$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/o9uxqhkDOChoyc-aleG7t7BO2ZU.roa File: o9uxqhkDOChoyc-aleG7t7BO2ZU.roa (raw, json) Hash identifier: gqbX/Xtxr3IkRk85adEbT0WLJvi7rds5zcKF8Bk+30w= Subject key identifier: A3:DB:B1:AA:19:03:38:28:68:C9:CF:9A:95:E1:BB:B7:B0:4E:D9:95 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 346C Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/o9uxqhkDOChoyc-aleG7t7BO2ZU.roa Signing time: Mon 10 Feb 2025 13:52:22 +0000 ROA not before: Mon 10 Feb 2025 13:52:22 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.192.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13420 (0x346c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:52:22 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A3DBB1AA1903382868C9CF9A95E1BBB7B04ED995 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:cb:5d:95:e7:11:b7:8e:33:08:54:a0:36:dc: 62:64:1e:1f:b1:d8:5e:24:30:6a:ad:18:ef:95:a7: bf:3d:91:01:ec:a6:48:aa:20:11:61:bb:2b:69:ef: 01:cd:1e:5c:17:6b:32:dc:11:be:68:47:1d:df:c5: c0:a9:b8:93:b6:fe:1c:89:33:fb:0c:69:60:85:dc: f2:ab:72:24:0a:25:84:fb:19:7a:25:81:98:a4:a5: 8a:c0:9d:2d:3e:5c:42:6d:d0:e6:2b:35:72:18:34: 0c:fe:82:10:1e:1b:42:1c:5c:b5:24:95:dd:de:eb: cd:cc:26:52:8b:6d:b1:f1:0b:92:07:ae:de:67:ee: 06:a3:8c:c2:a1:fb:f1:85:09:e2:35:49:13:65:45: 38:ff:39:ff:63:25:7c:6d:5d:ab:3f:c9:10:d1:b9: b0:ae:aa:2d:e0:bf:02:78:b0:4d:0e:43:08:6e:f0: 63:2b:08:02:37:4e:85:f7:81:58:45:82:24:1d:95: d6:6c:3e:2f:ac:d0:c2:b1:d5:6e:f0:94:9c:ae:b4: 37:6e:d7:37:9a:5e:71:2f:15:c9:d6:77:57:70:b1: 08:7f:ac:b8:72:aa:69:95:84:2e:56:8b:fa:d6:ea: 39:6d:2b:bb:e1:df:72:a5:1a:47:5d:08:0f:35:87: 3e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:DB:B1:AA:19:03:38:28:68:C9:CF:9A:95:E1:BB:B7:B0:4E:D9:95 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/o9uxqhkDOChoyc-aleG7t7BO2ZU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.192.252.0/22 Signature Algorithm: sha256WithRSAEncryption 80:8c:92:63:44:02:4a:6a:09:9a:37:c8:4f:62:6f:ca:33:b7: b4:e6:ac:43:68:4c:e4:ff:28:c3:0e:af:55:67:49:2b:05:c9: 22:8e:cb:ce:e6:37:0e:1f:3b:4a:d0:b2:90:8e:0e:9e:59:1f: f5:f9:7a:1b:ca:e3:9c:f9:c5:6d:73:29:80:df:42:0d:1a:49: 81:bf:e5:c4:07:32:48:84:57:de:ff:d7:4a:55:ea:a2:d5:fe: b8:92:fd:23:25:1d:26:93:ba:65:11:6d:d1:c8:08:1b:d7:7a: bc:51:6f:09:f8:6a:40:45:fe:75:3c:db:b0:3a:e4:a1:5d:0a: ea:94:59:3f:45:d3:80:91:4f:f2:9c:73:d1:f0:42:ca:86:96: 5b:19:ec:3d:d4:5a:3c:7c:35:88:81:b9:13:59:50:13:dc:c5: 90:2f:77:17:a5:6e:28:30:79:1f:32:ee:67:96:5d:ae:5a:38: d1:90:57:9a:84:b8:9c:8f:35:68:25:24:0d:86:92:e4:eb:e0: 00:08:9b:73:0c:4a:bd:91:45:98:83:40:0c:3a:02:d0:40:2d: 92:8d:f9:80:1d:5e:d0:2e:93:f5:6d:a2:df:c0:54:60:c3:ae: fb:5b:4f:f8:1d:d8:28:39:3e:1b:1c:79:c2:e9:9d:23:14:41: f2:91:66:69 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNGwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUyMjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEEzREJCMUFBMTkwMzM4 Mjg2OEM5Q0Y5QTk1RTFCQkI3QjA0RUQ5OTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEy12V5xG3jjMIVKA23GJkHh+x2F4kMGqtGO+Vp789kQHspkiq IBFhuytp7wHNHlwXazLcEb5oRx3fxcCpuJO2/hyJM/sMaWCF3PKrciQKJYT7GXol gZikpYrAnS0+XEJt0OYrNXIYNAz+ghAeG0IcXLUkld3e683MJlKLbbHxC5IHrt5n 7gajjMKh+/GFCeI1SRNlRTj/Of9jJXxtXas/yRDRubCuqi3gvwJ4sE0OQwhu8GMr CAI3ToX3gVhFgiQdldZsPi+s0MKx1W7wlJyutDdu1zeaXnEvFcnWd1dwsQh/rLhy qmmVhC5Wi/rW6jltK7vh33KlGkddCA81hz7BAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUo9uxqhkDOChoyc+aleG7t7BO2ZUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL285dXhxaGtET0Nob3ljLWFs ZUc3dDdCTzJaVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wPwwDQYJKoZIhvcNAQELBQADggEBAICMkmNEAkpqCZo3yE9ib8ozt7TmrENoTOT/ KMMOr1VnSSsFySKOy87mNw4fO0rQspCODp5ZH/X5ehvK45z5xW1zKYDfQg0aSYG/ 5cQHMkiEV97/10pV6qLV/riS/SMlHSaTumURbdHICBvXerxRbwn4akBF/nU827A6 5KFdCuqUWT9F04CRT/Kcc9HwQsqGllsZ7D3UWjx8NYiBuRNZUBPcxZAvdxelbigw eR8y7meWXa5aONGQV5qEuJyPNWglJA2GkuTr4AAIm3MMSr2RRZiDQAw6AtBALZKN +YAdXtAuk/Vtot/AVGDDrvtbT/gd2Cg5PhscecLpnSMUQfKRZmk= -----END CERTIFICATE-----Generated at Wed Feb 19 22:11:11 2025 by rpki-client