$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/lOi7YBUKDoswHq0cYtO1SWcn6A8.roa File: lOi7YBUKDoswHq0cYtO1SWcn6A8.roa (raw, json) Hash identifier: ZYPKA27gAFscjpLg3GNP5v5bs74bJtM/hSHySxVNgKk= Subject key identifier: 94:E8:BB:60:15:0A:0E:8B:30:1E:AD:1C:62:D3:B5:49:67:27:E8:0F Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1192 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/lOi7YBUKDoswHq0cYtO1SWcn6A8.roa Signing time: Mon 10 Feb 2025 14:27:30 +0000 ROA not before: Mon 10 Feb 2025 14:27:30 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7482 IP address blocks: 210.200.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 18:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4498 (0x1192) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:27:30 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=94E8BB60150A0E8B301EAD1C62D3B5496727E80F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9e:1b:fc:97:49:2e:ac:27:ec:36:61:e9:37: 87:7a:d5:e8:23:67:20:20:0e:a9:50:f7:12:33:e3: a5:2f:4e:e6:5a:d4:9c:7d:fd:bd:63:e2:d2:16:d8: fb:7c:52:90:0c:b9:cc:88:c3:84:27:e4:41:5f:d1: 52:e2:5a:bc:36:0c:be:43:ad:e6:ea:7a:db:20:dd: 21:97:c2:e2:42:3f:57:24:fc:f1:b9:50:1f:5a:46: 77:ba:21:ef:c7:28:52:e1:75:20:e9:c8:68:ef:27: a5:9b:bd:65:e3:19:e9:8c:50:c4:b3:66:77:a3:ae: a0:60:ef:13:9f:0b:86:e9:a8:6c:49:0d:82:1b:de: f0:41:cb:04:0c:51:65:81:7f:9f:aa:9d:4b:57:78: 4b:33:61:61:62:cd:59:17:7d:09:52:54:a8:41:4f: 90:00:57:9a:c7:03:91:3a:75:83:8a:01:9d:de:ed: fe:bc:35:5e:cf:74:6f:d7:a1:d0:12:87:b9:27:c7: 94:8e:3e:03:9e:1e:51:19:33:d2:15:b5:a3:19:05: b5:40:aa:a8:89:b8:fc:c9:59:f4:44:82:02:d6:89: 3e:29:ed:9f:7b:bb:ba:9c:59:a1:be:30:5b:0d:40: 7c:d3:a6:a4:72:44:bf:37:df:79:81:fe:49:b3:70: 29:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:E8:BB:60:15:0A:0E:8B:30:1E:AD:1C:62:D3:B5:49:67:27:E8:0F X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/lOi7YBUKDoswHq0cYtO1SWcn6A8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.200.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6b:34:c7:49:c0:ff:a6:de:28:7e:c9:f5:5d:eb:f0:e5:d9:db: a5:82:44:8c:3a:c4:82:b8:ca:b6:2e:26:ed:60:29:b1:b9:f9: bb:27:5f:ce:f4:9a:a7:aa:ed:d2:c0:6b:94:df:c4:75:d9:6d: 27:1c:f3:ac:9d:14:a8:41:f0:1e:87:bd:dd:1a:c4:7d:6d:0e: 44:c8:98:58:c3:9a:19:3f:ff:e7:0c:c9:bb:33:60:ac:6c:8f: e9:44:ec:21:4d:1b:38:c6:4e:2a:ec:23:bf:ff:24:8e:73:bd: 73:11:c7:86:5d:03:ca:77:89:45:ae:29:96:50:90:89:22:ea: 81:7b:9e:f4:f0:7f:11:0a:63:68:20:6e:42:7b:35:46:ff:88: 80:4f:7b:be:b8:09:c9:46:45:d1:f2:45:6d:b9:19:3b:c5:68: be:ad:82:6f:ee:9a:0f:fa:c1:9f:6b:ef:2c:cd:a8:9d:f3:07: 6e:06:7b:0d:0a:84:a5:74:3f:84:cf:9f:bb:74:e8:9a:a6:06: dc:6b:c1:ac:53:06:a7:2e:e4:cc:6f:05:41:03:57:1f:da:eb: 06:a1:7b:f1:48:0a:94:86:6b:f7:0b:b0:19:27:4b:f5:44:2e: 25:21:62:9a:ea:5d:be:85:80:23:ee:af:92:bd:48:b6:23:dc: 3c:b6:3e:fc -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICEZIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI3MzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk0RThCQjYwMTUwQTBF OEIzMDFFQUQxQzYyRDNCNTQ5NjcyN0U4MEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNnhv8l0kurCfsNmHpN4d61egjZyAgDqlQ9xIz46UvTuZa1Jx9 /b1j4tIW2Pt8UpAMucyIw4Qn5EFf0VLiWrw2DL5Drebqetsg3SGXwuJCP1ck/PG5 UB9aRne6Ie/HKFLhdSDpyGjvJ6WbvWXjGemMUMSzZnejrqBg7xOfC4bpqGxJDYIb 3vBBywQMUWWBf5+qnUtXeEszYWFizVkXfQlSVKhBT5AAV5rHA5E6dYOKAZ3e7f68 NV7PdG/XodASh7knx5SOPgOeHlEZM9IVtaMZBbVAqqiJuPzJWfREggLWiT4p7Z97 u7qcWaG+MFsNQHzTpqRyRL8333mB/kmzcCkLAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUlOi7YBUKDoswHq0cYtO1SWcn6A8wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2xPaTdZQlVLRG9zd0hxMGNZdE8xU1dj bjZBOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDSyDANBgkq hkiG9w0BAQsFAAOCAQEAazTHScD/pt4ofsn1Xevw5dnbpYJEjDrEgrjKti4m7WAp sbn5uydfzvSap6rt0sBrlN/EddltJxzzrJ0UqEHwHoe93RrEfW0ORMiYWMOaGT// 5wzJuzNgrGyP6UTsIU0bOMZOKuwjv/8kjnO9cxHHhl0DyneJRa4pllCQiSLqgXue 9PB/EQpjaCBuQns1Rv+IgE97vrgJyUZF0fJFbbkZO8Vovq2Cb+6aD/rBn2vvLM2o nfMHbgZ7DQqEpXQ/hM+fu3TomqYG3GvBrFMGpy7kzG8FQQNXH9rrBqF78UgKlIZr 9wuwGSdL9UQuJSFimupdvoWAI+6vkr1ItiPcPLY+/A== -----END CERTIFICATE-----Generated at Mon Apr 7 17:43:47 2025 by rpki-client