$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EDTNS/TtI5eZI0m9QVvxkjVTDpyc9wn4M.roa File: TtI5eZI0m9QVvxkjVTDpyc9wn4M.roa (raw, json) Hash identifier: 62KrG0lj7CMHCIxXI6WqEQyOhtDozHeEvLbv9FsKDVY= Subject key identifier: 4E:D2:39:79:92:34:9B:D4:15:BF:19:23:55:30:E9:C9:CF:70:9F:83 Certificate issuer: /CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E Certificate serial: 0CC4 Authority key identifier: 94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/TtI5eZI0m9QVvxkjVTDpyc9wn4M.roa Signing time: Mon 10 Feb 2025 14:10:57 +0000 ROA not before: Mon 10 Feb 2025 14:10:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18411 IP address blocks: 119.30.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3268 (0xcc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E Validity Not Before: Feb 10 14:10:57 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4ED2397992349BD415BF19235530E9C9CF709F83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:fa:d9:67:14:eb:43:10:9a:e3:bc:84:25:4a: 3d:96:e0:ed:e7:1f:52:ee:1c:3a:d4:73:01:9c:40: aa:b4:38:23:5e:91:d8:f0:a7:2c:d9:87:51:ea:6c: 22:31:74:cf:13:fe:51:3a:2c:11:9e:bf:61:2b:42: 54:86:cb:c6:45:ed:00:42:d3:5b:b5:54:c4:5d:3b: 82:c7:6b:19:66:1e:66:85:de:f5:8d:09:a0:f2:60: 04:b5:a5:86:9a:c0:d3:d0:4d:ba:1c:87:07:b9:6f: f5:18:fd:64:3d:17:2b:b3:d5:3f:07:61:7e:73:12: 82:fc:42:7e:f4:10:e9:a3:66:d8:ce:4d:22:06:1d: f1:58:fc:73:ea:22:9e:01:f8:c6:11:19:a1:b3:b3: 3f:30:ff:6d:62:e4:fa:fe:b1:da:69:4b:43:08:98: e6:56:bd:c9:6e:1d:c4:a4:c0:bf:3d:53:ba:26:1c: f9:0d:9d:7a:aa:18:ae:fe:08:07:70:f5:aa:0d:f5: 2a:85:ba:aa:d9:e2:2b:35:57:9f:f6:ba:5f:e3:dc: 8e:08:16:90:ca:8d:1f:87:45:a5:d9:e9:9d:3c:c9: 9a:53:91:40:19:9e:5a:70:c4:8d:7f:ca:99:53:b6: 82:2c:90:ad:e2:7c:6a:0a:27:28:7d:d2:77:1f:b8: d6:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:D2:39:79:92:34:9B:D4:15:BF:19:23:55:30:E9:C9:CF:70:9F:83 X509v3 Authority Key Identifier: keyid:94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/TtI5eZI0m9QVvxkjVTDpyc9wn4M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.30.16.0/20 Signature Algorithm: sha256WithRSAEncryption c6:d5:ec:14:7d:e8:ec:54:18:97:42:d2:03:47:1b:79:e5:f0: 02:6f:7d:28:8f:06:64:86:97:99:cd:6e:30:80:68:47:0a:c5: b9:c7:da:f2:af:ef:17:83:cb:60:0e:6c:03:e5:86:72:bf:26: 55:0b:ee:d2:98:db:cc:e9:28:0b:7c:2a:51:0d:5a:56:ed:54: 46:a9:27:66:17:26:b4:bc:9f:64:2f:8b:e7:70:8b:ed:9c:ed: 48:fc:8a:ff:1c:34:b6:6f:78:4c:dc:b6:b6:ee:3a:f8:88:5b: 76:50:14:a9:60:e9:98:d5:0e:d5:b1:40:30:3a:e4:56:8e:60: c9:fe:2c:7a:c4:8a:7a:96:ef:50:05:9f:66:8b:e6:c9:5a:7e: a6:74:23:b3:8c:15:63:ca:eb:f8:24:90:92:2f:fc:2e:91:33: 92:aa:f0:d8:5b:8e:b0:63:9e:19:e2:62:ca:b1:81:65:bc:30: 2e:f5:20:80:14:f2:35:a5:eb:4e:57:1d:0c:99:a8:d9:ad:83: 49:af:7d:32:c0:3c:66:8e:f4:5a:61:2d:ec:76:e6:68:d8:fa: 74:2f:2d:8f:00:39:e8:e1:7b:74:f1:a2:a0:eb:9a:c3:8c:8e: ee:3a:92:c6:b8:2e:ed:1a:28:1a:09:68:db:b0:25:cb:6d:92: b7:55:bd:1c -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDMQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTRD NkRERkRENEJBQTUwNDAwRjNBMTE5QTU4MzNDRTAwMjFCREIyRTAeFw0yNTAyMTAx NDEwNTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRFRDIzOTc5OTIzNDlC RDQxNUJGMTkyMzU1MzBFOUM5Q0Y3MDlGODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDd+tlnFOtDEJrjvIQlSj2W4O3nH1LuHDrUcwGcQKq0OCNekdjw pyzZh1HqbCIxdM8T/lE6LBGev2ErQlSGy8ZF7QBC01u1VMRdO4LHaxlmHmaF3vWN CaDyYAS1pYaawNPQTbochwe5b/UY/WQ9Fyuz1T8HYX5zEoL8Qn70EOmjZtjOTSIG HfFY/HPqIp4B+MYRGaGzsz8w/21i5Pr+sdppS0MImOZWvcluHcSkwL89U7omHPkN nXqqGK7+CAdw9aoN9SqFuqrZ4is1V5/2ul/j3I4IFpDKjR+HRaXZ6Z08yZpTkUAZ nlpwxI1/yplTtoIskK3ifGoKJyh90ncfuNafAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUTtI5eZI0m9QVvxkjVTDpyc9wn4MwHwYDVR0jBBgwFoAUlMbd/dS6pQQA86EZ pYM84AIb2y4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRURUTlMv bE1iZF9kUzZwUVFBODZFWnBZTTg0QUliMnk0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9sTWJkX2RTNnBRUUE4NkVacFlNODRBSWIyeTQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FRFROUy9UdEk1ZVpJMG05UVZ2eGtqVlRE cHljOXduNE0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEdx4Q MA0GCSqGSIb3DQEBCwUAA4IBAQDG1ewUfejsVBiXQtIDRxt55fACb30ojwZkhpeZ zW4wgGhHCsW5x9ryr+8Xg8tgDmwD5YZyvyZVC+7SmNvM6SgLfCpRDVpW7VRGqSdm Fya0vJ9kL4vncIvtnO1I/Ir/HDS2b3hM3La27jr4iFt2UBSpYOmY1Q7VsUAwOuRW jmDJ/ix6xIp6lu9QBZ9mi+bJWn6mdCOzjBVjyuv4JJCSL/wukTOSqvDYW46wY54Z 4mLKsYFlvDAu9SCAFPI1petOVx0MmajZrYNJr30ywDxmjvRaYS3sduZo2Pp0Ly2P ADno4Xt08aKg65rDjI7uOpLGuC7tGigaCWjbsCXLbZK3Vb0c -----END CERTIFICATE-----Generated at Fri Apr 18 23:58:41 2025 by rpki-client