$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/VA5B0yTh_ORZugrCv2OrEx60s8k.roa File: VA5B0yTh_ORZugrCv2OrEx60s8k.roa (raw, json) Hash identifier: b6FqVygORsROwGFglqLmku1/8xGlwUB3jEQavzQJCik= Subject key identifier: 54:0E:41:D3:24:E1:FC:E4:59:BA:0A:C2:BF:63:AB:13:1E:B4:B3:C9 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 337F Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/VA5B0yTh_ORZugrCv2OrEx60s8k.roa Signing time: Mon 10 Feb 2025 13:51:29 +0000 ROA not before: Mon 10 Feb 2025 13:51:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.195.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13183 (0x337f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:51:29 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=540E41D324E1FCE459BA0AC2BF63AB131EB4B3C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:63:55:c1:a7:90:a5:3e:b3:83:c2:77:b9:75: da:4a:2f:75:81:67:c1:79:40:39:3b:3a:92:eb:e0: 5c:87:75:dc:e6:12:f8:a3:3b:f3:5e:4a:ea:a3:32: 6c:48:76:a5:f7:7b:a4:6d:1d:cf:12:d3:cb:97:91: 30:b0:a4:09:96:73:74:5e:2a:4a:2c:33:40:aa:64: 3a:d8:6c:79:6b:12:57:29:b6:1c:47:0d:c8:54:aa: 9e:4c:c9:f1:6e:4b:6c:cf:33:5e:10:44:f7:60:f0: af:d3:90:bd:d7:d5:ca:32:0a:57:06:7b:96:ee:64: cc:b4:c6:be:18:8f:c6:8a:b2:7d:a5:1d:33:ad:49: 0b:84:fb:36:a0:c7:43:06:ab:25:d5:78:0a:c0:da: 3e:cc:04:d7:2b:da:8e:5d:b7:45:a9:ad:14:df:7a: 4e:d2:f7:ed:c8:fa:1c:e1:70:f1:c1:a1:46:fd:32: 84:54:01:f1:d0:f4:23:92:c1:57:78:61:03:2b:14: 94:a7:14:27:18:2d:4f:17:af:0f:cc:2d:a5:06:3b: dc:a4:30:32:41:e7:da:6c:22:1c:11:05:b7:13:5b: 6d:f5:87:c8:6a:26:be:f4:cd:a0:7c:6a:83:e0:d7: 48:56:30:87:fc:98:f0:7a:e3:1e:85:ef:cc:e5:af: 9c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:0E:41:D3:24:E1:FC:E4:59:BA:0A:C2:BF:63:AB:13:1E:B4:B3:C9 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/VA5B0yTh_ORZugrCv2OrEx60s8k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.236.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:fd:31:95:66:f5:6b:c0:37:bf:9f:62:13:30:bd:c7:41:a4: eb:95:2b:cb:81:17:32:73:78:c1:65:55:d8:b1:c9:92:c4:71: a3:6d:ca:c6:ef:99:a9:64:b7:f3:71:6a:70:60:8d:37:16:40: 65:83:b6:73:62:95:d3:62:de:e9:f6:b2:5c:8f:79:4d:98:18: ff:af:96:90:60:5b:5c:fb:0c:d3:a5:21:92:61:6e:12:04:ca: 96:fa:7f:9f:a2:dc:bd:99:89:a1:48:8a:b6:e7:d5:d6:24:e6: 66:75:b5:e0:0d:a7:34:31:97:78:0b:8f:ac:b6:23:f3:cb:d5: 7b:ae:d2:1d:48:4f:e1:0f:03:be:1f:36:07:24:37:37:26:86: 5e:26:6e:ef:52:84:73:fb:78:2b:71:15:0a:3f:31:5a:5a:ed: e0:f0:3a:d7:db:64:88:cf:95:5d:fa:2b:cb:60:87:5e:f3:46: 02:3c:ed:ca:3f:33:fe:36:fe:f1:92:72:cf:ab:90:69:98:05: fe:ca:e0:15:5f:c8:a8:43:67:8c:36:b1:04:34:df:56:c3:73: bd:74:11:43:18:51:22:2f:07:66:36:f4:a9:4b:d1:2f:19:39: 7d:3a:e6:33:01:2e:60:5f:fb:a0:b8:31:f8:3c:91:73:a7:a1: ff:e9:cc:a5 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICM38wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUxMjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU0MEU0MUQzMjRFMUZD RTQ1OUJBMEFDMkJGNjNBQjEzMUVCNEIzQzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQY1XBp5ClPrODwne5ddpKL3WBZ8F5QDk7OpLr4FyHddzmEvij O/NeSuqjMmxIdqX3e6RtHc8S08uXkTCwpAmWc3ReKkosM0CqZDrYbHlrElcpthxH DchUqp5MyfFuS2zPM14QRPdg8K/TkL3X1coyClcGe5buZMy0xr4Yj8aKsn2lHTOt SQuE+zagx0MGqyXVeArA2j7MBNcr2o5dt0WprRTfek7S9+3I+hzhcPHBoUb9MoRU AfHQ9COSwVd4YQMrFJSnFCcYLU8Xrw/MLaUGO9ykMDJB59psIhwRBbcTW231h8hq Jr70zaB8aoPg10hWMIf8mPB64x6F78zlr5wrAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUVA5B0yTh/ORZugrCv2OrEx60s8kwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1ZBNUIweVRoX09SWnVnckN2 Mk9yRXg2MHM4ay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB7 w+wwDQYJKoZIhvcNAQELBQADggEBAFv9MZVm9WvAN7+fYhMwvcdBpOuVK8uBFzJz eMFlVdixyZLEcaNtysbvmalkt/NxanBgjTcWQGWDtnNildNi3un2slyPeU2YGP+v lpBgW1z7DNOlIZJhbhIEypb6f5+i3L2ZiaFIirbn1dYk5mZ1teANpzQxl3gLj6y2 I/PL1Xuu0h1IT+EPA74fNgckNzcmhl4mbu9ShHP7eCtxFQo/MVpa7eDwOtfbZIjP lV36K8tgh17zRgI87co/M/42/vGScs+rkGmYBf7K4BVfyKhDZ4w2sQQ031bDc710 EUMYUSIvB2Y29KlL0S8ZOX065jMBLmBf+6C4Mfg8kXOnof/pzKU= -----END CERTIFICATE-----Generated at Wed Feb 19 22:09:34 2025 by rpki-client