$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ao9oqMAWsqFEkmSvjCncZfigy3g.roa File: ao9oqMAWsqFEkmSvjCncZfigy3g.roa (raw, json) Hash identifier: 4ao3qKmpweHrRz2z7Kh1GLQBxYOZgdsErSA1Kh8QdXg= Subject key identifier: 6A:8F:68:A8:C0:16:B2:A1:44:92:64:AF:8C:29:DC:65:F8:A0:CB:78 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 36C7 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ao9oqMAWsqFEkmSvjCncZfigy3g.roa Signing time: Mon 10 Feb 2025 13:54:40 +0000 ROA not before: Mon 10 Feb 2025 13:54:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.60.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14023 (0x36c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:54:40 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6A8F68A8C016B2A1449264AF8C29DC65F8A0CB78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a3:fc:81:25:3e:e0:7e:6e:e5:5d:55:ed:c1: ff:2f:91:8b:ed:59:22:19:77:35:58:2f:54:c4:20: 04:41:a9:7f:18:74:ed:af:89:53:dd:31:8d:26:22: e3:fc:44:28:42:81:ec:0a:c1:91:3a:6e:8e:83:81: 01:c7:0c:ff:05:54:14:9e:f5:e0:a5:a5:dc:87:d3: 41:39:75:2e:da:8e:23:ad:5d:6f:a6:0a:95:15:73: ba:1e:52:81:72:ae:72:d4:ab:18:55:69:38:29:76: 7d:31:76:7f:62:a2:92:b4:91:69:52:d1:2d:43:b3: 74:ea:64:b2:d3:f7:75:a2:56:19:62:e4:6f:60:0e: 52:1d:a8:8e:ca:fd:e7:ab:c8:8e:52:ac:87:d1:88: 38:ea:25:0b:bc:4a:67:af:5f:56:cc:e1:e4:1f:3e: 46:12:56:1e:56:7b:26:f0:b9:b6:b7:8f:66:7a:b8: 23:5a:86:19:82:b7:da:bf:35:ba:63:52:38:39:e0: 0a:a5:de:32:d6:9c:f3:17:48:a4:99:5b:fe:68:12: 0b:30:ce:7a:ea:84:fb:ae:4f:41:0d:08:b4:cf:5a: 2d:78:26:26:6d:c4:2d:36:ab:b9:3d:ed:47:68:80: 2a:de:8c:a1:ee:b9:c5:df:26:3a:c7:1e:1c:80:cd: 3b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:8F:68:A8:C0:16:B2:A1:44:92:64:AF:8C:29:DC:65:F8:A0:CB:78 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ao9oqMAWsqFEkmSvjCncZfigy3g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.60.0/23 Signature Algorithm: sha256WithRSAEncryption ab:79:dd:f2:e8:ab:1d:52:19:b5:37:41:df:12:28:49:67:2d: d7:d7:75:c0:e9:c6:13:ba:bb:c8:f1:55:2e:db:0e:17:d4:97: 9a:56:8d:e2:30:c9:20:4c:cd:91:14:70:e8:64:51:6b:cb:ab: 6a:4e:ae:91:84:ea:0d:80:2a:67:e6:b8:58:14:7a:39:a0:4e: 31:4e:3b:b3:3b:d8:d9:87:16:8b:43:32:bf:fc:20:47:ee:89: 5d:1d:9c:0b:97:fd:bc:97:f5:56:b7:88:8e:71:0e:cb:bf:21: fd:78:a6:5b:f4:e3:09:5a:7c:25:69:38:60:43:51:f8:4b:b6: 30:55:9c:23:3e:21:e7:36:6c:38:03:92:54:88:48:54:12:86: d1:85:27:72:86:fc:43:b4:ca:38:c3:64:58:08:67:f2:9b:6e: 88:9b:08:28:f6:8d:08:e9:fc:55:16:8a:95:db:cc:85:a7:e9: 25:14:33:01:ec:f6:41:1f:5b:90:be:c0:b6:93:bd:9c:6a:06: d1:e1:04:57:97:9e:29:fe:49:3b:41:91:6f:e4:32:4f:14:d1: fb:de:90:2c:58:49:85:8c:91:a5:80:42:6e:9c:ce:25:8c:f5: 69:42:7c:93:22:eb:3c:49:f4:2e:cc:18:c4:61:09:59:9f:33: 54:e9:b1:9e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNscwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzU0NDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZBOEY2OEE4QzAxNkIy QTE0NDkyNjRBRjhDMjlEQzY1RjhBMENCNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuo/yBJT7gfm7lXVXtwf8vkYvtWSIZdzVYL1TEIARBqX8YdO2v iVPdMY0mIuP8RChCgewKwZE6bo6DgQHHDP8FVBSe9eClpdyH00E5dS7ajiOtXW+m CpUVc7oeUoFyrnLUqxhVaTgpdn0xdn9iopK0kWlS0S1Ds3TqZLLT93WiVhli5G9g DlIdqI7K/eeryI5SrIfRiDjqJQu8SmevX1bM4eQfPkYSVh5Weybwuba3j2Z6uCNa hhmCt9q/NbpjUjg54Aql3jLWnPMXSKSZW/5oEgswznrqhPuuT0ENCLTPWi14JiZt xC02q7k97UdogCrejKHuucXfJjrHHhyAzTsLAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUao9oqMAWsqFEkmSvjCncZfigy3gwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2FvOW9xTUFXc3FGRWttU3Zq Q25jWmZpZ3kzZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFq ATwwDQYJKoZIhvcNAQELBQADggEBAKt53fLoqx1SGbU3Qd8SKElnLdfXdcDpxhO6 u8jxVS7bDhfUl5pWjeIwySBMzZEUcOhkUWvLq2pOrpGE6g2AKmfmuFgUejmgTjFO O7M72NmHFotDMr/8IEfuiV0dnAuX/byX9Va3iI5xDsu/If14plv04wlafCVpOGBD UfhLtjBVnCM+Iec2bDgDklSISFQShtGFJ3KG/EO0yjjDZFgIZ/KbboibCCj2jQjp /FUWipXbzIWn6SUUMwHs9kEfW5C+wLaTvZxqBtHhBFeXnin+STtBkW/kMk8U0fve kCxYSYWMkaWAQm6cziWM9WlCfJMi6zxJ9C7MGMRhCVmfM1TpsZ4= -----END CERTIFICATE-----Generated at Wed Feb 19 22:03:09 2025 by rpki-client