$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/MIbOZcuqWTd1SNyBqz0gb25IGQU.roa File: MIbOZcuqWTd1SNyBqz0gb25IGQU.roa (raw, json) Hash identifier: 33whH9FiI0RWrsxuOEu8SPq4LObSTaUW4JgxOWYJ5eU= Subject key identifier: 30:86:CE:65:CB:AA:59:37:75:48:DC:81:AB:3D:20:6F:6E:48:19:05 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 11E4 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/MIbOZcuqWTd1SNyBqz0gb25IGQU.roa Signing time: Mon 10 Feb 2025 14:27:50 +0000 ROA not before: Mon 10 Feb 2025 14:27:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7482 IP address blocks: 60.244.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 18:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4580 (0x11e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:27:50 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3086CE65CBAA59377548DC81AB3D206F6E481905 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:fa:5f:40:8e:27:c0:1d:5a:9c:7c:15:13:a0: 41:1f:e0:b6:6d:03:a0:e7:cd:25:71:8b:12:ea:7b: e4:52:52:19:5e:9d:28:1f:a5:73:62:9a:ac:e4:6a: bd:0f:1b:23:c9:07:7a:62:40:9d:78:2e:5d:93:7e: 0f:e3:92:93:70:53:9d:48:58:b0:a4:3a:3f:d6:dd: 98:4e:99:8e:ce:6e:13:f4:6e:7d:28:bb:07:ee:1b: 15:53:88:83:bf:b6:c1:59:06:f1:1c:f5:01:cb:bb: 91:0e:7a:5e:62:78:d2:da:8e:04:b9:b5:4a:bb:08: a3:e0:07:28:ff:f5:ae:71:9c:00:29:69:12:bc:23: e3:5c:f0:01:a4:01:73:a9:b4:98:44:bb:71:d5:f9: 93:a5:d5:1b:2c:be:5b:0b:c8:74:18:62:3b:e5:63: 19:26:e0:9e:30:06:e2:4a:ed:e0:f9:b4:a3:b5:49: 96:65:62:5d:6f:e0:fb:c7:3b:21:1d:9f:9e:45:8c: 49:35:c2:c5:e6:5e:cf:28:d3:e3:68:57:94:73:bd: 28:6d:f6:9e:19:fb:f0:af:be:6a:03:12:b4:17:0b: dc:b4:82:a8:2a:3e:58:29:3f:d4:2e:20:5b:62:2b: 2a:00:66:7c:98:c6:1a:2f:73:09:cb:83:a6:c1:b8: 31:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:86:CE:65:CB:AA:59:37:75:48:DC:81:AB:3D:20:6F:6E:48:19:05 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/MIbOZcuqWTd1SNyBqz0gb25IGQU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.244.0.0/17 Signature Algorithm: sha256WithRSAEncryption 38:aa:31:17:18:81:cc:ad:ea:12:4c:df:55:c6:c3:6c:b8:bd: 9c:8f:6a:4b:5c:95:67:7f:99:4a:6e:c4:21:3b:bb:66:c7:7e: b3:72:5e:af:b9:2a:61:d1:6c:a5:97:34:e3:f9:cc:83:23:91: 85:6a:f6:54:28:cb:23:54:8b:ff:66:35:6f:b0:57:63:d0:54: 06:44:cc:62:99:d9:89:bd:40:20:22:88:b9:b5:42:b8:3d:61: d2:6c:78:cc:6c:da:3c:8c:82:b8:82:fb:f3:44:61:c9:0a:e4: 37:cf:c3:94:d7:43:12:7b:0e:02:6a:b2:fb:db:59:40:b8:fc: dc:86:d9:0b:1b:3b:c9:ee:79:1c:29:11:af:5b:bf:61:77:3d: 09:db:29:19:8d:c8:0d:83:39:d9:5e:67:88:37:56:a6:cd:46: a7:92:99:9f:8c:c5:b7:66:2f:7e:f8:aa:8c:be:25:86:c9:dd: 8f:36:3e:b1:db:e0:ec:e6:7b:b5:38:03:90:61:50:99:f7:4d: 88:c5:ae:08:5a:0e:d3:ff:dd:e0:9c:29:90:6f:96:3a:9f:f2: 3f:6a:45:ef:d5:83:53:55:91:fd:27:0f:ad:65:c7:97:3c:3f: 89:51:df:5a:23:59:5c:4e:de:04:9e:23:ea:47:c8:c6:7b:6e: 61:cb:a5:d9 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEeQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI3NTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMwODZDRTY1Q0JBQTU5 Mzc3NTQ4REM4MUFCM0QyMDZGNkU0ODE5MDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDM+l9AjifAHVqcfBUToEEf4LZtA6DnzSVxixLqe+RSUhlenSgf pXNimqzkar0PGyPJB3piQJ14Ll2Tfg/jkpNwU51IWLCkOj/W3ZhOmY7ObhP0bn0o uwfuGxVTiIO/tsFZBvEc9QHLu5EOel5ieNLajgS5tUq7CKPgByj/9a5xnAApaRK8 I+Nc8AGkAXOptJhEu3HV+ZOl1RssvlsLyHQYYjvlYxkm4J4wBuJK7eD5tKO1SZZl Yl1v4PvHOyEdn55FjEk1wsXmXs8o0+NoV5RzvSht9p4Z+/CvvmoDErQXC9y0gqgq PlgpP9QuIFtiKyoAZnyYxhovcwnLg6bBuDG1AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUMIbOZcuqWTd1SNyBqz0gb25IGQUwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL01JYk9aY3VxV1RkMVNOeUJxejBnYjI1 SUdRVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAc89AAwDQYJ KoZIhvcNAQELBQADggEBADiqMRcYgcyt6hJM31XGw2y4vZyPaktclWd/mUpuxCE7 u2bHfrNyXq+5KmHRbKWXNOP5zIMjkYVq9lQoyyNUi/9mNW+wV2PQVAZEzGKZ2Ym9 QCAiiLm1Qrg9YdJseMxs2jyMgriC+/NEYckK5DfPw5TXQxJ7DgJqsvvbWUC4/NyG 2QsbO8nueRwpEa9bv2F3PQnbKRmNyA2DOdleZ4g3VqbNRqeSmZ+MxbdmL374qoy+ JYbJ3Y82PrHb4Ozme7U4A5BhUJn3TYjFrghaDtP/3eCcKZBvljqf8j9qRe/Vg1NV kf0nD61lx5c8P4lR31ojWVxO3gSeI+pHyMZ7bmHLpdk= -----END CERTIFICATE-----Generated at Mon Apr 7 17:48:41 2025 by rpki-client