$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ySFnuHR0eczNPD4-wfkAMTOLD5w.roa File: ySFnuHR0eczNPD4-wfkAMTOLD5w.roa (raw, json) Hash identifier: rqEq79rEJdCoEJL5e0L67xpSQzjGzvqv55wWaPmUxNg= Subject key identifier: C9:21:67:B8:74:74:79:CC:CD:3C:3E:3E:C1:F9:00:31:33:8B:0F:9C Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1261 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ySFnuHR0eczNPD4-wfkAMTOLD5w.roa Signing time: Mon 10 Feb 2025 14:14:46 +0000 ROA not before: Mon 10 Feb 2025 14:14:46 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131627 IP address blocks: 150.116.104.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 17:36:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4705 (0x1261) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Feb 10 14:14:46 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C92167B8747479CCCD3C3E3EC1F90031338B0F9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e6:70:89:2a:dc:a1:ec:e9:24:4b:ee:83:60: ac:32:56:72:38:2c:cf:db:b9:df:6e:c8:dd:a5:21: 80:8d:68:76:24:18:8d:1d:f8:75:15:8e:47:7c:d4: 6b:f1:d9:05:7c:1b:19:bf:54:4f:28:c1:2b:82:19: f5:b4:00:6d:b8:17:98:6d:fd:38:e8:dd:30:ab:74: 75:bf:43:4c:b3:8f:41:a1:f4:fa:ae:19:b0:17:69: 02:0a:b1:c8:3c:17:1e:7c:e5:79:3d:2a:54:11:f1: 0c:a1:50:37:99:a3:18:e3:8f:71:99:bb:3d:3f:f0: 2a:a2:b2:62:e2:0d:ce:f9:a8:29:8e:17:0f:88:a8: 7c:bb:c3:db:97:72:4d:00:f0:d1:99:cf:7d:c5:b9: 57:18:aa:16:02:8d:45:59:35:45:71:5e:ff:4f:62: 10:be:6f:1d:48:a2:df:0c:0c:a5:b2:1a:e8:2a:dd: 8a:57:58:f2:7a:7c:26:64:1c:0f:bf:63:73:00:dd: cb:de:58:8f:1a:b0:5d:a5:89:5e:e4:53:e0:76:10: 18:a4:8e:c1:ad:d8:13:c5:f9:88:37:db:cd:d9:6e: a2:36:27:f3:af:37:b9:dc:3f:d2:18:61:7a:e1:df: 6f:5c:6f:53:48:ed:3b:04:5f:24:db:d7:35:3d:11: ed:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:21:67:B8:74:74:79:CC:CD:3C:3E:3E:C1:F9:00:31:33:8B:0F:9C X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ySFnuHR0eczNPD4-wfkAMTOLD5w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.104.0/21 Signature Algorithm: sha256WithRSAEncryption a5:18:db:84:76:60:c2:c5:c1:33:40:8a:9d:7d:6e:1e:34:15: 85:e8:ca:35:0a:d6:c0:49:ec:23:e8:45:49:e1:4b:7b:08:cc: 03:ae:ac:91:90:24:aa:9d:92:15:d5:6b:ba:6f:f4:d2:02:d6: 97:50:ab:2d:95:06:b4:d3:13:68:c4:d7:1a:8b:72:61:d1:b0: 59:79:a5:8d:d1:56:3c:51:1b:eb:cc:79:31:3d:3b:3a:c8:75: a6:31:6f:26:fc:5f:25:68:5e:43:e8:28:ce:ec:fc:a7:a5:06: 33:80:3d:a4:b8:a0:e5:d0:32:45:94:73:42:8b:73:71:8f:21: 3c:e4:42:85:e9:58:6d:37:49:a9:fb:57:ea:1a:94:ab:62:52: 01:30:c2:f2:ad:d6:d4:47:42:66:8e:1c:24:e3:16:61:23:8a: c2:02:87:87:54:00:9a:07:82:3d:ea:66:83:28:0e:a8:82:68: ae:ac:fb:db:b5:82:ab:f7:f1:a3:e9:7f:36:ff:38:08:7f:08: ee:ea:e2:4e:f1:4f:8b:f8:86:8f:5e:9e:0a:13:34:17:1f:47: 88:99:bd:65:05:17:99:a7:4f:c5:d4:8b:b5:68:f3:21:e5:d3: 82:9a:1d:95:a7:67:4d:37:6e:13:26:f0:e9:5d:a5:62:5d:f7: 07:0e:3c:82 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEmEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTAyMTAx NDE0NDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM5MjE2N0I4NzQ3NDc5 Q0NDRDNDM0UzRUMxRjkwMDMxMzM4QjBGOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCk5nCJKtyh7OkkS+6DYKwyVnI4LM/bud9uyN2lIYCNaHYkGI0d +HUVjkd81Gvx2QV8Gxm/VE8owSuCGfW0AG24F5ht/Tjo3TCrdHW/Q0yzj0Gh9Pqu GbAXaQIKscg8Fx585Xk9KlQR8QyhUDeZoxjjj3GZuz0/8CqismLiDc75qCmOFw+I qHy7w9uXck0A8NGZz33FuVcYqhYCjUVZNUVxXv9PYhC+bx1Iot8MDKWyGugq3YpX WPJ6fCZkHA+/Y3MA3cveWI8asF2liV7kU+B2EBikjsGt2BPF+Yg3283ZbqI2J/Ov N7ncP9IYYXrh329cb1NI7TsEXyTb1zU9Ee3rAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUySFnuHR0eczNPD4+wfkAMTOLD5wwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy95U0ZudUhSMGVjek5Q RDQtd2ZrQU1UT0xENXcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDlnRoMA0GCSqGSIb3DQEBCwUAA4IBAQClGNuEdmDCxcEzQIqdfW4eNBWF6Mo1 CtbASewj6EVJ4Ut7CMwDrqyRkCSqnZIV1Wu6b/TSAtaXUKstlQa00xNoxNcai3Jh 0bBZeaWN0VY8URvrzHkxPTs6yHWmMW8m/F8laF5D6CjO7PynpQYzgD2kuKDl0DJF lHNCi3NxjyE85EKF6VhtN0mp+1fqGpSrYlIBMMLyrdbUR0Jmjhwk4xZhI4rCAoeH VACaB4I96maDKA6ogmiurPvbtYKr9/Gj6X82/zgIfwju6uJO8U+L+IaPXp4KEzQX H0eImb1lBReZp0/F1Iu1aPMh5dOCmh2Vp2dNN24TJvDpXaViXfcHDjyC -----END CERTIFICATE-----Generated at Sat Apr 5 16:29:53 2025 by rpki-client