$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/DQsXMedRQP3s1eKiYtGpTvO0O4c.roa File: DQsXMedRQP3s1eKiYtGpTvO0O4c.roa (raw, json) Hash identifier: GHQGibDxE7f2+dX4jzYiZpg2S6+Im275duYMQDKP0cU= Subject key identifier: 0D:0B:17:31:E7:51:40:FD:EC:D5:E2:A2:62:D1:A9:4E:F3:B4:3B:87 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 11E3 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/DQsXMedRQP3s1eKiYtGpTvO0O4c.roa Signing time: Mon 10 Feb 2025 14:27:50 +0000 ROA not before: Mon 10 Feb 2025 14:27:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24154 IP address blocks: 210.200.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 18:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4579 (0x11e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:27:50 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0D0B1731E75140FDECD5E2A262D1A94EF3B43B87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:84:8d:0e:1b:2a:05:fa:dc:98:67:67:6a:33: ed:c9:c2:73:01:5e:40:33:e0:c8:34:56:e9:c2:04: d4:cb:7a:78:1a:e2:b0:65:23:34:68:5f:b7:a6:2f: 20:c4:f2:1c:79:10:3e:4e:e0:22:5c:0e:e1:d0:69: 20:cc:8a:78:3f:f2:25:8f:24:ca:3e:b3:6f:67:eb: ad:96:7c:be:9c:50:7a:e2:fd:e2:3e:3c:96:6b:6e: 81:e9:bc:f5:88:d8:11:cb:99:69:cc:98:cf:69:56: e8:5f:11:3e:97:b7:ca:cc:2e:fa:b4:05:82:3b:ff: 03:34:90:f6:f4:ff:5f:63:04:a4:4e:9d:11:39:cf: ed:66:7c:03:2a:c2:6a:34:31:1c:0c:cd:92:41:d7: d7:8a:74:cc:af:5e:cd:63:cc:28:07:11:9d:3b:54: 2b:78:eb:20:6a:15:52:28:56:dd:c1:a3:29:9e:b7: 50:00:f1:9a:80:05:59:a4:bc:f5:f5:d4:3d:40:d8: 28:9d:f5:e8:b7:97:26:89:a1:ea:60:10:cb:73:36: 87:8a:e9:a5:a5:76:4b:89:49:ed:99:c7:81:2b:51: 41:51:4a:86:72:62:4d:9f:8f:30:5c:27:3e:ef:42: a1:85:0e:36:aa:8c:03:d7:98:0c:34:e5:2f:91:82: 43:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:0B:17:31:E7:51:40:FD:EC:D5:E2:A2:62:D1:A9:4E:F3:B4:3B:87 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/DQsXMedRQP3s1eKiYtGpTvO0O4c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.200.0.0/19 Signature Algorithm: sha256WithRSAEncryption c6:c0:f6:3d:ba:01:5d:a1:f3:35:2e:18:87:a2:0a:c6:20:9e: 10:eb:7f:2b:70:2e:56:d8:96:c4:50:8c:c8:da:6f:13:29:0f: cf:c2:79:1e:95:12:e0:db:92:28:f4:a9:dd:7a:ed:38:82:cd: ee:32:2b:0d:ce:59:97:cb:7a:72:c1:72:22:06:3e:e2:bf:2f: eb:ef:a9:07:a4:c5:88:9c:ea:4f:8e:ec:96:0b:38:33:93:ff: 26:67:9b:d9:05:4f:1c:e5:5d:f4:4d:4f:54:f8:e8:56:7a:a2: 2a:4f:67:52:c0:18:f9:42:52:52:64:31:83:67:a7:f7:1d:9b: 39:8d:bf:d0:ff:a8:6f:5e:d5:00:66:b2:93:3d:39:c6:bd:33: a8:32:81:fc:84:84:c5:71:c0:b4:cd:d0:ba:33:76:27:dd:9c: d5:e2:c3:24:ed:ab:9e:ee:87:12:2d:b7:05:b8:ef:bd:ee:84: 31:61:a6:58:a1:63:0d:93:a3:b3:5d:ea:dc:2e:88:e2:be:45: 83:84:f4:0f:f4:5c:68:53:77:d9:2d:69:2f:34:a9:ce:c0:c7: 9d:85:60:dd:6f:c0:4e:12:1d:dd:5d:15:21:7d:12:14:be:c5: ec:0e:93:69:d3:be:f9:3a:9d:0f:ee:77:f1:91:74:04:da:50: e1:6f:53:58 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEeMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI3NTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBEMEIxNzMxRTc1MTQw RkRFQ0Q1RTJBMjYyRDFBOTRFRjNCNDNCODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDwhI0OGyoF+tyYZ2dqM+3JwnMBXkAz4Mg0VunCBNTLenga4rBl IzRoX7emLyDE8hx5ED5O4CJcDuHQaSDMing/8iWPJMo+s29n662WfL6cUHri/eI+ PJZrboHpvPWI2BHLmWnMmM9pVuhfET6Xt8rMLvq0BYI7/wM0kPb0/19jBKROnRE5 z+1mfAMqwmo0MRwMzZJB19eKdMyvXs1jzCgHEZ07VCt46yBqFVIoVt3Boymet1AA 8ZqABVmkvPX11D1A2Cid9ei3lyaJoepgEMtzNoeK6aWldkuJSe2Zx4ErUUFRSoZy Yk2fjzBcJz7vQqGFDjaqjAPXmAw05S+RgkOlAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUDQsXMedRQP3s1eKiYtGpTvO0O4cwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0RRc1hNZWRSUVAzczFlS2lZdEdwVHZP ME80Yy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXSyAAwDQYJ KoZIhvcNAQELBQADggEBAMbA9j26AV2h8zUuGIeiCsYgnhDrfytwLlbYlsRQjMja bxMpD8/CeR6VEuDbkij0qd167TiCze4yKw3OWZfLenLBciIGPuK/L+vvqQekxYic 6k+O7JYLODOT/yZnm9kFTxzlXfRNT1T46FZ6oipPZ1LAGPlCUlJkMYNnp/cdmzmN v9D/qG9e1QBmspM9Oca9M6gygfyEhMVxwLTN0LozdifdnNXiwyTtq57uhxIttwW4 773uhDFhplihYw2To7Nd6twuiOK+RYOE9A/0XGhTd9ktaS80qc7Ax52FYN1vwE4S Hd1dFSF9EhS+xewOk2nTvvk6nQ/ud/GRdATaUOFvU1g= -----END CERTIFICATE-----Generated at Mon Apr 7 17:41:54 2025 by rpki-client