$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EDTNS/XK8cYSmmP7C6dZgjg1k27NrlqoI.roa File: XK8cYSmmP7C6dZgjg1k27NrlqoI.roa (raw, json) Hash identifier: EdnC1tzjWDDJ48ZQu+rrvkqgutv0hTZxZz6H2tGiI9U= Subject key identifier: 5C:AF:1C:61:29:A6:3F:B0:BA:75:98:23:83:59:36:EC:DA:E5:AA:82 Certificate issuer: /CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E Certificate serial: 0CC1 Authority key identifier: 94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/XK8cYSmmP7C6dZgjg1k27NrlqoI.roa Signing time: Mon 10 Feb 2025 14:10:56 +0000 ROA not before: Mon 10 Feb 2025 14:10:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18411 IP address blocks: 61.56.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3265 (0xcc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E Validity Not Before: Feb 10 14:10:56 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5CAF1C6129A63FB0BA759823835936ECDAE5AA82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:76:ee:38:ab:a0:0d:2c:7e:f4:77:bf:92:13: 9a:cd:56:de:2b:07:73:d4:b5:52:dc:ad:47:71:9b: 43:69:c1:67:8c:d3:d7:7e:fb:d6:7a:a8:b2:dc:1c: c9:49:b4:b8:b8:92:f4:b8:66:53:0e:e3:df:76:19: ba:10:23:2d:20:57:19:18:40:4b:3a:0e:2f:37:1f: 90:66:3c:9a:b9:50:4f:19:e8:0e:94:bf:98:44:1c: bb:35:6e:ed:d1:e4:fd:b1:ba:29:5f:cb:dd:46:26: ac:51:a0:b5:1e:96:a8:65:4d:3c:21:cd:23:ae:4b: 69:95:a6:2f:b8:fa:fd:df:23:c4:99:6e:31:c2:9c: 55:44:21:ac:51:c1:6a:ae:1d:51:70:e9:7d:88:b7: 08:45:5c:2e:57:aa:66:49:75:9a:85:e8:17:65:5f: 07:04:f2:1e:f8:f2:68:bd:21:8f:64:f1:80:a0:86: 6d:54:e7:fa:61:21:c0:4b:ce:ac:ef:c5:f0:8a:b9: cd:48:61:83:9e:c6:c9:90:2f:ed:c0:b4:fe:0a:74: b7:81:90:50:5e:0e:b4:1b:a3:ef:12:5a:ec:01:a3: 43:1b:5e:8a:a3:af:98:6d:b7:06:e5:1b:b1:2d:d1: d0:46:df:35:e0:ee:9e:d1:03:c6:da:60:db:a7:9b: a9:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:AF:1C:61:29:A6:3F:B0:BA:75:98:23:83:59:36:EC:DA:E5:AA:82 X509v3 Authority Key Identifier: keyid:94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/XK8cYSmmP7C6dZgjg1k27NrlqoI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.16.0/20 Signature Algorithm: sha256WithRSAEncryption 94:ea:54:04:bb:e6:e2:76:ce:d9:e1:0b:fa:cf:34:37:12:7f: 50:7a:93:47:83:3f:8c:87:af:e3:bc:df:5a:e1:f3:6c:2d:48: d1:e5:3f:36:ac:d4:7e:cf:c2:74:b9:28:8f:56:1e:73:8d:b3: cc:32:b5:ab:e3:97:21:14:f3:96:d7:8d:80:ee:e4:16:fc:00: fa:57:d1:b4:97:a9:07:73:a8:84:0f:31:24:85:94:4d:36:4b: 9d:01:76:ca:03:37:7e:2b:7e:48:f9:a4:e6:b9:35:d1:12:9f: 26:96:0e:99:9a:48:5f:f6:7b:87:86:c7:0b:fe:f8:14:a8:0c: be:cf:af:92:58:1f:7c:04:e0:db:2b:3a:96:51:07:f5:53:33: b7:8a:65:5b:ba:f6:b1:0e:5c:16:e5:b5:37:b9:57:40:02:52: 52:3f:58:54:64:43:c4:02:de:33:5f:6e:4a:36:ef:9f:15:60: a3:d2:7a:4e:88:be:e9:76:50:86:2b:63:3d:56:26:af:28:22: 26:e6:93:db:0b:30:4a:3b:b0:3a:1f:d1:4a:00:58:c6:8a:a6: ae:37:fa:7b:bc:1a:b6:a2:07:07:ec:c7:9d:71:da:cb:60:db: 8e:55:2a:7f:d2:5c:c8:4f:72:9e:af:70:20:1f:4e:3a:60:71: 30:6a:a2:58 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDMEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTRD NkRERkRENEJBQTUwNDAwRjNBMTE5QTU4MzNDRTAwMjFCREIyRTAeFw0yNTAyMTAx NDEwNTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVDQUYxQzYxMjlBNjNG QjBCQTc1OTgyMzgzNTkzNkVDREFFNUFBODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMdu44q6ANLH70d7+SE5rNVt4rB3PUtVLcrUdxm0NpwWeM09d+ +9Z6qLLcHMlJtLi4kvS4ZlMO4992GboQIy0gVxkYQEs6Di83H5BmPJq5UE8Z6A6U v5hEHLs1bu3R5P2xuilfy91GJqxRoLUelqhlTTwhzSOuS2mVpi+4+v3fI8SZbjHC nFVEIaxRwWquHVFw6X2ItwhFXC5XqmZJdZqF6BdlXwcE8h748mi9IY9k8YCghm1U 5/phIcBLzqzvxfCKuc1IYYOexsmQL+3AtP4KdLeBkFBeDrQbo+8SWuwBo0MbXoqj r5httwblG7Et0dBG3zXg7p7RA8baYNunm6nnAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUXK8cYSmmP7C6dZgjg1k27NrlqoIwHwYDVR0jBBgwFoAUlMbd/dS6pQQA86EZ pYM84AIb2y4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRURUTlMv bE1iZF9kUzZwUVFBODZFWnBZTTg0QUliMnk0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9sTWJkX2RTNnBRUUE4NkVacFlNODRBSWIyeTQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FRFROUy9YSzhjWVNtbVA3QzZkWmdqZzFr MjdOcmxxb0kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEPTgQ MA0GCSqGSIb3DQEBCwUAA4IBAQCU6lQEu+bids7Z4Qv6zzQ3En9QepNHgz+Mh6/j vN9a4fNsLUjR5T82rNR+z8J0uSiPVh5zjbPMMrWr45chFPOW142A7uQW/AD6V9G0 l6kHc6iEDzEkhZRNNkudAXbKAzd+K35I+aTmuTXREp8mlg6Zmkhf9nuHhscL/vgU qAy+z6+SWB98BODbKzqWUQf1UzO3imVbuvaxDlwW5bU3uVdAAlJSP1hUZEPEAt4z X25KNu+fFWCj0npOiL7pdlCGK2M9ViavKCIm5pPbCzBKO7A6H9FKAFjGiqauN/p7 vBq2ogcH7MedcdrLYNuOVSp/0lzIT3Ker3AgH046YHEwaqJY -----END CERTIFICATE-----Generated at Fri Apr 18 23:56:39 2025 by rpki-client