$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mFJ5iSCKekT0z1ZbSENhPc7yknE.roa File: mFJ5iSCKekT0z1ZbSENhPc7yknE.roa (raw, json) Hash identifier: yYSVs1XA9Z7B3IhoIQyAEEC3EiCYoLIxPv0fFz1HGwA= Subject key identifier: 98:52:79:89:20:8A:7A:44:F4:CF:56:5B:48:43:61:3D:CE:F2:92:71 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3586 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mFJ5iSCKekT0z1ZbSENhPc7yknE.roa Signing time: Mon 10 Feb 2025 13:53:25 +0000 ROA not before: Mon 10 Feb 2025 13:53:25 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.195.36.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13702 (0x3586) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:53:25 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=98527989208A7A44F4CF565B4843613DCEF29271 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:02:86:b7:6b:29:09:2d:bf:80:4f:62:e7:d3: 4e:64:96:50:b4:79:9d:cc:d6:6c:27:db:10:b4:1c: 5f:06:83:8a:11:94:a4:16:60:e4:59:11:53:cf:52: 20:31:9e:70:be:72:63:41:02:5d:c3:c6:6b:6f:d7: 7c:20:61:64:e4:54:b2:95:00:7e:3a:c7:24:35:5b: 00:92:5f:63:d6:a6:9a:24:c1:5b:49:7c:96:ab:7c: a8:80:86:37:a0:35:f4:7e:30:21:12:7d:c4:1d:a8: e6:8e:fb:f4:21:f6:6a:30:d2:6b:60:e8:d0:d5:db: 97:1b:81:30:22:e5:41:40:a2:5f:cd:10:9c:07:b9: 19:66:9b:81:1b:98:72:b4:46:fc:eb:0a:2f:2f:99: 85:c1:a8:3e:a9:cf:b4:3b:24:03:07:61:11:1e:88: e0:66:dc:01:47:fc:7d:15:b4:73:ad:7f:88:85:b4: 79:34:64:37:4a:b2:0c:78:db:9b:db:17:08:46:5a: 9f:0e:99:6b:4c:c0:aa:2f:ad:29:b2:63:6b:5b:c0: 36:1c:49:8d:d8:9c:74:a9:b9:ff:ed:c9:30:5c:ad: 20:56:fe:8d:85:9c:1e:54:4e:d6:d0:37:26:84:fd: 09:c5:c8:0f:91:a8:5e:d6:7c:1d:f8:fe:b5:f0:21: c5:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:52:79:89:20:8A:7A:44:F4:CF:56:5B:48:43:61:3D:CE:F2:92:71 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mFJ5iSCKekT0z1ZbSENhPc7yknE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.36.0/22 Signature Algorithm: sha256WithRSAEncryption 39:81:8e:af:75:6f:ea:80:16:54:ba:1c:6c:ce:89:d9:35:50: 85:de:87:6b:a2:45:f9:41:20:d1:62:73:9c:a7:16:6a:6c:97: 5b:3d:37:8d:1b:27:83:cb:a6:95:6e:1d:71:6a:db:6c:73:b5: 78:e4:9e:e2:28:90:77:94:d2:0d:5a:e2:0f:c7:2f:9d:d1:fb: 55:33:17:85:fb:97:bf:5e:78:2b:50:c4:3d:28:2e:99:e5:72: 43:5d:c8:40:c3:8f:eb:c5:53:c8:f3:5d:73:66:dd:e6:0c:c9: 8f:00:b9:7c:d6:d0:c2:7a:1e:ef:56:60:39:01:43:3a:13:96: 49:04:5c:94:2a:c1:97:f4:42:8a:c9:76:6c:52:87:da:32:cf: 46:02:c3:f9:60:1a:81:8b:3e:23:6d:17:47:50:f8:64:ff:50: 4a:5c:95:13:d9:1b:05:5b:ac:30:53:95:b1:1b:58:95:fc:f0: f0:8d:ee:89:27:18:ca:53:6a:a6:5a:33:01:08:23:b7:03:2c: b4:7b:98:e8:1f:52:33:85:9f:c0:b1:8e:cf:a8:26:9c:dd:8d: b8:a6:d0:e8:6b:b1:7b:0b:35:ed:b7:34:95:ed:84:47:ec:be: 12:67:15:fa:a9:6a:f3:03:0d:ed:b4:ae:3c:e3:2c:74:5c:9c: 7c:4c:64:2e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNYYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUzMjVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk4NTI3OTg5MjA4QTdB NDRGNENGNTY1QjQ4NDM2MTNEQ0VGMjkyNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpAoa3aykJLb+AT2Ln005kllC0eZ3M1mwn2xC0HF8Gg4oRlKQW YORZEVPPUiAxnnC+cmNBAl3Dxmtv13wgYWTkVLKVAH46xyQ1WwCSX2PWppokwVtJ fJarfKiAhjegNfR+MCESfcQdqOaO+/Qh9mow0mtg6NDV25cbgTAi5UFAol/NEJwH uRlmm4EbmHK0RvzrCi8vmYXBqD6pz7Q7JAMHYREeiOBm3AFH/H0VtHOtf4iFtHk0 ZDdKsgx425vbFwhGWp8OmWtMwKovrSmyY2tbwDYcSY3YnHSpuf/tyTBcrSBW/o2F nB5UTtbQNyaE/QnFyA+RqF7WfB34/rXwIcXHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUmFJ5iSCKekT0z1ZbSENhPc7yknEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL21GSjVpU0NLZWtUMHoxWmJT RU5oUGM3eWtuRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wyQwDQYJKoZIhvcNAQELBQADggEBADmBjq91b+qAFlS6HGzOidk1UIXeh2uiRflB INFic5ynFmpsl1s9N40bJ4PLppVuHXFq22xztXjknuIokHeU0g1a4g/HL53R+1Uz F4X7l79eeCtQxD0oLpnlckNdyEDDj+vFU8jzXXNm3eYMyY8AuXzW0MJ6Hu9WYDkB QzoTlkkEXJQqwZf0QorJdmxSh9oyz0YCw/lgGoGLPiNtF0dQ+GT/UEpclRPZGwVb rDBTlbEbWJX88PCN7oknGMpTaqZaMwEII7cDLLR7mOgfUjOFn8Cxjs+oJpzdjbim 0OhrsXsLNe23NJXthEfsvhJnFfqpavMDDe20rjzjLHRcnHxMZC4= -----END CERTIFICATE-----Generated at Wed Feb 19 21:57:32 2025 by rpki-client