$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iAdAMZt80MgGhTY16uGWSYO2dHQ.roa File: iAdAMZt80MgGhTY16uGWSYO2dHQ.roa (raw, json) Hash identifier: ZMbSaVzu/4/GI5jfXoVTCq0EPIIzgxWh/qGtK669oCY= Subject key identifier: 88:07:40:31:9B:7C:D0:C8:06:85:36:35:EA:E1:96:49:83:B6:74:74 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3689 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iAdAMZt80MgGhTY16uGWSYO2dHQ.roa Signing time: Mon 10 Feb 2025 13:54:24 +0000 ROA not before: Mon 10 Feb 2025 13:54:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 211.76.112.0/20 maxlen: 25 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13961 (0x3689) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:54:24 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=880740319B7CD0C806853635EAE1964983B67474 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:bd:eb:eb:e2:44:69:c8:a9:f5:ff:7a:95:9e: 87:6d:25:23:4b:ad:52:40:be:e8:cb:49:ce:c6:28: 94:9b:4f:aa:0a:ff:0d:59:b7:7b:e7:57:0f:89:26: 5c:9d:fb:2a:0c:6e:0b:ef:d6:53:03:85:c3:77:eb: 44:d3:e9:a5:62:d2:c7:66:81:36:f5:cf:57:15:43: 50:d1:e2:6b:a9:51:52:16:18:42:24:ba:68:a7:6b: c8:c9:77:55:e0:c7:f0:58:aa:be:93:89:66:78:54: e0:d7:c9:b5:bb:a6:cb:da:bb:66:0f:7c:a5:a8:1c: 1e:0e:5e:a8:f4:c9:f2:29:a7:b3:fb:1b:e9:c3:d4: 8f:6b:ce:bc:8d:60:c0:18:2f:ce:dc:37:55:0a:5c: e8:14:cb:33:80:1a:e1:37:02:7f:ab:54:7a:4d:36: eb:26:8a:48:6b:15:4e:c9:8f:a4:8c:04:f7:68:a0: d1:23:b9:c9:96:c1:1f:56:37:ae:f8:b3:5d:d4:2f: 33:74:0e:a2:d2:de:e5:36:c7:d5:cd:78:d4:1e:0c: b3:62:9e:23:f3:ff:17:91:52:71:3b:70:c0:7a:aa: 62:de:97:cc:bd:85:2a:93:0c:98:c8:c8:dc:b0:23: df:f9:e4:c7:2b:1d:ec:eb:aa:42:35:d9:5c:af:83: 75:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:07:40:31:9B:7C:D0:C8:06:85:36:35:EA:E1:96:49:83:B6:74:74 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iAdAMZt80MgGhTY16uGWSYO2dHQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.112.0/20 Signature Algorithm: sha256WithRSAEncryption 22:cd:3c:9e:cf:2a:5f:54:64:9e:a7:9d:b7:3d:19:11:95:94: 26:84:8c:a0:d2:47:8c:94:07:84:9f:2c:dc:6a:53:d5:0a:a9: 2c:46:04:99:5f:66:ef:69:10:68:18:7e:a1:ec:4b:7f:52:27: 94:45:2b:d8:85:19:e1:1e:aa:38:31:f7:fc:63:d0:89:15:4d: 60:1b:91:20:a6:94:06:ee:21:1a:a0:e6:26:83:74:59:73:e7: 00:ea:38:08:58:97:4e:51:b2:e7:86:0c:b0:49:a0:53:ae:8e: 74:17:35:42:8b:f8:dd:bc:66:7b:2f:94:a3:b5:90:39:d8:eb: e9:6e:6a:93:9b:99:e3:03:81:1e:36:2c:23:f1:56:8d:b3:e5: f9:c1:9d:de:61:c0:12:ad:3a:ac:27:b6:84:9d:ab:3e:09:f6: 9d:91:9f:01:99:07:c9:e3:9e:51:a5:9b:27:6b:da:34:48:87: fe:5d:41:82:b4:cd:0e:01:23:ea:83:a2:ee:14:34:03:4c:61: 0f:7b:65:46:b7:48:c3:2e:4f:c4:47:02:0e:eb:ce:f9:b0:6e: ff:36:60:29:a2:3e:e8:f1:f8:cf:ab:e0:6b:87:f6:3c:4f:b0: ea:aa:19:a3:7c:99:62:4e:51:be:ee:aa:05:9c:29:7e:89:3a: 0d:27:27:d0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNokwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzU0MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg4MDc0MDMxOUI3Q0Qw QzgwNjg1MzYzNUVBRTE5NjQ5ODNCNjc0NzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9vevr4kRpyKn1/3qVnodtJSNLrVJAvujLSc7GKJSbT6oK/w1Z t3vnVw+JJlyd+yoMbgvv1lMDhcN360TT6aVi0sdmgTb1z1cVQ1DR4mupUVIWGEIk umina8jJd1Xgx/BYqr6TiWZ4VODXybW7psvau2YPfKWoHB4OXqj0yfIpp7P7G+nD 1I9rzryNYMAYL87cN1UKXOgUyzOAGuE3An+rVHpNNusmikhrFU7Jj6SMBPdooNEj ucmWwR9WN674s13ULzN0DqLS3uU2x9XNeNQeDLNiniPz/xeRUnE7cMB6qmLel8y9 hSqTDJjIyNywI9/55McrHezrqkI12Vyvg3UNAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUiAdAMZt80MgGhTY16uGWSYO2dHQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2lBZEFNWnQ4ME1nR2hUWTE2 dUdXU1lPMmRIUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATT THAwDQYJKoZIhvcNAQELBQADggEBACLNPJ7PKl9UZJ6nnbc9GRGVlCaEjKDSR4yU B4SfLNxqU9UKqSxGBJlfZu9pEGgYfqHsS39SJ5RFK9iFGeEeqjgx9/xj0IkVTWAb kSCmlAbuIRqg5iaDdFlz5wDqOAhYl05RsueGDLBJoFOujnQXNUKL+N28ZnsvlKO1 kDnY6+luapObmeMDgR42LCPxVo2z5fnBnd5hwBKtOqwntoSdqz4J9p2RnwGZB8nj nlGlmydr2jRIh/5dQYK0zQ4BI+qDou4UNANMYQ97ZUa3SMMuT8RHAg7rzvmwbv82 YCmiPujx+M+r4GuH9jxPsOqqGaN8mWJOUb7uqgWcKX6JOg0nJ9A= -----END CERTIFICATE-----Generated at Wed Feb 19 21:58:11 2025 by rpki-client