$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PoNbHeO3MHkqradYG1bevtzgBxo.roa File: PoNbHeO3MHkqradYG1bevtzgBxo.roa (raw, json) Hash identifier: Dlde+Koo7ki5uMiISMkdd4lFPmgNY1FO3Ce/4DEjBME= Subject key identifier: 3E:83:5B:1D:E3:B7:30:79:2A:AD:A7:58:1B:56:DE:BE:DC:E0:07:1A Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 34B2 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PoNbHeO3MHkqradYG1bevtzgBxo.roa Signing time: Mon 10 Feb 2025 13:52:37 +0000 ROA not before: Mon 10 Feb 2025 13:52:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.195.8.128/26 maxlen: 26 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13490 (0x34b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:52:37 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3E835B1DE3B730792AADA7581B56DEBEDCE0071A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:3f:9f:8b:67:59:4b:e7:28:32:b8:dc:fa:42: ee:c7:00:c2:7a:95:a1:d8:e0:a3:96:f8:2d:bf:3d: a8:e4:8a:4d:fa:b0:42:99:43:7e:4f:00:6c:85:d7: 66:a0:4b:a4:43:81:7a:59:65:9c:cc:5d:54:a4:d9: e1:ac:35:16:d8:79:49:74:91:2f:90:3a:59:04:87: d7:d5:85:b2:47:a3:67:0b:c2:f8:a1:2a:40:6a:24: 3a:1f:75:24:e2:24:51:8a:60:d8:7e:8e:b7:ae:63: 6e:fb:94:47:0c:e3:97:30:40:c8:60:f7:07:e2:3d: ab:a6:aa:3b:90:46:0c:c6:c4:2b:b5:6c:27:6f:ec: ab:e1:d2:0b:ab:a8:a2:cf:41:30:89:54:1c:27:b0: f2:c1:85:d4:a7:a1:4a:48:79:d6:9c:01:f5:f4:10: 6f:91:ce:fd:da:27:df:b0:9a:84:70:c6:ed:b9:53: cf:13:dd:b5:b3:ab:ac:be:7d:ab:1f:5d:9c:a2:75: d4:f8:11:c2:ed:f3:92:6d:0e:42:2b:f9:f0:ef:ec: 79:e4:16:86:0a:a5:9e:d5:90:e9:a6:b7:86:99:f7: 68:16:f3:89:20:f7:2b:69:28:ad:06:26:e8:b0:ee: a0:43:f4:10:aa:ae:49:15:5b:75:7e:24:17:ea:22: b5:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:83:5B:1D:E3:B7:30:79:2A:AD:A7:58:1B:56:DE:BE:DC:E0:07:1A X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PoNbHeO3MHkqradYG1bevtzgBxo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.8.128/26 Signature Algorithm: sha256WithRSAEncryption a0:0b:f5:49:e3:8f:14:09:9d:7e:a5:52:63:4e:f2:c2:a4:b7: 69:7a:c1:cc:40:71:ab:3a:59:33:5b:b2:4b:93:81:19:c6:9d: b5:0a:ad:cd:5e:4b:4a:c9:65:e1:b4:ef:36:e8:bb:b3:27:3a: e9:dd:73:10:6c:93:07:fd:ca:3a:9d:6e:77:e5:16:6c:b1:e8: ae:af:51:bb:99:b5:b8:be:b1:33:d0:1f:b7:09:78:5a:f4:08: ca:cb:e9:a2:e3:11:49:c3:e9:10:fb:84:a0:c2:d6:bd:38:46: 46:b9:37:f1:27:6a:1c:2d:8c:78:89:45:50:f3:62:d0:f9:63: c1:98:af:c8:bb:4b:9c:18:22:67:45:1b:c0:4c:e3:25:1b:2c: 7f:50:e4:92:1f:de:67:15:78:e0:27:3c:5b:d9:a6:8b:3b:a4: 0c:65:55:9d:a8:fd:3a:d6:3f:c6:73:03:36:b8:2b:4a:de:09: ae:39:5a:87:f9:c6:7c:40:be:95:7c:38:b4:db:d6:5b:60:ce: a2:54:d5:8b:82:4f:22:10:cb:2b:d9:8a:bc:44:28:66:27:79: db:2e:88:7c:57:56:9b:f8:e6:bf:17:c9:a0:52:0a:b5:aa:3d: cb:61:6f:66:6c:b7:d0:45:d2:e5:e8:76:1a:66:dc:3b:02:7c: da:1a:66:08 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICNLIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUyMzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNFODM1QjFERTNCNzMw NzkyQUFEQTc1ODFCNTZERUJFRENFMDA3MUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQP5+LZ1lL5ygyuNz6Qu7HAMJ6laHY4KOW+C2/Pajkik36sEKZ Q35PAGyF12agS6RDgXpZZZzMXVSk2eGsNRbYeUl0kS+QOlkEh9fVhbJHo2cLwvih KkBqJDofdSTiJFGKYNh+jreuY277lEcM45cwQMhg9wfiPaumqjuQRgzGxCu1bCdv 7Kvh0gurqKLPQTCJVBwnsPLBhdSnoUpIedacAfX0EG+Rzv3aJ9+wmoRwxu25U88T 3bWzq6y+fasfXZyiddT4EcLt85JtDkIr+fDv7HnkFoYKpZ7VkOmmt4aZ92gW84kg 9ytpKK0GJuiw7qBD9BCqrkkVW3V+JBfqIrXJAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUPoNbHeO3MHkqradYG1bevtzgBxowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1BvTmJIZU8zTUhrcXJhZFlH MWJldnR6Z0J4by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQZ7 wwiAMA0GCSqGSIb3DQEBCwUAA4IBAQCgC/VJ448UCZ1+pVJjTvLCpLdpesHMQHGr OlkzW7JLk4EZxp21Cq3NXktKyWXhtO826LuzJzrp3XMQbJMH/co6nW535RZsseiu r1G7mbW4vrEz0B+3CXha9AjKy+mi4xFJw+kQ+4Sgwta9OEZGuTfxJ2ocLYx4iUVQ 82LQ+WPBmK/Iu0ucGCJnRRvATOMlGyx/UOSSH95nFXjgJzxb2aaLO6QMZVWdqP06 1j/GcwM2uCtK3gmuOVqH+cZ8QL6VfDi029ZbYM6iVNWLgk8iEMsr2Yq8RChmJ3nb Loh8V1ab+Oa/F8mgUgq1qj3LYW9mbLfQRdLl6HYaZtw7AnzaGmYI -----END CERTIFICATE-----Generated at Wed Feb 19 22:04:02 2025 by rpki-client