$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/RUULgtfW_XrfkEIwjWKRdmdOdCk.roa File: RUULgtfW_XrfkEIwjWKRdmdOdCk.roa (raw, json) Hash identifier: jRXpkbIkta48W0fOhkxc/+2i0I0TtV87o3YJeD55BuY= Subject key identifier: 45:45:0B:82:D7:D6:FD:7A:DF:90:42:30:8D:62:91:76:67:4E:74:29 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1191 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/RUULgtfW_XrfkEIwjWKRdmdOdCk.roa Signing time: Mon 10 Feb 2025 14:27:29 +0000 ROA not before: Mon 10 Feb 2025 14:27:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9415 IP address blocks: 2404:0:3000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4497 (0x1191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:27:29 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=45450B82D7D6FD7ADF9042308D629176674E7429 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8e:08:e6:f6:8c:3f:38:07:42:20:ef:56:4e: fe:89:19:30:9d:a8:f7:83:b9:77:0c:30:85:31:11: c8:eb:bf:d6:d2:d7:79:f7:85:0d:34:51:ca:a0:0c: 26:c8:f1:f7:5f:ea:e0:9b:15:48:2a:c1:9e:6a:69: 2c:ba:a3:d1:4a:94:a7:26:99:3d:aa:fb:68:4e:b1: 79:a7:0f:d3:cd:ab:94:39:86:6f:f7:37:3b:b3:72: ee:38:cc:7b:a9:0a:b7:fe:ea:db:4f:ee:fd:b4:cf: b0:e0:b5:95:27:cd:81:8d:a2:c5:f1:8d:c6:1d:fe: ad:85:16:eb:c9:1e:8a:29:d4:fc:f8:ea:a6:fe:10: f1:cf:6b:e4:34:7d:a0:f9:34:04:fa:08:b3:89:01: 18:1a:ba:59:b9:9a:b8:07:f6:0d:fa:64:ef:6c:de: af:45:c0:98:ff:39:fb:51:8b:40:2c:f8:2b:d6:b1: f4:48:f0:8c:78:70:26:f0:40:50:b9:af:c4:65:0f: 5d:3c:fb:8b:a6:96:04:88:b1:c6:92:99:5e:da:8c: f0:b7:f3:81:70:ab:24:10:1d:74:b3:6a:a2:d9:0f: cc:15:db:75:d9:1e:0a:9a:db:fd:0c:9a:f3:f1:08: 3f:bc:eb:7e:a5:53:2d:63:d4:fc:7d:f6:6e:00:d2: f0:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:45:0B:82:D7:D6:FD:7A:DF:90:42:30:8D:62:91:76:67:4E:74:29 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/RUULgtfW_XrfkEIwjWKRdmdOdCk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404:0:3000::/36 Signature Algorithm: sha256WithRSAEncryption 60:65:ff:1c:6e:5d:bb:e7:18:21:3d:95:5c:1c:23:20:ac:46: 9d:c3:0d:54:c2:14:35:5f:35:57:9a:0a:fe:aa:7e:55:a6:2c: 23:e1:93:e1:be:77:1d:cd:10:90:d0:38:f3:f1:73:46:02:2b: f4:53:e2:bc:96:f7:83:d1:d1:f8:94:47:b2:54:0e:79:69:63: 58:8b:e4:8f:8b:2b:9d:e0:7b:48:bc:da:14:87:37:30:b2:41: 7d:2e:3a:13:10:12:0d:63:d5:5f:51:89:da:09:2a:84:df:f3: 75:4c:42:65:7f:2c:f2:2d:13:7e:11:4a:01:0b:ac:c7:32:3f: 25:7a:6c:52:9e:40:e0:90:e4:4d:dc:07:bf:78:6a:5a:24:5d: 10:04:f0:4f:18:62:26:95:fb:a1:5b:f4:28:18:e6:44:ed:d4: e5:e3:8f:be:63:3d:cc:01:97:bd:1e:29:e7:3d:7b:c7:a5:71: a1:1f:43:b2:85:6f:88:fc:c6:bf:9e:e9:75:4c:49:3d:37:6f: a6:79:bc:75:49:a4:af:b7:d7:8f:02:80:0d:e8:bb:db:24:d3: 9b:85:1a:16:8d:f5:17:ac:60:f0:ac:d0:9a:f9:d4:94:13:29: 10:c5:96:4d:79:52:73:c5:05:c4:3f:10:c6:4c:9e:c1:77:ef: 89:6a:e4:09 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEZEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI3MjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ1NDUwQjgyRDdENkZE N0FERjkwNDIzMDhENjI5MTc2Njc0RTc0MjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8jgjm9ow/OAdCIO9WTv6JGTCdqPeDuXcMMIUxEcjrv9bS13n3 hQ00UcqgDCbI8fdf6uCbFUgqwZ5qaSy6o9FKlKcmmT2q+2hOsXmnD9PNq5Q5hm/3 Nzuzcu44zHupCrf+6ttP7v20z7DgtZUnzYGNosXxjcYd/q2FFuvJHoop1Pz46qb+ EPHPa+Q0faD5NAT6CLOJARgaulm5mrgH9g36ZO9s3q9FwJj/OftRi0As+CvWsfRI 8Ix4cCbwQFC5r8RlD108+4umlgSIscaSmV7ajPC384FwqyQQHXSzaqLZD8wV23XZ Hgqa2/0MmvPxCD+8636lUy1j1Px99m4A0vDNAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQURUULgtfW/XrfkEIwjWKRdmdOdCkwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1JVVUxndGZXX1hyZmtFSXdqV0tSZG1k T2RDay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQkBAAAMDAN BgkqhkiG9w0BAQsFAAOCAQEAYGX/HG5du+cYIT2VXBwjIKxGncMNVMIUNV81V5oK /qp+VaYsI+GT4b53Hc0QkNA48/FzRgIr9FPivJb3g9HR+JRHslQOeWljWIvkj4sr neB7SLzaFIc3MLJBfS46ExASDWPVX1GJ2gkqhN/zdUxCZX8s8i0TfhFKAQusxzI/ JXpsUp5A4JDkTdwHv3hqWiRdEATwTxhiJpX7oVv0KBjmRO3U5eOPvmM9zAGXvR4p 5z17x6VxoR9DsoVviPzGv57pdUxJPTdvpnm8dUmkr7fXjwKADei72yTTm4UaFo31 F6xg8KzQmvnUlBMpEMWWTXlSc8UFxD8QxkyewXfviWrkCQ== -----END CERTIFICATE-----Generated at Mon Apr 7 20:54:10 2025 by rpki-client