$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tEEtR6DbLFDDxqoPv6i2sq9m-KE.roa File: tEEtR6DbLFDDxqoPv6i2sq9m-KE.roa (raw, json) Hash identifier: wrD+3UASWgYp7Y7cqiH4elEwdJ2/yht9z2sPYFDDnvs= Subject key identifier: B4:41:2D:47:A0:DB:2C:50:C3:C6:AA:0F:BF:A8:B6:B2:AF:66:F8:A1 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3680 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tEEtR6DbLFDDxqoPv6i2sq9m-KE.roa Signing time: Mon 10 Feb 2025 13:54:22 +0000 ROA not before: Mon 10 Feb 2025 13:54:22 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 180.177.236.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13952 (0x3680) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:54:22 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B4412D47A0DB2C50C3C6AA0FBFA8B6B2AF66F8A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:5c:84:d9:ba:7e:7a:1f:69:94:49:0f:49:68: 2e:94:94:05:75:6c:c0:cc:52:64:6a:e0:db:b2:12: f4:c8:47:6a:41:6c:93:f3:59:60:c0:ad:f5:83:1c: b1:e2:03:64:43:84:d6:fc:31:c1:2b:49:2b:99:df: 6c:62:f4:32:0e:de:76:30:6b:a5:4d:25:ac:1a:15: 1e:d5:6e:c3:fa:93:33:16:8b:8b:55:ee:be:b0:ef: e7:87:27:a3:0d:a5:d4:c6:68:7b:14:53:35:74:c2: bd:63:5d:cf:00:30:ba:fc:e8:e2:ca:32:4f:64:9f: e7:52:9e:9d:e1:37:c2:be:2a:67:95:af:0a:e6:96: 6f:7a:40:ee:1a:07:2f:8e:fd:05:54:9a:80:d4:ad: 6e:1d:4a:fe:9e:5e:b5:f4:2d:87:92:9e:72:ef:04: ae:6c:76:5c:47:5a:d9:b1:5a:14:ef:7c:2e:55:22: 85:c1:3f:65:e0:7d:d2:22:a7:a2:71:19:97:69:0c: 72:2f:3f:dc:a2:f3:6d:8a:1f:06:26:8b:7a:c8:79: 31:65:35:fb:45:c3:a5:33:fb:13:e7:37:88:1d:86: 65:7c:fa:0e:b2:8f:aa:80:08:41:02:68:25:c6:7f: 36:a5:3c:fe:0c:aa:80:1e:fd:1b:50:14:4c:4e:1d: 87:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:41:2D:47:A0:DB:2C:50:C3:C6:AA:0F:BF:A8:B6:B2:AF:66:F8:A1 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tEEtR6DbLFDDxqoPv6i2sq9m-KE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.177.236.0/23 Signature Algorithm: sha256WithRSAEncryption 53:65:4a:af:56:1d:e1:bd:1d:a4:39:53:80:2b:25:e4:a3:39: 26:5f:51:3c:a8:fe:86:05:0f:bc:2f:24:87:2f:ab:2d:0a:5e: 69:7e:48:76:46:5d:ed:9c:24:fe:9c:46:50:7e:47:4d:74:ed: f3:83:c5:2d:a6:eb:d4:32:21:4c:81:2d:be:b3:10:88:d1:61: 72:2b:b7:36:f9:c9:f7:a3:ac:7e:d4:e4:80:6e:46:96:ab:2c: 78:39:0c:e7:de:70:8f:81:48:d2:e0:2e:fd:75:3a:a8:29:24: 74:3b:8a:11:4b:8d:10:08:0f:e7:d3:51:cd:65:fd:32:6b:c7: 4c:5a:00:e1:74:c1:47:3a:85:0e:28:e2:c6:4e:f9:ff:bc:d3: 9c:c7:83:32:69:34:a8:82:eb:9c:b4:18:26:22:f7:6c:b6:46: 86:5b:dc:70:52:c7:1b:36:36:31:ef:ef:84:fc:91:1e:c4:09: b7:0b:f6:2c:35:23:e2:78:1b:af:35:f9:1c:0f:0e:6c:59:48: a3:b4:2b:d4:46:32:2c:9e:75:a9:24:90:e1:e9:50:03:10:01: 57:d0:bb:d4:5a:9d:52:a4:a6:c4:03:87:83:62:87:c2:39:7c: ad:fa:ec:02:36:ef:91:3f:a8:f9:8e:66:44:6d:61:b7:37:8a: a4:fb:b8:b6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNoAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzU0MjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI0NDEyRDQ3QTBEQjJD NTBDM0M2QUEwRkJGQThCNkIyQUY2NkY4QTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgXITZun56H2mUSQ9JaC6UlAV1bMDMUmRq4NuyEvTIR2pBbJPz WWDArfWDHLHiA2RDhNb8McErSSuZ32xi9DIO3nYwa6VNJawaFR7VbsP6kzMWi4tV 7r6w7+eHJ6MNpdTGaHsUUzV0wr1jXc8AMLr86OLKMk9kn+dSnp3hN8K+KmeVrwrm lm96QO4aBy+O/QVUmoDUrW4dSv6eXrX0LYeSnnLvBK5sdlxHWtmxWhTvfC5VIoXB P2XgfdIip6JxGZdpDHIvP9yi822KHwYmi3rIeTFlNftFw6Uz+xPnN4gdhmV8+g6y j6qACEECaCXGfzalPP4MqoAe/RtQFExOHYerAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUtEEtR6DbLFDDxqoPv6i2sq9m+KEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3RFRXRSNkRiTEZERHhxb1B2 Nmkyc3E5bS1LRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAG0 sewwDQYJKoZIhvcNAQELBQADggEBAFNlSq9WHeG9HaQ5U4ArJeSjOSZfUTyo/oYF D7wvJIcvqy0KXml+SHZGXe2cJP6cRlB+R0107fODxS2m69QyIUyBLb6zEIjRYXIr tzb5yfejrH7U5IBuRparLHg5DOfecI+BSNLgLv11OqgpJHQ7ihFLjRAID+fTUc1l /TJrx0xaAOF0wUc6hQ4o4sZO+f+805zHgzJpNKiC65y0GCYi92y2RoZb3HBSxxs2 NjHv74T8kR7ECbcL9iw1I+J4G681+RwPDmxZSKO0K9RGMiyedakkkOHpUAMQAVfQ u9RanVKkpsQDh4Nih8I5fK367AI275E/qPmOZkRtYbc3iqT7uLY= -----END CERTIFICATE-----Generated at Wed Feb 19 21:58:20 2025 by rpki-client