$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DCTV/JTykfPt_rDSKdCO9jZyFVxhAEWw.roa File: JTykfPt_rDSKdCO9jZyFVxhAEWw.roa (raw, json) Hash identifier: YHOTjrDpnnO7dsAfWJ49Gdbqj1hyGRkNN2TYcPqjWIw= Subject key identifier: 25:3C:A4:7C:FB:7F:AC:34:8A:74:23:BD:8D:9C:85:57:18:40:11:6C Certificate issuer: /CN=A6FE5D1C93127E4AAEFF100F3A5C330F2DD1ABC0 Certificate serial: 0C83 Authority key identifier: A6:FE:5D:1C:93:12:7E:4A:AE:FF:10:0F:3A:5C:33:0F:2D:D1:AB:C0 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pv5dHJMSfkqu_xAPOlwzDy3Rq8A.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DCTV/JTykfPt_rDSKdCO9jZyFVxhAEWw.roa Signing time: Mon 10 Feb 2025 14:11:55 +0000 ROA not before: Mon 10 Feb 2025 14:11:55 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131607 IP address blocks: 27.0.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DCTV/pv5dHJMSfkqu_xAPOlwzDy3Rq8A.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DCTV/pv5dHJMSfkqu_xAPOlwzDy3Rq8A.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/pv5dHJMSfkqu_xAPOlwzDy3Rq8A.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 02:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3203 (0xc83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A6FE5D1C93127E4AAEFF100F3A5C330F2DD1ABC0 Validity Not Before: Feb 10 14:11:55 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=253CA47CFB7FAC348A7423BD8D9C85571840116C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b7:d1:cd:83:2d:5a:5f:b9:76:5b:c1:d2:d3: 18:43:83:7c:2c:ca:5c:80:db:5a:89:cd:d7:71:70: be:78:b3:c5:f5:37:6d:68:31:a2:13:24:4b:64:3a: 09:e9:6f:c6:48:0c:9d:dc:14:e4:ee:cc:b8:31:b5: 5d:7b:c7:96:3a:c5:61:5b:a8:b5:4f:1f:02:44:24: a8:60:a7:35:74:0f:ea:79:02:6f:72:f8:eb:76:57: a8:3b:2c:52:2b:ba:f4:18:82:83:7b:bd:b7:4a:11: 1a:fc:2b:f4:9e:e2:eb:66:34:7d:6e:08:f2:ad:0f: 43:9f:8e:5e:c1:dc:be:6c:3e:35:b2:f2:8f:7a:d0: 70:43:dd:25:25:ec:0a:11:cf:dd:3e:76:93:e1:b2: 8f:0e:ff:fe:77:fa:16:a5:4e:63:fc:f3:d9:3c:f4: 4b:03:2a:6a:5e:a2:fa:7a:81:fd:aa:83:5b:db:84: 99:1a:7d:e5:36:69:60:01:3b:75:84:a5:f5:88:85: 6b:ef:6a:b4:e4:ca:28:97:52:d9:ff:6f:87:b8:b2: 1c:41:5b:37:24:9b:88:57:1f:08:ec:9e:6e:eb:21: 2d:a2:d7:3e:67:1b:47:e0:96:10:bb:03:1c:0b:e7: 29:4e:8e:6b:30:5f:9e:24:8b:77:f0:09:6b:6e:df: f8:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:3C:A4:7C:FB:7F:AC:34:8A:74:23:BD:8D:9C:85:57:18:40:11:6C X509v3 Authority Key Identifier: keyid:A6:FE:5D:1C:93:12:7E:4A:AE:FF:10:0F:3A:5C:33:0F:2D:D1:AB:C0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCTV/pv5dHJMSfkqu_xAPOlwzDy3Rq8A.