$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/YkuumBDybOE3tEP0l9D7QcdOYJQ.roa File: YkuumBDybOE3tEP0l9D7QcdOYJQ.roa (raw, json) Hash identifier: nFj0A5tI89i+BT/WxO1IR2LtXoHeA7nQhg2BAOor00Q= Subject key identifier: 62:4B:AE:98:10:F2:6C:E1:37:B4:43:F4:97:D0:FB:41:C7:4E:60:94 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1177 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/YkuumBDybOE3tEP0l9D7QcdOYJQ.roa Signing time: Mon 10 Feb 2025 14:27:23 +0000 ROA not before: Mon 10 Feb 2025 14:27:23 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131627 IP address blocks: 219.91.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 17:36:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4471 (0x1177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:27:23 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=624BAE9810F26CE137B443F497D0FB41C74E6094 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:5b:bf:18:a3:f7:bf:db:e9:5d:fd:ac:11:f2: 3d:d0:d3:30:24:98:e3:12:53:e9:af:1f:d0:c7:df: 47:43:76:02:24:33:93:d0:cc:69:28:f6:71:7b:cc: a0:13:18:0f:ca:62:3e:f7:c9:a5:05:aa:87:f3:44: 7e:66:5e:38:6d:db:d7:53:51:52:86:6c:0a:cc:3e: 5f:1e:a9:17:fd:9e:6b:4a:b7:8d:86:c7:76:27:7b: 6d:6d:8f:d5:d9:19:35:f3:13:7e:20:98:95:00:4d: b2:54:46:54:ff:92:9b:07:23:1e:43:1d:27:07:e9: 87:ae:e0:5b:f6:d3:d1:c1:3f:04:b5:6e:39:70:fa: f0:71:ce:8d:f6:2a:05:47:30:94:87:5e:84:2e:07: 4a:c0:24:4f:be:0c:9e:fe:6a:94:34:0b:ea:92:5b: ec:77:28:57:14:1c:6b:91:e7:44:49:19:6e:81:e8: a6:b1:3a:93:72:db:e5:47:b7:7c:d4:19:4a:65:27: fa:7b:bd:0d:32:fe:84:3a:3d:68:e5:6d:64:4a:cc: 17:09:56:3c:e5:3a:c4:95:2b:44:3f:14:db:a5:e6: da:ce:1f:91:4f:1c:bf:f3:af:84:2a:66:5a:b3:4e: 32:a6:30:89:95:00:9b:0c:e4:e3:62:6e:3a:bf:c2: e2:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:4B:AE:98:10:F2:6C:E1:37:B4:43:F4:97:D0:FB:41:C7:4E:60:94 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/YkuumBDybOE3tEP0l9D7QcdOYJQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 219.91.0.0/17 Signature Algorithm: sha256WithRSAEncryption 18:a1:fc:90:f4:67:3d:3b:f4:54:f2:98:ca:75:3c:1d:d8:e6: c7:e6:44:b2:23:71:0d:18:89:85:8e:07:4c:c3:96:ea:76:60: 60:c2:d0:2c:32:31:0e:64:ef:68:e3:ff:52:af:e6:21:23:a3: 5d:4f:40:6b:5b:30:62:7f:68:26:b2:46:e7:9c:41:d5:52:f4: 53:29:81:cf:a8:0b:9e:fa:3b:d6:a8:8a:ec:da:4d:09:3b:ab: 7d:8c:c7:a9:45:75:c7:7b:49:a3:29:d6:df:50:15:26:61:55: 02:d3:f2:93:14:d1:d8:c9:b2:f1:60:02:56:e1:4e:cb:86:ad: e9:ac:38:d4:9d:51:4c:92:69:ce:c3:af:75:1f:90:23:7d:fd: a4:cb:c1:ad:bf:91:01:85:a4:44:c7:11:38:8f:1b:de:45:14: 7d:a8:2f:ad:fe:b2:c3:08:6b:79:20:7e:8e:45:4e:6a:1b:ab: 92:fb:63:45:5c:9d:ae:e9:67:72:47:c8:46:54:be:f2:e0:09: 3e:86:1b:97:06:1f:e0:f4:33:0f:67:c5:0d:a5:af:15:10:83: 0a:1c:e3:97:cf:b8:46:69:ce:9e:e1:d2:3f:08:34:0b:cf:f4: e4:08:65:80:b2:d2:b6:ce:eb:31:45:45:44:b7:32:e1:b5:b0: b6:a7:ea:ad -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEXcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI3MjNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDYyNEJBRTk4MTBGMjZD RTEzN0I0NDNGNDk3RDBGQjQxQzc0RTYwOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4W78Yo/e/2+ld/awR8j3Q0zAkmOMSU+mvH9DH30dDdgIkM5PQ zGko9nF7zKATGA/KYj73yaUFqofzRH5mXjht29dTUVKGbArMPl8eqRf9nmtKt42G x3Yne21tj9XZGTXzE34gmJUATbJURlT/kpsHIx5DHScH6Yeu4Fv209HBPwS1bjlw +vBxzo32KgVHMJSHXoQuB0rAJE++DJ7+apQ0C+qSW+x3KFcUHGuR50RJGW6B6Kax OpNy2+VHt3zUGUplJ/p7vQ0y/oQ6PWjlbWRKzBcJVjzlOsSVK0Q/FNul5trOH5FP HL/zr4QqZlqzTjKmMImVAJsM5ONibjq/wuKjAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUYkuumBDybOE3tEP0l9D7QcdOYJQwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1lrdXVtQkR5Yk9FM3RFUDBsOUQ3UWNk T1lKUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAfbWwAwDQYJ KoZIhvcNAQELBQADggEBABih/JD0Zz079FTymMp1PB3Y5sfmRLIjcQ0YiYWOB0zD lup2YGDC0CwyMQ5k72jj/1Kv5iEjo11PQGtbMGJ/aCayRuecQdVS9FMpgc+oC576 O9aoiuzaTQk7q32Mx6lFdcd7SaMp1t9QFSZhVQLT8pMU0djJsvFgAlbhTsuGrems ONSdUUySac7Dr3UfkCN9/aTLwa2/kQGFpETHETiPG95FFH2oL63+ssMIa3kgfo5F Tmobq5L7Y0Vcna7pZ3JHyEZUvvLgCT6GG5cGH+D0Mw9nxQ2lrxUQgwoc45fPuEZp zp7h0j8INAvP9OQIZYCy0rbO6zFFRUS3MuG1sLan6q0= -----END CERTIFICATE-----Generated at Sat Apr 5 16:36:15 2025 by rpki-client