$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mNBHnsNoTQW6_7HGpPg7TprWPA8.roa File: mNBHnsNoTQW6_7HGpPg7TprWPA8.roa (raw, json) Hash identifier: 7lL89FyCb7HwRzQ743pbGAhNE4X9zDZfDqsEPwobJ5I= Subject key identifier: 98:D0:47:9E:C3:68:4D:05:BA:FF:B1:C6:A4:F8:3B:4E:9A:D6:3C:0F Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 35A6 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mNBHnsNoTQW6_7HGpPg7TprWPA8.roa Signing time: Mon 10 Feb 2025 13:53:33 +0000 ROA not before: Mon 10 Feb 2025 13:53:33 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.192.228.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13734 (0x35a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:53:33 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=98D0479EC3684D05BAFFB1C6A4F83B4E9AD63C0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:f5:f6:ab:73:df:03:bf:4e:4c:61:31:e1:87: 00:4c:6c:1b:df:bb:34:98:63:a4:b0:b0:96:6d:c7: 17:bf:bf:a7:85:da:d8:be:9c:2c:79:ce:52:1b:c4: 98:b9:8e:8e:d3:08:27:c8:66:0f:94:4e:ee:ad:63: 04:55:1b:32:3d:e3:59:98:59:d6:65:55:23:26:19: fe:21:0f:20:57:57:3d:3b:86:32:06:16:96:92:ed: aa:85:53:0b:3b:20:93:68:01:59:a1:ba:d2:e9:7e: ed:d5:4b:7c:69:57:03:ee:46:52:70:65:88:54:79: 17:52:e7:30:aa:9f:12:ad:a8:3e:ea:54:57:f1:27: ed:2b:59:99:4b:0a:39:f8:f4:4d:8f:0f:ee:d1:96: 34:12:c4:04:6b:ce:af:49:c4:fa:61:2d:9b:f4:0a: 13:65:a9:59:18:80:ce:d0:2f:92:1e:bf:81:02:20: 11:a1:65:21:22:8a:8f:6c:7f:b4:a3:22:e9:bb:b6: fd:03:c9:63:54:16:a0:91:b6:81:35:88:64:e4:9d: e9:ad:3c:5f:bf:72:07:c5:ed:4e:63:02:6d:02:97: c9:53:55:b2:cb:81:8b:0c:d0:8b:32:66:33:10:84: fb:89:e2:9f:b9:cc:80:dc:23:9b:01:33:af:f0:5c: 34:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:D0:47:9E:C3:68:4D:05:BA:FF:B1:C6:A4:F8:3B:4E:9A:D6:3C:0F X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mNBHnsNoTQW6_7HGpPg7TprWPA8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.192.228.0/22 Signature Algorithm: sha256WithRSAEncryption 18:40:a0:39:7b:63:2a:b0:ab:cd:9f:2a:a8:e9:8d:7e:b2:67: 56:d5:0c:65:c1:e7:35:d3:c1:48:78:0e:dc:51:82:16:23:55: 48:b2:7a:a8:47:ae:f7:c1:22:ed:ac:bb:bc:3f:d3:6f:23:35: 05:3e:d1:d9:9c:ba:c7:9a:56:ad:14:dd:10:fd:9d:9a:55:36: 2e:f7:55:0e:c9:68:0f:d3:0e:65:e8:72:22:2a:6f:b3:37:89: 81:1d:ef:90:67:eb:8e:dd:07:00:2c:f3:82:2b:d2:fc:cd:3d: 1e:63:c9:4a:49:55:ab:72:0c:ca:11:dd:6a:d9:e0:ab:a3:3d: 01:97:31:92:21:04:5e:4c:b4:01:25:a8:b8:97:ca:af:6e:16: 9c:ed:d0:66:5a:55:0f:02:89:86:8b:a2:85:cb:6a:31:e9:8b: 0f:8c:2a:7c:00:5f:86:1e:de:7e:9c:d6:f4:ea:54:3b:3a:70: 3d:8c:0c:b6:6f:a0:13:78:5b:5b:a7:38:94:97:50:33:54:8b: 36:7c:09:f4:41:19:f1:ac:31:ea:f6:d2:9d:23:45:fb:b7:2e: 56:66:4a:02:90:ef:08:64:d2:39:14:9e:2f:77:b6:8d:bb:bf: 57:cd:64:f0:e3:61:59:c1:f1:71:1f:fa:b6:32:8d:cb:84:c7: 05:e9:23:61 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNaYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUzMzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk4RDA0NzlFQzM2ODRE MDVCQUZGQjFDNkE0RjgzQjRFOUFENjNDMEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDh9farc98Dv05MYTHhhwBMbBvfuzSYY6SwsJZtxxe/v6eF2ti+ nCx5zlIbxJi5jo7TCCfIZg+UTu6tYwRVGzI941mYWdZlVSMmGf4hDyBXVz07hjIG FpaS7aqFUws7IJNoAVmhutLpfu3VS3xpVwPuRlJwZYhUeRdS5zCqnxKtqD7qVFfx J+0rWZlLCjn49E2PD+7RljQSxARrzq9JxPphLZv0ChNlqVkYgM7QL5Iev4ECIBGh ZSEiio9sf7SjIum7tv0DyWNUFqCRtoE1iGTknemtPF+/cgfF7U5jAm0Cl8lTVbLL gYsM0IsyZjMQhPuJ4p+5zIDcI5sBM6/wXDSHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUmNBHnsNoTQW6/7HGpPg7TprWPA8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL21OQkhuc05vVFFXNl83SEdw UGc3VHByV1BBOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wOQwDQYJKoZIhvcNAQELBQADggEBABhAoDl7Yyqwq82fKqjpjX6yZ1bVDGXB5zXT wUh4DtxRghYjVUiyeqhHrvfBIu2su7w/028jNQU+0dmcuseaVq0U3RD9nZpVNi73 VQ7JaA/TDmXociIqb7M3iYEd75Bn647dBwAs84Ir0vzNPR5jyUpJVatyDMoR3WrZ 4KujPQGXMZIhBF5MtAElqLiXyq9uFpzt0GZaVQ8CiYaLooXLajHpiw+MKnwAX4Ye 3n6c1vTqVDs6cD2MDLZvoBN4W1unOJSXUDNUizZ8CfRBGfGsMer20p0jRfu3LlZm SgKQ7whk0jkUni93to27v1fNZPDjYVnB8XEf+rYyjcuExwXpI2E= -----END CERTIFICATE-----Generated at Wed Feb 19 21:59:58 2025 by rpki-client