$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iENykE5RTNJz-lTNa95BocCzgWU.roa File: iENykE5RTNJz-lTNa95BocCzgWU.roa (raw, json) Hash identifier: l35aPk/RhBu24xhlJ+ZLQoeYb+hFygZsrTFkHCjTLXY= Subject key identifier: 88:43:72:90:4E:51:4C:D2:73:FA:54:CD:6B:DE:41:A1:C0:B3:81:65 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 35F6 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iENykE5RTNJz-lTNa95BocCzgWU.roa Signing time: Mon 10 Feb 2025 13:53:52 +0000 ROA not before: Mon 10 Feb 2025 13:53:52 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13814 (0x35f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:53:52 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=884372904E514CD273FA54CD6BDE41A1C0B38165 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:6a:7a:bd:f4:d1:42:00:4c:44:c5:70:e6:56: 3e:94:14:13:b3:40:55:f7:f5:a7:ae:60:8f:10:ec: 81:82:4c:24:f0:0c:a2:27:c2:21:14:fb:9b:69:3e: b7:71:cd:54:e8:d5:47:27:56:cc:6c:bb:94:8d:9c: 3c:68:4f:49:e5:fc:4c:1e:18:60:39:5f:56:37:86: 43:93:03:ea:a8:a8:ba:93:c3:b9:59:f0:f9:2a:c2: ec:a9:3b:68:7f:bb:87:22:0e:57:f3:31:7f:04:bd: e2:22:65:4b:d9:52:86:40:dc:3c:b0:48:4c:c5:ae: fe:c4:32:0b:69:42:fd:02:75:ba:59:c4:e8:7d:fd: 47:51:7c:07:77:b3:ff:93:2d:f9:ce:75:11:ad:76: 01:7c:58:fd:8b:b8:88:24:a1:2e:dc:32:f7:d9:5c: a6:bf:db:88:7b:b1:0b:f3:74:cc:8d:17:72:2b:0b: f3:e5:7d:84:c5:31:e3:2c:91:2c:24:bc:94:bb:59: 8e:1e:cb:84:a3:e2:d7:64:a7:36:45:fa:43:dd:67: cf:d6:d9:f2:25:24:45:dd:2a:ba:18:83:8d:fe:ca: 1d:dc:1b:d2:fb:80:0d:26:0e:77:47:e3:1d:01:69: 6e:55:d5:f8:44:d9:64:f0:b7:27:56:e7:c2:bc:d5: 01:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:43:72:90:4E:51:4C:D2:73:FA:54:CD:6B:DE:41:A1:C0:B3:81:65 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iENykE5RTNJz-lTNa95BocCzgWU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.128.0/22 Signature Algorithm: sha256WithRSAEncryption 78:d7:6a:32:0c:64:0b:77:62:6c:df:b0:f0:67:96:75:92:00: 26:03:f7:0f:a6:24:da:63:23:01:c9:b7:77:b3:1c:65:8c:e6: 15:43:24:47:94:15:43:5a:e6:f8:46:fc:0a:fd:84:ea:24:80: a6:49:86:1e:ec:2b:f0:9b:ea:0e:b2:b6:43:65:7a:ae:7e:01: a2:12:b7:2d:7f:19:3f:1d:c4:f8:0f:97:86:2f:a7:1b:cc:66: 68:2c:87:e0:6d:2c:45:e0:3a:db:f2:e3:f2:05:f6:d0:3d:76: b2:45:f6:36:8d:ac:3c:d8:a8:21:dd:f5:3d:dc:0f:78:d9:3e: e6:76:d0:7d:c0:09:9c:2a:7d:1a:45:c6:ff:e3:71:6f:d3:b8: 05:92:80:7c:f5:ce:b1:72:d8:d5:43:22:14:e5:68:cf:4b:19: 8c:6c:bc:c0:a8:16:27:52:2d:c6:aa:d6:85:1d:4a:04:15:dd: 9e:aa:bc:51:c5:26:70:9d:01:0a:c8:58:b6:04:87:c4:57:00: c4:36:52:70:17:8e:32:d9:3d:2a:de:09:7e:e3:f8:c4:bc:ca: b9:a1:70:16:2f:48:dd:67:f2:a9:4e:6d:86:6e:99:9b:17:d9: c9:9f:d0:29:d4:a6:f7:cd:ac:44:2f:9c:cf:f5:a9:60:d8:b6: c6:79:7a:66 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNfYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUzNTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg4NDM3MjkwNEU1MTRD RDI3M0ZBNTRDRDZCREU0MUExQzBCMzgxNjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpanq99NFCAExExXDmVj6UFBOzQFX39aeuYI8Q7IGCTCTwDKIn wiEU+5tpPrdxzVTo1UcnVsxsu5SNnDxoT0nl/EweGGA5X1Y3hkOTA+qoqLqTw7lZ 8PkqwuypO2h/u4ciDlfzMX8EveIiZUvZUoZA3DywSEzFrv7EMgtpQv0CdbpZxOh9 /UdRfAd3s/+TLfnOdRGtdgF8WP2LuIgkoS7cMvfZXKa/24h7sQvzdMyNF3IrC/Pl fYTFMeMskSwkvJS7WY4ey4Sj4tdkpzZF+kPdZ8/W2fIlJEXdKroYg43+yh3cG9L7 gA0mDndH4x0BaW5V1fhE2WTwtydW58K81QEBAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUiENykE5RTNJz+lTNa95BocCzgWUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2lFTnlrRTVSVE5Kei1sVE5h OTVCb2NDemdXVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq AYAwDQYJKoZIhvcNAQELBQADggEBAHjXajIMZAt3YmzfsPBnlnWSACYD9w+mJNpj IwHJt3ezHGWM5hVDJEeUFUNa5vhG/Ar9hOokgKZJhh7sK/Cb6g6ytkNleq5+AaIS ty1/GT8dxPgPl4YvpxvMZmgsh+BtLEXgOtvy4/IF9tA9drJF9jaNrDzYqCHd9T3c D3jZPuZ20H3ACZwqfRpFxv/jcW/TuAWSgHz1zrFy2NVDIhTlaM9LGYxsvMCoFidS Lcaq1oUdSgQV3Z6qvFHFJnCdAQrIWLYEh8RXAMQ2UnAXjjLZPSreCX7j+MS8yrmh cBYvSN1n8qlObYZumZsX2cmf0CnUpvfNrEQvnM/1qWDYtsZ5emY= -----END CERTIFICATE-----Generated at Wed Feb 19 21:59:12 2025 by rpki-client