$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Uf6PCqgD5oaR35hq1D_WkhPFN-U.roa File: Uf6PCqgD5oaR35hq1D_WkhPFN-U.roa (raw, json) Hash identifier: WQlpSRJ9K/Ibv7eXlVTAs6z7OLWOtTUrzXXYqqc02WE= Subject key identifier: 51:FE:8F:0A:A8:03:E6:86:91:DF:98:6A:D4:3F:D6:92:13:C5:37:E5 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 345C Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Uf6PCqgD5oaR35hq1D_WkhPFN-U.roa Signing time: Mon 10 Feb 2025 13:52:18 +0000 ROA not before: Mon 10 Feb 2025 13:52:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 180.176.32.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13404 (0x345c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:52:18 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=51FE8F0AA803E68691DF986AD43FD69213C537E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:bc:e6:7d:d2:0f:da:4b:b4:57:d4:50:8b:8c: f3:4d:7f:4e:ae:5f:07:0b:9d:10:65:9b:11:0b:af: 3c:8e:5e:10:18:af:c4:36:1c:8b:b1:8e:69:ea:8e: cc:2a:6c:e3:96:4f:af:51:e9:31:8b:3a:37:10:3f: 73:45:f0:c7:53:c8:30:61:81:60:40:7c:0d:65:de: 13:a2:19:ff:45:d1:b2:3c:d9:dd:78:15:f4:e0:8b: b1:62:73:42:53:75:0c:52:84:75:c3:9b:8d:11:ad: aa:ef:76:fd:58:ec:46:ca:52:eb:93:9d:d7:26:20: e6:29:51:07:66:7e:eb:6e:5f:f3:6b:82:07:70:47: 6a:71:e4:75:00:a6:13:cd:0b:cd:6f:45:d0:8b:de: 40:19:63:a9:eb:17:bf:59:79:4e:34:0d:0c:f5:64: 23:53:e5:cf:58:34:93:68:28:a1:0c:9b:ab:f7:21: 37:f9:2e:82:75:82:f8:c4:b2:ab:8a:2a:59:6f:39: fd:29:19:d7:ee:7c:a3:ec:b7:a5:37:51:8a:07:0c: f8:b4:da:fa:53:1f:bf:7a:f1:34:71:39:18:90:83: b3:c2:c6:7b:cc:39:06:97:82:4d:11:62:a1:17:93: 3c:86:4d:f5:57:a1:2e:a2:db:93:44:31:f0:64:32: a5:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:FE:8F:0A:A8:03:E6:86:91:DF:98:6A:D4:3F:D6:92:13:C5:37:E5 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Uf6PCqgD5oaR35hq1D_WkhPFN-U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.176.32.0/21 Signature Algorithm: sha256WithRSAEncryption 5e:c2:57:de:b2:d4:48:0c:15:c3:1c:7a:6c:0c:58:1f:5d:61: 12:67:72:e9:c3:21:10:1f:73:ff:06:da:96:27:c6:e3:ed:e7: 2b:d9:9f:16:ac:54:a4:1b:4d:e7:aa:47:db:6a:d6:f2:e3:d8: 63:50:17:65:cb:ec:5f:ce:64:7e:ff:d5:04:58:60:62:5f:16: f6:26:41:6c:c4:23:93:8c:27:78:6c:52:74:ec:2e:89:e5:c9: 90:b4:59:17:20:07:99:96:f4:5d:f0:25:6a:60:c4:1f:29:4d: 72:27:66:84:8b:68:ea:78:45:68:21:3a:d4:ea:01:be:d6:2c: cd:fc:3a:3e:15:f8:ae:e2:aa:02:27:34:ef:35:3e:c1:b7:3e: b9:3a:86:d4:cf:93:a2:b2:a0:5d:46:26:dc:e5:7f:e8:85:a3: de:3a:69:29:98:b8:30:73:5c:a3:e2:d4:71:8b:3d:cc:fb:7e: 06:0e:c0:79:1a:8f:df:ab:2c:3d:c5:13:ef:06:cd:4a:ba:ab: ff:1b:f0:54:4e:f7:8e:06:27:c0:8f:12:c7:9f:86:a5:c0:6f: 10:f3:8d:2c:5d:c6:e8:54:db:6e:7b:6b:b2:45:b8:d7:a0:d3: b3:21:6a:57:a3:d9:6b:56:36:da:79:d5:e6:c4:08:d2:6e:cc: 0f:e4:81:fe -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNFwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUyMThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUxRkU4RjBBQTgwM0U2 ODY5MURGOTg2QUQ0M0ZENjkyMTNDNTM3RTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZvOZ90g/aS7RX1FCLjPNNf06uXwcLnRBlmxELrzyOXhAYr8Q2 HIuxjmnqjswqbOOWT69R6TGLOjcQP3NF8MdTyDBhgWBAfA1l3hOiGf9F0bI82d14 FfTgi7Fic0JTdQxShHXDm40Rrarvdv1Y7EbKUuuTndcmIOYpUQdmfutuX/Nrggdw R2px5HUAphPNC81vRdCL3kAZY6nrF79ZeU40DQz1ZCNT5c9YNJNoKKEMm6v3ITf5 LoJ1gvjEsquKKllvOf0pGdfufKPst6U3UYoHDPi02vpTH7968TRxORiQg7PCxnvM OQaXgk0RYqEXkzyGTfVXoS6i25NEMfBkMqVHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUUf6PCqgD5oaR35hq1D/WkhPFN+UwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1VmNlBDcWdENW9hUjM1aHEx RF9Xa2hQRk4tVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 sCAwDQYJKoZIhvcNAQELBQADggEBAF7CV96y1EgMFcMcemwMWB9dYRJncunDIRAf c/8G2pYnxuPt5yvZnxasVKQbTeeqR9tq1vLj2GNQF2XL7F/OZH7/1QRYYGJfFvYm QWzEI5OMJ3hsUnTsLonlyZC0WRcgB5mW9F3wJWpgxB8pTXInZoSLaOp4RWghOtTq Ab7WLM38Oj4V+K7iqgInNO81PsG3Prk6htTPk6KyoF1GJtzlf+iFo946aSmYuDBz XKPi1HGLPcz7fgYOwHkaj9+rLD3FE+8GzUq6q/8b8FRO944GJ8CPEsefhqXAbxDz jSxdxuhU2257a7JFuNeg07Mhalej2WtWNtp51ebECNJuzA/kgf4= -----END CERTIFICATE-----Generated at Wed Feb 19 22:11:34 2025 by rpki-client