$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/uKvdWCa2sX2RKVJMAxAPcj4w1ZU.roa File: uKvdWCa2sX2RKVJMAxAPcj4w1ZU.roa (raw, json) Hash identifier: Qd+KYKtBvNd4Q3s5iNGdf2DeNJ98oTxpOQILoSi88is= Subject key identifier: B8:AB:DD:58:26:B6:B1:7D:91:29:52:4C:03:10:0F:72:3E:30:D5:95 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 362C Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/uKvdWCa2sX2RKVJMAxAPcj4w1ZU.roa Signing time: Mon 10 Feb 2025 13:54:03 +0000 ROA not before: Mon 10 Feb 2025 13:54:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.195.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13868 (0x362c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:54:03 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B8ABDD5826B6B17D9129524C03100F723E30D595 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:be:16:40:bb:bd:93:33:b3:5b:62:f0:44:e0: 08:c3:6a:fc:05:b8:2c:65:e1:2b:97:d4:b7:53:1e: e9:fc:6a:b1:ae:8d:a5:c0:f7:28:bb:43:40:25:8c: 09:bf:82:c6:d3:75:9b:65:0f:d1:cd:cf:92:99:07: 8a:54:dd:f7:d3:c1:49:a5:e2:aa:d3:04:53:e6:a7: e9:e7:6c:ee:1a:f9:57:4d:46:35:60:b6:e3:43:ca: ad:af:7d:01:1d:eb:e5:c0:63:c7:15:b8:dd:fc:b3: ad:5d:e9:8f:3b:7e:bb:b2:28:3e:88:a5:0c:b9:e4: fc:33:50:7d:8d:ce:fc:58:b6:28:25:1f:3b:13:d3: cf:cf:c5:61:e1:92:43:ba:cf:78:86:d0:eb:30:a3: 96:5e:21:e7:5c:d8:03:f6:69:76:6b:10:f1:6a:b4: b6:bb:9a:4e:4f:b0:27:83:4d:99:7d:b7:aa:b6:8b: a0:41:6d:78:67:f2:f9:0a:ca:36:72:03:59:d7:02: fc:f3:95:9e:6e:8b:37:10:a9:69:7b:29:67:d6:d4: ae:89:69:d9:5e:4f:f4:2f:a1:c6:dd:2e:07:11:c6: df:8e:44:c2:26:38:0c:38:a8:59:c3:00:55:43:e7: 37:ba:7d:5d:8f:dc:74:b8:70:5a:3f:f5:63:80:d4: ab:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:AB:DD:58:26:B6:B1:7D:91:29:52:4C:03:10:0F:72:3E:30:D5:95 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/uKvdWCa2sX2RKVJMAxAPcj4w1ZU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.148.0/24 Signature Algorithm: sha256WithRSAEncryption aa:e9:60:86:86:74:2c:a6:a0:32:ae:17:ef:29:b4:01:f8:cb: f9:0c:65:39:e6:bb:07:e1:4b:4b:99:f6:c5:d8:38:8f:ee:e2: 61:ce:dd:eb:c8:16:6b:5a:94:23:c5:8c:f9:5f:54:34:1c:67: 73:02:a0:27:3c:a4:36:09:88:46:ee:9e:71:8c:19:8d:68:d6: 54:43:0a:69:70:3a:fd:f2:6b:3b:7b:fd:e5:4e:ca:40:38:7d: 8a:c8:f6:4b:c3:ca:e4:1f:d3:9d:1e:c3:1f:aa:0e:be:19:bb: 90:64:27:a5:00:49:e1:39:93:34:50:97:a7:81:97:f2:fc:3b: e2:da:24:f2:92:e2:4f:47:45:52:26:cf:22:65:a7:b8:b2:27: f4:e3:f2:44:5d:ac:f3:40:e9:ba:43:e6:d0:45:d7:f9:11:45: 4d:b1:8b:ae:ef:5d:0f:36:53:8d:a4:28:8f:0e:02:af:5c:03: 6b:81:52:01:d5:ba:d7:72:91:8f:87:91:1d:7e:d7:d6:9d:0b: 71:4d:c3:c5:37:b6:04:b2:16:c3:93:4f:af:b5:bf:cc:58:73: 64:06:fc:91:9c:0b:bf:62:24:c3:1a:8d:bf:fc:55:73:a3:30: b2:99:71:e0:78:e1:53:1f:69:33:02:04:13:8c:2b:16:64:39: 63:f3:ae:4d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNiwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzU0MDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI4QUJERDU4MjZCNkIx N0Q5MTI5NTI0QzAzMTAwRjcyM0UzMEQ1OTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpvhZAu72TM7NbYvBE4AjDavwFuCxl4SuX1LdTHun8arGujaXA 9yi7Q0AljAm/gsbTdZtlD9HNz5KZB4pU3ffTwUml4qrTBFPmp+nnbO4a+VdNRjVg tuNDyq2vfQEd6+XAY8cVuN38s61d6Y87fruyKD6IpQy55PwzUH2NzvxYtiglHzsT 08/PxWHhkkO6z3iG0Oswo5ZeIedc2AP2aXZrEPFqtLa7mk5PsCeDTZl9t6q2i6BB bXhn8vkKyjZyA1nXAvzzlZ5uizcQqWl7KWfW1K6JadleT/QvocbdLgcRxt+ORMIm OAw4qFnDAFVD5ze6fV2P3HS4cFo/9WOA1Kt3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUuKvdWCa2sX2RKVJMAxAPcj4w1ZUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3VLdmRXQ2Eyc1gyUktWSk1B eEFQY2o0dzFaVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB7 w5QwDQYJKoZIhvcNAQELBQADggEBAKrpYIaGdCymoDKuF+8ptAH4y/kMZTnmuwfh S0uZ9sXYOI/u4mHO3evIFmtalCPFjPlfVDQcZ3MCoCc8pDYJiEbunnGMGY1o1lRD CmlwOv3yazt7/eVOykA4fYrI9kvDyuQf050ewx+qDr4Zu5BkJ6UASeE5kzRQl6eB l/L8O+LaJPKS4k9HRVImzyJlp7iyJ/Tj8kRdrPNA6bpD5tBF1/kRRU2xi67vXQ82 U42kKI8OAq9cA2uBUgHVutdykY+HkR1+19adC3FNw8U3tgSyFsOTT6+1v8xYc2QG /JGcC79iJMMajb/8VXOjMLKZceB44VMfaTMCBBOMKxZkOWPzrk0= -----END CERTIFICATE-----Generated at Wed Feb 19 21:56:47 2025 by rpki-client