$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/fsyF4OjPP2crAM8LO_3FChXv6Jo.roa File: fsyF4OjPP2crAM8LO_3FChXv6Jo.roa (raw, json) Hash identifier: ecM5dSa+P35vJD880LEZ6MJFlAPKNbu23/Zx0v+ZAO0= Subject key identifier: 7E:CC:85:E0:E8:CF:3F:67:2B:00:CF:0B:3B:FD:C5:0A:15:EF:E8:9A Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 35B2 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/fsyF4OjPP2crAM8LO_3FChXv6Jo.roa Signing time: Mon 10 Feb 2025 13:53:36 +0000 ROA not before: Mon 10 Feb 2025 13:53:36 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 180.176.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13746 (0x35b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:53:36 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7ECC85E0E8CF3F672B00CF0B3BFDC50A15EFE89A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a1:2a:41:be:32:ee:46:da:bb:3d:e2:0a:e8: b5:de:1b:35:ab:6b:26:af:46:e6:b4:00:80:9b:4d: e5:11:84:bd:c8:2f:61:a7:8b:4f:bc:a1:c8:ab:15: da:6d:af:b7:b8:a1:26:8c:16:01:3d:64:07:50:31: 62:0e:e8:93:f4:75:96:83:d2:d9:6f:da:23:5a:c8: 96:86:9f:9e:73:37:b4:43:64:72:ac:19:8a:d3:15: 32:7a:af:ea:a8:a9:c2:5e:c2:58:cd:b9:0e:e3:1e: 5a:d0:e3:b1:31:7f:10:b5:54:00:b6:31:02:49:ba: 03:4f:cc:33:77:7b:3c:96:75:aa:48:ed:6c:be:25: 15:b0:af:71:a6:7a:29:22:14:44:b6:49:ea:58:c3: 81:52:d6:b2:f1:52:45:e1:09:c7:a8:1c:87:76:73: b7:59:86:1e:e9:12:2d:f7:d6:02:0d:f0:ab:34:f9: 80:fe:43:4f:8b:7f:39:d0:26:72:88:a4:c8:62:37: fb:13:f5:cd:e4:e3:ca:9c:d2:9a:98:df:31:b3:69: ca:88:fc:23:42:ed:1e:97:38:e7:7b:70:4f:cc:8a: e1:8a:f7:f3:e4:9c:ed:2d:04:be:da:b7:0a:63:c7: c3:01:2b:81:54:32:2c:28:06:1d:d0:a4:ba:d9:83: 8a:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:CC:85:E0:E8:CF:3F:67:2B:00:CF:0B:3B:FD:C5:0A:15:EF:E8:9A X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/fsyF4OjPP2crAM8LO_3FChXv6Jo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.176.222.0/24 Signature Algorithm: sha256WithRSAEncryption a5:b8:61:af:c1:c2:92:f7:6b:cd:bf:73:05:38:10:3e:7b:3b: 9b:9e:f9:f9:a6:1c:78:09:ea:d9:1e:83:23:e7:99:25:ad:a5: b2:cf:39:da:bb:94:3e:ab:82:23:f0:bb:47:3c:22:b1:3c:fb: c5:2d:5f:9b:f8:00:7a:42:26:d6:43:8a:6a:30:20:a9:5f:b5: 2e:b7:e8:07:17:b5:c6:d1:b9:ce:20:fc:7c:24:f1:b0:cb:aa: 01:e3:a4:db:c3:6b:a0:8b:63:dc:46:c5:f0:cc:43:18:b6:95: e8:3f:a2:5a:d4:d3:25:3e:16:3a:a9:2c:95:69:70:00:82:b1: 95:b0:85:fb:cb:f1:d7:e1:b3:81:cc:f3:8c:cc:c3:df:b7:e0: 98:22:81:74:e3:f7:96:68:20:26:67:2a:e9:1a:1f:72:ef:ba: 37:f8:90:50:34:15:75:2e:20:21:90:76:fe:ce:13:cc:42:14: fc:5d:4e:f2:1a:23:26:dd:02:62:d9:6c:3c:98:27:cf:2b:6e: 1d:20:80:bd:6b:e3:78:b7:53:a7:a0:c6:60:02:be:ae:c5:d5: 11:1f:6e:95:4e:a6:34:5b:fe:e1:7a:9c:53:5d:29:1c:13:5c: fd:57:f2:05:77:6d:f5:76:b7:25:c8:d2:1e:54:a7:1f:ca:5f: 29:e6:f4:f8 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNbIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUzMzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdFQ0M4NUUwRThDRjNG NjcyQjAwQ0YwQjNCRkRDNTBBMTVFRkU4OUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2oSpBvjLuRtq7PeIK6LXeGzWrayavRua0AICbTeURhL3IL2Gn i0+8ocirFdptr7e4oSaMFgE9ZAdQMWIO6JP0dZaD0tlv2iNayJaGn55zN7RDZHKs GYrTFTJ6r+qoqcJewljNuQ7jHlrQ47ExfxC1VAC2MQJJugNPzDN3ezyWdapI7Wy+ JRWwr3GmeikiFES2SepYw4FS1rLxUkXhCceoHId2c7dZhh7pEi331gIN8Ks0+YD+ Q0+LfznQJnKIpMhiN/sT9c3k48qc0pqY3zGzacqI/CNC7R6XOOd7cE/MiuGK9/Pk nO0tBL7atwpjx8MBK4FUMiwoBh3QpLrZg4ptAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUfsyF4OjPP2crAM8LO/3FChXv6JowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2ZzeUY0T2pQUDJjckFNOExP XzNGQ2hYdjZKby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC0 sN4wDQYJKoZIhvcNAQELBQADggEBAKW4Ya/BwpL3a82/cwU4ED57O5ue+fmmHHgJ 6tkegyPnmSWtpbLPOdq7lD6rgiPwu0c8IrE8+8UtX5v4AHpCJtZDimowIKlftS63 6AcXtcbRuc4g/Hwk8bDLqgHjpNvDa6CLY9xGxfDMQxi2leg/olrU0yU+FjqpLJVp cACCsZWwhfvL8dfhs4HM84zMw9+34JgigXTj95ZoICZnKukaH3Lvujf4kFA0FXUu ICGQdv7OE8xCFPxdTvIaIybdAmLZbDyYJ88rbh0ggL1r43i3U6egxmACvq7F1REf bpVOpjRb/uF6nFNdKRwTXP1X8gV3bfV2tyXI0h5Upx/KXynm9Pg= -----END CERTIFICATE-----Generated at Wed Feb 19 21:56:36 2025 by rpki-client