$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wdvHjafSktBYUzmG9kOsrERnHGM.roa File: wdvHjafSktBYUzmG9kOsrERnHGM.roa (raw, json) Hash identifier: n7FRKE9fBoHQ4q57p0xbQFDlxzXDwRrT9RHRA5MY8xQ= Subject key identifier: C1:DB:C7:8D:A7:D2:92:D0:58:53:39:86:F6:43:AC:AC:44:67:1C:63 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3467 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wdvHjafSktBYUzmG9kOsrERnHGM.roa Signing time: Mon 10 Feb 2025 13:52:21 +0000 ROA not before: Mon 10 Feb 2025 13:52:21 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 118.232.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13415 (0x3467) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Feb 10 13:52:21 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C1DBC78DA7D292D058533986F643ACAC44671C63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:33:66:40:88:e7:47:e3:7c:2b:29:77:5e:64: e7:6e:3c:c6:16:16:01:1e:5e:9d:a5:74:ff:a0:d7: ae:5e:b6:8e:60:50:0e:39:e2:17:a5:75:30:8e:5d: fa:69:84:f5:cc:c3:c4:89:32:e5:32:14:98:ca:ff: e2:33:8b:bf:06:b6:a1:42:98:8b:aa:00:1c:9b:ac: c1:8e:51:97:42:38:56:7f:0b:d3:31:6a:13:75:1f: a8:ab:41:85:44:0e:cd:9d:39:ce:b4:ac:07:0c:c1: 57:64:d2:b3:aa:46:2b:8a:5d:dd:cf:9e:a5:07:b2: ba:d7:1f:aa:e4:16:3c:74:31:df:83:9e:9b:40:00: d2:af:91:0e:67:3e:ad:86:06:17:85:6b:ed:6e:1b: 55:e6:74:e8:d8:c4:df:bb:5d:bf:0a:34:37:c2:c1: ad:be:9c:3f:d0:e3:ad:3b:a5:54:fe:27:7f:fc:6d: 25:d9:11:f7:8f:3d:97:72:ee:14:6c:fb:50:db:86: 2a:f5:39:41:80:33:5f:07:eb:a3:22:54:05:23:64: 86:09:09:86:db:54:0d:26:af:ea:99:5a:33:56:8b: a7:c3:c5:50:44:bd:49:ce:94:0b:63:3a:ff:e6:88: ef:b3:13:d4:23:a4:8c:75:ce:56:18:3b:5e:d7:3b: 3b:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:DB:C7:8D:A7:D2:92:D0:58:53:39:86:F6:43:AC:AC:44:67:1C:63 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wdvHjafSktBYUzmG9kOsrERnHGM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.128.0/18 Signature Algorithm: sha256WithRSAEncryption 90:29:d5:81:dd:e6:ad:40:a1:02:5c:bc:fc:12:64:3a:d4:c4: e1:fc:95:71:c0:8e:e3:0a:4d:21:c4:e0:b2:4e:1c:67:cd:e0: 48:27:0b:6b:53:cc:36:32:45:88:dd:02:89:60:bb:d5:68:fa: e5:f6:7e:90:c7:b4:d5:8e:f3:1e:94:34:80:e2:f2:cc:68:a9: d0:84:8c:65:28:e9:bc:db:e9:53:33:3a:b0:da:59:65:e6:d4: 3b:44:75:ed:3c:b1:0e:d0:46:78:93:ca:d1:a8:9a:cf:dd:fe: a0:86:9f:83:02:56:99:88:ad:a5:ad:d1:69:2b:73:12:f2:f3: 57:68:b6:4b:0b:cd:19:35:0b:93:70:57:c0:dd:a2:92:ce:1a: 8f:89:ce:e5:77:22:fa:33:c6:78:fe:16:ae:fe:85:1a:9e:6a: d8:c6:31:0c:31:27:ec:5e:dd:d0:50:77:03:8b:b5:f3:ff:e3: 7e:76:7c:95:44:4a:47:f1:80:c7:93:83:17:77:74:e5:74:39: 0f:b3:b4:10:f0:ab:a4:d0:5e:1c:fc:9f:e1:54:45:fd:39:46: 46:ca:2b:db:6e:c7:57:87:ab:d6:8c:fb:84:77:bd:24:bd:3c: 52:29:a9:cf:82:b0:ad:b6:4a:51:8d:2b:8e:6d:83:3b:61:c5: 2b:1c:70:bd -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICNGcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx MzUyMjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMxREJDNzhEQTdEMjky RDA1ODUzMzk4NkY2NDNBQ0FDNDQ2NzFDNjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfM2ZAiOdH43wrKXdeZOduPMYWFgEeXp2ldP+g165eto5gUA45 4heldTCOXfpphPXMw8SJMuUyFJjK/+Izi78GtqFCmIuqABybrMGOUZdCOFZ/C9Mx ahN1H6irQYVEDs2dOc60rAcMwVdk0rOqRiuKXd3PnqUHsrrXH6rkFjx0Md+DnptA ANKvkQ5nPq2GBheFa+1uG1XmdOjYxN+7Xb8KNDfCwa2+nD/Q4607pVT+J3/8bSXZ EfePPZdy7hRs+1Dbhir1OUGAM18H66MiVAUjZIYJCYbbVA0mr+qZWjNWi6fDxVBE vUnOlAtjOv/miO+zE9QjpIx1zlYYO17XOzuRAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUwdvHjafSktBYUzmG9kOsrERnHGMwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3dkdkhqYWZTa3RCWVV6bUc5 a09zckVSbkhHTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ2 6IAwDQYJKoZIhvcNAQELBQADggEBAJAp1YHd5q1AoQJcvPwSZDrUxOH8lXHAjuMK TSHE4LJOHGfN4EgnC2tTzDYyRYjdAolgu9Vo+uX2fpDHtNWO8x6UNIDi8sxoqdCE jGUo6bzb6VMzOrDaWWXm1DtEde08sQ7QRniTytGoms/d/qCGn4MCVpmIraWt0Wkr cxLy81dotksLzRk1C5NwV8DdopLOGo+JzuV3Ivozxnj+Fq7+hRqeatjGMQwxJ+xe 3dBQdwOLtfP/4352fJVESkfxgMeTgxd3dOV0OQ+ztBDwq6TQXhz8n+FURf05RkbK K9tux1eHq9aM+4R3vSS9PFIpqc+CsK22SlGNK45tgzthxSsccL0= -----END CERTIFICATE-----Generated at Wed Feb 19 22:07:22 2025 by rpki-client