$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/m33WpsduCE5X6rv5QWwCQEju8BY.roa File: m33WpsduCE5X6rv5QWwCQEju8BY.roa (raw, json) Hash identifier: s5Romf8pICGRdewMpXmSt/gt+QxpD2mxc2N9jEAyEBA= Subject key identifier: 9B:7D:D6:A6:C7:6E:08:4E:57:EA:BB:F9:41:6C:02:40:48:EE:F0:16 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 11D0 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/m33WpsduCE5X6rv5QWwCQEju8BY.roa Signing time: Mon 10 Feb 2025 14:27:46 +0000 ROA not before: Mon 10 Feb 2025 14:27:46 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 223.23.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 07:36:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4560 (0x11d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:27:46 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9B7DD6A6C76E084E57EABBF9416C024048EEF016 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:85:94:6a:70:a6:77:a8:06:0e:fe:f8:ef:90: f8:d9:4f:69:e5:4e:f3:ca:10:ba:f0:3f:b7:d1:42: 2c:f8:08:d7:cb:e3:eb:30:8a:47:f1:d8:ca:03:87: a7:a4:dd:98:30:8e:68:66:b1:9e:42:b8:5f:3b:93: cd:b1:f3:18:70:5c:c0:bd:a5:8e:bc:73:65:53:91: 4b:26:83:18:6f:5f:45:60:ac:cc:26:ef:e6:ce:d8: 0a:1b:eb:e4:2f:ed:49:c8:54:35:39:2d:4c:95:2f: 79:70:19:f3:55:36:24:ff:8f:99:77:ba:01:19:7f: 3c:42:e6:b9:fd:09:54:74:b0:f5:c9:87:ca:17:81: b3:c9:34:02:8a:48:17:bf:fe:55:10:ac:ea:4a:b8: ea:0a:98:70:31:7f:79:a0:d2:df:cf:18:0d:44:12: f8:f2:e7:4a:a3:50:ad:5f:82:13:57:36:83:4e:70: 78:a5:32:3c:e6:e6:ab:65:00:60:7e:35:0c:6a:9a: 8b:88:a2:49:4a:4d:0f:ee:93:b7:c5:55:21:3d:40: 4c:6e:d1:09:53:2d:97:a9:48:ea:52:68:9b:31:19: 9d:da:51:73:c3:53:ca:5d:2e:ba:a8:cc:52:5e:3b: 89:e1:5d:ba:aa:ca:63:b9:19:d6:c1:3f:fe:d8:a1: b8:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:7D:D6:A6:C7:6E:08:4E:57:EA:BB:F9:41:6C:02:40:48:EE:F0:16 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/m33WpsduCE5X6rv5QWwCQEju8BY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.23.63.0/24 Signature Algorithm: sha256WithRSAEncryption 78:e0:b9:c3:a5:7e:fc:7b:56:98:51:09:55:a8:b9:df:9f:12: 0d:a3:78:59:77:8d:d1:4b:f9:30:40:65:f4:56:d8:be:95:36: d6:cf:92:cd:7c:39:9f:80:c2:f2:c5:6b:5a:e6:50:60:1a:1b: 49:50:ff:56:89:a1:98:c0:0c:05:5a:ec:00:ad:40:1d:d2:5f: e3:7c:6f:0a:e7:be:dc:d2:53:19:f6:b9:20:25:72:cc:61:15: 5f:5a:b3:e6:51:32:f2:ec:69:8f:fc:01:12:15:e6:2b:a0:96: e3:be:6b:14:b4:4f:1b:38:2c:8b:4a:1e:6b:3f:7d:63:30:ee: 7b:2d:ca:d3:27:38:fa:2d:31:a8:1a:88:86:0e:02:38:a8:d8: 6d:c4:ad:b2:81:2e:65:7c:8f:3f:10:7a:db:b4:54:cd:fa:a4: 03:0c:b5:87:16:c1:06:74:2f:7f:bc:f7:c0:67:ed:eb:46:3a: 89:79:3f:f2:71:3d:2f:4d:6b:c5:85:61:2f:72:b8:9a:e5:00: 71:04:02:7a:94:b8:ed:3c:f2:d9:31:48:16:3a:5f:1c:36:ab: b3:eb:93:b2:8a:b1:f2:de:d8:e8:7f:39:e1:4a:ee:06:38:13: e6:4a:df:0d:e1:bf:2f:4f:85:07:f1:85:a4:72:d6:2a:39:e7: 1d:7c:5b:b4 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEdAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI3NDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlCN0RENkE2Qzc2RTA4 NEU1N0VBQkJGOTQxNkMwMjQwNDhFRUYwMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBhZRqcKZ3qAYO/vjvkPjZT2nlTvPKELrwP7fRQiz4CNfL4+sw ikfx2MoDh6ek3ZgwjmhmsZ5CuF87k82x8xhwXMC9pY68c2VTkUsmgxhvX0VgrMwm 7+bO2Aob6+Qv7UnIVDU5LUyVL3lwGfNVNiT/j5l3ugEZfzxC5rn9CVR0sPXJh8oX gbPJNAKKSBe//lUQrOpKuOoKmHAxf3mg0t/PGA1EEvjy50qjUK1fghNXNoNOcHil Mjzm5qtlAGB+NQxqmouIoklKTQ/uk7fFVSE9QExu0QlTLZepSOpSaJsxGZ3aUXPD U8pdLrqozFJeO4nhXbqqymO5GdbBP/7Yobi5AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUm33WpsduCE5X6rv5QWwCQEju8BYwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL20zM1dwc2R1Q0U1WDZydjVRV3dDUUVq dThCWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADfFz8wDQYJ KoZIhvcNAQELBQADggEBAHjgucOlfvx7VphRCVWoud+fEg2jeFl3jdFL+TBAZfRW 2L6VNtbPks18OZ+AwvLFa1rmUGAaG0lQ/1aJoZjADAVa7ACtQB3SX+N8bwrnvtzS Uxn2uSAlcsxhFV9as+ZRMvLsaY/8ARIV5iugluO+axS0Txs4LItKHms/fWMw7nst ytMnOPotMagaiIYOAjio2G3ErbKBLmV8jz8Qetu0VM36pAMMtYcWwQZ0L3+898Bn 7etGOol5P/JxPS9Na8WFYS9yuJrlAHEEAnqUuO088tkxSBY6Xxw2q7Prk7KKsfLe 2Oh/OeFK7gY4E+ZK3w3hvy9PhQfxhaRy1io55x18W7Q= -----END CERTIFICATE-----Generated at Tue Apr 8 04:19:49 2025 by rpki-client