$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/b0RotuM8GD5NN_5JNDyLMWQOI9A.roa File: b0RotuM8GD5NN_5JNDyLMWQOI9A.roa (raw, json) Hash identifier: e6e3z4APfZEuJGuOwpyz3DlmxQAeq5jQhfVcz3hmoVk= Subject key identifier: 6F:44:68:B6:E3:3C:18:3E:4D:37:FE:49:34:3C:8B:31:64:0E:23:D0 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 11B1 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/b0RotuM8GD5NN_5JNDyLMWQOI9A.roa Signing time: Mon 10 Feb 2025 14:27:38 +0000 ROA not before: Mon 10 Feb 2025 14:27:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18419 IP address blocks: 218.35.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 03:06:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4529 (0x11b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:27:38 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6F4468B6E33C183E4D37FE49343C8B31640E23D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:16:82:2b:fe:20:13:80:bf:21:04:19:10:ec: 34:b9:d3:d9:41:50:90:30:d5:d1:d5:f3:8d:da:14: 6c:b8:ce:f4:d8:7d:c6:74:b3:91:e2:d5:0d:ac:1b: a2:59:cb:d7:8c:2b:03:5c:ff:04:f7:2e:e9:ff:51: 7e:bd:a5:47:28:84:3c:72:59:e0:be:9a:a8:9c:34: 7a:d5:b5:d1:38:63:5a:1f:35:54:b4:7c:aa:83:89: 75:20:51:ab:25:8b:3c:89:d9:99:69:f8:ba:c3:a8: ff:be:e7:7b:27:40:66:66:5f:b0:90:b3:fe:5e:fe: 6c:c4:63:ce:2f:1e:d1:a8:72:fa:7c:cf:81:e9:30: 26:75:cf:b1:e2:4f:ad:2f:fa:30:2d:2c:44:3f:58: d3:f6:9b:70:50:8f:a1:60:2d:bb:9c:e0:a5:10:3e: 17:7c:08:ac:34:70:b0:fc:8b:e1:be:c4:2a:39:70: 32:9e:03:54:31:50:ac:96:ef:71:82:ec:2f:71:a4: fd:8c:35:fc:69:75:ec:28:78:99:36:fd:95:67:2f: ec:0c:a5:80:5d:35:79:32:21:5d:1f:91:13:e7:0a: 35:b9:e8:15:4c:db:3a:3c:dd:df:c5:7e:51:74:ca: 71:69:5c:3a:46:a6:f0:6e:0b:0e:7b:05:c3:f0:6d: 53:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:44:68:B6:E3:3C:18:3E:4D:37:FE:49:34:3C:8B:31:64:0E:23:D0 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/b0RotuM8GD5NN_5JNDyLMWQOI9A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.35.128.0/18 Signature Algorithm: sha256WithRSAEncryption 20:7d:6d:eb:dd:33:f2:d9:fa:3f:2c:68:5c:a0:bd:2d:96:88: 4d:55:96:9c:47:3c:c1:c1:41:45:58:5e:fc:78:e3:06:43:27: a1:7f:18:e6:64:92:4c:28:c9:01:57:5a:cf:1e:3a:7a:b7:21: 49:1a:c2:7c:0a:af:c7:2a:b9:95:d6:a4:1d:a0:d9:dc:2f:39: 28:6d:b0:27:fd:7d:5f:ff:4d:6c:38:33:58:65:03:5b:a4:6c: 49:4c:7f:f0:fd:28:20:cc:d2:66:e0:ea:d1:2b:5c:7e:1d:e1: fd:cc:f0:90:31:04:6f:15:ad:a0:c1:9c:93:65:07:ca:f6:85: 12:d8:34:0f:13:20:3e:bc:f4:9f:eb:da:ad:22:fe:e2:53:3f: d6:b8:f6:bd:ca:06:aa:31:16:0f:36:21:28:f6:de:a9:99:cb: e6:5a:2b:8b:b2:32:65:6c:ce:11:c3:09:77:30:42:0f:ad:e6: 09:85:9a:82:f1:b4:06:c4:65:96:b4:1f:62:a9:ad:14:23:47: 4b:66:b6:6f:59:00:fb:45:22:49:fc:49:1d:ab:df:b0:1e:66: aa:37:72:e9:99:a8:83:68:d9:97:33:a6:f2:ef:10:9e:0f:5d: 2f:b8:dc:0f:43:01:fa:63:63:1c:43:17:5e:54:e9:86:cc:fb: d0:31:61:19 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEbEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI3MzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZGNDQ2OEI2RTMzQzE4 M0U0RDM3RkU0OTM0M0M4QjMxNjQwRTIzRDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAFoIr/iATgL8hBBkQ7DS509lBUJAw1dHV843aFGy4zvTYfcZ0 s5Hi1Q2sG6JZy9eMKwNc/wT3Lun/UX69pUcohDxyWeC+mqicNHrVtdE4Y1ofNVS0 fKqDiXUgUaslizyJ2Zlp+LrDqP++53snQGZmX7CQs/5e/mzEY84vHtGocvp8z4Hp MCZ1z7HiT60v+jAtLEQ/WNP2m3BQj6FgLbuc4KUQPhd8CKw0cLD8i+G+xCo5cDKe A1QxUKyW73GC7C9xpP2MNfxpdewoeJk2/ZVnL+wMpYBdNXkyIV0fkRPnCjW56BVM 2zo83d/FflF0ynFpXDpGpvBuCw57BcPwbVPPAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUb0RotuM8GD5NN/5JNDyLMWQOI9AwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2IwUm90dU04R0Q1Tk5fNUpORHlMTVdR T0k5QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbaI4AwDQYJ KoZIhvcNAQELBQADggEBACB9bevdM/LZ+j8saFygvS2WiE1VlpxHPMHBQUVYXvx4 4wZDJ6F/GOZkkkwoyQFXWs8eOnq3IUkawnwKr8cquZXWpB2g2dwvOShtsCf9fV// TWw4M1hlA1ukbElMf/D9KCDM0mbg6tErXH4d4f3M8JAxBG8VraDBnJNlB8r2hRLY NA8TID689J/r2q0i/uJTP9a49r3KBqoxFg82ISj23qmZy+ZaK4uyMmVszhHDCXcw Qg+t5gmFmoLxtAbEZZa0H2KprRQjR0tmtm9ZAPtFIkn8SR2r37AeZqo3cumZqINo 2ZczpvLvEJ4PXS+43A9DAfpjYxxDF15U6YbM+9AxYRk= -----END CERTIFICATE-----Generated at Tue Apr 8 00:34:20 2025 by rpki-client