$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CPSYS/W4nFdskMpIwOisSbi2Xa7QtyP6U.roa File: W4nFdskMpIwOisSbi2Xa7QtyP6U.roa (raw, json) Hash identifier: 5F7ymQ2Kow+2cyEdbpWWX8JnzMad2Im+Tf4fUDVnaAo= Subject key identifier: 5B:89:C5:76:C9:0C:A4:8C:0E:8A:C4:9B:8B:65:DA:ED:0B:72:3F:A5 Certificate issuer: /CN=1F877983527470E200D5AE06A01588213555FEE6 Certificate serial: 0258 Authority key identifier: 1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/W4nFdskMpIwOisSbi2Xa7QtyP6U.roa Signing time: Mon 10 Feb 2025 14:01:32 +0000 ROA not before: Mon 10 Feb 2025 14:01:32 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 63908 IP address blocks: 2400:b0a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 22:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 600 (0x258) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F877983527470E200D5AE06A01588213555FEE6 Validity Not Before: Feb 10 14:01:32 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5B89C576C90CA48C0E8AC49B8B65DAED0B723FA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:6f:9e:10:0d:b8:29:93:ef:17:68:d2:67:c8: db:f6:37:4c:12:fe:46:10:72:34:ac:db:16:16:41: 8f:67:a5:4f:e4:e4:0c:47:a7:cb:14:49:3f:4a:e9: 81:84:20:5d:7f:99:83:87:88:45:37:08:63:29:2e: 51:f3:01:55:7c:85:8d:2d:8f:2f:71:f0:e1:79:e9: d2:86:0e:df:3c:d0:ec:87:fb:d9:f9:8e:2e:4e:98: dc:5c:47:83:48:56:a8:41:1f:8a:27:c8:f0:5c:76: 34:e7:36:1d:bc:77:89:f3:e4:85:85:85:7b:1f:46: 3c:53:e6:65:ce:78:a7:9f:11:47:65:41:db:cc:b4: db:a9:9f:a1:43:3c:81:65:62:bd:1e:cd:44:62:b7: b6:04:0a:13:31:92:d4:7d:5f:85:fa:f6:ed:4f:b9: b9:e9:39:a2:6f:dd:9a:cb:40:69:4c:8d:43:cc:f3: 9a:22:b3:a3:6b:9b:da:1f:d5:c4:eb:b4:36:ad:bc: ff:49:5e:f5:37:84:bf:9c:dc:6e:07:2e:70:d9:76: f7:bd:63:07:c9:88:41:e2:9f:49:3e:81:c7:89:6e: b6:ec:4d:68:42:77:51:13:f8:1d:ed:7b:2e:99:31: e2:34:54:94:5d:4c:11:51:a1:9b:70:b2:8c:f4:ff: ad:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:89:C5:76:C9:0C:A4:8C:0E:8A:C4:9B:8B:65:DA:ED:0B:72:3F:A5 X509v3 Authority Key Identifier: keyid:1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/W4nFdskMpIwOisSbi2Xa7QtyP6U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:b0a0::/32 Signature Algorithm: sha256WithRSAEncryption 74:fb:72:ab:3f:05:b6:77:5f:69:24:e2:c2:71:af:ca:0a:ab: 9b:3e:06:64:32:3f:ed:20:8f:fa:02:11:0c:1e:ec:7f:b6:1d: 0c:c6:d8:53:30:49:3e:f1:ef:85:6e:7b:ef:ac:dd:59:2a:a3: dd:6d:fb:5b:6a:39:84:39:f1:02:aa:d0:f4:7a:10:ab:7b:c4: 97:f6:7e:13:ec:9a:a7:9c:68:ea:c4:54:a0:07:74:cf:30:9e: b2:09:10:c8:87:e9:18:d5:47:c1:95:c2:60:51:7a:84:34:19: 6c:f1:a4:3e:97:27:e2:d9:2c:8c:b7:20:67:6e:ea:f3:43:dd: 52:33:8d:eb:56:a2:bd:a9:74:10:3c:73:d2:b6:ca:43:d9:94: 1b:d0:83:f7:ab:0b:49:77:0c:be:b1:c3:cd:d0:2d:57:9a:76: 8b:a1:c5:e0:68:19:e9:eb:36:5e:e4:ab:ef:23:70:88:4c:c4: d8:b6:90:10:d9:ce:a5:c6:19:f0:e2:ca:5b:cf:ad:54:10:b6: 29:22:fa:f4:0f:88:ac:80:85:a9:d0:ff:a1:b9:fc:2d:c3:31: 11:97:09:f9:c8:09:c4:6d:4f:6c:15:7e:55:12:ba:21:cd:69: 1a:7d:39:d8:e3:d4:e6:b8:eb:2e:0e:f5:11:79:a7:48:28:9f: 3c:16:9c:a3 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICAlgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUY4 Nzc5ODM1Mjc0NzBFMjAwRDVBRTA2QTAxNTg4MjEzNTU1RkVFNjAeFw0yNTAyMTAx NDAxMzJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVCODlDNTc2QzkwQ0E0 OEMwRThBQzQ5QjhCNjVEQUVEMEI3MjNGQTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQb54QDbgpk+8XaNJnyNv2N0wS/kYQcjSs2xYWQY9npU/k5AxH p8sUST9K6YGEIF1/mYOHiEU3CGMpLlHzAVV8hY0tjy9x8OF56dKGDt880OyH+9n5 ji5OmNxcR4NIVqhBH4onyPBcdjTnNh28d4nz5IWFhXsfRjxT5mXOeKefEUdlQdvM tNupn6FDPIFlYr0ezURit7YEChMxktR9X4X69u1PubnpOaJv3ZrLQGlMjUPM85oi s6Nrm9of1cTrtDatvP9JXvU3hL+c3G4HLnDZdve9YwfJiEHin0k+gceJbrbsTWhC d1ET+B3tey6ZMeI0VJRdTBFRoZtwsoz0/62hAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUW4nFdskMpIwOisSbi2Xa7QtyP6UwHwYDVR0jBBgwFoAUH4d5g1J0cOIA1a4G oBWIITVV/uYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1BTWVMv SDRkNWcxSjBjT0lBMWE0R29CV0lJVFZWX3VZLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9INGQ1ZzFKMGNPSUExYTRHb0JXSUlUVlZfdVkuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DUFNZUy9XNG5GZHNrTXBJd09pc1NiaTJY YTdRdHlQNlUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJACw oDANBgkqhkiG9w0BAQsFAAOCAQEAdPtyqz8FtndfaSTiwnGvygqrmz4GZDI/7SCP +gIRDB7sf7YdDMbYUzBJPvHvhW5776zdWSqj3W37W2o5hDnxAqrQ9HoQq3vEl/Z+ E+yap5xo6sRUoAd0zzCesgkQyIfpGNVHwZXCYFF6hDQZbPGkPpcn4tksjLcgZ27q 80PdUjON61aival0EDxz0rbKQ9mUG9CD96sLSXcMvrHDzdAtV5p2i6HF4GgZ6es2 XuSr7yNwiEzE2LaQENnOpcYZ8OLKW8+tVBC2KSL69A+IrICFqdD/obn8LcMxEZcJ +cgJxG1PbBV+VRK6Ic1pGn052OPU5rjrLg71EXmnSCifPBacow== -----END CERTIFICATE-----Generated at Fri Apr 18 22:04:03 2025 by rpki-client