$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EASPNET/MRm5zAVVdk-aR0Oy04XfqC9_Ur0.roa File: MRm5zAVVdk-aR0Oy04XfqC9_Ur0.roa (raw, json) Hash identifier: EwVDeQuocX4nw7LC8ZbT1FDIkFHLbj8GjIeZUCmBaVA= Subject key identifier: 31:19:B9:CC:05:55:76:4F:9A:47:43:B2:D3:85:DF:A8:2F:7F:52:BD Certificate issuer: /CN=552B16164C361040D88F32D36509448CF3BB9D25 Certificate serial: 0CA7 Authority key identifier: 55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/MRm5zAVVdk-aR0Oy04XfqC9_Ur0.roa Signing time: Mon 10 Feb 2025 13:55:53 +0000 ROA not before: Mon 10 Feb 2025 13:55:53 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 10135 IP address blocks: 61.64.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 22:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3239 (0xca7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B16164C361040D88F32D36509448CF3BB9D25 Validity Not Before: Feb 10 13:55:53 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3119B9CC0555764F9A4743B2D385DFA82F7F52BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:52:e2:b9:f1:7c:5c:0a:db:ae:9c:c9:64:bf: 55:ae:7a:6d:20:95:84:6e:30:f7:c1:6b:5b:eb:f7: e4:43:0d:d6:fb:38:1d:96:61:35:c4:ae:31:6c:1a: ac:1d:df:a7:c9:d8:13:27:60:66:4f:9c:0e:c9:b0: 0e:fe:ad:3c:68:3f:fb:4e:6d:84:92:49:1c:34:b7: e7:54:a6:c6:a1:41:03:6f:e2:8f:70:60:82:7a:8f: 5b:d3:c3:45:0e:94:80:d8:0e:d2:87:e1:03:c6:45: 96:b1:1b:c4:ca:8c:41:84:8d:91:2c:32:6e:4c:9c: f8:5c:92:37:71:03:cc:2d:53:a6:a6:3c:41:91:66: cb:2c:f9:d4:07:bb:16:c7:d0:3b:ed:e7:83:4e:29: ae:67:98:c0:94:e7:f2:96:d2:0b:b4:26:02:fb:ef: e7:19:3b:ee:ed:a5:3f:50:1d:91:c9:80:bb:64:3d: 30:fc:dc:6a:74:23:38:78:98:02:14:56:f6:7b:0e: 29:23:f6:ef:e7:58:84:cf:2d:3c:ca:62:d9:69:7d: 51:19:58:26:e4:32:d0:ce:6a:d1:e7:c8:d8:b0:e4: 02:fe:05:2d:5c:38:c0:df:d0:4a:b7:77:7a:b8:87: 13:48:78:94:a1:6a:0d:3c:66:41:cf:c3:c9:5a:5f: f5:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:19:B9:CC:05:55:76:4F:9A:47:43:B2:D3:85:DF:A8:2F:7F:52:BD X509v3 Authority Key Identifier: keyid:55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/MRm5zAVVdk-aR0Oy04XfqC9_Ur0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.64.48.0/20 Signature Algorithm: sha256WithRSAEncryption 9b:bf:90:29:e9:01:6a:5f:6b:83:e4:75:b0:97:3b:63:1e:93: 7f:58:93:07:46:19:35:d9:2a:8a:da:f6:43:1b:e9:a7:f0:53: 50:c0:ce:a4:6b:9c:6d:e0:83:40:eb:1a:19:78:ad:cf:c2:56: f4:e3:dc:11:a6:62:ef:5c:8c:62:90:d6:7d:72:bd:0e:5d:7b: 14:c7:35:99:de:83:80:8c:fe:0a:55:5f:35:eb:de:52:24:6c: c9:c5:af:eb:85:49:da:85:f6:f5:b1:02:8e:a5:be:7d:c8:de: b4:04:78:1a:e4:c5:a3:db:00:95:08:1c:cf:13:28:7a:cc:4a: 6f:d3:5e:2d:0d:1b:fe:11:1a:62:8a:96:c0:d8:80:03:33:bd: a4:ce:66:12:fa:dd:d6:61:20:e0:17:c6:e0:09:56:4c:89:5a: e0:39:2c:51:96:4f:4f:d8:32:da:43:e5:cd:18:03:1e:9a:ed: da:12:8d:f8:08:dc:cb:87:39:52:a4:dc:77:90:18:f6:e6:f8: ab:04:87:83:44:12:1b:ef:b8:ad:80:d8:40:eb:59:b6:70:71: cf:46:a9:ed:79:94:bf:60:99:18:29:ee:bc:05:8d:19:94:d9: 20:bd:d4:c9:88:52:07:d7:4f:e3:67:67:e2:a2:57:c5:c9:fd: 17:59:41:6e -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDKcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTUy QjE2MTY0QzM2MTA0MEQ4OEYzMkQzNjUwOTQ0OENGM0JCOUQyNTAeFw0yNTAyMTAx MzU1NTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMxMTlCOUNDMDU1NTc2 NEY5QTQ3NDNCMkQzODVERkE4MkY3RjUyQkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8UuK58XxcCtuunMlkv1Wuem0glYRuMPfBa1vr9+RDDdb7OB2W YTXErjFsGqwd36fJ2BMnYGZPnA7JsA7+rTxoP/tObYSSSRw0t+dUpsahQQNv4o9w YIJ6j1vTw0UOlIDYDtKH4QPGRZaxG8TKjEGEjZEsMm5MnPhckjdxA8wtU6amPEGR Zsss+dQHuxbH0Dvt54NOKa5nmMCU5/KW0gu0JgL77+cZO+7tpT9QHZHJgLtkPTD8 3Gp0Izh4mAIUVvZ7Dikj9u/nWITPLTzKYtlpfVEZWCbkMtDOatHnyNiw5AL+BS1c OMDf0Eq3d3q4hxNIeJShag08ZkHPw8laX/X5AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUMRm5zAVVdk+aR0Oy04XfqC9/Ur0wHwYDVR0jBBgwFoAUVSsWFkw2EEDYjzLT ZQlEjPO7nSUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRUFTUE5F VC9WU3NXRmt3MkVFRFlqekxUWlFsRWpQTzduU1UuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1ZTc1dGa3cyRUVEWWp6TFRaUWxFalBPN25TVS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0VBU1BORVQvTVJtNXpBVlZkay1hUjBP eTA0WGZxQzlfVXIwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BD1AMDANBgkqhkiG9w0BAQsFAAOCAQEAm7+QKekBal9rg+R1sJc7Yx6Tf1iTB0YZ Ndkqitr2Qxvpp/BTUMDOpGucbeCDQOsaGXitz8JW9OPcEaZi71yMYpDWfXK9Dl17 FMc1md6DgIz+ClVfNeveUiRsycWv64VJ2oX29bECjqW+fcjetAR4GuTFo9sAlQgc zxMoesxKb9NeLQ0b/hEaYoqWwNiAAzO9pM5mEvrd1mEg4BfG4AlWTIla4DksUZZP T9gy2kPlzRgDHprt2hKN+Ajcy4c5UqTcd5AY9ub4qwSHg0QSG++4rYDYQOtZtnBx z0ap7XmUv2CZGCnuvAWNGZTZIL3UyYhSB9dP42dn4qJXxcn9F1lBbg== -----END CERTIFICATE-----Generated at Fri Apr 18 22:20:37 2025 by rpki-client