$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/FHDWhyVqTdfycqSb8MYuFM3GAWM.roa File: FHDWhyVqTdfycqSb8MYuFM3GAWM.roa (raw, json) Hash identifier: gWseSiOF6doFSbqmqQPcnbHwK22lMmZsn5kouHMeHtw= Subject key identifier: 14:70:D6:87:25:6A:4D:D7:F2:72:A4:9B:F0:C6:2E:14:CD:C6:01:63 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 120F Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/FHDWhyVqTdfycqSb8MYuFM3GAWM.roa Signing time: Mon 10 Feb 2025 14:28:01 +0000 ROA not before: Mon 10 Feb 2025 14:28:01 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18419 IP address blocks: 124.218.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4623 (0x120f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:28:01 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1470D687256A4DD7F272A49BF0C62E14CDC60163 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:98:fe:23:d8:4d:de:db:72:10:71:28:5f:0f: 72:f9:c9:55:ff:b1:4d:4e:a0:5b:0c:7c:ee:88:2f: 01:b5:88:fc:80:0f:8b:a7:68:45:64:18:06:81:bd: 5f:b0:4a:a6:c8:3a:9d:8f:77:44:2e:c7:79:60:66: b3:3c:1c:d3:4e:c6:f2:58:49:de:b0:97:af:db:49: 46:eb:e2:7a:7c:d0:58:37:be:a1:e6:5a:d1:a7:f9: d4:3a:f3:e9:c2:05:65:d8:17:2d:36:89:0b:0c:75: cd:ac:3a:51:e2:25:59:33:b5:c6:aa:b5:25:9a:15: b5:cd:4c:0b:78:91:0b:c3:87:92:33:a7:58:f5:c0: 61:d2:23:db:14:e8:d7:2c:8f:87:c5:2a:9e:54:ce: bc:7c:52:9f:3a:dc:5e:91:68:32:52:97:25:7e:b6: 4a:31:99:8f:19:c6:f6:eb:f3:28:c8:c0:44:79:e0: ea:92:d8:c1:c4:42:1c:bd:e9:51:31:61:02:c4:0c: d2:5a:f2:3e:c3:ba:31:35:6f:e9:29:c1:9b:ab:d5: 93:c3:ad:fd:40:26:72:d8:4f:d9:c1:aa:35:97:99: 52:53:11:07:13:6e:c1:aa:7c:db:c0:5b:24:6a:ec: cf:1d:a2:f5:0c:13:c9:1a:bb:a1:4b:9f:fb:1a:43: 45:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:70:D6:87:25:6A:4D:D7:F2:72:A4:9B:F0:C6:2E:14:CD:C6:01:63 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/FHDWhyVqTdfycqSb8MYuFM3GAWM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.218.192.0/18 Signature Algorithm: sha256WithRSAEncryption 94:64:60:1d:cb:58:fa:a9:ef:a3:0a:f2:cd:2c:87:07:df:45: 94:4b:ac:7d:65:ba:84:c8:f8:d6:b8:e1:15:57:05:67:d3:a2: b0:73:79:59:66:7a:12:bf:89:60:d9:6e:a8:51:31:eb:3f:ef: 9f:1c:dc:fa:48:af:09:6b:3e:f7:cf:53:d4:e3:6e:38:49:fd: 30:0c:db:8e:21:bd:12:60:b9:f6:27:08:f4:85:74:c5:8e:04: 5d:a6:51:67:48:84:d5:11:4f:e9:ec:9d:ba:4c:44:cc:4d:89: cb:1f:35:73:b6:22:8f:eb:24:e4:64:ed:af:d5:f8:ae:99:4a: e5:63:c2:75:3b:54:a7:be:7c:36:2d:5c:24:e9:fa:ca:8e:0e: 72:f8:7a:79:fc:e7:f5:b9:a9:1e:ad:86:af:75:48:1e:4e:16: ac:d0:1f:4d:cc:94:6f:e3:7f:7e:45:06:9f:2d:ba:80:68:d7: a3:c8:49:69:06:6a:bf:ec:15:fb:bf:ba:c0:9c:73:97:0f:46: 69:56:f0:9e:3d:b7:bd:99:ae:e5:ac:d8:5b:8f:bb:d4:3d:e6: 2c:eb:bb:f1:bf:66:59:65:20:44:0e:02:63:4f:92:4c:01:ab: 3d:98:57:dd:b9:c5:e3:6c:55:6e:09:b7:20:2d:fd:60:a8:f1: 8f:1c:0f:78 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEg8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI4MDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE0NzBENjg3MjU2QTRE RDdGMjcyQTQ5QkYwQzYyRTE0Q0RDNjAxNjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMmP4j2E3e23IQcShfD3L5yVX/sU1OoFsMfO6ILwG1iPyAD4un aEVkGAaBvV+wSqbIOp2Pd0Qux3lgZrM8HNNOxvJYSd6wl6/bSUbr4np80Fg3vqHm WtGn+dQ68+nCBWXYFy02iQsMdc2sOlHiJVkztcaqtSWaFbXNTAt4kQvDh5Izp1j1 wGHSI9sU6Ncsj4fFKp5Uzrx8Up863F6RaDJSlyV+tkoxmY8Zxvbr8yjIwER54OqS 2MHEQhy96VExYQLEDNJa8j7DujE1b+kpwZur1ZPDrf1AJnLYT9nBqjWXmVJTEQcT bsGqfNvAWyRq7M8dovUME8kau6FLn/saQ0VRAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUFHDWhyVqTdfycqSb8MYuFM3GAWMwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0ZIRFdoeVZxVGRmeWNxU2I4TVl1Rk0z R0FXTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ82sAwDQYJ KoZIhvcNAQELBQADggEBAJRkYB3LWPqp76MK8s0shwffRZRLrH1luoTI+Na44RVX BWfTorBzeVlmehK/iWDZbqhRMes/758c3PpIrwlrPvfPU9TjbjhJ/TAM244hvRJg ufYnCPSFdMWOBF2mUWdIhNURT+nsnbpMRMxNicsfNXO2Io/rJORk7a/V+K6ZSuVj wnU7VKe+fDYtXCTp+sqODnL4enn85/W5qR6thq91SB5OFqzQH03MlG/jf35FBp8t uoBo16PISWkGar/sFfu/usCcc5cPRmlW8J49t72ZruWs2FuPu9Q95izru/G/Zlll IEQOAmNPkkwBqz2YV925xeNsVW4JtyAt/WCo8Y8cD3g= -----END CERTIFICATE-----Generated at Mon Apr 7 20:44:50 2025 by rpki-client