$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/9p_4o8EPi3IwUzswl7dT6-dY0Es.roa File: 9p_4o8EPi3IwUzswl7dT6-dY0Es.roa (raw, json) Hash identifier: j6ya7MNb/P3N9W/npXrWDfAFs9Lf2gUNvV8+RkzcSUQ= Subject key identifier: F6:9F:F8:A3:C1:0F:8B:72:30:53:3B:30:97:B7:53:EB:E7:58:D0:4B Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1252 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/9p_4o8EPi3IwUzswl7dT6-dY0Es.roa Signing time: Mon 10 Feb 2025 14:28:17 +0000 ROA not before: Mon 10 Feb 2025 14:28:17 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24154 IP address blocks: 211.76.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4690 (0x1252) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:28:17 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F69FF8A3C10F8B7230533B3097B753EBE758D04B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:15:b6:b0:2e:b4:94:46:68:cd:c4:2f:93:b4: 66:4e:31:f4:03:93:7a:7f:29:f0:c1:08:ec:a5:aa: d6:93:a6:98:85:1e:bb:20:b5:25:62:f7:a6:50:0e: 67:55:16:fe:3c:5f:ce:3a:e2:61:d2:b4:c3:55:f1: 8c:e2:81:00:91:e3:eb:0c:24:72:47:3a:81:ab:b2: a0:97:0a:4c:df:7b:85:26:ca:14:86:5c:28:16:20: dc:78:e3:ac:27:f8:60:b8:de:a9:81:ba:67:b8:b5: 3c:1d:b5:38:37:4a:8c:34:e8:60:f6:59:7b:cc:7c: 8f:9d:47:7f:51:d2:92:26:99:4d:df:e0:71:14:08: 16:a9:21:01:72:d8:2c:92:d1:32:01:3b:0b:b4:8e: c4:45:27:10:66:79:48:03:6d:ae:f6:2d:83:26:5c: 3b:d5:a6:2b:29:37:23:ec:88:45:8e:11:88:55:96: fe:2b:59:e8:91:6d:0b:f0:49:7e:82:70:46:fc:c1: 44:98:11:35:f4:0b:a2:fe:00:cb:d5:19:b7:8d:00: 8d:46:2a:42:a8:ca:4f:57:16:23:68:3e:18:d0:76: 6a:87:c3:c6:7b:8e:59:3e:64:b1:e8:36:73:fd:fb: c6:ba:54:b1:99:5e:f9:20:63:f1:48:fd:7a:bb:ea: 5d:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:9F:F8:A3:C1:0F:8B:72:30:53:3B:30:97:B7:53:EB:E7:58:D0:4B X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/9p_4o8EPi3IwUzswl7dT6-dY0Es.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.106.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:65:b5:bd:6d:76:a9:15:62:c0:b7:30:13:08:01:a2:1b:c4: fd:f0:58:bf:14:75:3f:67:22:42:4e:27:09:98:1e:2a:5d:30: f6:c7:c0:e7:fc:f9:59:02:22:fc:99:99:4e:7a:83:fe:5a:25: 58:10:b9:89:01:1e:e0:ed:da:e1:41:71:b0:9a:8f:d1:2a:5b: bb:04:e7:3c:c2:95:ff:b2:d4:7f:1b:34:75:9f:50:d7:f4:60: e7:82:07:37:b5:e1:6b:95:53:f6:e9:62:76:f6:71:fe:dd:64: 2c:fe:c7:8b:2b:7b:a8:91:c9:a3:28:3d:f1:61:74:14:8d:c7: cb:2e:b6:29:fe:0f:39:33:0d:95:5e:9f:ea:b7:8e:1c:93:92: 73:54:61:27:a9:25:00:79:89:1e:16:30:f2:dc:e6:ff:4a:d5: 6d:b7:39:7c:44:21:d6:be:81:da:f5:94:b2:6f:3f:03:73:52: 0d:4a:5d:a5:c9:05:85:d4:18:55:79:41:8e:4a:d3:7b:83:8a: dc:be:a7:7f:e6:34:58:89:d1:32:39:0a:1a:5a:d9:84:df:4a: cf:25:6d:9c:03:e1:83:a4:1c:05:d3:b7:c2:42:c1:f0:56:61: 0f:55:f2:4f:ac:3e:54:66:ec:96:f7:8a:b2:44:4c:f6:47:50: 8a:2a:6b:f0 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICElIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI4MTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY2OUZGOEEzQzEwRjhC NzIzMDUzM0IzMDk3Qjc1M0VCRTc1OEQwNEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDcFbawLrSURmjNxC+TtGZOMfQDk3p/KfDBCOylqtaTppiFHrsg tSVi96ZQDmdVFv48X8464mHStMNV8YzigQCR4+sMJHJHOoGrsqCXCkzfe4UmyhSG XCgWINx446wn+GC43qmBume4tTwdtTg3Sow06GD2WXvMfI+dR39R0pImmU3f4HEU CBapIQFy2CyS0TIBOwu0jsRFJxBmeUgDba72LYMmXDvVpispNyPsiEWOEYhVlv4r WeiRbQvwSX6CcEb8wUSYETX0C6L+AMvVGbeNAI1GKkKoyk9XFiNoPhjQdmqHw8Z7 jlk+ZLHoNnP9+8a6VLGZXvkgY/FI/Xq76l1XAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU9p/4o8EPi3IwUzswl7dT6+dY0EswHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzlwXzRvOEVQaTNJd1V6c3dsN2RUNi1k WTBFcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADTTGowDQYJ KoZIhvcNAQELBQADggEBAJtltb1tdqkVYsC3MBMIAaIbxP3wWL8UdT9nIkJOJwmY HipdMPbHwOf8+VkCIvyZmU56g/5aJVgQuYkBHuDt2uFBcbCaj9EqW7sE5zzClf+y 1H8bNHWfUNf0YOeCBze14WuVU/bpYnb2cf7dZCz+x4sre6iRyaMoPfFhdBSNx8su tin+DzkzDZVen+q3jhyTknNUYSepJQB5iR4WMPLc5v9K1W23OXxEIda+gdr1lLJv PwNzUg1KXaXJBYXUGFV5QY5K03uDity+p3/mNFiJ0TI5Chpa2YTfSs8lbZwD4YOk HAXTt8JCwfBWYQ9V8k+sPlRm7Jb3irJETPZHUIoqa/A= -----END CERTIFICATE-----Generated at Mon Apr 7 20:54:14 2025 by rpki-client