$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/77dHZ6bCxGBTJiLaZC1OrqnRjJY.roa File: 77dHZ6bCxGBTJiLaZC1OrqnRjJY.roa (raw, json) Hash identifier: xxwzetpkKRTES7Edb90sYCXwJ7nR70xpEC8243PYx8M= Subject key identifier: EF:B7:47:67:A6:C2:C4:60:53:26:22:DA:64:2D:4E:AE:A9:D1:8C:96 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1260 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/77dHZ6bCxGBTJiLaZC1OrqnRjJY.roa Signing time: Mon 10 Feb 2025 14:14:46 +0000 ROA not before: Mon 10 Feb 2025 14:14:46 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131627 IP address blocks: 150.116.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 17:36:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4704 (0x1260) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Feb 10 14:14:46 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EFB74767A6C2C460532622DA642D4EAEA9D18C96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:bd:44:7d:7e:14:e1:0f:3d:1c:4e:4d:1b:b2: 0f:9a:42:1e:af:e7:49:32:16:af:89:3f:d7:68:d6: 4d:b3:13:46:d9:a8:4c:3e:f9:40:0f:18:02:c6:f8: c8:96:ac:94:a6:f4:ff:46:84:78:86:24:42:8e:f9: 13:29:9d:6c:36:fb:9e:63:e9:62:f1:1f:c2:14:d1: 33:56:cd:eb:14:b4:23:57:d1:e3:0e:68:10:d3:cb: 27:b3:f8:9f:25:39:d4:b9:a2:42:17:1f:d3:b3:8c: 35:6f:22:54:ae:e9:aa:f4:4c:5f:f6:4b:d2:d5:d4: f6:8e:79:c0:4d:69:a5:29:ac:4c:5c:82:5b:0b:aa: 6d:e4:46:af:07:bd:79:46:ce:3d:07:f0:b7:5d:3e: c6:10:85:29:a8:31:c6:18:93:b6:8f:ef:cd:df:1e: 34:77:21:7c:c9:99:16:2e:74:e4:2f:18:5e:9a:77: 43:2c:31:c2:a5:af:61:f0:31:26:61:ee:b6:64:05: cb:27:f2:de:5f:05:03:1f:5c:17:80:45:10:7c:5b: a6:01:1e:54:f2:f6:f5:5e:cd:5a:5a:3f:9b:26:cd: 24:96:8e:f3:ce:1c:14:7d:84:98:67:ca:0b:a4:bf: 01:04:38:e6:dd:5e:06:51:54:6c:29:27:91:fc:52: dd:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:B7:47:67:A6:C2:C4:60:53:26:22:DA:64:2D:4E:AE:A9:D1:8C:96 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/77dHZ6bCxGBTJiLaZC1OrqnRjJY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.240.0/20 Signature Algorithm: sha256WithRSAEncryption 7b:8f:8f:9a:6e:16:34:6a:b8:74:d4:c4:e4:af:6d:f3:73:74: fa:39:f7:36:77:f3:b5:00:ea:e3:62:9d:5e:4a:49:bf:c1:41: 63:51:7c:bf:ae:88:b0:8e:9b:93:4c:08:55:09:98:6f:dd:0e: fa:91:10:3c:15:8c:d1:c8:5d:bc:46:8e:fa:ba:a2:9b:6a:09: 6b:fe:10:d9:5f:a0:25:eb:21:f6:d8:44:95:a1:ce:44:f4:69: 1d:58:32:c0:be:bc:e3:40:67:83:44:45:a5:32:e7:8a:2f:a3: 34:9c:7f:76:5b:bc:3b:0f:1b:73:ed:79:d4:44:48:7c:2d:9d: a3:e6:58:2c:0b:63:17:35:65:df:54:61:c0:45:c5:75:3c:e8: 37:ad:24:19:0a:6c:cf:da:b2:d4:df:02:1b:ef:fb:92:b7:2c: c0:a2:cc:16:11:cf:19:59:82:fb:78:2a:f9:2b:5e:8d:c7:6d: 0a:56:fd:b3:ed:8e:46:ca:66:b1:b4:02:fc:e8:9d:d9:d5:21: 7f:9f:af:e0:3b:8d:10:b9:7d:53:66:33:b0:97:9a:d2:11:a4: b4:01:a4:22:44:8e:cd:ba:da:bc:06:98:a2:0b:04:6c:ef:f9: 7e:40:ca:8d:08:92:e9:2c:fa:c1:e5:d7:cf:04:1f:81:21:09: b7:1c:7b:6a -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEmAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTAyMTAx NDE0NDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVGQjc0NzY3QTZDMkM0 NjA1MzI2MjJEQTY0MkQ0RUFFQTlEMThDOTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzvUR9fhThDz0cTk0bsg+aQh6v50kyFq+JP9do1k2zE0bZqEw+ +UAPGALG+MiWrJSm9P9GhHiGJEKO+RMpnWw2+55j6WLxH8IU0TNWzesUtCNX0eMO aBDTyyez+J8lOdS5okIXH9OzjDVvIlSu6ar0TF/2S9LV1PaOecBNaaUprExcglsL qm3kRq8HvXlGzj0H8LddPsYQhSmoMcYYk7aP783fHjR3IXzJmRYudOQvGF6ad0Ms McKlr2HwMSZh7rZkBcsn8t5fBQMfXBeARRB8W6YBHlTy9vVezVpaP5smzSSWjvPO HBR9hJhnygukvwEEOObdXgZRVGwpJ5H8Ut2NAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU77dHZ6bCxGBTJiLaZC1OrqnRjJYwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy83N2RIWjZiQ3hHQlRK aUxhWkMxT3JxblJqSlkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQElnTwMA0GCSqGSIb3DQEBCwUAA4IBAQB7j4+abhY0arh01MTkr23zc3T6Ofc2 d/O1AOrjYp1eSkm/wUFjUXy/roiwjpuTTAhVCZhv3Q76kRA8FYzRyF28Ro76uqKb aglr/hDZX6Al6yH22ESVoc5E9GkdWDLAvrzjQGeDREWlMueKL6M0nH92W7w7Dxtz 7XnUREh8LZ2j5lgsC2MXNWXfVGHARcV1POg3rSQZCmzP2rLU3wIb7/uStyzAoswW Ec8ZWYL7eCr5K16Nx20KVv2z7Y5GymaxtAL86J3Z1SF/n6/gO40QuX1TZjOwl5rS EaS0AaQiRI7Nutq8BpiiCwRs7/l+QMqNCJLpLPrB5dfPBB+BIQm3HHtq -----END CERTIFICATE-----Generated at Sat Apr 5 16:36:23 2025 by rpki-client