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pv5dHJMSfkqu_xAPOlwzDy3Rq8A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCTV/JTykfPt_rDSKdCO9jZyFVxhAEWw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 27.0.152.0/22 Signature Algorithm: sha256WithRSAEncryption 03:5a:c7:be:03:5b:39:d3:68:2b:11:36:e6:9a:13:92:19:f8: b2:68:b9:6a:23:03:d5:62:a7:48:c4:1b:a3:a4:29:03:c1:26: ba:6c:32:4d:ad:c5:60:04:d0:4b:75:a0:88:dd:d9:86:61:40: 39:88:70:11:bb:69:fd:68:38:ef:ce:62:fa:f7:9e:cc:fa:7c: e8:12:23:21:b6:86:1c:06:ad:fb:f3:ab:9f:0a:61:2a:6f:08: 96:1c:a4:8a:46:17:49:b1:0b:04:26:13:5d:81:fe:18:51:ae: 7a:98:03:cc:2c:09:8d:32:c6:f0:b8:46:9b:e2:57:15:1c:38: 3d:e2:30:ca:ed:39:69:cf:26:89:76:88:64:38:90:00:f0:a1: 38:62:e1:b2:55:f8:45:43:97:84:f3:75:a5:e6:1b:30:26:38: de:83:69:97:c1:65:72:7d:f1:26:e0:af:93:b7:2b:3d:83:e9: 9b:4e:28:81:de:d6:4c:02:ea:ac:4b:0d:47:d5:19:17:41:80: 9d:d7:fd:c3:46:d9:57:7d:6a:09:78:f1:a9:71:2d:ab:13:54: 56:c6:fe:f8:c5:6f:6d:18:d0:28:3f:28:fb:84:24:06:5c:6e: 71:fe:c6:17:ed:f4:90:7d:ed:c8:d2:05:66:a3:51:d9:e8:c5: ea:77:34:22 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDIMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTZG RTVEMUM5MzEyN0U0QUFFRkYxMDBGM0E1QzMzMEYyREQxQUJDMDAeFw0yNTAyMTAx NDExNTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI1M0NBNDdDRkI3RkFD MzQ4QTc0MjNCRDhEOUM4NTU3MTg0MDExNkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDt9HNgy1aX7l2W8HS0xhDg3wsylyA21qJzddxcL54s8X1N21o MaITJEtkOgnpb8ZIDJ3cFOTuzLgxtV17x5Y6xWFbqLVPHwJEJKhgpzV0D+p5Am9y +Ot2V6g7LFIruvQYgoN7vbdKERr8K/Se4utmNH1uCPKtD0Ofjl7B3L5sPjWy8o96 0HBD3SUl7AoRz90+dpPhso8O//53+halTmP889k89EsDKmpeovp6gf2qg1vbhJka feU2aWABO3WEpfWIhWvvarTkyiiXUtn/b4e4shxBWzckm4hXHwjsnm7rIS2i1z5n G0fglhC7AxwL5ylOjmswX54ki3fwCWtu3/htAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUJTykfPt/rDSKdCO9jZyFVxhAEWwwHwYDVR0jBBgwFoAUpv5dHJMSfkqu/xAP OlwzDy3Rq8AwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRENUVi9w djVkSEpNU2ZrcXVfeEFQT2x3ekR5M1JxOEEuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3B2NWRISk1TZmtxdV94QVBPbHd6RHkzUnE4QS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0RDVFYvSlR5a2ZQdF9yRFNLZENPOWpaeUZW eGhBRVd3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAhsAmDAN BgkqhkiG9w0BAQsFAAOCAQEAA1rHvgNbOdNoKxE25poTkhn4smi5aiMD1WKnSMQb o6QpA8EmumwyTa3FYATQS3WgiN3ZhmFAOYhwEbtp/Wg4785i+veezPp86BIjIbaG HAat+/OrnwphKm8IlhykikYXSbELBCYTXYH+GFGuepgDzCwJjTLG8LhGm+JXFRw4 PeIwyu05ac8miXaIZDiQAPChOGLhslX4RUOXhPN1peYbMCY43oNpl8Flcn3xJuCv k7crPYPpm04ogd7WTALqrEsNR9UZF0GAndf9w0bZV31qCXjxqXEtqxNUVsb++MVv bRjQKD8o+4QkBlxucf7GF+30kH3tyNIFZqNR2ejF6nc0Ig== -----END CERTIFICATE-----Generated at Sun Apr 6 01:57:00 2025 by rpki-client