$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/1vNvhlV1kW9uL2ZlUCL-9KLu-NE.roa File: 1vNvhlV1kW9uL2ZlUCL-9KLu-NE.roa (raw, json) Hash identifier: Dh+XUpO1aZj0Jd7NtOdSPQHco7igtLR/qZLeqC+I0BU= Subject key identifier: D6:F3:6F:86:55:75:91:6F:6E:2F:66:65:50:22:FE:F4:A2:EE:F8:D1 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1253 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/1vNvhlV1kW9uL2ZlUCL-9KLu-NE.roa Signing time: Mon 10 Feb 2025 14:28:17 +0000 ROA not before: Mon 10 Feb 2025 14:28:17 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 60.244.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4691 (0x1253) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:28:17 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D6F36F865575916F6E2F66655022FEF4A2EEF8D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4a:1c:83:f7:a4:74:aa:ba:35:21:37:64:59: 49:d7:2a:27:7d:69:97:59:09:07:5e:54:f7:0e:b4: 28:c0:22:2a:d0:e9:95:a2:b6:db:28:aa:88:5a:bd: 3c:4a:65:83:18:9c:46:42:54:4f:ca:cd:d9:34:dc: e4:4c:34:90:7e:55:7e:27:b8:aa:fc:88:23:e6:f0: a0:10:50:0b:aa:1b:db:03:19:ec:5b:3e:05:9d:c7: 2a:5f:7b:bb:70:15:2d:da:e6:af:88:a2:ab:e4:b2: 52:5d:5e:d7:0c:1c:a7:59:63:e6:5a:61:1b:91:77: e0:99:78:de:e7:67:e3:76:67:3c:46:49:82:c9:50: 83:5a:19:1c:d5:9f:ab:c9:94:ee:f2:f0:71:4b:bc: 96:db:bb:ca:d5:00:c6:81:36:18:b1:be:e1:16:80: 65:f6:02:02:32:00:75:46:98:c4:17:15:5e:82:17: 28:f6:63:05:0e:d0:d8:58:39:f7:84:2c:d3:64:ef: e0:c0:46:f2:6e:5e:4a:c8:77:12:ac:e3:47:1a:42: 1a:9d:52:1d:1d:2d:4f:6f:34:ae:9c:e9:71:54:c4: 6a:0a:6d:fe:ef:77:4f:10:cc:44:d1:6b:1e:54:ad: be:a7:ac:0e:ba:3f:b4:19:92:e3:3e:1e:5e:29:d3: 97:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:F3:6F:86:55:75:91:6F:6E:2F:66:65:50:22:FE:F4:A2:EE:F8:D1 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/1vNvhlV1kW9uL2ZlUCL-9KLu-NE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.244.0.0/17 Signature Algorithm: sha256WithRSAEncryption 0f:28:fb:bf:ae:40:00:d1:f3:53:49:9b:f8:49:eb:3d:35:ba: 84:7f:8d:69:50:6a:ff:66:ca:71:c2:03:21:74:64:ec:46:f7: 31:aa:cb:67:41:fe:c5:6c:8c:5a:0a:43:62:8b:89:e7:52:70: c7:1b:ac:c4:97:50:b4:07:27:4d:51:6f:0d:ad:0c:41:fa:e1: 59:08:80:ea:c1:82:80:4d:f4:7c:8d:91:97:32:3e:f7:d2:b8: 1c:ef:11:53:f8:58:4b:77:4c:84:25:6b:2e:ca:d7:23:18:9a: 1d:11:e4:c1:0e:82:9c:ef:70:35:41:c7:63:53:77:ab:df:29: 5f:c3:fc:80:29:4c:7a:60:d2:9d:ce:db:3f:c3:d1:6f:95:27: 8b:81:cb:65:89:f5:a6:96:f0:98:fc:09:df:4a:07:74:39:ac: 92:9f:72:45:66:aa:13:1b:76:e4:9e:fd:d9:6c:31:cb:fc:02: fd:5e:64:62:46:9d:e4:b9:33:60:d7:bd:8b:fb:c5:17:42:15: ec:0c:46:b6:0e:56:a6:b5:df:b7:5c:5d:cc:64:54:27:a3:2b: 8e:7d:e9:c6:d2:e4:09:33:85:51:b5:e8:72:32:9d:2d:85:ab: e7:a1:02:3b:e8:1e:3d:7c:f8:3b:05:63:24:03:0c:04:c7:04: ae:3e:73:a0 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICElMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI4MTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ2RjM2Rjg2NTU3NTkx NkY2RTJGNjY2NTUwMjJGRUY0QTJFRUY4RDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGShyD96R0qro1ITdkWUnXKid9aZdZCQdeVPcOtCjAIirQ6ZWi ttsoqohavTxKZYMYnEZCVE/Kzdk03ORMNJB+VX4nuKr8iCPm8KAQUAuqG9sDGexb PgWdxypfe7twFS3a5q+IoqvkslJdXtcMHKdZY+ZaYRuRd+CZeN7nZ+N2ZzxGSYLJ UINaGRzVn6vJlO7y8HFLvJbbu8rVAMaBNhixvuEWgGX2AgIyAHVGmMQXFV6CFyj2 YwUO0NhYOfeELNNk7+DARvJuXkrIdxKs40caQhqdUh0dLU9vNK6c6XFUxGoKbf7v d08QzETRax5Urb6nrA66P7QZkuM+Hl4p05cJAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU1vNvhlV1kW9uL2ZlUCL+9KLu+NEwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzF2TnZobFYxa1c5dUwyWmxVQ0wtOUtM dS1ORS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAc89AAwDQYJ KoZIhvcNAQELBQADggEBAA8o+7+uQADR81NJm/hJ6z01uoR/jWlQav9mynHCAyF0 ZOxG9zGqy2dB/sVsjFoKQ2KLiedScMcbrMSXULQHJ01Rbw2tDEH64VkIgOrBgoBN 9HyNkZcyPvfSuBzvEVP4WEt3TIQlay7K1yMYmh0R5MEOgpzvcDVBx2NTd6vfKV/D /IApTHpg0p3O2z/D0W+VJ4uBy2WJ9aaW8Jj8Cd9KB3Q5rJKfckVmqhMbduSe/dls Mcv8Av1eZGJGneS5M2DXvYv7xRdCFewMRrYOVqa137dcXcxkVCejK4596cbS5Akz hVG16HIynS2Fq+ehAjvoHj18+DsFYyQDDATHBK4+c6A= -----END CERTIFICATE-----Generated at Mon Apr 7 20:44:38 2025 by rpki-client