$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/Tn-jK4k1zunZYZlLn5bRIwyK4Ws.roa File: Tn-jK4k1zunZYZlLn5bRIwyK4Ws.roa (raw, json) Hash identifier: 4X3fizjeYyzxT04O4oKhXgH2KVwMRjE0VO5XCCx2fSU= Subject key identifier: 4E:7F:A3:2B:89:35:CE:E9:D9:61:99:4B:9F:96:D1:23:0C:8A:E1:6B Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Certificate serial: 0CCE Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/Tn-jK4k1zunZYZlLn5bRIwyK4Ws.roa Signing time: Mon 10 Feb 2025 14:05:58 +0000 ROA not before: Mon 10 Feb 2025 14:05:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17416 IP address blocks: 211.78.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 15:37:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3278 (0xcce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Validity Not Before: Feb 10 14:05:58 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4E7FA32B8935CEE9D961994B9F96D1230C8AE16B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:16:45:6a:24:00:1a:59:56:78:be:1b:8f:7d: f2:a3:9a:ed:b6:59:c8:a2:97:ff:d4:c1:4f:49:43: eb:e3:79:ea:bf:b0:a6:46:f8:73:a8:4f:ea:9e:f1: 0f:bf:1e:3b:48:26:e8:93:45:d9:f6:4d:49:b3:33: 22:47:56:7c:6d:75:62:85:08:46:d8:73:31:1c:23: 81:47:77:c3:6e:27:95:7b:2c:24:88:6b:d3:c4:73: 2b:a3:53:19:d4:03:fd:b9:11:86:a7:be:52:cd:ad: 3d:28:74:d1:a0:d5:78:62:3e:18:47:5d:37:2b:cf: 9b:8f:a1:fb:14:37:9e:ba:76:8e:fc:a4:d3:2a:1b: ef:37:a0:8a:ad:c2:97:34:49:5a:ac:58:ca:76:43: 59:76:65:46:fe:2b:22:ce:6f:d6:52:1e:80:dd:69: 0b:a7:c0:3f:4b:50:85:7d:bf:83:9d:e3:55:58:7e: 89:50:40:d5:00:d8:f9:a6:dc:4d:c3:dc:7c:04:02: 90:34:e4:48:91:6e:25:9e:c7:4b:1b:c1:7d:ab:f8: 35:36:8c:43:49:39:7c:26:26:60:48:92:80:c0:d1: 0d:c4:74:d2:0e:ee:3d:a2:25:3a:fb:87:bb:c7:6f: 41:ff:57:ad:3b:62:d6:60:4c:a1:c1:a4:44:4c:36: e4:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:7F:A3:2B:89:35:CE:E9:D9:61:99:4B:9F:96:D1:23:0C:8A:E1:6B X509v3 Authority Key Identifier: keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/Tn-jK4k1zunZYZlLn5bRIwyK4Ws.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.78.80.0/20 Signature Algorithm: sha256WithRSAEncryption 35:19:51:9a:30:0c:7a:b3:ba:33:3e:8c:1c:be:37:c7:86:37: 67:3b:44:24:68:c3:18:50:f5:9e:d1:5f:2c:28:68:a9:71:ae: 45:b9:80:2c:43:37:0b:b7:af:b0:a9:2b:f5:ff:26:41:a0:ce: a4:ce:37:16:b5:29:f0:00:1f:bd:3f:c8:ff:9d:1a:70:cf:aa: 5e:c7:5e:37:4c:12:cb:c3:ef:05:9f:93:cd:d8:a0:45:38:6a: 21:0b:9f:65:a0:de:49:f3:d3:87:1b:77:5d:0e:ab:60:30:e1: d9:08:6b:b1:7e:be:3a:0f:d3:98:a1:d3:a8:39:f9:18:c8:c0: 7c:72:7e:67:b6:77:7f:9a:bf:4c:f6:28:67:63:1f:16:7a:05: 56:bd:26:7a:61:c8:f1:b5:ee:cf:ad:01:e5:dc:28:1b:1a:30: cb:9f:d4:6f:89:83:21:84:68:5f:ce:d0:97:f9:3e:bc:9e:e1: 6d:e4:f8:e4:b1:4b:4f:d5:ba:83:30:69:2d:23:bb:73:5a:4f: b2:d9:5e:53:e5:ee:6a:c8:5f:c6:66:98:39:e6:fc:42:0c:46: 71:e4:db:e6:4f:6e:98:b8:18:40:6d:19:f1:6e:c7:dd:b4:92: 73:0d:96:52:a4:a0:d4:3b:d1:c7:db:31:9c:69:8a:32:05:0f: aa:c3:d2:0e -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDM4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjE1 RjlCRDk4Q0M3MEU4ODM2RDAxQTk0ODFDMTlDNUMyRDQ1RDc5MTAeFw0yNTAyMTAx NDA1NThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRFN0ZBMzJCODkzNUNF RTlEOTYxOTk0QjlGOTZEMTIzMEM4QUUxNkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUFkVqJAAaWVZ4vhuPffKjmu22Wciil//UwU9JQ+vjeeq/sKZG +HOoT+qe8Q+/HjtIJuiTRdn2TUmzMyJHVnxtdWKFCEbYczEcI4FHd8NuJ5V7LCSI a9PEcyujUxnUA/25EYanvlLNrT0odNGg1XhiPhhHXTcrz5uPofsUN566do78pNMq G+83oIqtwpc0SVqsWMp2Q1l2ZUb+KyLOb9ZSHoDdaQunwD9LUIV9v4Od41VYfolQ QNUA2Pmm3E3D3HwEApA05EiRbiWex0sbwX2r+DU2jENJOXwmJmBIkoDA0Q3EdNIO 7j2iJTr7h7vHb0H/V607YtZgTKHBpERMNuTXAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUTn+jK4k1zunZYZlLn5bRIwyK4WswHwYDVR0jBBgwFoAUYV+b2YzHDog20BqU gcGcXC1F15EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdJTlMv WVYtYjJZekhEb2cyMEJxVWdjR2NYQzFGMTVFLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9ZVi1iMll6SERvZzIwQnFVZ2NHY1hDMUYxNUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9EV0lOUy9Ubi1qSzRrMXp1blpZWmxMbjVi Ukl3eUs0V3Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE005Q MA0GCSqGSIb3DQEBCwUAA4IBAQA1GVGaMAx6s7ozPowcvjfHhjdnO0QkaMMYUPWe 0V8sKGipca5FuYAsQzcLt6+wqSv1/yZBoM6kzjcWtSnwAB+9P8j/nRpwz6pex143 TBLLw+8Fn5PN2KBFOGohC59loN5J89OHG3ddDqtgMOHZCGuxfr46D9OYodOoOfkY yMB8cn5ntnd/mr9M9ihnYx8WegVWvSZ6Ycjxte7PrQHl3CgbGjDLn9RviYMhhGhf ztCX+T68nuFt5PjksUtP1bqDMGktI7tzWk+y2V5T5e5qyF/GZpg55vxCDEZx5Nvm T26YuBhAbRnxbsfdtJJzDZZSpKDUO9HH2zGcaYoyBQ+qw9IO -----END CERTIFICATE-----Generated at Wed Apr 9 13:54:04 2025 by rpki-client