$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZFKzf4vK2WUGRAi0vbwRSillMFg.roa File: ZFKzf4vK2WUGRAi0vbwRSillMFg.roa (raw, json) Hash identifier: bLUMl53lfnbIsXgVrYrjT8aEInokUob3MJ4rNzQIbpw= Subject key identifier: 64:52:B3:7F:8B:CA:D9:65:06:44:08:B4:BD:BC:11:4A:29:65:30:58 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1267 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZFKzf4vK2WUGRAi0vbwRSillMFg.roa Signing time: Mon 10 Feb 2025 14:14:48 +0000 ROA not before: Mon 10 Feb 2025 14:14:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131627 IP address blocks: 150.116.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 17:36:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4711 (0x1267) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Feb 10 14:14:48 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6452B37F8BCAD965064408B4BDBC114A29653058 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7e:96:6a:21:1b:b8:cd:70:64:02:b5:46:bf: 96:70:c3:93:64:5f:95:ea:a1:29:70:9c:10:0d:9d: f3:df:db:bb:6b:a3:37:50:99:3e:72:7c:f9:57:7b: 4c:d2:5c:ec:b3:b0:57:73:a6:11:07:42:f3:c8:a9: c0:f2:10:11:ef:fe:85:84:6e:b4:ee:98:d9:71:08: a5:9e:a5:99:b3:44:15:17:75:be:b4:a2:06:22:fe: f9:a9:93:a3:ed:25:7b:0b:70:88:f5:4d:50:79:3a: 7f:27:0a:f9:0c:f7:54:f5:a7:8e:86:68:dd:88:46: 9d:06:68:4a:ac:18:13:0c:18:f6:62:6b:77:64:95: 6a:06:15:79:a1:bd:77:14:cb:5e:30:a3:1c:f7:a2: c5:58:55:54:a2:1d:3f:ff:f0:ff:45:7a:56:97:0c: c6:7b:7f:24:ee:d5:11:12:01:5d:b6:f2:29:f9:0e: 88:4b:29:06:ec:98:6f:4b:a2:00:03:3c:b4:55:40: b0:8e:0f:1d:b4:e4:ed:6b:3c:da:a1:2e:bc:89:53: 68:1f:ca:3a:a2:59:7b:6a:d6:59:0c:6f:0d:71:45: 6a:d5:b5:95:85:d2:65:55:09:53:d0:f0:ab:b4:45: 75:33:b9:32:39:0c:c1:eb:56:e0:e6:f2:72:b1:b7: 1c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:52:B3:7F:8B:CA:D9:65:06:44:08:B4:BD:BC:11:4A:29:65:30:58 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZFKzf4vK2WUGRAi0vbwRSillMFg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.192.0/19 Signature Algorithm: sha256WithRSAEncryption 7d:35:2d:89:e9:5c:56:40:51:d1:5c:3e:eb:ec:dc:00:83:bd: b5:4a:49:98:ef:2a:26:72:5d:90:8d:dd:ff:7e:4b:5e:c1:16: 5d:cf:1e:9a:fc:0c:10:f2:b1:fa:fc:c1:d8:13:e8:8f:a0:2f: 66:f1:67:af:d0:f0:25:bb:9c:38:bc:8b:21:68:4e:77:ac:a2: a9:7a:12:19:a7:2f:a9:0d:de:ab:f2:4e:9c:ef:08:46:cc:ed: 5a:d8:71:b1:e9:16:87:62:79:53:cb:68:33:37:d5:a6:32:cf: 3c:99:63:9d:91:9c:de:71:92:78:7b:d4:43:be:0a:72:1e:5f: b6:ca:9b:4a:99:49:4e:ef:c0:04:b2:04:a4:e9:18:f5:0c:72: 41:3d:15:52:db:ef:cc:e9:7f:0e:11:b1:74:97:19:4b:d4:6b: a9:f8:34:63:e8:6e:df:a9:d4:2c:e4:30:25:e6:23:55:50:c5: ab:39:28:a2:d9:cf:32:4b:99:f2:3c:98:29:d2:ec:3f:9d:e4: 4b:ea:ea:e1:af:ad:38:97:67:14:e7:0a:21:a9:74:3c:97:b7: 79:e9:e5:5f:9f:38:7b:25:85:3b:50:e2:d9:3d:6b:d3:71:08: de:cd:c7:84:09:cb:d1:4c:41:ce:a5:25:f4:e1:02:53:7e:77: af:85:41:e1 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEmcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTAyMTAx NDE0NDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY0NTJCMzdGOEJDQUQ5 NjUwNjQ0MDhCNEJEQkMxMTRBMjk2NTMwNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1fpZqIRu4zXBkArVGv5Zww5NkX5XqoSlwnBANnfPf27trozdQ mT5yfPlXe0zSXOyzsFdzphEHQvPIqcDyEBHv/oWEbrTumNlxCKWepZmzRBUXdb60 ogYi/vmpk6PtJXsLcIj1TVB5On8nCvkM91T1p46GaN2IRp0GaEqsGBMMGPZia3dk lWoGFXmhvXcUy14woxz3osVYVVSiHT//8P9FelaXDMZ7fyTu1RESAV228in5DohL KQbsmG9LogADPLRVQLCODx205O1rPNqhLryJU2gfyjqiWXtq1lkMbw1xRWrVtZWF 0mVVCVPQ8Ku0RXUzuTI5DMHrVuDm8nKxtxxFAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUZFKzf4vK2WUGRAi0vbwRSillMFgwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9aRkt6ZjR2SzJXVUdS QWkwdmJ3UlNpbGxNRmcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQFlnTAMA0GCSqGSIb3DQEBCwUAA4IBAQB9NS2J6VxWQFHRXD7r7NwAg721SkmY 7yomcl2Qjd3/fktewRZdzx6a/AwQ8rH6/MHYE+iPoC9m8Wev0PAlu5w4vIshaE53 rKKpehIZpy+pDd6r8k6c7whGzO1a2HGx6RaHYnlTy2gzN9WmMs88mWOdkZzecZJ4 e9RDvgpyHl+2yptKmUlO78AEsgSk6Rj1DHJBPRVS2+/M6X8OEbF0lxlL1Gup+DRj 6G7fqdQs5DAl5iNVUMWrOSii2c8yS5nyPJgp0uw/neRL6urhr604l2cU5wohqXQ8 l7d56eVfnzh7JYU7UOLZPWvTcQjezceECcvRTEHOpSX04QJTfnevhUHh -----END CERTIFICATE-----Generated at Sat Apr 5 16:36:22 2025 by rpki-client