$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EASPNET/LqM-DKjYuCadwRjSeg9wb4glz7Y.roa File: LqM-DKjYuCadwRjSeg9wb4glz7Y.roa (raw, json) Hash identifier: DqErusu3jy23xS9EWJmykQhLyXZfm9QGll6CFnzFxxw= Subject key identifier: 2E:A3:3E:0C:A8:D8:B8:26:9D:C1:18:D2:7A:0F:70:6F:88:25:CF:B6 Certificate issuer: /CN=552B16164C361040D88F32D36509448CF3BB9D25 Certificate serial: 0CA8 Authority key identifier: 55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/LqM-DKjYuCadwRjSeg9wb4glz7Y.roa Signing time: Mon 10 Feb 2025 13:55:53 +0000 ROA not before: Mon 10 Feb 2025 13:55:53 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 10135 IP address blocks: 202.168.192.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 22:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3240 (0xca8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B16164C361040D88F32D36509448CF3BB9D25 Validity Not Before: Feb 10 13:55:53 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2EA33E0CA8D8B8269DC118D27A0F706F8825CFB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:31:97:3e:ab:4e:15:b3:d7:fa:e7:f1:fb:d3: e4:4e:f2:e0:45:d0:cd:39:ec:e6:82:b4:ad:ad:dd: 4f:e4:d6:0f:fd:0f:0b:94:11:6b:b8:04:14:a2:f4: d6:bd:9d:40:4f:f8:1e:a6:65:10:40:dc:83:d8:07: 2c:66:ae:eb:de:56:d7:0b:fb:82:12:e7:69:59:ce: b8:43:d7:fa:cf:1c:af:78:9d:1e:e0:f3:18:c2:3d: d3:37:1c:08:4b:9c:8a:45:6c:62:74:bf:c4:17:d2: fa:7f:a2:f6:0e:bc:7a:76:2d:73:43:29:5d:35:67: 55:96:cf:ec:8c:79:0a:f7:50:a4:c8:cf:d7:4d:a8: ac:af:4e:bc:95:42:3e:5c:03:33:e3:60:76:2c:c1: 62:40:b5:9c:1b:60:40:c7:2f:86:33:49:78:dd:d3: 84:22:6b:34:e4:e6:bc:21:4c:5b:04:91:8a:6f:7f: 03:98:a8:ba:64:02:8d:2b:28:13:b0:30:92:3e:e4: e2:12:ac:55:e6:e3:8b:e4:c2:4e:fc:88:e3:fe:9f: 4d:82:35:95:d7:16:04:16:ce:70:bc:81:97:e2:e9: 64:dd:73:9d:79:43:30:34:7e:f0:7e:8c:bb:17:be: 79:c7:96:d6:ba:aa:57:59:5a:a2:69:cc:2c:49:08: df:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:A3:3E:0C:A8:D8:B8:26:9D:C1:18:D2:7A:0F:70:6F:88:25:CF:B6 X509v3 Authority Key Identifier: keyid:55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/LqM-DKjYuCadwRjSeg9wb4glz7Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.168.192.0/20 Signature Algorithm: sha256WithRSAEncryption 88:8c:da:bc:86:4d:89:6f:47:50:80:e8:a6:29:30:1e:d8:64: 5c:38:3d:08:f0:ee:e9:7e:9c:48:c8:31:c0:78:cb:e2:7c:b8: 58:a1:a5:55:ca:53:4f:b8:c3:4c:02:b5:12:4d:67:1e:62:5c: 21:73:e5:12:e4:d7:96:b4:1d:a8:86:78:26:31:9d:23:c8:06: 74:e0:89:fa:94:0b:95:3c:bd:4b:9d:1e:5e:fc:4e:03:1a:87: 3c:a3:61:d7:12:87:0c:1c:0e:b9:c5:96:b5:10:31:74:85:bb: 40:6a:46:63:c0:05:75:af:a0:cf:42:e6:56:61:13:c8:3b:ab: c6:23:bb:f4:94:43:f0:0a:91:96:8a:f3:5f:75:01:b6:24:11: 09:0f:f2:66:8f:45:1c:8b:ea:9e:26:05:71:8e:a3:d0:47:9c: 0e:6e:7a:89:1c:2c:48:20:5c:51:08:e6:5a:cd:6a:12:a8:bd: a7:9e:55:ab:23:e9:9c:0f:1c:39:12:6e:11:ee:76:6c:92:59: b2:4d:ba:25:c9:74:e4:f2:26:c2:0c:43:dc:9e:1e:74:37:9a: ea:76:93:b9:93:80:e0:07:46:e6:18:67:d0:22:ed:15:f5:da: bf:e0:02:53:51:48:db:94:3e:0d:22:92:36:2f:b1:3b:f9:7d: 50:20:88:59 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDKgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTUy QjE2MTY0QzM2MTA0MEQ4OEYzMkQzNjUwOTQ0OENGM0JCOUQyNTAeFw0yNTAyMTAx MzU1NTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJFQTMzRTBDQThEOEI4 MjY5REMxMThEMjdBMEY3MDZGODgyNUNGQjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpMZc+q04Vs9f65/H70+RO8uBF0M057OaCtK2t3U/k1g/9DwuU EWu4BBSi9Na9nUBP+B6mZRBA3IPYByxmruveVtcL+4IS52lZzrhD1/rPHK94nR7g 8xjCPdM3HAhLnIpFbGJ0v8QX0vp/ovYOvHp2LXNDKV01Z1WWz+yMeQr3UKTIz9dN qKyvTryVQj5cAzPjYHYswWJAtZwbYEDHL4YzSXjd04QiazTk5rwhTFsEkYpvfwOY qLpkAo0rKBOwMJI+5OISrFXm44vkwk78iOP+n02CNZXXFgQWznC8gZfi6WTdc515 QzA0fvB+jLsXvnnHlta6qldZWqJpzCxJCN+RAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQULqM+DKjYuCadwRjSeg9wb4glz7YwHwYDVR0jBBgwFoAUVSsWFkw2EEDYjzLT ZQlEjPO7nSUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRUFTUE5F VC9WU3NXRmt3MkVFRFlqekxUWlFsRWpQTzduU1UuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1ZTc1dGa3cyRUVEWWp6TFRaUWxFalBPN25TVS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0VBU1BORVQvTHFNLURLall1Q2Fkd1Jq U2VnOXdiNGdsejdZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BMqowDANBgkqhkiG9w0BAQsFAAOCAQEAiIzavIZNiW9HUIDopikwHthkXDg9CPDu 6X6cSMgxwHjL4ny4WKGlVcpTT7jDTAK1Ek1nHmJcIXPlEuTXlrQdqIZ4JjGdI8gG dOCJ+pQLlTy9S50eXvxOAxqHPKNh1xKHDBwOucWWtRAxdIW7QGpGY8AFda+gz0Lm VmETyDurxiO79JRD8AqRlorzX3UBtiQRCQ/yZo9FHIvqniYFcY6j0EecDm56iRws SCBcUQjmWs1qEqi9p55VqyPpnA8cORJuEe52bJJZsk26Jcl05PImwgxD3J4edDea 6naTuZOA4AdG5hhn0CLtFfXav+ACU1FI25Q+DSKSNi+xO/l9UCCIWQ== -----END CERTIFICATE-----Generated at Fri Apr 18 22:20:34 2025 by rpki-client