$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FANTASY/7gOoFuQB240UH2hvjkZvMFyj1Io.roa File: 7gOoFuQB240UH2hvjkZvMFyj1Io.roa (raw, json) Hash identifier: T40a+PfoJYN7yGppPp7SaEbSOGv9mAM45SXGnumeMEY= Subject key identifier: EE:03:A8:16:E4:01:DB:8D:14:1F:68:6F:8E:46:6F:30:5C:A3:D4:8A Certificate issuer: /CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C Certificate serial: 0A33 Authority key identifier: 59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/7gOoFuQB240UH2hvjkZvMFyj1Io.roa Signing time: Mon 10 Feb 2025 13:46:33 +0000 ROA not before: Mon 10 Feb 2025 13:46:33 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131671 IP address blocks: 2405:a0c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2611 (0xa33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C Validity Not Before: Feb 10 13:46:33 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EE03A816E401DB8D141F686F8E466F305CA3D48A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:1f:37:cf:6e:4c:e9:17:df:45:da:6f:84:c8: 5f:26:e1:77:94:c0:99:73:3e:e3:ea:4a:ab:6d:4f: e1:67:aa:4b:7b:12:56:26:1a:74:a7:ad:0a:29:b6: bd:e5:3c:36:75:6d:ae:fe:ae:5c:bb:2d:cd:30:59: 17:49:03:35:19:26:80:42:ae:5b:32:32:24:63:94: 80:45:f2:b5:5b:51:8d:cc:bb:41:14:28:a7:bf:bf: 35:c1:95:fb:d4:7e:24:e4:7e:02:ef:60:6c:6a:6b: 0e:95:02:78:90:14:d0:4e:87:af:da:45:29:00:c0: e8:2f:7a:95:a4:cd:db:f0:14:6f:aa:53:6e:00:fd: 9f:aa:46:dc:7a:e2:c5:98:80:9e:33:57:44:77:66: cb:13:1a:df:9a:81:f3:fa:69:ba:91:f0:b7:f1:34: 9d:dd:2e:13:0f:28:68:18:4d:74:f4:65:de:4f:d0: ff:d7:59:fb:e4:5c:a3:8c:d3:5f:86:52:60:ae:d8: b8:74:4b:70:7a:80:02:a1:4f:b3:43:de:1e:d6:24: 02:64:b5:78:14:d5:92:39:62:c2:b6:dd:08:34:ab: 0c:f1:34:64:1f:7c:0f:4b:a8:97:86:d1:40:8c:32: 5f:b4:3a:bc:bb:36:46:41:2c:bd:83:c3:b9:96:4a: 8d:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:03:A8:16:E4:01:DB:8D:14:1F:68:6F:8E:46:6F:30:5C:A3:D4:8A X509v3 Authority Key Identifier: keyid:59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/7gOoFuQB240UH2hvjkZvMFyj1Io.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:a0c0::/32 Signature Algorithm: sha256WithRSAEncryption 41:4f:26:0e:a1:ce:27:85:83:54:d3:84:02:b5:17:b7:e1:bb: 6a:79:a2:15:3b:b7:c2:c4:c9:c7:71:f3:a8:2a:87:51:22:c9: 4a:b2:a9:66:4a:d0:5d:a7:74:66:24:07:a6:48:02:77:c0:fc: b9:62:bb:b2:b1:94:86:56:da:60:43:11:3e:b0:0a:d5:f3:ef: 4c:76:6b:42:9e:1b:92:64:d1:3a:8a:23:b5:5e:dd:4a:f9:4c: f0:f1:2f:61:3b:6f:f8:b4:13:47:4e:18:ce:d8:8f:f5:8c:9d: c5:db:00:c8:ef:ad:af:76:30:cb:e6:5b:cd:f2:95:20:e2:df: 73:4c:bd:c6:ed:ec:fb:ec:a3:37:fa:55:f3:37:b8:44:4b:83: 14:35:94:8d:38:01:68:bf:99:e6:8e:13:d7:76:bd:57:6e:ae: c5:72:63:2d:6e:07:2f:a8:95:3d:3d:4f:c3:85:84:29:ac:0b: e1:5c:3b:b8:e1:19:de:fd:a1:22:dc:34:1e:63:ce:16:6e:79: 34:4c:ea:b1:29:e9:f1:fb:80:d8:05:36:16:5e:39:b2:0f:66: 63:f9:bd:3a:59:2e:33:ec:c2:83:5c:8e:59:be:51:60:12:35: c5:23:9d:19:af:76:02:0c:e6:ed:46:54:8f:49:26:6b:6d:12: 9e:d7:96:d5 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICCjMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTlE RUYyQ0Y4MjhGMEQ5QUI2QUQ5NEY0MjYxMzE3NjREMjU0Q0M1QzAeFw0yNTAyMTAx MzQ2MzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVFMDNBODE2RTQwMURC OEQxNDFGNjg2RjhFNDY2RjMwNUNBM0Q0OEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDsHzfPbkzpF99F2m+EyF8m4XeUwJlzPuPqSqttT+Fnqkt7ElYm GnSnrQoptr3lPDZ1ba7+rly7Lc0wWRdJAzUZJoBCrlsyMiRjlIBF8rVbUY3Mu0EU KKe/vzXBlfvUfiTkfgLvYGxqaw6VAniQFNBOh6/aRSkAwOgvepWkzdvwFG+qU24A /Z+qRtx64sWYgJ4zV0R3ZssTGt+agfP6abqR8LfxNJ3dLhMPKGgYTXT0Zd5P0P/X WfvkXKOM01+GUmCu2Lh0S3B6gAKhT7ND3h7WJAJktXgU1ZI5YsK23Qg0qwzxNGQf fA9LqJeG0UCMMl+0Ory7NkZBLL2Dw7mWSo0VAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU7gOoFuQB240UH2hvjkZvMFyj1IowHwYDVR0jBBgwFoAUWd7yz4KPDZq2rZT0 JhMXZNJUzFwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkFOVEFT WS9XZDd5ejRLUERacTJyWlQwSmhNWFpOSlV6RncuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1dkN3l6NEtQRFpxMnJaVDBKaE1YWk5KVXpGdy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0ZBTlRBU1kvN2dPb0Z1UUIyNDBVSDJo dmprWnZNRnlqMUlvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF ACQFoMAwDQYJKoZIhvcNAQELBQADggEBAEFPJg6hzieFg1TThAK1F7fhu2p5ohU7 t8LEycdx86gqh1EiyUqyqWZK0F2ndGYkB6ZIAnfA/Lliu7KxlIZW2mBDET6wCtXz 70x2a0KeG5Jk0TqKI7Ve3Ur5TPDxL2E7b/i0E0dOGM7Yj/WMncXbAMjvra92MMvm W83ylSDi33NMvcbt7Pvsozf6VfM3uERLgxQ1lI04AWi/meaOE9d2vVdursVyYy1u By+olT09T8OFhCmsC+FcO7jhGd79oSLcNB5jzhZueTRM6rEp6fH7gNgFNhZeObIP ZmP5vTpZLjPswoNcjlm+UWASNcUjnRmvdgIM5u1GVI9JJmttEp7XltU= -----END CERTIFICATE-----Generated at Fri Apr 18 23:44:47 2025 by rpki-client