$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/VjbHS9MLtPyczKaw4OgR43ib3ms.roa File: VjbHS9MLtPyczKaw4OgR43ib3ms.roa (raw, json) Hash identifier: HUk31iNdTIxYjKBiaxDnR+WIP3ddEoyoZU0EC/e3be0= Subject key identifier: 56:36:C7:4B:D3:0B:B4:FC:9C:CC:A6:B0:E0:E8:11:E3:78:9B:DE:6B Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 35D2 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/VjbHS9MLtPyczKaw4OgR43ib3ms.roa Signing time: Mon 10 Feb 2025 13:53:43 +0000 ROA not before: Mon 10 Feb 2025 13:53:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.192.172.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13778 (0x35d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:53:43 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5636C74BD30BB4FC9CCCA6B0E0E811E3789BDE6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:8b:94:c0:7e:ff:b5:54:79:28:8a:83:d1:a9: ad:be:d1:52:9a:19:38:fd:4a:c7:82:e1:5f:6d:03: 5d:6c:91:a1:18:bf:34:9e:2f:95:c4:ee:4d:5d:af: cb:a7:ba:da:a5:12:fc:32:7e:6f:3f:39:2f:32:00: 15:72:cf:ce:0d:0d:f3:7b:72:11:d9:a8:b8:b2:bc: 19:2a:f8:80:3c:f7:4f:cc:9d:e0:72:78:7c:47:5f: c9:2c:fd:c6:88:f3:56:b0:dc:b8:8e:56:14:12:f0: 6d:8a:aa:52:eb:d4:9e:ce:16:87:9f:b0:70:d5:90: b8:d6:0c:4f:8e:9d:7a:77:2d:30:10:dd:af:c5:86: ea:02:04:73:83:ac:96:d9:1c:d0:7a:23:fc:36:9b: 28:95:73:3e:11:be:76:5e:6f:b1:2a:ef:b7:84:32: cb:88:61:4c:2a:f3:7e:44:65:69:92:f5:25:20:22: 55:1b:1f:d8:b0:85:68:b3:b6:4e:ce:03:c6:ed:a1: 3a:be:d2:65:2f:29:f9:05:af:0b:40:1d:f6:2d:e3: ed:58:31:47:5a:88:51:e8:22:7a:1f:7f:36:fc:4a: 04:86:5f:47:b9:6b:8c:28:14:c6:8f:4b:18:4d:3d: 28:43:8b:da:38:69:3a:d2:c5:d5:80:b1:02:19:b2: 33:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:36:C7:4B:D3:0B:B4:FC:9C:CC:A6:B0:E0:E8:11:E3:78:9B:DE:6B X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/VjbHS9MLtPyczKaw4OgR43ib3ms.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.192.172.0/22 Signature Algorithm: sha256WithRSAEncryption 68:d5:38:47:94:d2:9b:d4:64:d8:de:bc:ca:48:35:82:25:ca: 10:1d:e0:df:e9:c5:79:83:22:49:9f:36:dd:b4:9d:4f:a7:14: 7f:c2:53:16:c2:7c:59:1a:53:cb:4e:54:fc:32:84:95:1a:9e: 43:3b:32:d9:e9:d1:9d:19:9d:ab:c1:b4:49:ef:81:60:4a:70: d2:ee:24:c8:81:20:3f:36:f0:cf:c3:ba:53:47:60:af:ce:32: 89:94:85:23:d8:1e:eb:1c:ef:6a:7c:10:74:a7:bb:ed:8f:c7: 05:06:8e:30:29:15:e1:16:93:76:28:60:d4:e9:d6:e1:4e:27: 47:c9:dc:e7:a2:b7:87:da:f5:de:2b:8b:37:78:e4:76:4e:1b: c5:fc:f8:91:7e:14:bc:1f:92:8d:48:d9:cb:88:a0:cf:2c:09: cf:5c:33:10:34:7d:fb:22:6c:8a:16:ad:58:57:c8:78:a0:12: eb:d2:5e:e2:22:2d:ee:3b:2c:86:0b:df:ed:b5:f7:5b:89:58: b2:e2:17:19:e7:c9:cd:5d:da:73:e2:30:b2:63:73:f6:8b:c9: a5:f8:a5:a3:93:b2:01:50:fc:ad:c2:23:e4:3b:27:c3:44:24: f2:9f:0d:8e:f4:94:a4:46:1a:a5:7e:36:d0:d2:cd:cd:ca:2c: b4:f1:8e:d2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNdIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUzNDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU2MzZDNzRCRDMwQkI0 RkM5Q0NDQTZCMEUwRTgxMUUzNzg5QkRFNkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCri5TAfv+1VHkoioPRqa2+0VKaGTj9SseC4V9tA11skaEYvzSe L5XE7k1dr8unutqlEvwyfm8/OS8yABVyz84NDfN7chHZqLiyvBkq+IA890/MneBy eHxHX8ks/caI81aw3LiOVhQS8G2KqlLr1J7OFoefsHDVkLjWDE+OnXp3LTAQ3a/F huoCBHODrJbZHNB6I/w2myiVcz4RvnZeb7Eq77eEMsuIYUwq835EZWmS9SUgIlUb H9iwhWiztk7OA8btoTq+0mUvKfkFrwtAHfYt4+1YMUdaiFHoInoffzb8SgSGX0e5 a4woFMaPSxhNPShDi9o4aTrSxdWAsQIZsjNVAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUVjbHS9MLtPyczKaw4OgR43ib3mswHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1ZqYkhTOU1MdFB5Y3pLYXc0 T2dSNDNpYjNtcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wKwwDQYJKoZIhvcNAQELBQADggEBAGjVOEeU0pvUZNjevMpINYIlyhAd4N/pxXmD IkmfNt20nU+nFH/CUxbCfFkaU8tOVPwyhJUankM7Mtnp0Z0ZnavBtEnvgWBKcNLu JMiBID828M/DulNHYK/OMomUhSPYHusc72p8EHSnu+2PxwUGjjApFeEWk3YoYNTp 1uFOJ0fJ3Oeit4fa9d4rizd45HZOG8X8+JF+FLwfko1I2cuIoM8sCc9cMxA0ffsi bIoWrVhXyHigEuvSXuIiLe47LIYL3+2191uJWLLiFxnnyc1d2nPiMLJjc/aLyaX4 paOTsgFQ/K3CI+Q7J8NEJPKfDY70lKRGGqV+NtDSzc3KLLTxjtI= -----END CERTIFICATE-----Generated at Wed Feb 19 22:06:40 2025 by rpki-client