$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EDTNS/rnlCDzNXcPjhb9z5Fk6lE1XWtPY.roa File: rnlCDzNXcPjhb9z5Fk6lE1XWtPY.roa (raw, json) Hash identifier: 2k/XcAuUpabVSSsPUi3LRCI4gJZtEjWxGxsIKhl8foQ= Subject key identifier: AE:79:42:0F:33:57:70:F8:E1:6F:DC:F9:16:4E:A5:13:55:D6:B4:F6 Certificate issuer: /CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E Certificate serial: 0CC2 Authority key identifier: 94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/rnlCDzNXcPjhb9z5Fk6lE1XWtPY.roa Signing time: Mon 10 Feb 2025 14:10:56 +0000 ROA not before: Mon 10 Feb 2025 14:10:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18411 IP address blocks: 61.56.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3266 (0xcc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E Validity Not Before: Feb 10 14:10:56 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AE79420F335770F8E16FDCF9164EA51355D6B4F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:86:1a:4b:18:f0:58:19:4b:f3:4f:50:46:12: 6a:91:03:06:ea:ec:ed:45:24:7e:c6:6a:d3:97:92: 67:99:5a:a7:8e:73:d6:f2:df:bf:73:44:f9:44:9c: 70:e6:1c:9b:bb:18:9e:8f:4a:a4:f4:89:9d:57:c0: 0b:77:e8:f4:c7:5f:8e:75:b0:6e:40:d3:90:a0:1b: 49:33:8f:14:6d:88:d1:f5:91:ce:50:ed:50:07:3c: 92:77:2b:ab:06:a0:6f:2a:39:87:25:3c:9c:f6:ac: 0d:64:eb:6b:1e:a3:36:ab:a6:17:27:8a:34:81:83: 76:dd:4f:18:41:83:f1:f7:0c:5e:42:68:a1:82:f8: 44:88:b7:a4:bd:f1:29:44:9a:6e:88:7b:07:5a:0c: 7d:07:29:fb:dc:c4:a5:30:d8:99:ef:67:1b:ae:09: 6f:79:2e:16:28:48:35:47:49:17:3e:30:37:0e:1d: ac:85:05:b9:17:fc:83:94:7b:f0:33:f1:42:4f:3d: 6b:e0:69:86:de:19:b9:32:03:cc:5d:8a:af:38:6c: 0d:ab:e8:23:f3:07:3b:75:3a:03:86:ca:98:d4:82: d4:45:c4:10:dd:4f:99:b8:1b:5f:7e:ff:aa:d9:40: e0:fb:30:1b:83:b3:98:1f:6e:6a:da:6d:2d:25:85: f1:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:79:42:0F:33:57:70:F8:E1:6F:DC:F9:16:4E:A5:13:55:D6:B4:F6 X509v3 Authority Key Identifier: keyid:94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/rnlCDzNXcPjhb9z5Fk6lE1XWtPY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.18.0/24 Signature Algorithm: sha256WithRSAEncryption 79:b2:b0:93:4d:aa:c8:2d:2a:9c:9c:90:96:a7:cf:b0:d0:8b: 2f:0c:e0:65:d1:4d:fb:4a:f2:39:39:1d:95:6f:b2:af:70:48: 18:a5:44:85:cb:84:42:a4:04:91:73:ce:8a:c1:d4:35:9f:b4: f1:80:82:c5:6e:6b:d2:01:46:ce:d5:fc:0b:8c:90:aa:e3:06: 59:ca:0a:ab:cf:d7:84:33:3f:24:c4:bb:1b:39:8e:bf:e5:9c: 41:0c:15:24:c0:32:34:4d:fe:70:d8:bd:db:e2:0f:98:3d:0b: 3d:01:93:6e:c7:de:86:24:81:b1:57:e4:9d:8d:d6:9f:1f:8b: 62:4c:09:13:30:ed:47:78:b3:16:e8:56:15:ff:ca:f4:d7:e8: 78:17:26:26:f7:f7:56:94:51:38:58:31:53:f4:29:6f:ce:6d: 66:04:cd:a1:b9:e3:c1:5a:07:15:c4:22:97:7c:a9:c3:e5:97: 90:48:e3:1a:63:d8:56:70:16:e0:88:79:f7:73:d8:15:2e:a1: 9e:53:5b:d4:19:49:bf:e4:2d:ad:46:24:d8:37:e1:1b:7e:8e: ee:c4:bb:ff:5d:3b:12:6c:8f:2a:25:7c:8b:69:31:99:ef:6d: ab:77:85:de:fd:ff:17:ce:96:11:69:6c:8a:2e:a6:80:66:48: 28:10:c2:9a -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDMIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTRD NkRERkRENEJBQTUwNDAwRjNBMTE5QTU4MzNDRTAwMjFCREIyRTAeFw0yNTAyMTAx NDEwNTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFFNzk0MjBGMzM1Nzcw RjhFMTZGRENGOTE2NEVBNTEzNTVENkI0RjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1hhpLGPBYGUvzT1BGEmqRAwbq7O1FJH7GatOXkmeZWqeOc9by 379zRPlEnHDmHJu7GJ6PSqT0iZ1XwAt36PTHX451sG5A05CgG0kzjxRtiNH1kc5Q 7VAHPJJ3K6sGoG8qOYclPJz2rA1k62seozarphcnijSBg3bdTxhBg/H3DF5CaKGC +ESIt6S98SlEmm6IewdaDH0HKfvcxKUw2JnvZxuuCW95LhYoSDVHSRc+MDcOHayF BbkX/IOUe/Az8UJPPWvgaYbeGbkyA8xdiq84bA2r6CPzBzt1OgOGypjUgtRFxBDd T5m4G19+/6rZQOD7MBuDs5gfbmrabS0lhfGdAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUrnlCDzNXcPjhb9z5Fk6lE1XWtPYwHwYDVR0jBBgwFoAUlMbd/dS6pQQA86EZ pYM84AIb2y4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRURUTlMv bE1iZF9kUzZwUVFBODZFWnBZTTg0QUliMnk0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9sTWJkX2RTNnBRUUE4NkVacFlNODRBSWIyeTQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FRFROUy9ybmxDRHpOWGNQamhiOXo1Rms2 bEUxWFd0UFkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPTgS MA0GCSqGSIb3DQEBCwUAA4IBAQB5srCTTarILSqcnJCWp8+w0IsvDOBl0U37SvI5 OR2Vb7KvcEgYpUSFy4RCpASRc86KwdQ1n7TxgILFbmvSAUbO1fwLjJCq4wZZygqr z9eEMz8kxLsbOY6/5ZxBDBUkwDI0Tf5w2L3b4g+YPQs9AZNux96GJIGxV+Sdjdaf H4tiTAkTMO1HeLMW6FYV/8r01+h4FyYm9/dWlFE4WDFT9Clvzm1mBM2huePBWgcV xCKXfKnD5ZeQSOMaY9hWcBbgiHn3c9gVLqGeU1vUGUm/5C2tRiTYN+Ebfo7uxLv/ XTsSbI8qJXyLaTGZ722rd4Xe/f8XzpYRaWyKLqaAZkgoEMKa -----END CERTIFICATE-----Generated at Fri Apr 18 23:58:33 2025 by rpki-client