$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gKMD35G9wdaKEc-lZ7MtUBiCEyE.roa File: gKMD35G9wdaKEc-lZ7MtUBiCEyE.roa (raw, json) Hash identifier: fGygw/mP7pw8bQk7sjNQyzuuncV17s+51n451pJqiV0= Subject key identifier: 80:A3:03:DF:91:BD:C1:D6:8A:11:CF:A5:67:B3:2D:50:18:82:13:21 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3591 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gKMD35G9wdaKEc-lZ7MtUBiCEyE.roa Signing time: Mon 10 Feb 2025 13:53:28 +0000 ROA not before: Mon 10 Feb 2025 13:53:28 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.194.212.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13713 (0x3591) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:53:28 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=80A303DF91BDC1D68A11CFA567B32D5018821321 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b3:41:38:b8:5c:f7:17:74:55:da:e6:7b:e5: bd:16:55:4c:7f:22:3c:57:69:f2:54:ff:3f:da:02: a2:16:67:8a:25:f0:9f:83:06:da:aa:3e:76:ee:13: 75:68:85:4f:6d:06:09:88:17:a7:8d:e8:ce:2a:52: a7:5e:30:07:73:67:fa:19:f9:1f:6e:75:7b:67:db: 18:e2:ca:72:65:40:d0:a0:54:8d:e9:da:f3:5f:db: fe:fe:9b:5b:1e:ec:fd:fd:a5:0c:93:a9:aa:a6:80: 0a:de:8b:75:e0:dd:ea:0c:03:b6:9f:1f:08:62:75: b9:0f:06:ff:1b:15:a6:04:94:95:b8:c3:59:df:77: 19:e8:90:2a:19:76:b7:07:63:5f:bc:e3:bf:8e:5f: e6:40:c7:ed:b8:ab:12:42:ca:a4:9c:f9:0f:c2:cb: 4d:9a:00:71:16:ac:56:2f:a0:bd:a6:f7:c9:ff:2c: 76:cd:cc:d6:15:ef:0b:0b:6a:28:ea:e0:4c:b5:f4: 43:25:12:e0:f7:ce:7a:43:87:5d:5d:25:31:24:fd: e3:ca:93:80:8d:9c:f6:33:db:c3:f7:b4:12:45:d7: f9:42:e5:91:bf:5d:82:1d:db:97:93:e6:9e:3a:dd: 96:89:be:fe:3d:71:e2:29:e8:02:3d:98:6f:8b:58: b4:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:A3:03:DF:91:BD:C1:D6:8A:11:CF:A5:67:B3:2D:50:18:82:13:21 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gKMD35G9wdaKEc-lZ7MtUBiCEyE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.212.0/22 Signature Algorithm: sha256WithRSAEncryption 17:48:ff:26:f3:01:eb:76:b0:6b:2f:a5:a7:5d:49:d4:06:e5: b3:cb:79:fe:c3:3e:a4:b1:ba:64:28:57:63:73:93:31:1d:21: 45:b0:39:01:f1:e0:1e:d9:50:3a:ee:2a:ac:d2:de:1f:5c:f9: a9:ac:dc:1a:9c:27:b2:f0:c7:eb:24:c7:8a:8a:cf:c5:64:86: af:15:29:88:1e:ec:c1:e3:c7:1e:7e:bf:b2:83:03:9a:b6:2c: 40:63:4b:3d:ad:53:62:1f:22:0f:7c:d3:53:40:f4:29:20:4b: ce:99:37:b8:55:7b:5d:a5:26:28:9f:67:b6:34:cd:e8:b3:0b: 09:40:f2:ae:ee:f2:69:c0:1f:97:b1:02:d3:f8:0d:0a:a5:aa: ad:54:97:02:8a:01:f8:1b:77:bc:63:1a:40:b7:43:2a:e8:f9: 86:af:81:73:f7:28:c5:4a:fc:3c:8b:d0:34:02:ed:ae:74:29: 03:f0:20:4a:60:0d:a4:19:60:3c:3d:fb:f8:e4:74:19:a2:dd: e5:1b:fc:43:f2:65:5d:46:ba:d7:dd:90:d8:59:c1:ba:1b:55: c6:99:ad:d0:8d:8a:f7:80:7c:73:7c:e0:a1:18:33:d4:77:6c: 33:3a:45:00:15:41:cb:82:a2:c9:d7:63:b0:a2:51:45:07:84: fd:bd:8e:5b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNZEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUzMjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgwQTMwM0RGOTFCREMx RDY4QTExQ0ZBNTY3QjMyRDUwMTg4MjEzMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3s0E4uFz3F3RV2uZ75b0WVUx/IjxXafJU/z/aAqIWZ4ol8J+D BtqqPnbuE3VohU9tBgmIF6eN6M4qUqdeMAdzZ/oZ+R9udXtn2xjiynJlQNCgVI3p 2vNf2/7+m1se7P39pQyTqaqmgArei3Xg3eoMA7afHwhidbkPBv8bFaYElJW4w1nf dxnokCoZdrcHY1+847+OX+ZAx+24qxJCyqSc+Q/Cy02aAHEWrFYvoL2m98n/LHbN zNYV7wsLaijq4Ey19EMlEuD3znpDh11dJTEk/ePKk4CNnPYz28P3tBJF1/lC5ZG/ XYId25eT5p463ZaJvv49ceIp6AI9mG+LWLQ1AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUgKMD35G9wdaKEc+lZ7MtUBiCEyEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2dLTUQzNUc5d2RhS0VjLWxa N010VUJpQ0V5RS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wtQwDQYJKoZIhvcNAQELBQADggEBABdI/ybzAet2sGsvpaddSdQG5bPLef7DPqSx umQoV2NzkzEdIUWwOQHx4B7ZUDruKqzS3h9c+ams3BqcJ7Lwx+skx4qKz8Vkhq8V KYge7MHjxx5+v7KDA5q2LEBjSz2tU2IfIg9801NA9CkgS86ZN7hVe12lJiifZ7Y0 zeizCwlA8q7u8mnAH5exAtP4DQqlqq1UlwKKAfgbd7xjGkC3Qyro+YavgXP3KMVK /DyL0DQC7a50KQPwIEpgDaQZYDw9+/jkdBmi3eUb/EPyZV1GutfdkNhZwbobVcaZ rdCNiveAfHN84KEYM9R3bDM6RQAVQcuCosnXY7CiUUUHhP29jls= -----END CERTIFICATE-----Generated at Wed Feb 19 22:04:05 2025 by rpki-client