$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/VLdAKLMyNe-bMWULlxFslIf2m-U.roa File: VLdAKLMyNe-bMWULlxFslIf2m-U.roa (raw, json) Hash identifier: FshqBb+pBFDDl9mZTBUiPmpSIo6bQLO9eNAlMsnv4IY= Subject key identifier: 54:B7:40:28:B3:32:35:EF:9B:31:65:0B:97:11:6C:94:87:F6:9B:E5 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 34AC Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/VLdAKLMyNe-bMWULlxFslIf2m-U.roa Signing time: Mon 10 Feb 2025 13:52:36 +0000 ROA not before: Mon 10 Feb 2025 13:52:36 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.56.0/21 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13484 (0x34ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:52:36 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=54B74028B33235EF9B31650B97116C9487F69BE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:64:9f:2b:48:57:d3:59:68:ae:a2:31:5f:c0: 27:24:a4:8a:94:dc:43:b6:78:68:8a:f8:af:8f:ea: 63:66:2c:25:4e:a7:75:d0:d7:0e:f9:66:b9:51:f8: e4:cb:f6:66:f9:de:df:e5:82:08:e4:50:f6:51:fd: 11:55:a4:19:c9:2e:c5:c7:bf:d3:2e:ba:2d:43:e3: 59:ef:9b:ed:d7:ac:08:d8:ee:4d:d4:2a:7a:dc:62: ba:44:89:f8:48:56:00:fe:18:c4:f3:a8:72:e5:4d: da:a1:1e:89:25:83:39:0b:18:42:03:a6:67:ef:55: 7f:a1:ef:6c:9e:30:71:2e:03:15:2f:80:2d:2a:56: cf:19:39:f6:04:83:69:13:1b:b8:97:a0:56:58:13: ae:92:79:f1:26:85:fa:a4:0e:d1:21:5d:ee:92:d9: 0d:05:c2:53:f2:32:57:a7:fd:ef:a1:c0:c2:18:67: c8:49:b7:ee:0d:32:0c:bf:c0:46:9a:d6:e1:a2:03: 6d:f3:6d:3c:2b:91:a2:01:c0:87:03:f6:d8:df:81: 13:81:e9:e0:3b:53:a6:52:60:1a:43:4b:f2:ab:21: e9:99:65:c6:eb:0f:2b:cb:f3:6b:6c:ce:e3:12:f0: b5:76:ed:8f:7b:28:e4:fb:42:24:82:75:b2:8c:39: 29:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:B7:40:28:B3:32:35:EF:9B:31:65:0B:97:11:6C:94:87:F6:9B:E5 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/VLdAKLMyNe-bMWULlxFslIf2m-U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.56.0/21 Signature Algorithm: sha256WithRSAEncryption 77:f0:cf:50:3d:2d:70:83:61:3b:ea:41:91:5d:ca:ed:84:d7: 54:1b:2e:1e:2c:ce:e5:4b:3f:aa:32:22:bb:7a:88:a8:ef:08: 8f:36:61:2e:c7:63:10:36:a8:78:c1:b4:b1:36:34:9f:95:29: a4:42:eb:75:34:7b:a3:21:66:e0:0f:fd:f1:36:81:27:0c:94: 36:19:70:07:87:8b:63:6f:3e:b5:28:9b:61:c6:27:b4:a6:0c: 82:6b:e8:fc:b6:96:a9:6d:5d:4d:8a:e4:b4:c8:e0:c3:a0:2f: 27:ac:9a:96:2f:45:93:3a:99:e8:39:2f:ff:09:f1:f5:b0:20: 17:48:51:84:e8:81:d7:b0:99:a2:9f:1b:cb:ea:b3:8c:eb:21: ca:94:ea:bf:08:f3:28:0e:cf:8a:41:5b:4d:3b:54:0c:fe:51: df:b7:60:b5:63:69:73:8b:9b:fd:84:db:be:61:8a:9f:ad:6a: fb:50:93:00:ee:1b:b4:e7:4c:01:5d:da:02:62:f5:40:5e:b8: 37:23:a6:34:4a:85:ee:f0:3c:11:de:f4:b7:f4:b4:ed:7f:8e: d4:43:70:44:4f:c3:e4:af:34:b3:3c:f7:9a:d5:13:45:66:a1: 7c:77:b5:ca:0d:08:39:53:bf:f5:a7:3a:73:3e:a6:e1:ff:48: bc:60:aa:21 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNKwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUyMzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU0Qjc0MDI4QjMzMjM1 RUY5QjMxNjUwQjk3MTE2Qzk0ODdGNjlCRTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQZJ8rSFfTWWiuojFfwCckpIqU3EO2eGiK+K+P6mNmLCVOp3XQ 1w75ZrlR+OTL9mb53t/lggjkUPZR/RFVpBnJLsXHv9Muui1D41nvm+3XrAjY7k3U KnrcYrpEifhIVgD+GMTzqHLlTdqhHoklgzkLGEIDpmfvVX+h72yeMHEuAxUvgC0q Vs8ZOfYEg2kTG7iXoFZYE66SefEmhfqkDtEhXe6S2Q0FwlPyMlen/e+hwMIYZ8hJ t+4NMgy/wEaa1uGiA23zbTwrkaIBwIcD9tjfgROB6eA7U6ZSYBpDS/KrIemZZcbr DyvL82tszuMS8LV27Y97KOT7QiSCdbKMOSmPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUVLdAKLMyNe+bMWULlxFslIf2m+UwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1ZMZEFLTE15TmUtYk1XVUxs eEZzbElmMm0tVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANq ATgwDQYJKoZIhvcNAQELBQADggEBAHfwz1A9LXCDYTvqQZFdyu2E11QbLh4szuVL P6oyIrt6iKjvCI82YS7HYxA2qHjBtLE2NJ+VKaRC63U0e6MhZuAP/fE2gScMlDYZ cAeHi2NvPrUom2HGJ7SmDIJr6Py2lqltXU2K5LTI4MOgLyesmpYvRZM6meg5L/8J 8fWwIBdIUYTogdewmaKfG8vqs4zrIcqU6r8I8ygOz4pBW007VAz+Ud+3YLVjaXOL m/2E275hip+tavtQkwDuG7TnTAFd2gJi9UBeuDcjpjRKhe7wPBHe9Lf0tO1/jtRD cERPw+SvNLM895rVE0VmoXx3tcoNCDlTv/WnOnM+puH/SLxgqiE= -----END CERTIFICATE-----Generated at Wed Feb 19 22:11:48 2025 by rpki-client