$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EDTNS/FqX27lpwcMdNX-WM38Ewb556jQw.roa File: FqX27lpwcMdNX-WM38Ewb556jQw.roa (raw, json) Hash identifier: 1DoMKBDoKj31eBNVsfzg4Gs/8XYE4ex8itWkGmXcQd4= Subject key identifier: 16:A5:F6:EE:5A:70:70:C7:4D:5F:E5:8C:DF:C1:30:6F:9E:7A:8D:0C Certificate issuer: /CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E Certificate serial: 0CC0 Authority key identifier: 94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/FqX27lpwcMdNX-WM38Ewb556jQw.roa Signing time: Mon 10 Feb 2025 14:10:56 +0000 ROA not before: Mon 10 Feb 2025 14:10:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18411 IP address blocks: 119.30.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3264 (0xcc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E Validity Not Before: Feb 10 14:10:56 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=16A5F6EE5A7070C74D5FE58CDFC1306F9E7A8D0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:cd:dd:5f:76:03:9d:b0:70:3d:eb:83:9d:6d: 73:76:f8:4c:42:3b:fb:11:d8:19:95:26:d1:95:1b: 6a:d9:6b:f1:4d:45:67:a0:95:34:bf:8b:e2:fe:ea: b9:3d:cc:e0:e5:5f:2c:a8:95:dd:fd:e4:90:85:42: c8:19:16:18:87:3d:ce:69:83:f5:0c:55:71:18:50: c7:48:09:51:36:ae:2c:b1:13:d3:2e:89:1b:cd:04: 3b:84:10:c8:7a:68:16:e2:b7:7d:24:eb:e0:1d:75: 1c:81:de:5d:c4:32:73:c3:aa:bb:1d:73:84:63:fb: f9:4c:d4:b8:45:60:57:3a:04:0d:a9:ba:92:89:a0: ff:2a:85:e7:7b:83:6a:e9:24:98:0a:84:bc:cd:97: c4:9f:dc:d2:aa:84:67:3c:26:a2:d6:94:c4:8e:7a: d3:ce:e4:e6:bc:72:a8:35:d6:e8:7b:df:46:7f:b0: da:fd:24:a3:e2:aa:8c:5b:b7:a3:56:34:e4:72:23: d5:70:8b:b9:0b:c7:cf:10:9f:62:82:0f:f4:09:a5: 9d:83:1b:12:bc:d0:30:18:a3:48:3f:1c:d5:50:08: d8:5c:e0:38:2c:7c:1f:98:4b:4b:bc:1d:0c:1c:d8: 4e:cd:4c:44:7d:ce:04:0d:54:19:a1:1b:02:0b:ad: ef:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:A5:F6:EE:5A:70:70:C7:4D:5F:E5:8C:DF:C1:30:6F:9E:7A:8D:0C X509v3 Authority Key Identifier: keyid:94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/FqX27lpwcMdNX-WM38Ewb556jQw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.30.16.0/20 Signature Algorithm: sha256WithRSAEncryption 57:db:9e:f2:c5:92:a6:b1:e6:6b:9b:a6:d5:47:d7:5e:18:22: 9c:2d:71:3b:5b:77:90:04:a8:bc:0c:bc:54:b0:dd:75:71:33: 98:fb:f0:63:e1:89:0a:ed:fc:be:56:b3:56:b1:97:6b:24:cd: 96:b8:a2:70:9c:79:af:26:c7:78:3b:6f:20:5f:47:b0:b9:09: ee:83:1e:08:df:3e:37:91:22:cd:12:89:8b:6c:08:06:e8:d9: 80:12:13:12:6a:bc:56:ce:f0:b4:16:bc:97:ec:7a:bc:73:f0: 4d:ed:f3:7d:c3:98:4c:82:9d:31:bd:2e:ac:3c:eb:81:ef:a7: a4:cb:0e:e0:36:bd:e6:83:8d:8e:ef:a5:cc:be:a5:04:a2:c2: 4d:57:92:36:d7:d8:d7:35:42:f5:d5:ef:e2:a5:0a:b8:74:6c: e8:2b:bc:60:1e:b6:5a:af:13:a3:6a:be:dc:8e:32:f4:a8:e3: d4:1b:01:d0:5d:f9:d9:cd:bd:5e:6d:f7:53:a1:71:10:bb:2d: 9c:bd:f0:b1:46:c5:b5:7f:2e:b3:29:16:89:08:b7:65:01:2f: 1f:26:4c:57:62:61:82:54:dd:25:73:b7:95:27:10:61:84:2b: 7e:fc:0a:02:eb:26:e1:ac:0e:dc:14:76:b2:75:e6:eb:d7:23: 08:6c:1f:fc -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDMAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTRD NkRERkRENEJBQTUwNDAwRjNBMTE5QTU4MzNDRTAwMjFCREIyRTAeFw0yNTAyMTAx NDEwNTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE2QTVGNkVFNUE3MDcw Qzc0RDVGRTU4Q0RGQzEzMDZGOUU3QThEMEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOzd1fdgOdsHA964OdbXN2+ExCO/sR2BmVJtGVG2rZa/FNRWeg lTS/i+L+6rk9zODlXyyold395JCFQsgZFhiHPc5pg/UMVXEYUMdICVE2riyxE9Mu iRvNBDuEEMh6aBbit30k6+AddRyB3l3EMnPDqrsdc4Rj+/lM1LhFYFc6BA2pupKJ oP8qhed7g2rpJJgKhLzNl8Sf3NKqhGc8JqLWlMSOetPO5Oa8cqg11uh730Z/sNr9 JKPiqoxbt6NWNORyI9Vwi7kLx88Qn2KCD/QJpZ2DGxK80DAYo0g/HNVQCNhc4Dgs fB+YS0u8HQwc2E7NTER9zgQNVBmhGwILre8JAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUFqX27lpwcMdNX+WM38Ewb556jQwwHwYDVR0jBBgwFoAUlMbd/dS6pQQA86EZ pYM84AIb2y4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRURUTlMv bE1iZF9kUzZwUVFBODZFWnBZTTg0QUliMnk0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9sTWJkX2RTNnBRUUE4NkVacFlNODRBSWIyeTQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FRFROUy9GcVgyN2xwd2NNZE5YLVdNMzhF d2I1NTZqUXcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEdx4Q MA0GCSqGSIb3DQEBCwUAA4IBAQBX257yxZKmseZrm6bVR9deGCKcLXE7W3eQBKi8 DLxUsN11cTOY+/Bj4YkK7fy+VrNWsZdrJM2WuKJwnHmvJsd4O28gX0ewuQnugx4I 3z43kSLNEomLbAgG6NmAEhMSarxWzvC0FryX7Hq8c/BN7fN9w5hMgp0xvS6sPOuB 76ekyw7gNr3mg42O76XMvqUEosJNV5I219jXNUL11e/ipQq4dGzoK7xgHrZarxOj ar7cjjL0qOPUGwHQXfnZzb1ebfdToXEQuy2cvfCxRsW1fy6zKRaJCLdlAS8fJkxX YmGCVN0lc7eVJxBhhCt+/AoC6ybhrA7cFHaydebr1yMIbB/8 -----END CERTIFICATE-----Generated at Fri Apr 18 23:44:06 2025 by rpki-client