$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EDTNS/BIub320nYdPatc4C_iYQhKhbhgk.roa File: BIub320nYdPatc4C_iYQhKhbhgk.roa (raw, json) Hash identifier: 7fn9eSiLfYMIym6l1wiQJS98aF5GRRL9E3MdabOvfeI= Subject key identifier: 04:8B:9B:DF:6D:27:61:D3:DA:B5:CE:02:FE:26:10:84:A8:5B:86:09 Certificate issuer: /CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E Certificate serial: 0CC6 Authority key identifier: 94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/BIub320nYdPatc4C_iYQhKhbhgk.roa Signing time: Mon 10 Feb 2025 14:10:58 +0000 ROA not before: Mon 10 Feb 2025 14:10:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18411 IP address blocks: 61.56.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3270 (0xcc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E Validity Not Before: Feb 10 14:10:58 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=048B9BDF6D2761D3DAB5CE02FE261084A85B8609 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:2b:20:5e:93:de:4a:d2:25:89:c2:fe:c4:88: 36:20:63:50:6b:91:db:57:7d:cd:88:66:2c:fe:e7: 2f:df:54:52:1f:9a:8b:6f:b7:92:47:00:26:72:8c: 06:a2:a4:79:89:00:39:82:50:fb:50:d9:1c:c3:4d: 09:a4:2e:3c:af:48:ed:97:6e:ce:d5:57:5b:31:cd: 0d:1c:4d:78:07:64:a1:d9:83:54:c3:0b:d0:be:37: 0e:d0:e4:06:13:c2:fa:0c:68:7a:27:2a:e2:0e:26: 3c:c9:89:01:11:18:9b:36:f0:f3:36:c3:90:cb:27: 65:4e:72:55:a0:fd:2b:12:20:66:48:21:79:8d:1b: 3d:2e:09:59:26:b8:e0:0b:c4:91:3e:dd:48:6b:73: 4a:48:e1:84:f8:37:83:f7:3e:1b:40:30:4e:38:b5: 3d:53:2e:24:bb:33:87:4d:eb:3e:a8:70:85:46:f2: bc:94:ff:ff:1c:55:f6:be:c6:b9:3a:27:cd:e9:19: d7:f8:40:4e:87:0e:07:15:85:37:53:e9:64:6a:ca: f3:1c:f0:24:e9:14:67:93:93:16:de:14:14:bd:2d: b7:56:87:f3:ac:46:d1:7c:47:1e:9a:41:83:bb:9c: 79:74:7b:59:f7:ef:a6:ed:a8:f2:50:71:e4:e3:cc: d6:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:8B:9B:DF:6D:27:61:D3:DA:B5:CE:02:FE:26:10:84:A8:5B:86:09 X509v3 Authority Key Identifier: keyid:94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/BIub320nYdPatc4C_iYQhKhbhgk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.25.0/24 Signature Algorithm: sha256WithRSAEncryption b4:8e:21:3d:26:84:91:50:2d:d1:d5:a5:76:88:e3:e7:1b:2c: 67:6c:24:09:69:37:83:00:5b:6c:7b:0a:6e:6b:bc:b3:a2:52: 5a:5f:29:82:44:ac:6b:bd:9d:f7:8d:fb:98:20:d2:0e:82:27: 5f:c5:b7:56:10:c1:f9:95:c1:3d:56:f7:7c:ec:a6:23:d6:01: f6:36:11:94:27:22:0d:43:5d:41:26:50:48:25:be:7b:6d:ea: 1d:4b:41:04:98:04:b1:02:14:5d:bd:54:f9:09:c9:b2:eb:89: 29:db:49:f3:73:3b:c9:00:6b:4e:cd:17:ff:c0:b9:ae:2d:4e: 1f:30:0b:f3:e4:13:79:5e:eb:cf:b0:32:84:98:44:05:c2:ad: 8d:26:b2:f8:5c:34:c6:cc:41:1b:7f:91:65:1e:a4:3c:dd:b9: fa:f5:7a:b6:d8:ed:0f:3c:28:8a:74:7a:4f:57:6e:b0:8c:58: 10:f2:91:7d:50:1d:af:53:9a:95:aa:74:11:10:65:2e:ea:8c: 81:cb:48:5f:bc:1c:e9:d9:1c:a0:f5:d1:45:28:a2:6d:25:1a: f2:89:86:81:1a:bf:71:7f:a2:ec:f6:f8:b9:1b:3f:15:cd:54: 39:16:42:71:4a:d0:2f:98:28:c7:b7:e6:72:ed:06:3e:ce:e9: 77:ff:dd:3f -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDMYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTRD NkRERkRENEJBQTUwNDAwRjNBMTE5QTU4MzNDRTAwMjFCREIyRTAeFw0yNTAyMTAx NDEwNThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA0OEI5QkRGNkQyNzYx RDNEQUI1Q0UwMkZFMjYxMDg0QTg1Qjg2MDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCeKyBek95K0iWJwv7EiDYgY1BrkdtXfc2IZiz+5y/fVFIfmotv t5JHACZyjAaipHmJADmCUPtQ2RzDTQmkLjyvSO2Xbs7VV1sxzQ0cTXgHZKHZg1TD C9C+Nw7Q5AYTwvoMaHonKuIOJjzJiQERGJs28PM2w5DLJ2VOclWg/SsSIGZIIXmN Gz0uCVkmuOALxJE+3Uhrc0pI4YT4N4P3PhtAME44tT1TLiS7M4dN6z6ocIVG8ryU //8cVfa+xrk6J83pGdf4QE6HDgcVhTdT6WRqyvMc8CTpFGeTkxbeFBS9LbdWh/Os RtF8Rx6aQYO7nHl0e1n376btqPJQceTjzNYjAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUBIub320nYdPatc4C/iYQhKhbhgkwHwYDVR0jBBgwFoAUlMbd/dS6pQQA86EZ pYM84AIb2y4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRURUTlMv bE1iZF9kUzZwUVFBODZFWnBZTTg0QUliMnk0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9sTWJkX2RTNnBRUUE4NkVacFlNODRBSWIyeTQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FRFROUy9CSXViMzIwbllkUGF0YzRDX2lZ UWhLaGJoZ2sucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPTgZ MA0GCSqGSIb3DQEBCwUAA4IBAQC0jiE9JoSRUC3R1aV2iOPnGyxnbCQJaTeDAFts ewpua7yzolJaXymCRKxrvZ33jfuYINIOgidfxbdWEMH5lcE9Vvd87KYj1gH2NhGU JyINQ11BJlBIJb57beodS0EEmASxAhRdvVT5Ccmy64kp20nzczvJAGtOzRf/wLmu LU4fMAvz5BN5XuvPsDKEmEQFwq2NJrL4XDTGzEEbf5FlHqQ83bn69Xq22O0PPCiK dHpPV26wjFgQ8pF9UB2vU5qVqnQREGUu6oyBy0hfvBzp2Ryg9dFFKKJtJRryiYaB Gr9xf6Ls9vi5Gz8VzVQ5FkJxStAvmCjHt+Zy7QY+zul3/90/ -----END CERTIFICATE-----Generated at Fri Apr 18 23:57:48 2025 by rpki-client