$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/NEdeNP4lOv-gc9Cn3xazVXzFdH0.roa File: NEdeNP4lOv-gc9Cn3xazVXzFdH0.roa (raw, json) Hash identifier: /RzEbm+GlSRYVxIzfj4tk72CsKLm9clOpllUdAZzmD4= Subject key identifier: 34:47:5E:34:FE:25:3A:FF:A0:73:D0:A7:DF:16:B3:55:7C:C5:74:7D Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 120A Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/NEdeNP4lOv-gc9Cn3xazVXzFdH0.roa Signing time: Mon 10 Feb 2025 14:28:00 +0000 ROA not before: Mon 10 Feb 2025 14:28:00 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9674 IP address blocks: 2401:e180::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4618 (0x120a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:28:00 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=34475E34FE253AFFA073D0A7DF16B3557CC5747D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b1:2a:45:03:bc:fc:46:58:41:41:fb:c1:03: d3:ee:6c:9b:af:f6:a5:2c:92:eb:82:09:28:88:f1: 59:07:ab:07:af:92:28:77:d9:70:27:8d:5b:2b:82: 35:77:a4:5d:55:8a:a2:b1:36:a6:ad:26:3c:78:d3: ab:e3:85:82:e4:71:db:46:83:d8:c1:58:0a:2b:e5: 3f:7a:08:b4:a9:27:db:9b:2b:6f:15:8e:12:51:1b: a2:3f:2c:d2:2d:df:e3:d8:f3:d2:15:aa:da:70:1f: 56:80:a4:91:30:51:1a:ce:83:6b:67:0e:af:44:0a: 71:90:5a:3c:20:d4:04:c6:33:b9:ff:b6:a6:7a:2f: 87:2c:3e:21:d0:5f:c6:80:e9:9e:a4:1f:75:c6:cc: 92:6f:58:7f:69:75:ed:cc:17:2b:3a:90:0b:b8:81: d5:3e:ed:cd:29:7b:13:f3:11:08:64:7a:e4:c1:84: 52:a7:ea:3b:93:75:e2:f6:00:02:f7:54:e7:67:e6: 60:bf:c2:e6:05:78:ce:05:b9:56:b8:93:c5:ea:b5: e5:a8:b0:ea:8d:1d:9c:74:32:ba:b9:d8:1d:bf:05: 85:ef:98:4b:82:53:12:38:1d:93:07:7b:70:86:57: f0:c7:7a:58:f6:be:19:db:7b:06:2c:d0:7d:d1:aa: ad:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:47:5E:34:FE:25:3A:FF:A0:73:D0:A7:DF:16:B3:55:7C:C5:74:7D X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/NEdeNP4lOv-gc9Cn3xazVXzFdH0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:e180::/32 Signature Algorithm: sha256WithRSAEncryption 10:d9:b8:ea:34:d1:bd:9d:49:7a:1a:18:c2:a9:99:98:44:a3: 56:be:6b:28:0c:2e:52:c8:24:b0:8d:f4:6c:73:b3:1b:83:5e: 48:5a:1d:8e:2c:26:5c:7c:c6:43:49:2e:90:84:ba:0c:8f:a2: d9:7d:96:9d:39:48:a7:1e:4d:7e:07:d8:0a:36:8e:2f:53:51: e1:22:e6:42:93:a1:a5:88:fd:41:f5:c2:7f:b0:d1:b4:98:6a: d3:7c:f1:98:54:d9:0b:a3:f5:8a:72:c7:bc:49:44:6c:bd:e7: 24:fc:b6:cc:5d:14:f9:6a:ce:95:35:08:d8:53:0f:85:6f:eb: bc:df:7d:48:ca:80:4f:2a:7a:c8:58:09:95:20:b0:70:fe:d6: 27:2a:e0:10:d8:35:ea:4d:42:4b:7e:98:cf:f3:ab:7b:2e:cc: 69:6b:43:84:59:30:d8:4e:88:cd:e4:fa:68:7f:b8:d1:9a:bb: d2:70:63:03:7b:0e:b5:8d:f2:2b:8e:ba:b2:d9:7f:fb:9f:91: 56:df:bb:ad:85:7b:8e:88:ed:bb:ef:e6:e9:b9:20:18:ed:1e: 1c:88:d4:06:b8:5e:70:38:cd:34:12:f2:2a:6a:2d:f2:1f:39: 8d:ec:1e:b8:16:95:99:b8:b4:d5:cc:f0:ba:5d:e9:ae:19:5d: 30:6b:9a:43 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICEgowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI4MDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM0NDc1RTM0RkUyNTNB RkZBMDczRDBBN0RGMTZCMzU1N0NDNTc0N0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLsSpFA7z8RlhBQfvBA9PubJuv9qUskuuCCSiI8VkHqwevkih3 2XAnjVsrgjV3pF1ViqKxNqatJjx406vjhYLkcdtGg9jBWAor5T96CLSpJ9ubK28V jhJRG6I/LNIt3+PY89IVqtpwH1aApJEwURrOg2tnDq9ECnGQWjwg1ATGM7n/tqZ6 L4csPiHQX8aA6Z6kH3XGzJJvWH9pde3MFys6kAu4gdU+7c0pexPzEQhkeuTBhFKn 6juTdeL2AAL3VOdn5mC/wuYFeM4FuVa4k8XqteWosOqNHZx0Mrq52B2/BYXvmEuC UxI4HZMHe3CGV/DHelj2vhnbewYs0H3Rqq2BAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUNEdeNP4lOv+gc9Cn3xazVXzFdH0wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL05FZGVOUDRsT3YtZ2M5Q24zeGF6Vlh6 RmRIMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAeGAMA0G CSqGSIb3DQEBCwUAA4IBAQAQ2bjqNNG9nUl6GhjCqZmYRKNWvmsoDC5SyCSwjfRs c7Mbg15IWh2OLCZcfMZDSS6QhLoMj6LZfZadOUinHk1+B9gKNo4vU1HhIuZCk6Gl iP1B9cJ/sNG0mGrTfPGYVNkLo/WKcse8SURsveck/LbMXRT5as6VNQjYUw+Fb+u8 331IyoBPKnrIWAmVILBw/tYnKuAQ2DXqTUJLfpjP86t7Lsxpa0OEWTDYTojN5Ppo f7jRmrvScGMDew61jfIrjrqy2X/7n5FW37uthXuOiO277+bpuSAY7R4ciNQGuF5w OM00EvIqai3yHzmN7B64FpWZuLTVzPC6XemuGV0wa5pD -----END CERTIFICATE-----Generated at Mon Apr 7 20:51:55 2025 by rpki-client