$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UVLPxfAbxEwuP7ystx9nPbjhlG8.roa File: UVLPxfAbxEwuP7ystx9nPbjhlG8.roa (raw, json) Hash identifier: boBB8WYExU/vVMfNdg0x8CoX6/APj4+VodzwrVIHRns= Subject key identifier: 51:52:CF:C5:F0:1B:C4:4C:2E:3F:BC:AC:B7:1F:67:3D:B8:E1:94:6F Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3479 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UVLPxfAbxEwuP7ystx9nPbjhlG8.roa Signing time: Mon 10 Feb 2025 13:52:25 +0000 ROA not before: Mon 10 Feb 2025 13:52:25 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 180.176.248.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13433 (0x3479) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:52:25 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5152CFC5F01BC44C2E3FBCACB71F673DB8E1946F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:b6:36:09:92:7f:96:db:94:a8:12:46:99:fb: 3d:15:0f:6a:8a:f3:29:14:1d:8c:14:72:71:55:a8: ac:3d:3d:9a:84:49:90:f9:52:67:39:09:fd:a9:a0: fc:3d:d8:36:56:e9:42:15:b5:87:f4:fd:78:ad:53: 37:fc:f0:bc:d2:bb:96:91:f7:33:c9:fa:fb:2a:5e: 1a:19:0c:18:cc:40:19:c2:c6:e6:f3:b8:81:1d:da: e0:44:0d:90:a0:89:f6:aa:53:fe:0a:b0:a0:10:b0: 6c:1c:93:56:b3:c4:17:bd:a6:a6:c4:8b:2d:a2:73: 9b:de:80:67:20:99:05:b4:a8:f2:4b:7f:83:77:da: 6e:40:f1:a4:c2:ab:b1:13:20:c0:f6:77:f4:9a:6c: ad:b3:15:4b:5d:ec:63:c6:f6:12:55:9a:a4:2b:2f: 8f:85:bc:bb:91:a0:db:d0:62:52:74:e2:78:65:72: 3a:11:f8:71:f4:39:14:18:64:bc:17:9d:c9:7e:5f: f4:f4:f9:29:d9:33:23:3f:6e:f6:aa:43:91:eb:f5: 27:0e:74:e4:4b:e3:96:e1:b1:31:94:f4:e7:90:c0: eb:1b:45:8e:f2:d1:5e:67:85:df:8d:b9:bf:55:95: ee:02:25:d3:0a:a2:7a:96:d8:57:6c:2c:30:49:f7: 9d:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:52:CF:C5:F0:1B:C4:4C:2E:3F:BC:AC:B7:1F:67:3D:B8:E1:94:6F X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UVLPxfAbxEwuP7ystx9nPbjhlG8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.176.248.0/21 Signature Algorithm: sha256WithRSAEncryption 69:f3:dd:0a:8c:8a:d6:9d:cf:36:05:df:85:3b:b6:d2:2f:37: 7a:fe:81:37:23:3e:3c:87:72:0c:3d:33:d9:34:2a:a5:72:11: ad:4e:1c:23:ba:54:7f:ae:63:7f:b9:6b:ba:3d:2a:98:af:cd: 9f:f6:52:46:95:3f:a3:cb:0d:90:4d:76:46:90:c0:70:ad:fb: a2:0e:4b:52:57:fc:72:8e:be:04:37:24:fe:82:5f:62:76:79: 5a:26:45:1d:cd:59:0d:4f:cb:76:f0:06:04:22:75:be:48:46: 7e:fe:a2:51:3b:45:0e:90:f1:5b:20:8a:0c:ad:76:4d:9a:4d: a1:d2:c7:12:3d:4a:ad:c2:9c:6a:6b:31:a0:44:6b:8e:32:b2: ca:6e:46:0a:05:f4:e3:8d:03:6a:88:36:04:00:76:5a:53:8d: dc:81:7b:c8:fe:8c:d9:89:09:55:61:fd:95:8b:44:36:0f:d8: f1:3b:31:92:2a:7e:ea:fc:f3:00:4a:85:3e:96:e7:aa:4e:8b: 9c:4e:09:b3:1d:99:2c:98:76:92:c0:1f:73:dd:eb:15:b1:ec: 34:6f:5b:3e:6e:9b:9b:35:63:80:a8:97:96:06:2f:62:d8:c0: 2d:1c:b3:f7:18:5e:0e:2e:0a:eb:07:90:10:60:e5:13:ca:a9: 4a:eb:fc:11 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNHkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUyMjVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUxNTJDRkM1RjAxQkM0 NEMyRTNGQkNBQ0I3MUY2NzNEQjhFMTk0NkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCUtjYJkn+W25SoEkaZ+z0VD2qK8ykUHYwUcnFVqKw9PZqESZD5 Umc5Cf2poPw92DZW6UIVtYf0/XitUzf88LzSu5aR9zPJ+vsqXhoZDBjMQBnCxubz uIEd2uBEDZCgifaqU/4KsKAQsGwck1azxBe9pqbEiy2ic5vegGcgmQW0qPJLf4N3 2m5A8aTCq7ETIMD2d/SabK2zFUtd7GPG9hJVmqQrL4+FvLuRoNvQYlJ04nhlcjoR +HH0ORQYZLwXncl+X/T0+SnZMyM/bvaqQ5Hr9ScOdORL45bhsTGU9OeQwOsbRY7y 0V5nhd+Nub9Vle4CJdMKonqW2FdsLDBJ952fAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUUVLPxfAbxEwuP7ystx9nPbjhlG8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1VWTFB4ZkFieEV3dVA3eXN0 eDluUGJqaGxHOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 sPgwDQYJKoZIhvcNAQELBQADggEBAGnz3QqMitadzzYF34U7ttIvN3r+gTcjPjyH cgw9M9k0KqVyEa1OHCO6VH+uY3+5a7o9KpivzZ/2UkaVP6PLDZBNdkaQwHCt+6IO S1JX/HKOvgQ3JP6CX2J2eVomRR3NWQ1Py3bwBgQidb5IRn7+olE7RQ6Q8Vsgigyt dk2aTaHSxxI9Sq3CnGprMaBEa44ysspuRgoF9OONA2qINgQAdlpTjdyBe8j+jNmJ CVVh/ZWLRDYP2PE7MZIqfur88wBKhT6W56pOi5xOCbMdmSyYdpLAH3Pd6xWx7DRv Wz5um5s1Y4Col5YGL2LYwC0cs/cYXg4uCusHkBBg5RPKqUrr/BE= -----END CERTIFICATE-----Generated at Wed Feb 19 22:03:32 2025 by rpki-client