$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/0Gdvf3mF68CZYYWSUDlTNyX05C8.roa File: 0Gdvf3mF68CZYYWSUDlTNyX05C8.roa (raw, json) Hash identifier: wwGc6nGSkv/zE1WMaNZN9u9Ri1qXskrbOq6xtRJSFFc= Subject key identifier: D0:67:6F:7F:79:85:EB:C0:99:61:85:92:50:39:53:37:25:F4:E4:2F Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 126A Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/0Gdvf3mF68CZYYWSUDlTNyX05C8.roa Signing time: Mon 10 Feb 2025 14:28:23 +0000 ROA not before: Mon 10 Feb 2025 14:28:23 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7482 IP address blocks: 210.201.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4714 (0x126a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:28:23 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D0676F7F7985EBC0996185925039533725F4E42F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f1:c0:16:40:e5:d9:fa:9e:4c:f7:1d:26:ce: 1c:bd:be:90:26:73:81:f1:f7:4d:df:dd:aa:96:bd: 3b:c2:21:47:f3:5f:60:51:cb:b2:48:a6:60:de:00: db:f3:54:81:0f:b8:69:aa:da:e9:e2:43:49:1e:74: f9:82:0f:49:27:28:30:6f:92:31:ad:e9:88:c9:46: 01:37:5d:54:95:0c:90:5b:56:86:4f:f5:4a:f7:97: 81:4b:3e:22:2c:74:8e:28:a7:4e:82:00:95:0b:87: 8e:4d:d1:5e:e1:e5:df:03:2b:b3:08:e4:04:ef:43: ac:1d:fd:0f:67:9a:79:38:4c:1c:1c:fd:8d:65:cb: dc:b7:92:60:b3:33:9a:a9:b6:6b:48:02:b7:ef:1d: f3:8a:48:52:d6:aa:88:49:ec:9f:bf:3c:ad:f7:14: bf:41:c0:d6:c9:a3:11:83:8e:b6:e9:89:39:f3:f4: 76:8e:30:a4:d6:cc:dd:54:31:e7:14:66:62:6e:ae: 03:98:1c:d7:87:20:fe:cc:2f:eb:d9:30:1d:84:e7: de:d8:92:67:f1:fd:3c:ac:20:ce:e5:5b:aa:07:08: 43:b7:51:fb:00:3f:86:0a:8e:5d:81:59:da:ba:45: 06:13:55:44:7f:2e:d6:e2:6c:e6:04:53:1c:bb:c1: 02:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:67:6F:7F:79:85:EB:C0:99:61:85:92:50:39:53:37:25:F4:E4:2F X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/0Gdvf3mF68CZYYWSUDlTNyX05C8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.201.0.0/16 Signature Algorithm: sha256WithRSAEncryption 64:70:86:1a:a0:fe:89:b9:4a:bd:bd:e9:86:5e:fe:cc:95:d0: 34:90:4d:f4:f5:11:aa:20:7c:2a:05:8b:bf:61:a9:cf:39:bf: a7:ca:64:dc:cd:78:6c:f2:38:d2:f5:39:dd:f8:b0:41:3b:9b: b2:98:00:73:3d:e6:2a:a9:7b:81:d9:a9:9a:55:58:3e:29:3f: c4:33:f3:b8:36:4f:02:20:d4:d7:e0:84:55:b5:0a:36:6d:b5: 1e:f3:7c:0d:11:6b:7c:11:63:b6:af:2e:9c:55:21:f2:57:6d: 94:57:1b:ee:55:81:8e:ad:53:72:ea:09:81:95:9b:7f:3d:07: 0c:dc:bd:c1:7e:ad:44:db:02:8a:71:c3:d1:d6:31:6f:05:7e: 05:09:52:a2:cb:79:f3:f1:11:b5:03:a7:d2:8b:6d:69:29:9c: bb:e4:7f:b7:41:bf:1a:be:ad:20:75:29:87:f2:6f:65:83:77: 9f:79:44:4d:c9:c7:dd:4d:da:27:26:7c:26:60:1f:c0:59:04: 3e:d4:35:f1:88:dd:5c:d3:54:15:8b:95:c2:bb:2a:a5:81:b6: 50:0a:95:7b:c4:33:55:b9:c9:10:09:8e:53:b5:29:0c:e7:fa: 90:cc:70:79:95:6c:81:e4:89:9c:d2:57:72:0c:5d:2b:d9:22: 3c:6a:ad:5b -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICEmowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI4MjNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQwNjc2RjdGNzk4NUVC QzA5OTYxODU5MjUwMzk1MzM3MjVGNEU0MkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC38cAWQOXZ+p5M9x0mzhy9vpAmc4Hx903f3aqWvTvCIUfzX2BR y7JIpmDeANvzVIEPuGmq2uniQ0kedPmCD0knKDBvkjGt6YjJRgE3XVSVDJBbVoZP 9Ur3l4FLPiIsdI4op06CAJULh45N0V7h5d8DK7MI5ATvQ6wd/Q9nmnk4TBwc/Y1l y9y3kmCzM5qptmtIArfvHfOKSFLWqohJ7J+/PK33FL9BwNbJoxGDjrbpiTnz9HaO MKTWzN1UMecUZmJurgOYHNeHIP7ML+vZMB2E597Ykmfx/TysIM7lW6oHCEO3UfsA P4YKjl2BWdq6RQYTVUR/LtbibOYEUxy7wQL1AgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQU0Gdvf3mF68CZYYWSUDlTNyX05C8wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzBHZHZmM21GNjhDWllZV1NVRGxUTnlY MDVDOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDSyTANBgkq hkiG9w0BAQsFAAOCAQEAZHCGGqD+iblKvb3phl7+zJXQNJBN9PURqiB8KgWLv2Gp zzm/p8pk3M14bPI40vU53fiwQTubspgAcz3mKql7gdmpmlVYPik/xDPzuDZPAiDU 1+CEVbUKNm21HvN8DRFrfBFjtq8unFUh8ldtlFcb7lWBjq1TcuoJgZWbfz0HDNy9 wX6tRNsCinHD0dYxbwV+BQlSost58/ERtQOn0ottaSmcu+R/t0G/Gr6tIHUph/Jv ZYN3n3lETcnH3U3aJyZ8JmAfwFkEPtQ18YjdXNNUFYuVwrsqpYG2UAqVe8QzVbnJ EAmOU7UpDOf6kMxweZVsgeSJnNJXcgxdK9kiPGqtWw== -----END CERTIFICATE-----Generated at Mon Apr 7 20:51:49 2025 by rpki-client