$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EASPNET/IFsUgFyfbHl2pFyjUIBb5_pMkzE.roa File: IFsUgFyfbHl2pFyjUIBb5_pMkzE.roa (raw, json) Hash identifier: p8KGuXb2ObIFh7Jc51eu7KHbjFDUWxVELSr0eL/mZGo= Subject key identifier: 20:5B:14:80:5C:9F:6C:79:76:A4:5C:A3:50:80:5B:E7:FA:4C:93:31 Certificate issuer: /CN=552B16164C361040D88F32D36509448CF3BB9D25 Certificate serial: 0CA6 Authority key identifier: 55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/IFsUgFyfbHl2pFyjUIBb5_pMkzE.roa Signing time: Mon 10 Feb 2025 13:55:53 +0000 ROA not before: Mon 10 Feb 2025 13:55:53 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 10135 IP address blocks: 115.85.144.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 22:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3238 (0xca6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B16164C361040D88F32D36509448CF3BB9D25 Validity Not Before: Feb 10 13:55:53 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=205B14805C9F6C7976A45CA350805BE7FA4C9331 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:3a:cf:aa:58:bf:fb:62:16:6b:46:24:71:e6: cf:ba:b5:fa:77:4c:e3:7a:6d:45:9c:cc:ec:4c:21: 29:f2:45:27:ab:ce:dc:63:cf:04:f0:8d:16:9d:e9: d0:97:f7:9f:60:22:85:72:45:5e:2a:b1:29:8e:40: 42:56:b6:e6:87:29:8e:fc:48:86:b6:ce:0c:1f:5d: 77:a4:5d:1b:63:81:83:38:f7:c3:0d:44:db:4b:7d: 43:2a:ab:00:ae:8f:14:13:67:3e:5a:4c:ac:0c:56: 69:df:81:b3:3f:72:9d:c9:80:2f:df:2a:be:c9:37: 3a:ca:29:da:7e:8f:84:c3:91:2d:80:7c:ee:72:cf: cc:c2:43:2f:12:37:fe:68:f4:0d:85:cd:fd:46:01: 11:40:74:12:2d:82:b7:fb:d3:05:d8:b6:2d:b2:f1: e6:3b:cd:64:65:12:bf:af:fd:1c:56:ba:3b:ad:60: 96:09:5a:ea:00:0a:80:b2:a1:05:3f:83:94:69:35: 91:c3:59:52:20:9d:f2:35:cf:ad:e5:22:8b:f5:f9: 77:c4:8f:32:3f:be:68:18:ac:c7:25:2c:f6:c0:f0: 6f:ae:d7:21:ce:06:6f:19:15:27:16:e3:05:3f:88: 03:f3:08:94:1f:4b:ad:f9:c0:55:ea:2e:5b:f3:7d: 63:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:5B:14:80:5C:9F:6C:79:76:A4:5C:A3:50:80:5B:E7:FA:4C:93:31 X509v3 Authority Key Identifier: keyid:55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/IFsUgFyfbHl2pFyjUIBb5_pMkzE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 115.85.144.0/20 Signature Algorithm: sha256WithRSAEncryption 2b:14:26:4e:b7:8e:8e:39:5e:0d:2d:4b:07:19:03:27:17:87: 0a:85:31:1e:d7:b2:14:98:67:d5:94:10:43:e5:3a:d1:9b:d6: 36:dc:c1:74:19:b4:53:2f:55:38:25:b2:d0:c4:c7:3f:f3:bf: 28:51:8c:f1:8b:12:c2:c9:12:b2:28:d4:45:83:38:b6:98:5e: 27:22:eb:80:16:c0:8c:c7:7f:cc:58:53:e3:2d:97:a3:3a:e8: 5a:49:39:d7:53:4d:05:0a:e6:b3:9f:8a:3a:51:59:e9:c8:34: 0a:04:4f:48:76:91:e9:36:44:b8:69:35:2b:fe:b0:a0:a7:22: 2b:2d:d4:ec:1f:9e:a8:d0:07:24:66:5d:4c:74:0e:49:77:6a: 73:c6:33:23:41:06:15:87:9d:6a:dd:c3:7c:7a:2a:08:72:af: fb:9a:29:bb:3a:c0:c4:7a:f1:2c:c7:37:b7:9c:65:62:5c:07: b5:e2:1e:f7:46:4f:a6:86:2e:25:22:d7:42:63:60:73:11:89: 14:1a:54:58:04:61:88:89:29:29:75:17:9e:f6:d5:5a:db:a1: 06:40:c3:74:1a:07:37:67:8f:06:79:48:1b:5f:44:d5:3e:a6: 1f:de:10:90:8a:00:e3:07:e6:9e:d3:a6:54:f9:33:f3:02:24: 19:c7:6e:ef -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDKYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTUy QjE2MTY0QzM2MTA0MEQ4OEYzMkQzNjUwOTQ0OENGM0JCOUQyNTAeFw0yNTAyMTAx MzU1NTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIwNUIxNDgwNUM5RjZD Nzk3NkE0NUNBMzUwODA1QkU3RkE0QzkzMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpOs+qWL/7YhZrRiRx5s+6tfp3TON6bUWczOxMISnyRSerztxj zwTwjRad6dCX959gIoVyRV4qsSmOQEJWtuaHKY78SIa2zgwfXXekXRtjgYM498MN RNtLfUMqqwCujxQTZz5aTKwMVmnfgbM/cp3JgC/fKr7JNzrKKdp+j4TDkS2AfO5y z8zCQy8SN/5o9A2Fzf1GARFAdBItgrf70wXYti2y8eY7zWRlEr+v/RxWujutYJYJ WuoACoCyoQU/g5RpNZHDWVIgnfI1z63lIov1+XfEjzI/vmgYrMclLPbA8G+u1yHO Bm8ZFScW4wU/iAPzCJQfS635wFXqLlvzfWNtAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUIFsUgFyfbHl2pFyjUIBb5/pMkzEwHwYDVR0jBBgwFoAUVSsWFkw2EEDYjzLT ZQlEjPO7nSUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRUFTUE5F VC9WU3NXRmt3MkVFRFlqekxUWlFsRWpQTzduU1UuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1ZTc1dGa3cyRUVEWWp6TFRaUWxFalBPN25TVS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0VBU1BORVQvSUZzVWdGeWZiSGwycEZ5 alVJQmI1X3BNa3pFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BHNVkDANBgkqhkiG9w0BAQsFAAOCAQEAKxQmTreOjjleDS1LBxkDJxeHCoUxHtey FJhn1ZQQQ+U60ZvWNtzBdBm0Uy9VOCWy0MTHP/O/KFGM8YsSwskSsijURYM4tphe JyLrgBbAjMd/zFhT4y2XozroWkk511NNBQrms5+KOlFZ6cg0CgRPSHaR6TZEuGk1 K/6woKciKy3U7B+eqNAHJGZdTHQOSXdqc8YzI0EGFYedat3DfHoqCHKv+5opuzrA xHrxLMc3t5xlYlwHteIe90ZPpoYuJSLXQmNgcxGJFBpUWARhiIkpKXUXnvbVWtuh BkDDdBoHN2ePBnlIG19E1T6mH94QkIoA4wfmntOmVPkz8wIkGcdu7w== -----END CERTIFICATE-----Generated at Fri Apr 18 22:20:41 2025 by rpki-client