$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/sAlcB21E51B7GMYzuT-uSQNJio4.roa File: sAlcB21E51B7GMYzuT-uSQNJio4.roa (raw, json) Hash identifier: rmMBwSrtdp3tVSXll/1gbvolzk5vht4jX1Gvtx9vcXE= Subject key identifier: B0:09:5C:07:6D:44:E7:50:7B:18:C6:33:B9:3F:AE:49:03:49:8A:8E Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3690 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/sAlcB21E51B7GMYzuT-uSQNJio4.roa Signing time: Mon 10 Feb 2025 13:54:26 +0000 ROA not before: Mon 10 Feb 2025 13:54:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 180.176.0.0/20 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13968 (0x3690) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:54:26 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B0095C076D44E7507B18C633B93FAE4903498A8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:8e:83:71:8c:9b:0e:8c:f4:59:0f:3d:89:74: e9:3b:2e:ad:f0:37:33:90:15:58:42:73:1c:e1:cb: bb:69:93:06:d3:cb:88:61:22:3a:7a:43:97:02:1e: 8a:5a:d9:e6:6e:12:af:64:6e:02:c0:5c:b1:67:e2: 56:1a:63:94:c6:e2:35:85:f0:ba:77:74:03:46:52: f8:1f:e8:67:62:3a:27:97:1d:cd:a5:9e:ae:3a:e3: 30:59:c4:57:d8:d1:ff:fd:48:bc:55:2f:48:4f:1b: f9:b8:90:a9:a0:34:73:5a:bc:18:b2:95:81:6b:7c: 9c:6b:cf:83:3c:ab:01:8c:23:12:03:1a:b2:d8:09: a9:5e:b8:8a:12:ad:4a:61:9a:52:60:dd:23:02:54: be:24:cf:8a:83:61:9c:ba:9f:53:bc:84:8b:a6:68: 03:f9:ee:c7:cb:98:82:cb:64:4f:d5:61:55:b9:ac: 60:be:3c:2c:4f:8f:ef:92:2a:ff:50:1d:08:43:d7: 0b:46:c0:6b:e1:be:99:2c:e5:db:6f:35:e4:d6:62: a9:17:1c:2d:51:4c:50:d9:c4:1d:54:c6:2b:21:28: 69:11:f7:ce:55:f3:fe:5f:7c:7a:ee:f3:50:03:6e: db:b1:55:d1:84:fe:46:56:03:ca:36:18:61:e1:da: 19:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:09:5C:07:6D:44:E7:50:7B:18:C6:33:B9:3F:AE:49:03:49:8A:8E X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/sAlcB21E51B7GMYzuT-uSQNJio4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.176.0.0/20 Signature Algorithm: sha256WithRSAEncryption 36:f3:e7:c9:fa:d1:26:b8:ec:75:39:70:6e:86:30:9e:8d:bc: 53:8d:3f:16:43:72:0b:15:69:34:f1:5f:bb:42:e8:79:8d:be: 64:1c:47:7a:f6:96:77:02:85:af:cd:c4:2d:9e:77:80:09:5f: d2:6c:fd:79:c9:95:9b:ce:2d:0e:69:c7:6f:9a:1b:78:b0:67: aa:ad:02:d9:67:64:3d:1f:ff:64:7a:9c:66:9b:5c:14:c7:72: 87:d9:4d:33:95:2b:ee:9c:ad:d6:5e:3b:41:19:b8:5b:2b:80: 8d:45:7d:f5:0e:ea:66:4e:8c:36:bb:ed:1b:fe:1f:a7:f2:c2: 89:7d:46:e2:21:dc:f9:25:46:c5:73:89:4e:22:0f:4e:3d:22: c0:05:3b:40:45:82:24:47:e3:6e:67:f8:da:0e:ff:0a:8d:f4: 6e:07:55:93:fd:74:38:e7:68:0d:08:de:5e:db:20:35:77:d0: c4:cf:8d:b7:48:13:1b:7e:70:db:6e:40:23:f2:d3:e6:b5:bb: 6e:ce:0b:7c:39:49:26:19:59:4d:db:93:1b:02:0f:18:8b:f0: a9:a1:79:75:9c:2b:a2:81:24:60:31:86:b8:fc:1a:8b:15:ea: a7:8b:9f:3a:2f:3a:9c:7c:3b:aa:df:fe:f9:ae:6d:a4:2a:95: 10:9e:0f:9d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNpAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzU0MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIwMDk1QzA3NkQ0NEU3 NTA3QjE4QzYzM0I5M0ZBRTQ5MDM0OThBOEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwjoNxjJsOjPRZDz2JdOk7Lq3wNzOQFVhCcxzhy7tpkwbTy4hh Ijp6Q5cCHopa2eZuEq9kbgLAXLFn4lYaY5TG4jWF8Lp3dANGUvgf6GdiOieXHc2l nq464zBZxFfY0f/9SLxVL0hPG/m4kKmgNHNavBiylYFrfJxrz4M8qwGMIxIDGrLY CaleuIoSrUphmlJg3SMCVL4kz4qDYZy6n1O8hIumaAP57sfLmILLZE/VYVW5rGC+ PCxPj++SKv9QHQhD1wtGwGvhvpks5dtvNeTWYqkXHC1RTFDZxB1UxishKGkR985V 8/5ffHru81ADbtuxVdGE/kZWA8o2GGHh2hk9AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUsAlcB21E51B7GMYzuT+uSQNJio4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3NBbGNCMjFFNTFCN0dNWXp1 VC11U1FOSmlvNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAS0 sAAwDQYJKoZIhvcNAQELBQADggEBADbz58n60Sa47HU5cG6GMJ6NvFONPxZDcgsV aTTxX7tC6HmNvmQcR3r2lncCha/NxC2ed4AJX9Js/XnJlZvOLQ5px2+aG3iwZ6qt AtlnZD0f/2R6nGabXBTHcofZTTOVK+6crdZeO0EZuFsrgI1FffUO6mZOjDa77Rv+ H6fywol9RuIh3PklRsVziU4iD049IsAFO0BFgiRH425n+NoO/wqN9G4HVZP9dDjn aA0I3l7bIDV30MTPjbdIExt+cNtuQCPy0+a1u27OC3w5SSYZWU3bkxsCDxiL8Kmh eXWcK6KBJGAxhrj8GosV6qeLnzovOpx8O6rf/vmubaQqlRCeD50= -----END CERTIFICATE-----Generated at Wed Feb 19 22:11:34 2025 by rpki-client