$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bm4xgXN1jLllGIboEoOlqR1eiMI.roa File: bm4xgXN1jLllGIboEoOlqR1eiMI.roa (raw, json) Hash identifier: 9R0DtPDn/U565syCNMv99L1CfrR652Bp9KcLdfMBzjA= Subject key identifier: 6E:6E:31:81:73:75:8C:B9:65:18:86:E8:12:83:A5:A9:1D:5E:88:C2 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 338C Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bm4xgXN1jLllGIboEoOlqR1eiMI.roa Signing time: Mon 10 Feb 2025 13:51:32 +0000 ROA not before: Mon 10 Feb 2025 13:51:32 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.194.204.0/26 maxlen: 26 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13196 (0x338c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:51:32 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6E6E318173758CB9651886E81283A5A91D5E88C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:9c:41:a7:0d:0e:4e:d7:10:a5:a2:56:47:31: b7:5c:af:13:91:b4:63:e4:b5:a9:bf:76:52:ba:6b: 00:9c:68:c3:d0:b8:bd:3d:8e:77:d1:16:63:08:cf: 30:4c:a7:38:d7:f2:17:8b:44:e8:14:25:87:bc:61: a8:f6:c9:25:3f:9a:d2:f7:90:f0:db:af:47:06:25: d2:77:ac:88:7b:04:f1:b4:15:dc:cb:b7:cd:6c:3d: 52:76:37:bb:11:3b:7f:bf:29:41:c2:e8:ed:83:fd: ab:94:fc:de:a8:1f:92:5f:ad:4e:21:dc:07:97:83: 6d:88:ec:c4:27:9a:44:8e:eb:ee:b1:94:97:c5:92: d1:48:be:4d:43:e9:a9:63:f0:59:67:41:45:b2:95: 99:e0:01:77:0d:11:50:13:58:d0:f2:1e:ee:14:b9: e8:ce:de:3b:f3:58:87:2c:ed:7e:a8:e6:07:da:92: 7c:10:e6:50:08:d7:2a:ab:67:ca:8d:b0:f2:88:14: a2:66:82:ef:d2:f1:77:95:ac:00:1e:99:69:7d:15: 20:f1:7f:d0:f8:3a:b0:18:a5:95:ed:03:a5:d9:7c: 17:5d:54:94:f2:74:48:1a:71:fa:16:da:bc:d2:55: fd:33:d1:75:60:04:4c:e4:83:01:f7:0c:3f:6a:23: 65:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:6E:31:81:73:75:8C:B9:65:18:86:E8:12:83:A5:A9:1D:5E:88:C2 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bm4xgXN1jLllGIboEoOlqR1eiMI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.204.0/26 Signature Algorithm: sha256WithRSAEncryption 1b:f4:22:07:ab:d0:52:c5:42:5e:56:45:f1:4a:23:63:3b:82: 73:53:3c:23:43:56:18:df:4b:2f:7f:ba:b5:69:f8:53:ae:90: ce:11:d5:3b:82:a7:c5:59:a2:b2:1f:92:ea:32:6d:fe:9c:a9: dd:27:47:c0:e3:60:2b:9b:7e:9b:41:09:45:7d:99:dd:2c:bf: ad:c4:7b:7c:cb:32:8f:37:c9:59:f3:74:75:30:39:6d:b9:04: 27:d9:1d:cf:fd:1c:fd:5d:38:81:01:44:cd:2a:38:db:da:e5: bb:59:77:79:9f:c9:1f:ac:62:35:dd:88:c3:01:25:73:0b:e7: 8b:4a:4d:83:4a:59:b4:e2:4d:86:99:a3:4c:77:3b:5f:bf:57: 3a:3f:18:b1:77:d0:72:99:8b:1c:9a:f3:bc:b7:f4:9c:72:8c: 11:bb:48:f4:46:ba:9e:89:16:df:2e:fd:43:e5:f7:e6:3f:77: e4:b6:5c:33:d8:29:ef:df:45:c6:7f:f3:ee:d4:74:a5:b1:f3: 66:5b:5e:86:99:56:12:ee:f2:19:e5:b2:63:f6:d6:7e:e6:74: 72:ce:8e:f4:70:a4:f5:4e:65:5e:c2:b5:b7:8a:76:de:e5:04: bb:9f:83:e5:9e:22:31:ca:84:2a:65:c2:cc:f2:bb:f0:b4:80: d9:f6:a1:8e -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICM4wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUxMzJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZFNkUzMTgxNzM3NThD Qjk2NTE4ODZFODEyODNBNUE5MUQ1RTg4QzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZnEGnDQ5O1xClolZHMbdcrxORtGPktam/dlK6awCcaMPQuL09 jnfRFmMIzzBMpzjX8heLROgUJYe8Yaj2ySU/mtL3kPDbr0cGJdJ3rIh7BPG0FdzL t81sPVJ2N7sRO3+/KUHC6O2D/auU/N6oH5JfrU4h3AeXg22I7MQnmkSO6+6xlJfF ktFIvk1D6alj8FlnQUWylZngAXcNEVATWNDyHu4UuejO3jvzWIcs7X6o5gfaknwQ 5lAI1yqrZ8qNsPKIFKJmgu/S8XeVrAAemWl9FSDxf9D4OrAYpZXtA6XZfBddVJTy dEgacfoW2rzSVf0z0XVgBEzkgwH3DD9qI2UFAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUbm4xgXN1jLllGIboEoOlqR1eiMIwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2JtNHhnWE4xakxsbEdJYm9F b09scVIxZWlNSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQZ7 wswAMA0GCSqGSIb3DQEBCwUAA4IBAQAb9CIHq9BSxUJeVkXxSiNjO4JzUzwjQ1YY 30svf7q1afhTrpDOEdU7gqfFWaKyH5LqMm3+nKndJ0fA42Arm36bQQlFfZndLL+t xHt8yzKPN8lZ83R1MDltuQQn2R3P/Rz9XTiBAUTNKjjb2uW7WXd5n8kfrGI13YjD ASVzC+eLSk2DSlm04k2GmaNMdztfv1c6Pxixd9BymYscmvO8t/SccowRu0j0Rrqe iRbfLv1D5ffmP3fktlwz2Cnv30XGf/Pu1HSlsfNmW16GmVYS7vIZ5bJj9tZ+5nRy zo70cKT1TmVewrW3inbe5QS7n4PlniIxyoQqZcLM8rvwtIDZ9qGO -----END CERTIFICATE-----Generated at Wed Feb 19 22:10:49 2025 by rpki-client