$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wWOAgxVug4p-SDl6LivwEIbo1Xk.roa File: wWOAgxVug4p-SDl6LivwEIbo1Xk.roa (raw, json) Hash identifier: zT7AF+7ObcsCYpZuNWbKdq0sZyMTIUZt407TE0DwcSU= Subject key identifier: C1:63:80:83:15:6E:83:8A:7E:48:39:7A:2E:2B:F0:10:86:E8:D5:79 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3511 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wWOAgxVug4p-SDl6LivwEIbo1Xk.roa Signing time: Mon 10 Feb 2025 13:52:58 +0000 ROA not before: Mon 10 Feb 2025 13:52:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.233.52.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13585 (0x3511) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:52:58 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C1638083156E838A7E48397A2E2BF01086E8D579 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:67:42:53:1b:70:d2:f8:bc:c3:b2:73:66:58: 74:b0:63:fb:cb:4c:b6:84:81:f3:c0:0a:a0:16:20: a8:78:bb:57:00:da:2a:4d:c7:73:85:23:11:ba:7b: 10:f6:53:75:ae:4e:9a:b9:42:5a:6e:11:ef:e2:af: eb:50:1f:ac:89:fa:c8:2d:3d:43:5e:b7:d5:2b:a3: c2:d6:bf:28:74:f9:69:11:b0:d1:77:5c:d0:f2:39: c4:08:53:34:53:e9:df:46:dd:4d:eb:ee:a5:0d:9c: b6:c5:8d:ea:53:59:e9:f3:a5:f1:7e:12:d9:a4:4a: 02:fa:63:f1:b4:2f:64:cf:1d:84:f7:6b:6c:da:7b: 56:21:92:3d:91:1b:42:6c:e3:44:c2:28:ff:1b:7d: ce:8f:fd:9c:0d:46:0b:58:34:f7:28:35:47:54:38: aa:70:32:ad:e8:4d:b1:87:33:c3:4d:8d:b2:9a:77: fb:57:72:29:63:eb:a8:f4:01:10:0f:5f:bf:b0:f2: 4b:b4:6c:fa:d6:16:b9:a1:5f:b7:32:1f:24:b3:d1: 15:f6:84:da:93:a2:4c:9e:b2:c5:1d:d8:cf:e0:a8: 53:bf:68:86:91:3f:af:40:dd:1f:18:63:cf:74:60: 41:12:79:a0:2a:81:62:8f:2e:68:de:23:e5:bc:a4: 0a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:63:80:83:15:6E:83:8A:7E:48:39:7A:2E:2B:F0:10:86:E8:D5:79 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wWOAgxVug4p-SDl6LivwEIbo1Xk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.52.0/22 Signature Algorithm: sha256WithRSAEncryption 6a:86:e1:fc:62:9b:4e:51:55:3a:12:8c:1f:81:21:76:7d:5b: 7c:fc:39:17:e5:71:a4:f8:76:9e:27:c3:ee:57:bf:b1:57:85: 78:60:ab:69:17:75:58:a5:4d:42:91:e0:1d:af:c4:46:76:4c: b7:ac:13:d9:90:ff:47:30:73:0a:8d:ef:74:3d:40:25:e5:09: 2c:f7:67:f5:50:7a:c1:c2:bb:dc:af:c2:ba:cc:bc:15:76:12: d6:0a:6e:4f:9f:d5:54:dd:ea:98:24:94:bc:3a:7f:61:60:9e: 5c:29:c6:29:97:64:11:1a:a5:93:d2:f5:53:56:9b:cb:99:ef: 47:60:a6:98:d6:ec:c7:a1:fd:a9:0a:4d:0c:25:27:2a:c2:7c: d9:3e:a5:77:1d:59:38:f4:c4:d8:a8:24:6f:4d:ea:22:76:a6: 96:2f:bc:54:e0:07:7e:7e:6d:f9:3f:4c:0c:6e:01:dd:6c:91: da:69:b0:17:0d:c4:a2:d6:b6:4a:47:66:25:2f:88:8e:4c:8f: 2f:42:12:cb:75:15:29:5f:bc:c7:53:55:d6:7d:06:fd:ee:aa: 80:f3:7f:1e:fa:57:52:ba:4d:4a:ef:27:ec:c2:2f:2b:20:70: dd:e3:e7:32:54:ca:64:df:ec:22:6d:82:61:13:67:cb:6f:16: bf:5c:77:b6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNREwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUyNThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMxNjM4MDgzMTU2RTgz OEE3RTQ4Mzk3QTJFMkJGMDEwODZFOEQ1NzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyZ0JTG3DS+LzDsnNmWHSwY/vLTLaEgfPACqAWIKh4u1cA2ipN x3OFIxG6exD2U3WuTpq5QlpuEe/ir+tQH6yJ+sgtPUNet9Uro8LWvyh0+WkRsNF3 XNDyOcQIUzRT6d9G3U3r7qUNnLbFjepTWenzpfF+EtmkSgL6Y/G0L2TPHYT3a2za e1Yhkj2RG0Js40TCKP8bfc6P/ZwNRgtYNPcoNUdUOKpwMq3oTbGHM8NNjbKad/tX cilj66j0ARAPX7+w8ku0bPrWFrmhX7cyHySz0RX2hNqTokyessUd2M/gqFO/aIaR P69A3R8YY890YEESeaAqgWKPLmjeI+W8pAoVAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUwWOAgxVug4p+SDl6LivwEIbo1XkwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3dXT0FneFZ1ZzRwLVNEbDZM aXZ3RUlibzFYay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6TQwDQYJKoZIhvcNAQELBQADggEBAGqG4fxim05RVToSjB+BIXZ9W3z8ORflcaT4 dp4nw+5Xv7FXhXhgq2kXdVilTUKR4B2vxEZ2TLesE9mQ/0cwcwqN73Q9QCXlCSz3 Z/VQesHCu9yvwrrMvBV2EtYKbk+f1VTd6pgklLw6f2FgnlwpximXZBEapZPS9VNW m8uZ70dgppjW7Meh/akKTQwlJyrCfNk+pXcdWTj0xNioJG9N6iJ2ppYvvFTgB35+ bfk/TAxuAd1skdppsBcNxKLWtkpHZiUviI5Mjy9CEst1FSlfvMdTVdZ9Bv3uqoDz fx76V1K6TUrvJ+zCLysgcN3j5zJUymTf7CJtgmETZ8tvFr9cd7Y= -----END CERTIFICATE-----Generated at Wed Feb 19 22:07:41 2025 by rpki-client