$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/iXR_eXxv7dZgq4ABTzzSS-E5BXk.roa File: iXR_eXxv7dZgq4ABTzzSS-E5BXk.roa (raw, json) Hash identifier: Db2/G35etJk4zrVycL2THqn3LxKhVGjeqgepaV6LR+U= Subject key identifier: 89:74:7F:79:7C:6F:ED:D6:60:AB:80:01:4F:3C:D2:4B:E1:39:05:79 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 11FE Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/iXR_eXxv7dZgq4ABTzzSS-E5BXk.roa Signing time: Mon 10 Feb 2025 14:27:56 +0000 ROA not before: Mon 10 Feb 2025 14:27:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131591 IP address blocks: 203.79.206.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 18:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4606 (0x11fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:27:56 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=89747F797C6FEDD660AB80014F3CD24BE1390579 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:73:e0:49:00:6c:a1:c6:2f:02:5f:5b:24:af: 5e:b8:be:69:c0:ef:c8:6c:33:aa:e8:87:b1:46:73: 97:a0:6c:9a:2e:00:89:19:bd:fa:12:a8:cf:56:a0: 4d:0c:83:60:1b:a3:c8:92:19:7b:34:14:6d:89:a5: 00:0b:2d:7c:0f:25:28:e7:ac:17:40:ac:43:c2:67: 75:84:46:6e:4d:d0:7c:93:d2:33:5d:55:01:be:80: 71:98:3a:8a:f0:c3:a1:1a:c3:93:e6:93:e5:48:33: 1a:23:5f:0a:4e:0c:0f:26:f9:9f:21:a4:ef:ce:c0: 21:a6:b3:1b:ea:16:52:ac:37:9a:e0:d6:c0:d7:7a: ca:a4:d4:51:0f:45:21:24:17:33:03:eb:80:86:18: cc:03:7a:b9:a8:02:12:e1:ce:fb:a4:76:e6:ce:77: b9:22:58:0c:82:c0:9e:42:64:a5:e4:0e:82:60:43: 2b:4c:cd:fd:3c:47:27:13:e4:da:9f:40:f6:a0:8d: 55:1b:46:fd:97:24:74:c0:15:99:45:a9:d9:f1:bc: 13:31:2f:46:86:cc:ea:5a:dc:8a:4b:3c:a1:99:8f: ac:37:02:b6:6b:ae:cd:a4:2d:72:fa:5c:5a:1a:35: 6a:ae:33:db:94:e8:43:de:6d:3c:17:09:96:99:a6: 38:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:74:7F:79:7C:6F:ED:D6:60:AB:80:01:4F:3C:D2:4B:E1:39:05:79 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/iXR_eXxv7dZgq4ABTzzSS-E5BXk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.79.206.0/23 Signature Algorithm: sha256WithRSAEncryption 1e:50:f9:86:17:bc:c6:55:a4:f9:d0:e4:be:fa:73:7f:d1:4c: b3:df:9d:1e:84:e1:69:88:da:aa:81:7e:09:60:1b:de:bc:60: 48:cc:32:8e:5d:4c:99:2b:87:4e:95:b4:8f:8c:ca:8f:5f:d4: 7c:94:82:82:f9:99:86:53:2e:3a:0d:89:70:f7:78:6c:dd:1b: db:c3:f0:2c:4e:e2:88:a1:b1:84:fa:4f:a4:9d:bf:5a:ea:80: a5:12:60:7c:71:2d:0c:4d:4d:0f:3e:5b:67:fc:b5:b0:d1:99: a8:41:71:42:9e:7d:5a:81:63:7b:0d:0c:3c:2f:cd:6b:da:7e: 9d:73:8d:28:dd:ea:3d:52:85:29:ea:16:d0:d7:3f:74:ee:62: 48:0e:87:8c:3b:9c:21:21:b2:79:61:83:ce:0c:c0:e5:a4:0f: 86:ba:97:c1:93:86:61:ab:bb:e0:0b:d4:3f:eb:28:c3:a1:53: 10:17:51:10:ff:1b:5e:7f:a9:30:36:15:5d:6d:4b:86:31:06: 56:15:c8:89:11:d8:87:15:9c:18:c9:09:dd:59:1b:c0:e3:af: 48:1e:b7:c2:79:bf:74:40:7c:4f:7b:ad:ff:ff:c4:00:2c:d3: 37:0f:e9:a6:fd:5f:4c:33:57:29:9e:a8:dc:8a:b0:b6:aa:d0: e5:67:a1:93 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEf4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI3NTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg5NzQ3Rjc5N0M2RkVE RDY2MEFCODAwMTRGM0NEMjRCRTEzOTA1NzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCic+BJAGyhxi8CX1skr164vmnA78hsM6roh7FGc5egbJouAIkZ vfoSqM9WoE0Mg2Abo8iSGXs0FG2JpQALLXwPJSjnrBdArEPCZ3WERm5N0HyT0jNd VQG+gHGYOorww6Eaw5Pmk+VIMxojXwpODA8m+Z8hpO/OwCGmsxvqFlKsN5rg1sDX esqk1FEPRSEkFzMD64CGGMwDermoAhLhzvukdubOd7kiWAyCwJ5CZKXkDoJgQytM zf08RycT5NqfQPagjVUbRv2XJHTAFZlFqdnxvBMxL0aGzOpa3IpLPKGZj6w3ArZr rs2kLXL6XFoaNWquM9uU6EPebTwXCZaZpjg5AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUiXR/eXxv7dZgq4ABTzzSS+E5BXkwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2lYUl9lWHh2N2RaZ3E0QUJUenpTUy1F NUJYay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHLT84wDQYJ KoZIhvcNAQELBQADggEBAB5Q+YYXvMZVpPnQ5L76c3/RTLPfnR6E4WmI2qqBfglg G968YEjMMo5dTJkrh06VtI+Myo9f1HyUgoL5mYZTLjoNiXD3eGzdG9vD8CxO4oih sYT6T6Sdv1rqgKUSYHxxLQxNTQ8+W2f8tbDRmahBcUKefVqBY3sNDDwvzWvafp1z jSjd6j1ShSnqFtDXP3TuYkgOh4w7nCEhsnlhg84MwOWkD4a6l8GThmGru+AL1D/r KMOhUxAXURD/G15/qTA2FV1tS4YxBlYVyIkR2IcVnBjJCd1ZG8Djr0get8J5v3RA fE97rf//xAAs0zcP6ab9X0wzVymeqNyKsLaq0OVnoZM= -----END CERTIFICATE-----Generated at Mon Apr 7 17:42:38 2025 by rpki-client