$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/R7ZtB1TWNLenqAUjvVwIN8NcM6Y.roa File: R7ZtB1TWNLenqAUjvVwIN8NcM6Y.roa (raw, json) Hash identifier: CmJS3988OXgsU23NsDuWWakaTShUxq5VM1dDJ+cTOEk= Subject key identifier: 47:B6:6D:07:54:D6:34:B7:A7:A8:05:23:BD:5C:08:37:C3:5C:33:A6 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3603 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/R7ZtB1TWNLenqAUjvVwIN8NcM6Y.roa Signing time: Mon 10 Feb 2025 13:53:54 +0000 ROA not before: Mon 10 Feb 2025 13:53:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.194.176.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13827 (0x3603) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:53:54 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=47B66D0754D634B7A7A80523BD5C0837C35C33A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:61:e7:7d:1c:89:64:80:2c:8a:34:31:96:5c: 33:fb:67:de:14:26:54:7b:b6:6b:bb:55:a9:01:c0: d6:55:4b:d4:e8:8a:76:15:2b:ce:c6:3c:3b:45:c1: 80:64:1a:9c:09:40:c2:ca:27:7a:7a:31:43:2e:08: e1:e0:fb:41:3e:2e:48:ca:e6:71:29:8c:f4:62:22: 67:e2:ba:91:ce:6b:63:34:5d:75:82:b5:95:b6:de: 43:df:68:28:fc:6a:77:77:96:8c:dd:d8:c8:cb:9f: 03:3d:09:fa:14:21:4d:04:f4:ab:93:27:4e:89:72: f8:55:44:39:31:22:33:d7:ea:da:c5:4a:6c:e8:4c: c7:86:f1:f7:d4:84:7c:ca:e1:3b:da:b5:61:0d:fe: 3a:7c:ff:8b:96:05:bf:40:05:05:fd:35:b5:9b:b0: 34:2b:55:cf:7c:69:9c:4e:2a:f7:88:77:cf:24:2b: 32:f1:fb:73:8c:4a:68:8b:a5:82:f8:ef:a2:0c:a2: 5a:17:59:53:60:50:56:41:85:c3:ce:7e:59:8c:d4: 40:92:0e:52:1a:2d:26:ca:44:0b:25:23:a7:83:60: 58:39:3b:89:ca:00:47:49:77:4a:a7:7c:cf:d5:7c: 55:ec:3e:ed:3f:47:dd:97:92:48:da:85:f0:ca:7b: 70:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:B6:6D:07:54:D6:34:B7:A7:A8:05:23:BD:5C:08:37:C3:5C:33:A6 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/R7ZtB1TWNLenqAUjvVwIN8NcM6Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.176.0/20 Signature Algorithm: sha256WithRSAEncryption bb:10:2b:c0:51:9b:d4:ee:24:42:ca:d7:77:4b:d5:b8:95:d9: 94:89:d6:a6:3a:9b:bf:2a:d9:e5:1f:8f:72:13:d5:5f:9e:4e: 5d:89:87:2c:ee:f2:7d:39:eb:65:c3:5d:8e:46:4e:ca:01:7a: f3:a9:d8:27:77:ec:ad:db:78:e2:e6:a7:b6:c8:3e:21:3c:03: 87:83:92:fc:d4:b0:63:50:c0:29:90:27:15:90:66:4d:9d:43: 39:5f:02:2f:7e:b0:b1:5f:08:3d:b6:19:c0:5b:42:eb:1d:56: ea:01:65:85:fe:9d:c8:90:da:71:e3:fa:e3:75:bd:26:d1:29: 93:99:df:ab:69:48:8b:58:93:56:20:d2:cd:89:19:2e:bc:6e: 73:a8:4d:ec:3c:70:7d:c5:aa:3e:88:01:b3:fd:6e:c0:ff:e9: 33:c0:00:b9:37:b2:6c:07:5b:5b:ca:b0:03:f5:e7:fd:92:78: e4:9f:9d:6b:3d:51:77:1d:36:49:7b:73:13:ea:9e:50:3c:5d: bc:40:d8:4f:b9:24:33:97:59:e1:7d:7b:09:ce:4f:4a:ab:5c: bd:48:d2:b1:8c:ce:93:24:be:46:4b:9e:da:24:ec:d5:60:4b: 69:07:9c:6b:87:3f:53:81:1b:ff:83:ad:57:51:63:a9:ea:2c: f6:43:72:32 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNgMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUzNTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ3QjY2RDA3NTRENjM0 QjdBN0E4MDUyM0JENUMwODM3QzM1QzMzQTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJYed9HIlkgCyKNDGWXDP7Z94UJlR7tmu7VakBwNZVS9ToinYV K87GPDtFwYBkGpwJQMLKJ3p6MUMuCOHg+0E+LkjK5nEpjPRiImfiupHOa2M0XXWC tZW23kPfaCj8and3lozd2MjLnwM9CfoUIU0E9KuTJ06JcvhVRDkxIjPX6trFSmzo TMeG8ffUhHzK4TvatWEN/jp8/4uWBb9ABQX9NbWbsDQrVc98aZxOKveId88kKzLx +3OMSmiLpYL476IMoloXWVNgUFZBhcPOflmM1ECSDlIaLSbKRAslI6eDYFg5O4nK AEdJd0qnfM/VfFXsPu0/R92XkkjahfDKe3BRAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUR7ZtB1TWNLenqAUjvVwIN8NcM6YwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1I3WnRCMVRXTkxlbnFBVWp2 VndJTjhOY002WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR7 wrAwDQYJKoZIhvcNAQELBQADggEBALsQK8BRm9TuJELK13dL1biV2ZSJ1qY6m78q 2eUfj3IT1V+eTl2Jhyzu8n0562XDXY5GTsoBevOp2Cd37K3beOLmp7bIPiE8A4eD kvzUsGNQwCmQJxWQZk2dQzlfAi9+sLFfCD22GcBbQusdVuoBZYX+nciQ2nHj+uN1 vSbRKZOZ36tpSItYk1Yg0s2JGS68bnOoTew8cH3Fqj6IAbP9bsD/6TPAALk3smwH W1vKsAP15/2SeOSfnWs9UXcdNkl7cxPqnlA8XbxA2E+5JDOXWeF9ewnOT0qrXL1I 0rGMzpMkvkZLntok7NVgS2kHnGuHP1OBG/+DrVdRY6nqLPZDcjI= -----END CERTIFICATE-----Generated at Wed Feb 19 22:03:43 2025 by rpki-client