$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/p5WpQ8S6BgDhXe1-92zy-C8J-gE.roa File: p5WpQ8S6BgDhXe1-92zy-C8J-gE.roa (raw, json) Hash identifier: EUC5gQ2e+rd54lCw+zhftOb3reJ/N9eks5pQ1EaIiu4= Subject key identifier: A7:95:A9:43:C4:BA:06:00:E1:5D:ED:7E:F7:6C:F2:F8:2F:09:FA:01 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 11CC Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/p5WpQ8S6BgDhXe1-92zy-C8J-gE.roa Signing time: Mon 10 Feb 2025 14:27:44 +0000 ROA not before: Mon 10 Feb 2025 14:27:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9311 IP address blocks: 203.79.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4556 (0x11cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:27:44 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A795A943C4BA0600E15DED7EF76CF2F82F09FA01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:12:e5:59:c1:f6:b0:d0:57:4b:74:73:8a:74: 41:77:58:d6:6f:d7:62:57:88:9b:56:4a:f4:76:f3: 77:91:d5:4a:2c:64:82:50:ef:11:b4:d0:c4:19:4f: 3a:e0:ae:a7:96:f6:33:18:7f:f8:18:49:a2:d8:94: 0b:17:3c:e7:a8:e3:0b:94:35:40:83:f5:62:d6:54: 2f:8c:40:c6:78:df:9d:4e:62:7d:ae:90:9f:c3:fb: 7a:55:97:c7:32:de:a1:f3:a9:a3:d5:26:5c:0c:62: 63:a7:07:4c:15:fb:59:58:0b:29:10:36:9b:1e:8b: be:5a:dc:de:3f:e9:75:f1:5a:fe:7f:cc:a3:ae:81: 67:be:16:ad:85:0c:31:dd:d2:d1:3d:9e:58:38:83: 0e:18:0f:f3:7c:72:77:11:15:da:bd:68:59:f3:60: 3b:8e:46:83:09:30:ea:55:d8:38:1b:4c:1f:da:c6: ef:cd:ac:7a:28:07:a3:3f:c1:bc:97:43:e8:91:d9: 24:38:bd:84:6a:d7:94:23:b7:78:47:23:f2:95:01: 76:5b:f4:2a:b4:cc:3f:b3:d7:d7:01:b1:0e:d4:24: f1:6c:b2:6e:32:9f:d8:95:20:e6:1c:66:05:ca:b2: 38:35:28:6c:29:c3:2b:25:12:ad:81:ad:36:69:d5: 38:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:95:A9:43:C4:BA:06:00:E1:5D:ED:7E:F7:6C:F2:F8:2F:09:FA:01 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/p5WpQ8S6BgDhXe1-92zy-C8J-gE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.79.224.0/22 Signature Algorithm: sha256WithRSAEncryption cb:6f:f3:a5:c2:c4:48:2b:fa:f3:48:ea:4d:52:ad:da:4a:f0: 58:bd:4b:23:59:7d:b5:15:2c:39:b0:b5:6e:56:71:3e:1f:04: 7d:c7:58:b9:7c:da:ae:29:97:39:09:17:b7:7e:03:7a:e4:21: fc:13:96:25:32:d4:da:e6:ae:65:ba:9b:66:a3:17:b4:02:ea: fe:1c:38:3a:7f:50:0c:d9:cc:ae:1d:80:b6:8d:e1:57:b5:f8: 9d:24:a7:5e:36:c0:49:16:34:e3:16:e3:46:bb:35:52:1b:93: 5b:ef:2e:06:20:8a:72:63:7a:14:be:30:12:fe:7e:ca:77:fd: 5b:bf:8a:2f:ec:bd:d0:f8:0d:bb:29:87:ea:6d:72:bf:55:b9: 37:ce:51:38:19:01:1d:84:a8:f0:10:94:2c:a0:76:26:cb:57: 05:4a:eb:b9:95:c3:69:f0:0f:27:fd:ea:77:f8:b6:82:cd:a6: 60:4f:bd:27:5f:65:64:e6:06:74:1b:7a:ab:79:1d:e3:03:a6: b7:3e:6b:f5:87:67:57:63:05:d6:7e:46:49:7d:62:c1:12:a7: ae:e0:11:88:7b:c8:e0:36:e7:1c:43:9a:34:7a:27:28:43:66: 97:d3:29:61:5e:2c:bf:45:c1:b7:13:53:7e:0d:c7:27:de:f1: 2f:64:cc:10 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEcwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI3NDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE3OTVBOTQzQzRCQTA2 MDBFMTVERUQ3RUY3NkNGMkY4MkYwOUZBMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQEuVZwfaw0FdLdHOKdEF3WNZv12JXiJtWSvR283eR1UosZIJQ 7xG00MQZTzrgrqeW9jMYf/gYSaLYlAsXPOeo4wuUNUCD9WLWVC+MQMZ4351OYn2u kJ/D+3pVl8cy3qHzqaPVJlwMYmOnB0wV+1lYCykQNpsei75a3N4/6XXxWv5/zKOu gWe+Fq2FDDHd0tE9nlg4gw4YD/N8cncRFdq9aFnzYDuORoMJMOpV2DgbTB/axu/N rHooB6M/wbyXQ+iR2SQ4vYRq15Qjt3hHI/KVAXZb9Cq0zD+z19cBsQ7UJPFssm4y n9iVIOYcZgXKsjg1KGwpwyslEq2BrTZp1TijAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUp5WpQ8S6BgDhXe1+92zy+C8J+gEwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3A1V3BROFM2QmdEaFhlMS05Mnp5LUM4 Si1nRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALLT+AwDQYJ KoZIhvcNAQELBQADggEBAMtv86XCxEgr+vNI6k1SrdpK8Fi9SyNZfbUVLDmwtW5W cT4fBH3HWLl82q4plzkJF7d+A3rkIfwTliUy1NrmrmW6m2ajF7QC6v4cODp/UAzZ zK4dgLaN4Ve1+J0kp142wEkWNOMW40a7NVIbk1vvLgYginJjehS+MBL+fsp3/Vu/ ii/svdD4Dbsph+ptcr9VuTfOUTgZAR2EqPAQlCygdibLVwVK67mVw2nwDyf96nf4 toLNpmBPvSdfZWTmBnQbeqt5HeMDprc+a/WHZ1djBdZ+Rkl9YsESp67gEYh7yOA2 5xxDmjR6JyhDZpfTKWFeLL9FwbcTU34Nxyfe8S9kzBA= -----END CERTIFICATE-----Generated at Mon Apr 7 20:51:47 2025 by rpki-client