$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/XobqtVJrYdpfnU6qILVQtUpg0RA.roa File: XobqtVJrYdpfnU6qILVQtUpg0RA.roa (raw, json) Hash identifier: 7lX+OPi8xAUl6l2wiEECPg2NhdObnk8qUfMuKt+s2+c= Subject key identifier: 5E:86:EA:B5:52:6B:61:DA:5F:9D:4E:AA:20:B5:50:B5:4A:60:D1:10 Certificate issuer: /CN=058662B8DA05E4029F3FA4D56A5121DD4BD68989 Certificate serial: 0C79 Authority key identifier: 05:86:62:B8:DA:05:E4:02:9F:3F:A4:D5:6A:51:21:DD:4B:D6:89:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BYZiuNoF5AKfP6TValEh3UvWiYk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/XobqtVJrYdpfnU6qILVQtUpg0RA.roa Signing time: Mon 10 Feb 2025 14:24:03 +0000 ROA not before: Mon 10 Feb 2025 14:24:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38254 IP address blocks: 2403:8ec0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/BYZiuNoF5AKfP6TValEh3UvWiYk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/BYZiuNoF5AKfP6TValEh3UvWiYk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/BYZiuNoF5AKfP6TValEh3UvWiYk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:07:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3193 (0xc79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=058662B8DA05E4029F3FA4D56A5121DD4BD68989 Validity Not Before: Feb 10 14:24:03 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5E86EAB5526B61DA5F9D4EAA20B550B54A60D110 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e1:fa:e0:dc:4d:51:64:24:42:6b:23:3b:1f: ff:39:5e:ce:ce:b1:18:7d:a9:47:94:74:53:54:56: 14:6e:5e:6c:b4:de:63:7c:df:46:4f:72:53:ca:ed: 78:d5:3f:8c:36:10:39:59:b0:b6:ec:24:ea:06:35: 74:0f:d1:35:9c:83:03:97:c4:39:3a:ba:64:bd:a8: 28:2b:b4:f9:d1:de:42:7b:4b:24:c4:4f:27:9b:58: 5d:a1:1e:c2:ba:be:6a:c4:2c:62:14:ae:96:f9:47: c7:d7:6c:f4:5b:20:0a:ba:f8:5e:3f:89:24:50:5a: c6:33:30:03:20:8e:91:52:5d:fb:55:69:a4:fe:e8: 00:c0:30:75:fd:b8:fb:e8:2e:0e:bd:cc:5f:24:b2: a8:54:eb:d1:a7:5e:f5:e0:c8:dc:e3:c8:7a:07:ac: 3e:fa:2a:c2:4d:be:95:f1:be:36:96:07:27:89:aa: f9:94:41:e6:a8:18:f5:9c:96:67:b5:cf:d3:8e:7e: 5f:d4:27:28:c4:3e:0e:4b:4d:cb:f3:94:01:59:af: 33:87:6f:86:73:3e:95:d2:11:97:9d:57:53:fc:26: 79:0e:2d:f1:57:a2:4e:d5:e1:d5:0e:a9:eb:a1:13: 3b:a5:ec:80:cd:30:f4:69:75:c0:9c:05:16:4a:aa: 5a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:86:EA:B5:52:6B:61:DA:5F:9D:4E:AA:20:B5:50:B5:4A:60:D1:10 X509v3 Authority Key Identifier: keyid:05:86:62:B8:DA:05:E4:02:9F:3F:A4:D5:6A:51:21:DD:4B:D6:89:89 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/BYZiuNoF5AKfP6TValEh3UvWiYk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BYZiuNoF5AKfP6TValEh3UvWiYk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/XobqtVJrYdpfnU6qILVQtUpg0RA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:8ec0:1::/48 