$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/s54EakQJkbReTISRsXyPyzeftwk.roa File: s54EakQJkbReTISRsXyPyzeftwk.roa (raw, json) Hash identifier: UNMeQx+5UJt2gcr0Onz0Y8Ej4eN/KbreVWCIfgPpM1A= Subject key identifier: B3:9E:04:6A:44:09:91:B4:5E:4C:84:91:B1:7C:8F:CB:37:9F:B7:09 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3541 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/s54EakQJkbReTISRsXyPyzeftwk.roa Signing time: Mon 10 Feb 2025 13:53:10 +0000 ROA not before: Mon 10 Feb 2025 13:53:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.193.216.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13633 (0x3541) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:53:10 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B39E046A440991B45E4C8491B17C8FCB379FB709 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:24:9e:8a:4c:f9:ac:73:e7:62:01:e9:25:c4: 49:65:19:64:fd:07:ee:d3:16:43:d1:8e:8a:af:1a: ee:c2:b5:68:81:a3:2b:0c:f8:70:42:0b:02:a6:05: 8c:e0:38:91:6a:3e:3e:0b:00:00:55:c1:59:f2:49: 35:9a:c1:41:6c:68:4b:39:be:5d:1d:46:c1:2d:93: 1e:02:e3:8b:bb:2c:6a:86:8e:6c:d1:1b:f9:f6:24: d5:ee:31:13:d6:8a:ed:0a:5e:8b:cb:db:ee:b8:5b: 4a:2a:aa:1e:20:9c:3f:50:10:f2:87:d1:73:a3:44: 4d:6b:90:02:ad:c2:f7:da:a4:db:43:8d:f5:15:8f: 11:1b:bc:da:c2:a7:c4:a2:2e:56:e8:ff:83:2b:22: 68:dc:42:aa:c0:cd:53:bc:2f:4f:c0:1d:00:8b:40: e6:4a:98:bb:63:79:82:cc:78:aa:dd:19:10:ed:84: d0:d7:3f:34:04:1d:bc:c1:46:3d:38:49:d5:bc:cc: 04:e6:20:60:6a:0c:67:67:26:50:42:ca:a5:15:98: 98:58:44:8c:4f:95:e8:1e:70:27:53:0e:cd:85:7f: e1:cb:23:51:aa:db:4d:9f:a1:a3:44:1d:bf:54:40: 32:bc:f6:ff:2f:c7:df:4a:9a:9e:28:dc:ca:cd:58: 7e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:9E:04:6A:44:09:91:B4:5E:4C:84:91:B1:7C:8F:CB:37:9F:B7:09 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/s54EakQJkbReTISRsXyPyzeftwk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.216.0/23 Signature Algorithm: sha256WithRSAEncryption a2:6c:21:b1:8d:57:ed:b9:50:14:4d:22:57:c1:63:9c:c4:69: 04:fa:68:07:7c:cc:7a:8f:95:f5:32:ac:38:f7:56:18:ef:a9: c2:16:02:d2:7b:af:ef:05:9c:d0:25:f7:ba:29:71:e0:5e:e3: 30:4e:99:a4:b2:4c:cf:58:bb:fd:89:29:6b:28:db:ac:96:b2: 15:ba:1c:28:94:fa:09:e9:44:41:17:a7:e6:7d:c3:75:5b:07: 87:5a:c2:b6:62:c3:d7:27:7d:e4:47:4e:12:2c:99:88:92:64: 49:93:30:f1:a1:10:8f:69:2b:b0:73:70:e0:a5:fc:49:86:63: 84:c8:2a:aa:0a:fd:b0:5d:e1:1e:d3:1a:4e:77:d6:f7:fb:bd: 4a:30:dd:85:68:76:9c:8e:20:79:52:81:73:9a:81:2a:7e:25: c3:c7:f2:f7:56:25:52:b9:ec:9d:f4:bc:0c:41:89:d0:52:ff: b9:b5:8e:c9:f3:fe:7d:10:1b:74:b9:fd:c5:37:5a:1f:3c:c1: 23:20:24:98:77:31:21:cd:59:a9:7d:c2:62:d8:4b:fd:8f:e1: 6f:f5:05:34:76:e4:31:1f:74:fc:a9:1e:eb:35:00:7c:a1:72: 90:4f:c8:d7:6e:af:dd:57:6d:f7:84:dd:79:36:bc:ac:fc:ee: eb:96:20:cf -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNUEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUzMTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIzOUUwNDZBNDQwOTkx QjQ1RTRDODQ5MUIxN0M4RkNCMzc5RkI3MDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTJJ6KTPmsc+diAeklxEllGWT9B+7TFkPRjoqvGu7CtWiBoysM +HBCCwKmBYzgOJFqPj4LAABVwVnySTWawUFsaEs5vl0dRsEtkx4C44u7LGqGjmzR G/n2JNXuMRPWiu0KXovL2+64W0oqqh4gnD9QEPKH0XOjRE1rkAKtwvfapNtDjfUV jxEbvNrCp8SiLlbo/4MrImjcQqrAzVO8L0/AHQCLQOZKmLtjeYLMeKrdGRDthNDX PzQEHbzBRj04SdW8zATmIGBqDGdnJlBCyqUVmJhYRIxPlegecCdTDs2Ff+HLI1Gq 202foaNEHb9UQDK89v8vx99Kmp4o3MrNWH51AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUs54EakQJkbReTISRsXyPyzeftwkwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3M1NEVha1FKa2JSZVRJU1Jz WHlQeXplZnR3ay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF7 wdgwDQYJKoZIhvcNAQELBQADggEBAKJsIbGNV+25UBRNIlfBY5zEaQT6aAd8zHqP lfUyrDj3VhjvqcIWAtJ7r+8FnNAl97opceBe4zBOmaSyTM9Yu/2JKWso26yWshW6 HCiU+gnpREEXp+Z9w3VbB4dawrZiw9cnfeRHThIsmYiSZEmTMPGhEI9pK7BzcOCl /EmGY4TIKqoK/bBd4R7TGk531vf7vUow3YVodpyOIHlSgXOagSp+JcPH8vdWJVK5 7J30vAxBidBS/7m1jsnz/n0QG3S5/cU3Wh88wSMgJJh3MSHNWal9wmLYS/2P4W/1 BTR25DEfdPypHus1AHyhcpBPyNdur91XbfeE3Xk2vKz87uuWIM8= -----END CERTIFICATE-----Generated at Wed Feb 19 21:59:03 2025 by rpki-client