:e3:11:a4:86:f4:e5:99:cb:e9:cd:cb:fc:9f:79: 59:12:f2:f9:a2:ea:33:16:9f:d5:94:f5:ae:b6:96: 09:09:1b:e0:d9:98:d4:cc:4f:42:63:bd:48:18:68: c1:18:bd:46:e5:19:58:72:27:2f:f0:a3:b2:8a:fb: e3:7d:10:06:80:39:6c:52:b1:7d:38:65:e8:10:0d: a9:36:2d:a9:d5:f6:5c:6a:4f:60:34:ec:55:22:9d: af:4c:36:d3:3f:e7:da:d3:86:ef:42:44:7a:c1:b6: 78:27:32:ba:c2:00:4b:8f:fe:8a:e9:61:c6:94:c9: 64:6e:85:d1:7f:3d:a7:2f:7f:d0:00:95:f3:2c:54: 4a:b0:c6:c9:c0:a3:20:61:bf:f3:f7:ac:c4:43:d6: cd:cf:48:d4:34:40:a9:ef:a5:d1:61:0a:de:61:06: 62:1f:9c:b9:21:4b:b0:f2:c3:79:7c:14:2e:b1:0b: fe:9e:c2:30:f6:a1:e8:f2:8b:5c:8d:63:c0:8e:da: 0b:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:51:9D:C3:2E:7A:09:D1:0D:B9:E3:E9:29:94:F4:09:C3:42:A4:DA X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PVGdwy56CdENuePpKZT0CcNCpNo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.96.0/22 Signature Algorithm: sha256WithRSAEncryption b7:43:b4:45:ff:28:db:98:e6:39:c6:85:96:37:b6:a4:44:9c: 31:34:d8:8e:d8:a5:3a:77:30:9e:d8:96:03:5f:ec:bd:8a:74: 75:c1:c1:ba:bc:4e:ff:92:cb:32:d2:b1:10:e6:67:8b:86:99: f2:c7:24:34:d7:a1:8f:f1:ba:e5:67:44:b7:12:cf:3a:22:5c: 1f:6d:80:d8:72:e8:45:3a:33:61:ba:53:17:07:a2:fc:28:20: 38:c7:32:de:66:16:cb:09:56:5f:6e:7a:e2:d4:c8:2d:9e:68: 55:71:2a:db:fa:e9:4c:75:65:aa:9f:a7:2d:08:1a:85:f0:4c: 57:4a:91:06:48:2c:aa:d3:70:8e:ad:41:6d:36:c9:bf:e8:fd: c8:be:cc:06:d8:74:32:2e:68:5b:5b:d9:21:68:00:95:82:19: d1:52:68:35:c9:e9:d3:3f:9a:64:b4:c1:bc:0e:17:c9:ee:74: 44:c8:bd:d3:63:d9:f4:d5:65:76:05:cf:d0:a1:ef:4b:1e:6f: 60:18:9b:5a:82:04:a6:ed:61:2e:47:8b:5f:bc:00:7f:dc:d9: e6:ca:b3:5e:b0:9d:63:c3:42:e9:17:3b:dd:ea:84:1b:cc:34: 81:3a:ac:fe:c2:ad:50:44:3e:7e:c4:5f:59:d8:42:96:68:94: fe:36:ab:e2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNqowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzU0MzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNENTE5REMzMkU3QTA5 RDEwREI5RTNFOTI5OTRGNDA5QzM0MkE0REEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDA8IWlw2DU9xmfPzpQDUzofslvbmkqs6xIF1GcAN6HPdph3dtt iRr0JaHEGMxLlft4dtn+yCOVUQtNhwTjEaSG9OWZy+nNy/yfeVkS8vmi6jMWn9WU 9a62lgkJG+DZmNTMT0JjvUgYaMEYvUblGVhyJy/wo7KK++N9EAaAOWxSsX04ZegQ Dak2LanV9lxqT2A07FUina9MNtM/59rThu9CRHrBtngnMrrCAEuP/orpYcaUyWRu hdF/Pacvf9AAlfMsVEqwxsnAoyBhv/P3rMRD1s3PSNQ0QKnvpdFhCt5hBmIfnLkh S7Dyw3l8FC6xC/6ewjD2oejyi1yNY8CO2gurAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUPVGdwy56CdENuePpKZT0CcNCpNowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1BWR2R3eTU2Q2RFTnVlUHBL WlQwQ2NOQ3BOby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6WAwDQYJKoZIhvcNAQELBQADggEBALdDtEX/KNuY5jnGhZY3tqREnDE02I7YpTp3 MJ7YlgNf7L2KdHXBwbq8Tv+SyzLSsRDmZ4uGmfLHJDTXoY/xuuVnRLcSzzoiXB9t gNhy6EU6M2G6UxcHovwoIDjHMt5mFssJVl9ueuLUyC2eaFVxKtv66Ux1Zaqfpy0I GoXwTFdKkQZILKrTcI6tQW02yb/o/ci+zAbYdDIuaFtb2SFoAJWCGdFSaDXJ6dM/ mmS0wbwOF8nudETIvdNj2fTVZXYFz9Ch70seb2AYm1qCBKbtYS5Hi1+8AH/c2ebK s16wnWPDQukXO93qhBvMNIE6rP7CrVBEPn7EX1nYQpZolP42q+I= -----END CERTIFICATE-----Generated at Wed Feb 19 22:08:50 2025 by rpki-client