Signature Algorithm: sha256WithRSAEncryption 42:f1:f3:b3:2c:a7:34:0a:40:24:88:87:2c:01:cd:1d:ea:54: bb:61:a3:81:4d:26:ff:44:25:08:b4:60:22:23:53:1a:e8:9f: 0b:16:bf:3b:48:90:a6:da:9e:fb:1a:56:03:77:57:ab:92:04: be:ca:b1:3c:fc:b3:29:41:b3:08:90:50:95:2e:82:9b:76:a1: 3f:36:0e:19:7d:9d:fa:20:be:2d:7f:2c:c3:21:cf:05:03:70: 57:81:9d:83:b9:e5:71:fc:50:d4:3c:7c:c6:d2:28:af:d8:f4: 72:3b:5b:d2:29:22:c3:7c:73:af:8a:22:2c:06:de:c5:aa:f4: a3:29:a7:95:df:b6:59:7e:28:83:2c:ba:1c:50:14:64:5d:13: 1c:f7:20:7b:48:03:9a:66:62:b4:26:80:4f:41:2e:e4:18:d8: 96:20:1e:28:96:8e:39:e9:3f:13:9e:58:77:59:a4:d6:b4:bb: 43:80:9b:ea:2e:fc:cb:ae:d4:30:15:83:a8:f9:0e:97:c3:cb: f1:93:fb:72:fa:4b:4a:48:d6:fd:22:27:19:a1:1a:43:e6:49: 80:e0:b2:be:31:6a:a6:8b:62:61:86:ac:7b:6e:17:13:5a:aa: 25:20:92:be:97:03:82:b0:02:90:4f:d5:f1:ee:c6:4c:fa:30: 11:36:02:57 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICDHkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDU4 NjYyQjhEQTA1RTQwMjlGM0ZBNEQ1NkE1MTIxREQ0QkQ2ODk4OTAeFw0yNTAyMTAx NDI0MDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVFODZFQUI1NTI2QjYx REE1RjlENEVBQTIwQjU1MEI1NEE2MEQxMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJ4frg3E1RZCRCayM7H/85Xs7OsRh9qUeUdFNUVhRuXmy03mN8 30ZPclPK7XjVP4w2EDlZsLbsJOoGNXQP0TWcgwOXxDk6umS9qCgrtPnR3kJ7SyTE TyebWF2hHsK6vmrELGIUrpb5R8fXbPRbIAq6+F4/iSRQWsYzMAMgjpFSXftVaaT+ 6ADAMHX9uPvoLg69zF8ksqhU69GnXvXgyNzjyHoHrD76KsJNvpXxvjaWByeJqvmU QeaoGPWclme1z9OOfl/UJyjEPg5LTcvzlAFZrzOHb4ZzPpXSEZedV1P8JnkOLfFX ok7V4dUOqeuhEzul7IDNMPRpdcCcBRZKqlrxAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUXobqtVJrYdpfnU6qILVQtUpg0RAwHwYDVR0jBBgwFoAUBYZiuNoF5AKfP6TV alEh3UvWiYkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNTTUFV L0JZWml1Tm9GNUFLZlA2VFZhbEVoM1V2V2lZay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQllaaXVOb0Y1QUtmUDZUVmFsRWgzVXZXaVlrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNTTUFVL1hvYnF0VkpyWWRwZm5VNnFJ TFZRdFVwZzBSQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk A47AAAEwDQYJKoZIhvcNAQELBQADggEBAELx87MspzQKQCSIhywBzR3qVLtho4FN Jv9EJQi0YCIjUxronwsWvztIkKbanvsaVgN3V6uSBL7KsTz8sylBswiQUJUugpt2 oT82Dhl9nfogvi1/LMMhzwUDcFeBnYO55XH8UNQ8fMbSKK/Y9HI7W9IpIsN8c6+K IiwG3sWq9KMpp5Xftll+KIMsuhxQFGRdExz3IHtIA5pmYrQmgE9BLuQY2JYgHiiW jjnpPxOeWHdZpNa0u0OAm+ou/Muu1DAVg6j5DpfDy/GT+3L6S0pI1v0iJxmhGkPm SYDgsr4xaqaLYmGGrHtuFxNaqiUgkr6XA4KwApBP1fHuxkz6MBE2Alc= -----END CERTIFICATE-----Generated at Fri Apr 11 13:50:02 2025 by rpki-client