$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/5gxJ5F-4-p8sbEzhLHqtipzidWE.roa File: 5gxJ5F-4-p8sbEzhLHqtipzidWE.roa (raw, json) Hash identifier: imnCWsXmdMUCL+QOhP0g5j/IYwWlf/9dVXL4fonkWXI= Subject key identifier: E6:0C:49:E4:5F:B8:FA:9F:2C:6C:4C:E1:2C:7A:AD:8A:9C:E2:75:61 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 129A Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/5gxJ5F-4-p8sbEzhLHqtipzidWE.roa Signing time: Mon 10 Feb 2025 14:15:02 +0000 ROA not before: Mon 10 Feb 2025 14:15:02 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131607 IP address blocks: 150.117.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 02:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4762 (0x129a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Feb 10 14:15:02 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E60C49E45FB8FA9F2C6C4CE12C7AAD8A9CE27561 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:66:3e:a2:47:d2:84:a7:c2:fc:b5:38:fe:5e: bd:fa:d8:5d:97:99:6e:a4:10:a6:69:31:b5:e8:fd: b8:2f:ad:9e:84:4d:3a:f2:ba:95:30:a7:eb:a3:ec: 15:66:1b:0f:a0:66:12:24:b2:ca:fb:65:f8:58:84: 2e:43:a0:16:8a:7e:30:1d:82:cb:44:93:1e:bb:43: b6:c6:20:6c:ae:75:8f:2d:5f:cb:99:e0:b7:60:4d: 62:ba:20:88:a2:09:6e:57:0f:5e:76:36:57:17:ec: 24:2f:dc:fe:a1:03:fb:a4:8b:30:c0:a6:e3:c8:4f: f4:32:69:df:fa:51:52:02:62:19:7a:ec:18:7d:45: 1d:ae:ee:74:7d:53:c9:58:6d:aa:0b:bb:4d:97:27: 92:a3:61:61:36:cd:49:91:1b:97:cb:6f:2e:f3:14: 29:48:15:61:67:d2:74:86:fb:d6:93:6d:0b:92:95: 2a:4c:af:8c:83:6c:18:50:ea:92:52:a9:03:32:22: 81:93:18:89:f1:54:10:a0:d8:5d:b2:6c:7e:f3:2d: 3f:57:8b:e0:4a:2e:d1:6a:7d:d2:41:1b:ea:ea:57: 48:1c:96:5c:80:af:c7:6d:e6:e8:ba:bf:ba:73:dc: bc:26:29:16:b1:24:0b:6f:c8:fc:e6:c2:34:fc:2b: 1d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:0C:49:E4:5F:B8:FA:9F:2C:6C:4C:E1:2C:7A:AD:8A:9C:E2:75:61 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/5gxJ5F-4-p8sbEzhLHqtipzidWE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.117.168.0/21 Signature Algorithm: sha256WithRSAEncryption ad:d6:11:8d:1b:05:80:dd:3c:ca:9f:ab:04:f7:e5:3d:c8:72: 97:88:fd:0f:a5:17:ee:f0:bc:f4:c6:a2:94:22:31:28:93:67: e5:9c:7f:fd:b6:13:6d:94:44:34:8c:5d:1f:75:8f:5f:10:bb: 54:fd:1f:ca:45:8e:23:ff:13:29:11:62:5c:93:04:71:07:d6: 82:83:45:68:b6:38:e5:a7:66:70:b2:cb:25:99:cc:db:e4:36: 59:07:0b:08:da:83:10:7a:6c:84:fc:c5:94:15:fb:e4:f8:89: fd:0d:a0:a7:5e:f5:fe:65:ab:86:eb:94:d8:84:10:17:a1:bb: b9:17:3a:d1:8b:3d:80:fe:be:0f:a1:81:c0:25:e3:71:f2:e3: 1f:f7:12:f0:17:49:bf:d6:ae:82:86:f1:5a:ca:13:d0:94:56: 01:0f:30:64:38:91:b8:27:fc:67:0a:db:03:51:3a:f9:e8:9e: 92:63:45:12:b5:a2:03:37:ab:b4:eb:92:6f:a7:b3:52:29:41: 5e:e7:a6:0c:b0:05:85:8a:5f:01:91:35:6c:73:40:64:83:25: f5:77:80:5c:46:f8:46:81:3b:0c:08:45:3f:7f:62:75:07:02: a7:8d:94:14:39:87:90:21:f5:69:72:95:e5:8e:78:0f:86:7e: 00:d5:5b:df -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEpowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTAyMTAx NDE1MDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU2MEM0OUU0NUZCOEZB OUYyQzZDNENFMTJDN0FBRDhBOUNFMjc1NjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/Zj6iR9KEp8L8tTj+Xr362F2XmW6kEKZpMbXo/bgvrZ6ETTry upUwp+uj7BVmGw+gZhIkssr7ZfhYhC5DoBaKfjAdgstEkx67Q7bGIGyudY8tX8uZ 4LdgTWK6IIiiCW5XD152NlcX7CQv3P6hA/ukizDApuPIT/Qyad/6UVICYhl67Bh9 RR2u7nR9U8lYbaoLu02XJ5KjYWE2zUmRG5fLby7zFClIFWFn0nSG+9aTbQuSlSpM r4yDbBhQ6pJSqQMyIoGTGInxVBCg2F2ybH7zLT9Xi+BKLtFqfdJBG+rqV0gcllyA r8dt5ui6v7pz3LwmKRaxJAtvyPzmwjT8Kx0lAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU5gxJ5F+4+p8sbEzhLHqtipzidWEwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy81Z3hKNUYtNC1wOHNi RXpoTEhxdGlwemlkV0Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDlnWoMA0GCSqGSIb3DQEBCwUAA4IBAQCt1hGNGwWA3TzKn6sE9+U9yHKXiP0P pRfu8Lz0xqKUIjEok2flnH/9thNtlEQ0jF0fdY9fELtU/R/KRY4j/xMpEWJckwRx B9aCg0Votjjlp2Zwssslmczb5DZZBwsI2oMQemyE/MWUFfvk+In9DaCnXvX+ZauG 65TYhBAXobu5FzrRiz2A/r4PoYHAJeNx8uMf9xLwF0m/1q6ChvFayhPQlFYBDzBk OJG4J/xnCtsDUTr56J6SY0UStaIDN6u065Jvp7NSKUFe56YMsAWFil8BkTVsc0Bk gyX1d4BcRvhGgTsMCEU/f2J1BwKnjZQUOYeQIfVpcpXljngPhn4A1Vvf -----END CERTIFICATE-----Generated at Sat Apr 5 23:11:10 2025 by rpki-client