$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/NUUeIL8YJ_qv5c_7vyMzzzHv7gU.roa File: NUUeIL8YJ_qv5c_7vyMzzzHv7gU.roa (raw, json) Hash identifier: wtYm9K8DON0nNDGIVRUOdFtWPN0zYk2PL0Jq4LshqAI= Subject key identifier: 35:45:1E:20:BF:18:27:FA:AF:E5:CF:FB:BF:23:33:CF:31:EF:EE:05 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1284 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/NUUeIL8YJ_qv5c_7vyMzzzHv7gU.roa Signing time: Mon 10 Feb 2025 14:28:29 +0000 ROA not before: Mon 10 Feb 2025 14:28:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131602 IP address blocks: 218.34.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4740 (0x1284) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:28:29 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=35451E20BF1827FAAFE5CFFBBF2333CF31EFEE05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:7c:78:05:d1:5d:24:31:cd:8c:63:5d:dd:ba: 75:0d:c8:a2:ca:46:36:cd:89:8a:2b:3b:70:a0:96: 60:91:ea:16:00:36:93:d2:a0:0c:84:ed:b1:af:a4: 1b:84:85:26:ab:6b:58:40:a4:06:58:55:61:94:c2: 6f:6f:7a:84:4c:59:a9:12:57:81:83:4f:84:ed:2a: 9a:db:f5:63:73:88:13:57:91:56:ba:be:b7:de:cb: 5a:8d:4a:e7:dc:8c:9f:08:88:5b:4c:00:4e:c1:61: 9f:0e:85:5a:3d:c0:11:a6:03:53:71:64:0d:19:a2: b2:90:b0:7b:de:4e:37:ab:8c:0f:b2:da:7e:c3:ae: 18:ad:d6:02:4f:92:27:58:f5:4b:5e:ae:6e:ff:b5: d5:b8:7f:f8:a3:e4:08:df:b7:0f:b2:99:35:65:aa: 94:1d:bd:b8:e4:8f:f2:91:fe:19:17:86:34:2c:b1: 6c:12:49:c7:8c:f8:87:3d:b6:95:a7:a9:4f:b0:8a: a6:32:32:30:53:64:c5:7d:1f:c7:7f:0c:60:04:59: fe:8f:d7:9a:39:ed:21:33:0f:b9:0c:7c:15:68:09: 21:32:bf:73:47:05:71:28:72:27:ab:71:7d:3b:51: 38:40:43:76:a9:a3:e3:03:c6:e3:33:47:ea:56:57: e0:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:45:1E:20:BF:18:27:FA:AF:E5:CF:FB:BF:23:33:CF:31:EF:EE:05 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/NUUeIL8YJ_qv5c_7vyMzzzHv7gU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.34.156.0/22 Signature Algorithm: sha256WithRSAEncryption cc:9f:09:5a:71:18:11:4b:3b:cf:d1:95:d0:92:3b:db:af:4b: fb:bd:4e:89:8f:9b:cb:e7:65:23:ad:ca:d1:15:05:5a:17:f1: 7c:3a:14:fd:70:67:e9:e2:eb:54:c7:ec:23:42:38:53:98:a2: ff:07:24:ae:79:1d:31:76:74:db:85:94:ea:8d:5f:24:66:cc: e8:1b:6b:46:3e:e4:c3:4e:af:93:d5:eb:7e:69:97:fe:4f:d0: 21:d6:d5:9b:37:d8:09:a1:49:11:98:97:4f:70:71:16:49:4a: e2:89:35:4c:55:d9:18:4f:89:3e:6d:bf:22:17:c3:e1:e0:c5: 49:f9:d0:83:b1:5a:db:a4:71:a0:68:ac:72:4c:bd:20:6c:d4: 0f:52:78:dd:46:3e:d9:5e:2f:ba:00:13:f8:2b:12:f2:b6:29: ee:2c:a5:28:a8:64:41:ec:95:c1:e4:6f:a6:98:4e:60:1c:68: 5d:bf:a1:4a:7f:6e:1e:5c:aa:7c:89:42:0f:54:71:65:b9:08: 4c:69:b5:ff:02:21:ae:21:3e:50:cb:44:25:13:c2:04:42:e6: 09:63:fc:89:83:cb:ad:0d:77:7e:1c:2d:b5:69:2f:45:04:bf: 22:b9:9f:85:3a:ac:d2:9b:e0:ee:67:ed:f4:99:d5:9d:2f:e6: 3c:d8:7c:50 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEoQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI4MjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM1NDUxRTIwQkYxODI3 RkFBRkU1Q0ZGQkJGMjMzM0NGMzFFRkVFMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnfHgF0V0kMc2MY13dunUNyKLKRjbNiYorO3CglmCR6hYANpPS oAyE7bGvpBuEhSara1hApAZYVWGUwm9veoRMWakSV4GDT4TtKprb9WNziBNXkVa6 vrfey1qNSufcjJ8IiFtMAE7BYZ8OhVo9wBGmA1NxZA0ZorKQsHveTjerjA+y2n7D rhit1gJPkidY9Uterm7/tdW4f/ij5Ajftw+ymTVlqpQdvbjkj/KR/hkXhjQssWwS SceM+Ic9tpWnqU+wiqYyMjBTZMV9H8d/DGAEWf6P15o57SEzD7kMfBVoCSEyv3NH BXEociercX07UThAQ3apo+MDxuMzR+pWV+B7AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUNUUeIL8YJ/qv5c/7vyMzzzHv7gUwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL05VVWVJTDhZSl9xdjVjXzd2eU16enpI djdnVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALaIpwwDQYJ KoZIhvcNAQELBQADggEBAMyfCVpxGBFLO8/RldCSO9uvS/u9TomPm8vnZSOtytEV BVoX8Xw6FP1wZ+ni61TH7CNCOFOYov8HJK55HTF2dNuFlOqNXyRmzOgba0Y+5MNO r5PV635pl/5P0CHW1Zs32AmhSRGYl09wcRZJSuKJNUxV2RhPiT5tvyIXw+HgxUn5 0IOxWtukcaBorHJMvSBs1A9SeN1GPtleL7oAE/grEvK2Ke4spSioZEHslcHkb6aY TmAcaF2/oUp/bh5cqnyJQg9UcWW5CExptf8CIa4hPlDLRCUTwgRC5glj/ImDy60N d34cLbVpL0UEvyK5n4U6rNKb4O5n7fSZ1Z0v5jzYfFA= -----END CERTIFICATE-----Generated at Mon Apr 7 20:51:49 2025 by rpki-client