$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/diJGiEa3tjNfZz8j3COoLuKZ8SM.roa File: diJGiEa3tjNfZz8j3COoLuKZ8SM.roa (raw, json) Hash identifier: BDuj6v4hxWdPW4yhBjB9NAIUZcJ6ggIhhfA96kmS8uw= Subject key identifier: 76:22:46:88:46:B7:B6:33:5F:67:3F:23:DC:23:A8:2E:E2:99:F1:23 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 35F0 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/diJGiEa3tjNfZz8j3COoLuKZ8SM.roa Signing time: Mon 10 Feb 2025 13:53:50 +0000 ROA not before: Mon 10 Feb 2025 13:53:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.232.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13808 (0x35f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:53:50 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7622468846B7B6335F673F23DC23A82EE299F123 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a8:f1:5c:71:56:df:cc:09:8b:b2:26:af:92: a9:3e:70:16:68:78:c0:fb:fb:5a:67:d0:f1:12:4a: 08:f4:e8:83:20:f5:18:9e:9a:82:e9:95:b2:03:c1: 9e:0e:be:d1:bc:51:a6:ef:5c:c1:43:d4:dd:f9:cb: a0:13:1b:1f:7f:e1:88:cb:13:03:89:27:cd:de:33: 92:22:95:d2:b7:d0:e9:e5:2a:57:89:87:70:4e:8b: dd:23:46:ea:76:02:46:54:dd:d6:59:af:d8:44:81: 0f:3c:f4:fb:25:fe:16:fb:4a:1f:56:ab:cd:52:dc: 3f:65:4f:62:cc:c3:82:35:18:0a:f5:aa:57:f3:d6: a1:31:ae:ee:7a:9c:c2:82:28:f6:e1:0a:e2:de:bb: 76:5c:74:58:35:2c:0d:5e:63:b3:bc:2d:a1:5a:09: d3:a0:4c:5f:0c:f4:7c:2b:98:96:8a:10:9e:32:55: ad:38:00:7d:b5:c9:b9:45:21:f2:df:0b:11:71:34: af:94:c7:59:fb:46:88:96:f9:42:06:9b:48:4d:3b: 51:fc:d0:3e:a7:71:b2:86:ca:e1:d6:41:dd:c4:88: b7:25:35:4d:f8:b7:ea:9e:6c:22:e9:b3:0c:e1:51: 12:1e:22:76:4e:41:58:c3:66:87:a5:c9:26:e3:8c: f2:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:22:46:88:46:B7:B6:33:5F:67:3F:23:DC:23:A8:2E:E2:99:F1:23 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/diJGiEa3tjNfZz8j3COoLuKZ8SM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.176.0/21 Signature Algorithm: sha256WithRSAEncryption 77:fd:27:da:6f:21:eb:61:eb:eb:4e:71:e0:55:24:b8:97:44: 4e:a8:6f:02:4b:cc:0e:fc:d1:89:a5:e5:38:14:59:cf:f2:f9: 4c:bd:18:90:30:20:14:d7:b1:06:2f:1c:c9:20:6f:ba:63:dd: 41:69:29:53:33:48:66:9f:55:e2:91:48:66:64:17:0b:63:54: 3b:33:27:89:2b:9a:eb:77:c6:ee:0c:b6:ac:d9:55:93:32:33: 05:c9:eb:b3:18:c4:f8:31:52:3e:20:76:dd:88:05:90:54:a7: f0:60:5f:40:1f:b0:aa:22:25:4d:1e:23:95:f1:89:b4:b2:8b: f9:58:f0:07:96:31:60:24:62:e0:aa:26:bb:d1:c9:19:fa:0b: cf:18:35:c6:84:0c:57:a0:e6:f1:16:0f:71:21:4c:41:bc:88: 2a:d1:9c:ff:52:e5:56:fc:32:4f:92:5d:30:a6:32:83:64:9c: 0a:cb:ee:4e:aa:12:7b:36:e8:73:89:9c:db:6c:2c:01:79:cd: e8:d8:36:e0:e3:02:f4:da:43:18:9c:10:db:90:45:8d:01:0a: ff:36:60:55:73:06:4e:18:1f:6c:ef:da:7e:82:65:93:36:03: 38:bc:9e:f2:68:13:1b:96:57:e4:c5:25:e8:9f:b3:b3:71:34: d9:b9:53:fc -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNfAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUzNTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc2MjI0Njg4NDZCN0I2 MzM1RjY3M0YyM0RDMjNBODJFRTI5OUYxMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvqPFccVbfzAmLsiavkqk+cBZoeMD7+1pn0PESSgj06IMg9Rie moLplbIDwZ4OvtG8UabvXMFD1N35y6ATGx9/4YjLEwOJJ83eM5IildK30OnlKleJ h3BOi90jRup2AkZU3dZZr9hEgQ889Psl/hb7Sh9Wq81S3D9lT2LMw4I1GAr1qlfz 1qExru56nMKCKPbhCuLeu3ZcdFg1LA1eY7O8LaFaCdOgTF8M9HwrmJaKEJ4yVa04 AH21yblFIfLfCxFxNK+Ux1n7RoiW+UIGm0hNO1H80D6ncbKGyuHWQd3EiLclNU34 t+qebCLpswzhURIeInZOQVjDZoelySbjjPIpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUdiJGiEa3tjNfZz8j3COoLuKZ8SMwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2RpSkdpRWEzdGpOZlp6OGoz Q09vTHVLWjhTTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6LAwDQYJKoZIhvcNAQELBQADggEBAHf9J9pvIeth6+tOceBVJLiXRE6obwJLzA78 0Yml5TgUWc/y+Uy9GJAwIBTXsQYvHMkgb7pj3UFpKVMzSGafVeKRSGZkFwtjVDsz J4krmut3xu4MtqzZVZMyMwXJ67MYxPgxUj4gdt2IBZBUp/BgX0AfsKoiJU0eI5Xx ibSyi/lY8AeWMWAkYuCqJrvRyRn6C88YNcaEDFeg5vEWD3EhTEG8iCrRnP9S5Vb8 Mk+SXTCmMoNknArL7k6qEns26HOJnNtsLAF5zejYNuDjAvTaQxicENuQRY0BCv82 YFVzBk4YH2zv2n6CZZM2Azi8nvJoExuWV+TFJeifs7NxNNm5U/w= -----END CERTIFICATE-----Generated at Wed Feb 19 22:03:51 2025 by rpki-client