$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/fKrH_RAeF-k30jRGzDrIUDAQVgs.roa File: fKrH_RAeF-k30jRGzDrIUDAQVgs.roa (raw, json) Hash identifier: S5AlLpt5uhiAyStn1Zokwvz14CEFvzqnoZiHDFPHhP8= Subject key identifier: 7C:AA:C7:FD:10:1E:17:E9:37:D2:34:46:CC:3A:C8:50:30:10:56:0B Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1174 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/fKrH_RAeF-k30jRGzDrIUDAQVgs.roa Signing time: Mon 10 Feb 2025 14:27:22 +0000 ROA not before: Mon 10 Feb 2025 14:27:22 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9311 IP address blocks: 210.200.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4468 (0x1174) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:27:22 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7CAAC7FD101E17E937D23446CC3AC8503010560B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:25:29:7b:ed:aa:94:6b:42:37:d8:c9:f1:ae: 69:ff:eb:3a:f9:f4:dc:3b:03:05:1c:61:ab:75:90: 54:bc:1b:b3:f9:be:2c:b3:21:69:5c:41:fd:4c:33: b3:a1:58:8b:50:3e:43:17:a5:02:ed:10:9a:aa:1f: c7:fd:61:27:ed:93:1b:27:58:df:9a:75:15:75:e3: 7c:e5:d4:7e:4f:72:e9:49:46:7b:00:79:ae:18:92: 3a:c7:99:2c:37:79:34:3a:9a:b4:20:0e:ed:e9:cf: 9e:77:a0:02:85:1e:7d:c3:cb:bd:47:a2:08:7b:50: 59:f6:6c:8d:1b:4d:cc:48:11:34:08:88:29:d6:21: 26:86:b1:0a:a7:21:5e:91:dd:b0:8a:ab:ed:f6:52: b5:22:19:e4:49:16:70:c3:8b:11:9a:6e:00:a9:c4: aa:0c:e9:10:95:e0:5b:0d:4e:97:0e:f2:b3:b2:bb: f0:ba:ae:7a:15:83:f4:04:6f:c2:80:6b:6e:05:7f: 47:b5:5e:3a:b5:9b:47:fc:41:24:c9:ef:16:e6:55: fc:c4:31:17:8d:0a:c5:dc:01:bb:ac:ba:62:b4:74: cd:0c:a5:52:35:23:d4:a7:12:ef:46:ec:41:b2:14: c2:48:0a:f2:71:84:20:d5:8c:93:49:a1:d6:25:f8: 5d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:AA:C7:FD:10:1E:17:E9:37:D2:34:46:CC:3A:C8:50:30:10:56:0B X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/fKrH_RAeF-k30jRGzDrIUDAQVgs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.200.128.0/18 Signature Algorithm: sha256WithRSAEncryption 48:7d:97:2e:0c:b3:a6:c7:c7:fe:97:b3:af:45:be:68:0f:52: 51:67:db:60:88:e2:17:fb:80:56:30:da:20:79:0c:8f:c2:dd: 21:39:7d:71:fd:89:68:f2:b3:09:2a:31:99:86:f3:96:b2:f5: 9d:0e:3b:e4:49:07:7e:b6:8e:b3:df:63:9a:df:c7:16:52:ca: fb:14:14:52:36:d8:26:42:6b:f9:f1:1e:20:3f:7e:f4:52:99: b8:11:65:64:14:b5:1b:02:05:51:62:36:e4:9c:78:d1:f0:88: b5:11:e4:2b:82:9a:e6:5c:e3:23:a7:17:47:d9:a8:0d:c1:fd: 77:0e:cd:45:cf:d1:4e:6e:16:32:ea:b8:3f:26:f4:1d:73:e2: 84:36:d4:df:36:2b:e1:1a:d5:05:5a:6f:0f:ca:71:40:e5:38: e6:a0:fa:a0:37:56:ba:c1:c4:d4:09:9c:eb:c7:49:fb:7a:aa: 35:b7:08:95:5c:28:9d:02:57:48:ed:d0:ab:2f:2a:4a:62:66: 4b:c3:f2:c8:b4:2f:d5:77:0c:80:9d:b2:29:e9:17:66:1b:0d: 35:96:ea:2e:7f:4e:5b:fe:3e:f1:c8:fc:81:aa:11:83:fb:f1: 76:71:48:d9:8a:68:ef:ab:28:41:9e:ed:d6:55:f1:5b:75:2a: c3:54:af:cd -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEXQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI3MjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdDQUFDN0ZEMTAxRTE3 RTkzN0QyMzQ0NkNDM0FDODUwMzAxMDU2MEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPJSl77aqUa0I32Mnxrmn/6zr59Nw7AwUcYat1kFS8G7P5viyz IWlcQf1MM7OhWItQPkMXpQLtEJqqH8f9YSftkxsnWN+adRV143zl1H5PculJRnsA ea4YkjrHmSw3eTQ6mrQgDu3pz553oAKFHn3Dy71Hogh7UFn2bI0bTcxIETQIiCnW ISaGsQqnIV6R3bCKq+32UrUiGeRJFnDDixGabgCpxKoM6RCV4FsNTpcO8rOyu/C6 rnoVg/QEb8KAa24Ff0e1Xjq1m0f8QSTJ7xbmVfzEMReNCsXcAbusumK0dM0MpVI1 I9SnEu9G7EGyFMJICvJxhCDVjJNJodYl+F0LAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUfKrH/RAeF+k30jRGzDrIUDAQVgswHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2ZLckhfUkFlRi1rMzBqUkd6RHJJVURB UVZncy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbSyIAwDQYJ KoZIhvcNAQELBQADggEBAEh9ly4Ms6bHx/6Xs69FvmgPUlFn22CI4hf7gFYw2iB5 DI/C3SE5fXH9iWjyswkqMZmG85ay9Z0OO+RJB362jrPfY5rfxxZSyvsUFFI22CZC a/nxHiA/fvRSmbgRZWQUtRsCBVFiNuSceNHwiLUR5CuCmuZc4yOnF0fZqA3B/XcO zUXP0U5uFjLquD8m9B1z4oQ21N82K+Ea1QVabw/KcUDlOOag+qA3VrrBxNQJnOvH Sft6qjW3CJVcKJ0CV0jt0KsvKkpiZkvD8si0L9V3DICdsinpF2YbDTWW6i5/Tlv+ PvHI/IGqEYP78XZxSNmKaO+rKEGe7dZV8Vt1KsNUr80= -----END CERTIFICATE-----Generated at Mon Apr 7 20:49:22 2025 by rpki-client