$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/WFzP4z2wZqeV-bywOasWJBAvA0Y.roa File: WFzP4z2wZqeV-bywOasWJBAvA0Y.roa (raw, json) Hash identifier: 8aGHt/kyVifddMWauNk1m+lhRiRolf3pLSRq15X1M1U= Subject key identifier: 58:5C:CF:E3:3D:B0:66:A7:95:F9:BC:B0:39:AB:16:24:10:2F:03:46 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3501 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/WFzP4z2wZqeV-bywOasWJBAvA0Y.roa Signing time: Mon 10 Feb 2025 13:52:55 +0000 ROA not before: Mon 10 Feb 2025 13:52:55 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.232.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13569 (0x3501) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:52:55 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=585CCFE33DB066A795F9BCB039AB1624102F0346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:a9:16:34:4e:cc:54:06:96:55:41:0a:d6:dd: f7:67:c9:0d:36:1c:7f:75:6a:bd:13:fd:f7:86:d5: e0:ed:6f:cf:f4:d8:85:f7:4b:36:c1:7c:9f:52:a3: 68:85:10:6d:09:d0:06:a7:02:ad:05:de:03:37:21: 7a:0f:24:80:5e:b2:65:ba:19:1a:14:45:cc:57:eb: bb:5a:87:69:a8:61:e8:dd:fe:47:c0:c6:bb:03:1d: c5:e3:46:8b:07:ed:c0:e2:a1:5a:68:cc:58:2e:7d: 25:43:67:33:5a:4f:6c:f9:b5:7d:35:1f:31:4b:b5: 21:50:99:19:98:ab:1e:ae:70:0b:0f:53:1c:53:ad: a1:5a:b8:7b:80:e2:8b:ec:d3:b9:0f:bf:90:0e:23: aa:02:e4:fa:ed:9a:28:8a:98:9b:be:fb:61:7f:20: 51:cf:ca:43:d1:1c:c0:98:c7:a9:24:73:12:0a:8f: 85:7c:db:01:53:38:3f:f4:c7:d4:04:33:18:bf:c0: 87:6b:e5:36:bb:6f:ef:b8:91:0b:7a:6d:a9:57:82: b8:df:e8:45:cf:f6:5b:25:01:22:e9:99:70:e1:39: 53:62:24:05:21:d6:02:41:74:2a:f9:34:ec:e9:3b: 27:e8:49:9f:d9:9a:38:91:e9:5d:f2:83:18:e7:73: 10:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:5C:CF:E3:3D:B0:66:A7:95:F9:BC:B0:39:AB:16:24:10:2F:03:46 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/WFzP4z2wZqeV-bywOasWJBAvA0Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.168.0/21 Signature Algorithm: sha256WithRSAEncryption 23:7d:7c:f8:7e:9c:a3:14:7a:bb:43:fb:b6:f5:ac:6a:d5:cd: 9f:04:8e:5a:9f:b9:a3:1e:77:a3:18:7b:4b:8c:4a:e8:9d:2d: 64:ef:88:40:06:82:e9:28:98:df:27:91:3a:b0:13:3c:63:45: 67:db:4a:74:4f:5a:29:1f:1c:e8:51:a8:a5:87:bf:6f:7d:16: 4c:3e:89:9b:3a:0a:a2:be:66:ee:c1:b6:5e:1f:4e:d5:cb:c7: 2c:bc:c0:2f:37:91:59:4a:fd:a0:f7:a1:fc:95:d5:d9:6e:14: 16:9e:bc:34:95:e0:87:08:3d:2a:84:64:b7:ac:66:6a:ee:b2: 4d:c8:6f:83:83:d9:5e:ed:ef:93:9c:37:64:ee:54:f2:32:b9: 7a:09:c0:ab:4d:d7:0d:c9:c0:5a:d7:36:06:13:83:6f:0b:11: 60:ba:d0:a4:5c:76:b0:83:a5:e5:7a:b8:6e:d8:6d:2d:42:57: a0:b5:ce:1d:68:5c:6e:16:74:5d:7b:53:94:17:84:49:e2:77: 52:e2:4f:20:24:aa:bd:60:d0:98:a5:4a:16:0d:2d:af:57:60: d1:ff:dc:fa:44:bb:94:8c:59:d8:0d:fc:36:70:38:34:b7:a1: 50:db:6f:d9:0e:59:11:da:90:a3:1e:d1:f8:62:e3:27:39:74: e4:e3:fc:12 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNQEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUyNTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU4NUNDRkUzM0RCMDY2 QTc5NUY5QkNCMDM5QUIxNjI0MTAyRjAzNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlqRY0TsxUBpZVQQrW3fdnyQ02HH91ar0T/feG1eDtb8/02IX3 SzbBfJ9So2iFEG0J0AanAq0F3gM3IXoPJIBesmW6GRoURcxX67tah2moYejd/kfA xrsDHcXjRosH7cDioVpozFgufSVDZzNaT2z5tX01HzFLtSFQmRmYqx6ucAsPUxxT raFauHuA4ovs07kPv5AOI6oC5PrtmiiKmJu++2F/IFHPykPRHMCYx6kkcxIKj4V8 2wFTOD/0x9QEMxi/wIdr5Ta7b++4kQt6balXgrjf6EXP9lslASLpmXDhOVNiJAUh 1gJBdCr5NOzpOyfoSZ/ZmjiR6V3ygxjncxDPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUWFzP4z2wZqeV+bywOasWJBAvA0YwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1dGelA0ejJ3WnFlVi1ieXdP YXNXSkJBdkEwWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6KgwDQYJKoZIhvcNAQELBQADggEBACN9fPh+nKMUertD+7b1rGrVzZ8EjlqfuaMe d6MYe0uMSuidLWTviEAGgukomN8nkTqwEzxjRWfbSnRPWikfHOhRqKWHv299Fkw+ iZs6CqK+Zu7Btl4fTtXLxyy8wC83kVlK/aD3ofyV1dluFBaevDSV4IcIPSqEZLes Zmrusk3Ib4OD2V7t75OcN2TuVPIyuXoJwKtN1w3JwFrXNgYTg28LEWC60KRcdrCD peV6uG7YbS1CV6C1zh1oXG4WdF17U5QXhEnid1LiTyAkqr1g0JilShYNLa9XYNH/ 3PpEu5SMWdgN/DZwODS3oVDbb9kOWRHakKMe0fhi4yc5dOTj/BI= -----END CERTIFICATE-----Generated at Wed Feb 19 22:08:10 2025 by rpki-client