$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/AuiBtr3F0JpKRRKCQjjaWI6ntxU.roa File: AuiBtr3F0JpKRRKCQjjaWI6ntxU.roa (raw, json) Hash identifier: YMHxM4NJ9bXfRGMkXhnwT8opFccOWU8D7k/e3VEGnPM= Subject key identifier: 02:E8:81:B6:BD:C5:D0:9A:4A:45:12:82:42:38:DA:58:8E:A7:B7:15 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1239 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/AuiBtr3F0JpKRRKCQjjaWI6ntxU.roa Signing time: Mon 10 Feb 2025 14:28:11 +0000 ROA not before: Mon 10 Feb 2025 14:28:11 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 210.203.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4665 (0x1239) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:28:11 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=02E881B6BDC5D09A4A4512824238DA588EA7B715 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d5:08:40:7d:93:b7:d0:2f:2b:00:64:a5:c9: 75:3f:18:c8:58:93:f0:71:03:0d:79:76:fe:18:60: 7b:64:4a:dc:19:2c:00:a1:9d:5c:cd:f0:12:8b:99: cc:72:17:d0:09:03:da:75:75:1e:cb:77:c1:8f:b4: f4:41:06:43:86:6b:73:3c:78:ad:a2:aa:be:41:f4: 1a:8e:14:65:ca:45:11:b3:b2:28:8d:e4:a6:85:4f: bc:0d:92:73:dc:b6:95:61:a3:cf:67:66:02:b5:89: 5e:d1:df:6b:eb:5d:8c:00:21:dd:83:46:4f:5d:2f: 49:6b:70:8a:9a:10:d0:42:46:d4:a5:8a:61:d5:d2: c7:3a:ab:ae:8e:91:31:76:03:19:9a:44:9a:49:9c: 2a:b0:bc:9c:b8:5e:a4:dd:66:26:01:68:aa:1c:98: 5d:cb:cd:57:3c:63:ca:66:4c:c4:b4:a1:9e:43:35: d8:06:f4:b4:d4:58:0a:2c:bf:3b:94:4a:14:d2:4f: 94:d1:c3:1d:37:0e:41:eb:22:ac:17:e1:5d:ec:0a: 15:0f:e5:66:37:97:5a:c8:18:8e:99:f7:85:22:db: 29:6f:ea:c0:86:55:3c:94:87:eb:0d:37:48:53:75: da:ed:e9:b4:d0:bd:d4:f5:bf:3e:c0:30:61:f1:d2: 6d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:E8:81:B6:BD:C5:D0:9A:4A:45:12:82:42:38:DA:58:8E:A7:B7:15 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/AuiBtr3F0JpKRRKCQjjaWI6ntxU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.203.0.0/17 Signature Algorithm: sha256WithRSAEncryption 8c:45:ef:53:7f:94:75:0b:cc:6a:19:e0:ba:3d:a4:0b:fb:4e: f5:5c:5d:fa:e4:ba:28:26:1a:0c:eb:e3:cd:88:b2:80:60:6a: c2:3f:60:18:60:c5:53:d0:92:8e:60:22:89:ef:0f:ea:28:90: 8d:44:a8:92:1f:ef:18:b5:30:73:e5:f4:5b:c6:2d:61:f4:86: 68:5a:7c:3f:de:d4:3c:84:38:a8:38:a5:0d:4e:6b:ea:a8:79: eb:c8:15:a1:61:c4:bb:61:ec:a0:fb:e2:3e:38:ec:bd:68:c0: 7c:4c:78:9e:b2:f3:fd:2d:cd:c0:6b:42:6b:ab:12:78:45:7b: a0:89:c8:50:b9:0d:d4:34:c3:01:c8:82:94:5c:09:b2:90:4f: 01:7f:0d:5f:ff:e6:7c:ff:3d:9d:15:18:34:fe:b9:2b:09:fd: eb:fe:fb:cb:a3:7e:f7:48:58:bd:fa:27:08:3c:d9:79:17:e6: fa:80:33:6e:99:f2:2f:53:99:22:a8:a8:84:86:1d:f6:04:1a: f6:31:21:df:8e:88:c0:18:c4:da:7a:e4:a0:b2:90:37:b8:ed: bd:8a:41:23:b9:8d:8b:a0:00:01:bf:02:0d:5a:f2:1c:d7:c1: ec:89:df:17:4f:0a:90:d5:80:5a:34:90:7d:43:5a:9c:4a:86: 36:29:16:64 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEjkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI4MTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDAyRTg4MUI2QkRDNUQw OUE0QTQ1MTI4MjQyMzhEQTU4OEVBN0I3MTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDF1QhAfZO30C8rAGSlyXU/GMhYk/BxAw15dv4YYHtkStwZLACh nVzN8BKLmcxyF9AJA9p1dR7Ld8GPtPRBBkOGa3M8eK2iqr5B9BqOFGXKRRGzsiiN 5KaFT7wNknPctpVho89nZgK1iV7R32vrXYwAId2DRk9dL0lrcIqaENBCRtSlimHV 0sc6q66OkTF2AxmaRJpJnCqwvJy4XqTdZiYBaKocmF3LzVc8Y8pmTMS0oZ5DNdgG 9LTUWAosvzuUShTST5TRwx03DkHrIqwX4V3sChUP5WY3l1rIGI6Z94Ui2ylv6sCG VTyUh+sNN0hTddrt6bTQvdT1vz7AMGHx0m1HAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUAuiBtr3F0JpKRRKCQjjaWI6ntxUwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0F1aUJ0cjNGMEpwS1JSS0NRamphV0k2 bnR4VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAfSywAwDQYJ KoZIhvcNAQELBQADggEBAIxF71N/lHULzGoZ4Lo9pAv7TvVcXfrkuigmGgzr482I soBgasI/YBhgxVPQko5gIonvD+ookI1EqJIf7xi1MHPl9FvGLWH0hmhafD/e1DyE OKg4pQ1Oa+qoeevIFaFhxLth7KD74j447L1owHxMeJ6y8/0tzcBrQmurEnhFe6CJ yFC5DdQ0wwHIgpRcCbKQTwF/DV//5nz/PZ0VGDT+uSsJ/ev++8ujfvdIWL36Jwg8 2XkX5vqAM26Z8i9TmSKoqISGHfYEGvYxId+OiMAYxNp65KCykDe47b2KQSO5jYug AAG/Ag1a8hzXweyJ3xdPCpDVgFo0kH1DWpxKhjYpFmQ= -----END CERTIFICATE-----Generated at Mon Apr 7 20:49:27 2025 by rpki-client