$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/e_c_DO5TPSodxOiAXBZ8mY9Clew.roa File: e_c_DO5TPSodxOiAXBZ8mY9Clew.roa (raw, json) Hash identifier: DpW7xvdwmS07cQPRFXG5rRFePpSYKqNS8sWQnyJYuNQ= Subject key identifier: 7B:F7:3F:0C:EE:53:3D:2A:1D:C4:E8:80:5C:16:7C:99:8F:42:95:EC Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1235 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/e_c_DO5TPSodxOiAXBZ8mY9Clew.roa Signing time: Mon 10 Feb 2025 14:28:10 +0000 ROA not before: Mon 10 Feb 2025 14:28:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 222.157.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4661 (0x1235) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:28:10 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7BF73F0CEE533D2A1DC4E8805C167C998F4295EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f5:6e:2d:48:63:f8:42:79:19:0f:1f:5f:2f: ab:bb:fd:64:02:08:8e:3d:0f:ad:3b:7d:ff:d7:0e: 8b:0e:85:9e:55:81:4f:9d:2c:cf:fa:ec:34:c2:1f: 15:63:2f:c1:0a:ad:1f:50:1e:9c:13:6b:89:96:5f: 2e:94:d5:55:db:29:ab:0f:f2:8f:a6:a7:f9:34:9d: 97:e7:69:28:1d:7a:e3:34:e1:ed:ec:76:e2:16:40: 4d:d1:00:e5:23:75:0d:6c:95:1e:13:18:05:04:11: bd:55:46:2e:7a:61:1f:f4:eb:f6:20:ed:26:d1:f2: 9c:79:91:4e:a8:9a:58:ab:2c:88:30:86:d4:d7:c4: ce:2f:d7:79:0a:46:36:90:2d:cc:db:80:34:78:39: 2b:71:5c:e6:37:d3:c0:06:3c:75:8d:c1:e1:e0:1a: 6c:e3:63:40:32:6b:d0:53:f6:6f:a8:a7:ed:d1:81: a4:f4:e7:fd:d0:d5:1a:bd:c6:8d:30:e7:8d:d5:ba: 95:dd:91:18:58:a6:6f:da:22:6c:a1:db:04:1f:3c: 48:a0:80:18:69:4e:9c:b8:15:8e:25:9f:7b:af:ac: 99:c9:b6:b3:07:da:ca:85:eb:f7:49:5c:0b:b8:6d: b6:85:a1:87:11:e2:ee:cb:4e:97:a7:a2:e7:2c:09: 26:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:F7:3F:0C:EE:53:3D:2A:1D:C4:E8:80:5C:16:7C:99:8F:42:95:EC X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/e_c_DO5TPSodxOiAXBZ8mY9Clew.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 222.157.0.0/16 Signature Algorithm: sha256WithRSAEncryption 83:47:f1:ac:be:aa:8f:8b:47:41:1e:68:97:5b:f1:52:19:96: 80:3e:1a:5c:4f:9f:3b:b5:a8:db:e6:49:fe:f1:bb:aa:f8:61: 08:82:52:70:a2:57:ab:89:26:23:e8:8c:47:ea:45:9e:30:ee: d7:0c:2a:0f:60:37:cf:34:03:1b:5e:58:13:23:35:ac:75:ec: 56:30:14:eb:22:09:77:00:14:2c:fa:e3:75:6b:07:63:2f:7a: d0:4d:6e:2a:3c:4b:4d:96:34:bb:c0:13:54:cf:c0:8e:16:14: ec:18:7b:ef:08:fb:c0:61:0e:7f:6e:09:f5:51:12:60:30:3d: fd:58:c7:30:10:ab:bc:3c:0c:a8:44:f0:db:17:e7:38:43:af: 56:87:08:06:f2:7b:a2:f5:c3:a4:dd:5c:c2:5f:9f:70:b9:6b: 3a:b8:20:68:29:3f:b4:e8:54:b3:e7:a1:f0:f3:7e:00:ed:7e: 45:77:1f:7c:14:0f:84:76:0f:eb:d5:52:5d:27:f7:2d:20:d1: ca:6e:3d:2c:c0:c8:e4:0c:5e:fb:de:5f:a4:a1:6f:f0:94:a3: 1a:1b:4b:43:36:0b:0f:2a:14:6c:2e:61:cb:fd:11:cf:8c:b1: 26:62:5b:18:3b:29:5b:1c:ed:71:85:bc:f3:72:c9:db:2c:36: e8:35:f3:97 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICEjUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI4MTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdCRjczRjBDRUU1MzNE MkExREM0RTg4MDVDMTY3Qzk5OEY0Mjk1RUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDV9W4tSGP4QnkZDx9fL6u7/WQCCI49D607ff/XDosOhZ5VgU+d LM/67DTCHxVjL8EKrR9QHpwTa4mWXy6U1VXbKasP8o+mp/k0nZfnaSgdeuM04e3s duIWQE3RAOUjdQ1slR4TGAUEEb1VRi56YR/06/Yg7SbR8px5kU6omlirLIgwhtTX xM4v13kKRjaQLczbgDR4OStxXOY308AGPHWNweHgGmzjY0Aya9BT9m+op+3RgaT0 5/3Q1Rq9xo0w543VupXdkRhYpm/aImyh2wQfPEiggBhpTpy4FY4ln3uvrJnJtrMH 2sqF6/dJXAu4bbaFoYcR4u7LTpenoucsCSa9AgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUe/c/DO5TPSodxOiAXBZ8mY9ClewwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2VfY19ETzVUUFNvZHhPaUFYQlo4bVk5 Q2xldy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDenTANBgkq hkiG9w0BAQsFAAOCAQEAg0fxrL6qj4tHQR5ol1vxUhmWgD4aXE+fO7Wo2+ZJ/vG7 qvhhCIJScKJXq4kmI+iMR+pFnjDu1wwqD2A3zzQDG15YEyM1rHXsVjAU6yIJdwAU LPrjdWsHYy960E1uKjxLTZY0u8ATVM/AjhYU7Bh77wj7wGEOf24J9VESYDA9/VjH MBCrvDwMqETw2xfnOEOvVocIBvJ7ovXDpN1cwl+fcLlrOrggaCk/tOhUs+eh8PN+ AO1+RXcffBQPhHYP69VSXSf3LSDRym49LMDI5Axe+95fpKFv8JSjGhtLQzYLDyoU bC5hy/0Rz4yxJmJbGDspWxztcYW883LJ2yw26DXzlw== -----END CERTIFICATE-----Generated at Mon Apr 7 20:51:59 2025 by rpki-client