$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Pud9PC6ECsy6e2UhUwRmsI8Y_sI.roa File: Pud9PC6ECsy6e2UhUwRmsI8Y_sI.roa (raw, json) Hash identifier: C07wTMt7Y0HA2xD1R9laDnwEs45Xsq6bXYiMz+U99ww= Subject key identifier: 3E:E7:7D:3C:2E:84:0A:CC:BA:7B:65:21:53:04:66:B0:8F:18:FE:C2 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 35BE Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Pud9PC6ECsy6e2UhUwRmsI8Y_sI.roa Signing time: Mon 10 Feb 2025 13:53:39 +0000 ROA not before: Mon 10 Feb 2025 13:53:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 2407:4d00:ff02::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13758 (0x35be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:53:39 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3EE77D3C2E840ACCBA7B6521530466B08F18FEC2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b2:54:8b:61:8e:0a:09:d4:39:18:f7:76:74: 3d:db:62:26:e5:0e:c8:7c:f2:98:4f:fe:74:62:7d: 72:7f:08:a0:d1:3c:bf:25:6e:69:86:48:d1:26:27: 7f:ed:ac:7a:2d:29:23:ec:3f:72:a4:e8:dc:71:aa: 1f:b4:b0:b6:54:ed:72:4c:ec:6b:e3:e0:e5:12:8e: 8a:93:32:30:e7:1a:85:34:1d:aa:a5:e1:55:02:1f: ce:90:00:82:23:c9:78:82:d0:fd:a2:87:05:4a:9b: 79:5e:1f:1b:db:67:b8:2c:5d:a6:e2:2c:61:33:bd: 8b:fe:2b:24:61:5d:09:dd:6f:a1:1d:8f:f1:64:da: 66:0e:5f:26:ef:49:1c:0a:1d:20:a9:81:0d:bb:8b: cd:e1:e2:52:e5:92:3c:a4:ee:8e:de:8d:21:b5:5a: 4a:48:86:42:90:ba:d8:90:2e:ef:64:2a:cd:4b:ad: 47:2e:1e:91:38:f7:1b:0a:e3:fc:7e:cb:fc:76:42: 58:21:b3:07:c7:71:2a:48:a1:c9:9c:e3:53:b9:47: 72:f0:aa:39:94:0e:5f:68:78:e7:b9:6c:2f:65:45: c5:eb:1b:b7:d3:0a:99:24:f9:92:0c:5a:47:76:cf: 1b:97:7c:bc:11:fc:81:43:2f:5f:45:6f:58:ae:f3: 05:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:E7:7D:3C:2E:84:0A:CC:BA:7B:65:21:53:04:66:B0:8F:18:FE:C2 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Pud9PC6ECsy6e2UhUwRmsI8Y_sI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:4d00:ff02::/48 Signature Algorithm: sha256WithRSAEncryption 87:dd:ea:34:8d:ed:00:0b:48:0d:a7:a3:90:ed:ec:9d:85:76: 6d:d8:10:4a:6e:bd:53:0a:a4:62:f6:5d:f7:32:4c:94:1c:cb: 34:90:35:bc:3a:28:4b:57:b1:ef:04:3f:20:8d:a0:5a:91:6c: dd:99:2c:90:09:f3:f3:b7:f3:69:4c:22:5a:e6:2a:16:98:ba: 09:35:ef:a8:4b:6c:b4:a2:8f:4b:8b:3f:34:3c:9e:eb:24:16: 2e:33:13:b6:32:1e:b6:0b:cc:ab:60:7c:ed:ac:05:0a:4f:3a: 1a:49:d3:91:d6:92:cd:8f:42:7e:30:d4:d4:fd:34:0c:26:55: 19:59:80:4b:5a:db:dc:fe:79:6b:f6:c2:57:02:a5:f8:d7:da: a1:25:af:05:b7:ed:5d:cd:08:14:84:9d:72:42:43:57:45:d2: 36:1a:fc:ae:e3:0a:da:e7:32:ab:1e:82:20:92:a6:db:4d:4d: b5:3b:0d:e8:d4:8e:7f:b8:f7:a2:3d:0d:73:a4:e1:50:63:c6: 33:80:ee:d8:d6:13:08:3c:7f:81:df:73:fa:a4:ae:39:fa:9b: 05:c4:01:3f:8c:3f:64:43:95:35:76:fd:d3:55:20:16:51:7d: a5:c8:0f:62:81:e3:f2:b9:25:18:95:2a:e0:b1:d9:59:9e:88: 55:f1:da:91 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICNb4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUzMzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNFRTc3RDNDMkU4NDBB Q0NCQTdCNjUyMTUzMDQ2NkIwOEYxOEZFQzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPslSLYY4KCdQ5GPd2dD3bYiblDsh88phP/nRifXJ/CKDRPL8l bmmGSNEmJ3/trHotKSPsP3Kk6Nxxqh+0sLZU7XJM7Gvj4OUSjoqTMjDnGoU0Haql 4VUCH86QAIIjyXiC0P2ihwVKm3leHxvbZ7gsXabiLGEzvYv+KyRhXQndb6Edj/Fk 2mYOXybvSRwKHSCpgQ27i83h4lLlkjyk7o7ejSG1WkpIhkKQutiQLu9kKs1LrUcu HpE49xsK4/x+y/x2QlghswfHcSpIocmc41O5R3LwqjmUDl9oeOe5bC9lRcXrG7fT Cpkk+ZIMWkd2zxuXfLwR/IFDL19Fb1iu8wWrAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUPud9PC6ECsy6e2UhUwRmsI8Y/sIwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1B1ZDlQQzZFQ3N5NmUyVWhV d1Jtc0k4WV9zSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk B00A/wIwDQYJKoZIhvcNAQELBQADggEBAIfd6jSN7QALSA2no5Dt7J2Fdm3YEEpu vVMKpGL2XfcyTJQcyzSQNbw6KEtXse8EPyCNoFqRbN2ZLJAJ8/O382lMIlrmKhaY ugk176hLbLSij0uLPzQ8nuskFi4zE7YyHrYLzKtgfO2sBQpPOhpJ05HWks2PQn4w 1NT9NAwmVRlZgEta29z+eWv2wlcCpfjX2qElrwW37V3NCBSEnXJCQ1dF0jYa/K7j CtrnMqsegiCSpttNTbU7DejUjn+496I9DXOk4VBjxjOA7tjWEwg8f4Hfc/qkrjn6 mwXEAT+MP2RDlTV2/dNVIBZRfaXID2KB4/K5JRiVKuCx2VmeiFXx2pE= -----END CERTIFICATE-----Generated at Wed Feb 19 22:04:04 2025 by rpki-client