$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/PqL0F0ZyZtJVhmr3bBQPa-T2rRw.roa File: PqL0F0ZyZtJVhmr3bBQPa-T2rRw.roa (raw, json) Hash identifier: 0TwSGuGAa/+BHPF14yuNKWysbvSjJrX6pF/TezdN6iI= Subject key identifier: 3E:A2:F4:17:46:72:66:D2:55:86:6A:F7:6C:14:0F:6B:E4:F6:AD:1C Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1210 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PqL0F0ZyZtJVhmr3bBQPa-T2rRw.roa Signing time: Mon 10 Feb 2025 14:28:01 +0000 ROA not before: Mon 10 Feb 2025 14:28:01 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131591 IP address blocks: 223.22.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4624 (0x1210) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:28:01 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3EA2F417467266D255866AF76C140F6BE4F6AD1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cb:6e:bf:e8:e8:22:3e:13:b4:49:3b:64:10: 28:7a:be:65:de:c3:f6:93:98:b4:65:ba:13:31:01: ed:23:fd:44:6a:54:c2:0d:79:cf:e7:4c:a0:4f:28: f3:7e:63:47:8e:ad:c5:cd:cd:26:de:07:26:9e:28: 9b:da:97:55:dd:72:55:9f:3b:d9:14:24:2b:e7:7c: 48:f2:8a:a3:66:de:9b:3b:3b:d4:9e:6f:99:5d:8f: 3d:d7:c1:84:11:d8:c4:39:74:91:2f:8a:04:de:89: 32:76:73:fb:3d:97:73:5f:97:50:c6:27:3d:cf:8d: 8c:a9:74:7d:0d:98:dc:76:12:7c:42:cf:4e:07:8c: 03:2e:7e:e9:67:32:e6:9c:0c:c5:89:2e:0a:65:c1: 44:04:15:46:c6:40:c3:9c:89:62:a5:f7:f8:a6:94: cb:1a:c2:39:88:d3:b6:fb:4b:59:2e:76:7d:a8:f2: 1e:c0:32:82:ea:8d:eb:e3:a7:65:5d:ad:8a:5a:0c: b8:14:b7:d3:b1:6e:30:f6:50:79:2c:75:23:94:07: eb:de:c3:eb:3b:fb:09:ee:54:77:8f:9e:15:b5:6f: 04:f0:d1:c5:4c:44:d5:1a:80:8d:fb:86:60:1e:af: 74:d6:1a:b8:ed:de:42:80:eb:3c:de:60:5f:a4:81: 5c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:A2:F4:17:46:72:66:D2:55:86:6A:F7:6C:14:0F:6B:E4:F6:AD:1C X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PqL0F0ZyZtJVhmr3bBQPa-T2rRw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.22.32.0/19 Signature Algorithm: sha256WithRSAEncryption 20:bc:c9:2e:d5:c8:2e:f2:0a:55:b0:e5:bc:6c:52:2b:35:96: ac:de:61:09:8f:29:34:64:81:91:9d:8e:d1:d2:c4:ff:78:c7: 4e:e6:77:5b:d8:fd:57:8f:66:ac:0b:66:16:9c:69:00:60:f8: f8:31:74:1f:d7:d9:be:a0:d4:22:36:16:c3:bd:6b:3f:06:d5: 17:c0:23:71:9f:cf:13:f0:4f:19:b4:12:da:a7:24:16:18:3c: 60:20:70:9a:a6:d3:79:91:86:7d:4b:01:30:9d:11:b9:d1:c6: 9b:ea:a4:21:0d:05:be:e3:42:00:f7:fa:62:c4:76:c1:97:48: c7:6d:2b:6e:16:6b:70:3c:24:e7:45:3e:0f:a1:46:56:c7:72: 82:f8:33:31:b0:a5:6c:e1:6d:5d:1f:36:71:db:4d:c6:a7:3d: 04:8b:58:25:c8:42:be:08:99:65:47:fe:23:5c:b0:60:24:88: ee:2e:51:af:44:d5:40:db:31:1b:11:68:3c:28:f4:a2:c2:42: 1f:14:1e:27:e1:b3:3f:a5:e3:11:f1:21:6d:0b:f0:03:be:e3: 13:46:bb:7f:a2:38:0d:6b:87:2f:d0:f3:9d:13:35:18:3a:b7: 90:2f:4c:ce:b1:2b:4a:60:2f:77:6c:3b:52:20:9a:d3:8e:37: 17:45:e3:ac -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEhAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI4MDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNFQTJGNDE3NDY3MjY2 RDI1NTg2NkFGNzZDMTQwRjZCRTRGNkFEMUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwy26/6OgiPhO0STtkECh6vmXew/aTmLRluhMxAe0j/URqVMIN ec/nTKBPKPN+Y0eOrcXNzSbeByaeKJval1XdclWfO9kUJCvnfEjyiqNm3ps7O9Se b5ldjz3XwYQR2MQ5dJEvigTeiTJ2c/s9l3Nfl1DGJz3PjYypdH0NmNx2EnxCz04H jAMufulnMuacDMWJLgplwUQEFUbGQMOciWKl9/imlMsawjmI07b7S1kudn2o8h7A MoLqjevjp2VdrYpaDLgUt9OxbjD2UHksdSOUB+vew+s7+wnuVHePnhW1bwTw0cVM RNUagI37hmAer3TWGrjt3kKA6zzeYF+kgVxVAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUPqL0F0ZyZtJVhmr3bBQPa+T2rRwwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1BxTDBGMFp5WnRKVmhtcjNiQlFQYS1U MnJSdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXfFiAwDQYJ KoZIhvcNAQELBQADggEBACC8yS7VyC7yClWw5bxsUis1lqzeYQmPKTRkgZGdjtHS xP94x07md1vY/VePZqwLZhacaQBg+PgxdB/X2b6g1CI2FsO9az8G1RfAI3GfzxPw Txm0EtqnJBYYPGAgcJqm03mRhn1LATCdEbnRxpvqpCENBb7jQgD3+mLEdsGXSMdt K24Wa3A8JOdFPg+hRlbHcoL4MzGwpWzhbV0fNnHbTcanPQSLWCXIQr4ImWVH/iNc sGAkiO4uUa9E1UDbMRsRaDwo9KLCQh8UHifhsz+l4xHxIW0L8AO+4xNGu3+iOA1r hy/Q850TNRg6t5AvTM6xK0pgL3dsO1IgmtOONxdF46w= -----END CERTIFICATE-----Generated at Mon Apr 7 20:51:57 2025 by rpki-client