$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/ror8-cwXB_uCnnSzKxX0I_02k9w.roa File: ror8-cwXB_uCnnSzKxX0I_02k9w.roa (raw, json) Hash identifier: 0GUWsNk5AtWepYHxwkwFQI32BCP6IxThjc0wI/v995M= Subject key identifier: AE:8A:FC:F9:CC:17:07:FB:82:9E:74:B3:2B:15:F4:23:FD:36:93:DC Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 124A Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/ror8-cwXB_uCnnSzKxX0I_02k9w.roa Signing time: Mon 10 Feb 2025 14:28:15 +0000 ROA not before: Mon 10 Feb 2025 14:28:15 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9311 IP address blocks: 210.201.60.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4682 (0x124a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:28:15 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AE8AFCF9CC1707FB829E74B32B15F423FD3693DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:cb:9a:3c:f2:13:63:00:4e:74:2a:06:f5:6b: 10:03:10:3b:31:fa:f5:f0:dd:28:65:a7:1e:0a:23: 9b:7d:cf:67:2c:44:9d:75:af:dc:a6:15:a3:df:a1: a6:e6:a2:91:fe:ae:c3:6c:ae:3f:bf:8b:d1:80:ad: 95:08:2a:45:71:bc:89:9c:e8:c2:09:7b:33:2c:7b: f9:0f:cd:ac:dd:35:45:80:78:a3:2a:45:99:bf:35: ee:5a:ea:cd:03:6d:24:21:a9:13:08:62:cb:f3:5a: 2d:3b:36:5f:ea:8a:df:9a:ac:b0:97:c8:3d:63:68: 4c:75:fd:a8:2b:01:5b:0c:96:26:c4:01:2b:64:5a: 7d:ba:dd:87:fd:55:46:10:c0:d2:c7:ad:94:51:56: 99:e2:a4:fa:f6:4e:64:92:89:44:70:44:08:5f:0c: b4:d7:94:7d:ee:29:74:7d:d7:b0:b8:62:46:92:a6: d8:24:6e:11:4d:8f:2a:1f:b4:32:78:b4:fc:d6:0f: 94:8d:13:9b:be:52:a4:d8:3c:48:19:32:66:8c:60: ae:c8:e0:2b:05:4f:3b:d1:4f:5d:cd:d2:48:9e:86: 2d:e0:27:ee:38:8e:d4:14:23:c5:a4:dc:be:d3:56: 3e:c1:32:40:e4:ac:b1:40:16:cc:b9:44:04:68:aa: d1:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:8A:FC:F9:CC:17:07:FB:82:9E:74:B3:2B:15:F4:23:FD:36:93:DC X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/ror8-cwXB_uCnnSzKxX0I_02k9w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.201.60.0/23 Signature Algorithm: sha256WithRSAEncryption 52:d8:59:f9:7b:5d:12:79:06:9d:56:01:60:97:dd:2c:40:89: 05:5a:46:ca:96:64:c9:70:c0:32:a8:1a:c1:06:74:60:b3:6b: 83:0f:0c:b2:8f:ac:a3:e9:eb:7e:45:85:c7:1c:25:5f:e4:1e: be:98:b5:1e:b4:48:56:91:72:33:f4:8b:1f:b0:fd:0d:35:9d: 47:7b:d4:e4:eb:b5:76:45:14:b5:cf:f2:92:1e:2a:17:a8:47: 64:25:5f:bd:42:b2:23:cb:f6:12:51:fa:d7:10:3a:83:56:7c: 17:9a:8a:5f:eb:cd:f9:e9:44:48:2b:d8:b5:23:88:d1:f8:a3: dd:c3:1c:1d:e6:d3:ed:17:cb:c8:2a:34:ee:94:8f:5c:33:c1: 26:bb:d7:cf:0b:91:49:85:bb:5d:72:0a:cd:74:d6:3c:3e:71: 71:3b:ff:5e:57:4c:c1:f3:2c:a8:c0:f6:8c:c6:4d:0b:b8:91: 52:a9:f9:e4:87:b7:70:20:f1:5b:ed:57:7c:72:5d:c1:35:d5: 38:eb:26:eb:78:ae:70:3b:2e:46:16:f1:bf:f7:58:a9:c9:da: db:15:de:d7:5f:18:3f:ab:22:45:d3:85:5f:94:28:87:b5:a1: 22:73:5e:4e:98:52:05:b1:41:11:07:a9:71:d5:98:6b:59:56: 10:52:e0:9a -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEkowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI4MTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFFOEFGQ0Y5Q0MxNzA3 RkI4MjlFNzRCMzJCMTVGNDIzRkQzNjkzREMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXy5o88hNjAE50Kgb1axADEDsx+vXw3Shlpx4KI5t9z2csRJ11 r9ymFaPfoabmopH+rsNsrj+/i9GArZUIKkVxvImc6MIJezMse/kPzazdNUWAeKMq RZm/Ne5a6s0DbSQhqRMIYsvzWi07Nl/qit+arLCXyD1jaEx1/agrAVsMlibEAStk Wn263Yf9VUYQwNLHrZRRVpnipPr2TmSSiURwRAhfDLTXlH3uKXR917C4YkaSptgk bhFNjyoftDJ4tPzWD5SNE5u+UqTYPEgZMmaMYK7I4CsFTzvRT13N0kiehi3gJ+44 jtQUI8Wk3L7TVj7BMkDkrLFAFsy5RARoqtH5AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUror8+cwXB/uCnnSzKxX0I/02k9wwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3JvcjgtY3dYQl91Q25uU3pLeFgwSV8w Mms5dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHSyTwwDQYJ KoZIhvcNAQELBQADggEBAFLYWfl7XRJ5Bp1WAWCX3SxAiQVaRsqWZMlwwDKoGsEG dGCza4MPDLKPrKPp635FhcccJV/kHr6YtR60SFaRcjP0ix+w/Q01nUd71OTrtXZF FLXP8pIeKheoR2QlX71CsiPL9hJR+tcQOoNWfBeail/rzfnpREgr2LUjiNH4o93D HB3m0+0Xy8gqNO6Uj1wzwSa7188LkUmFu11yCs101jw+cXE7/15XTMHzLKjA9ozG TQu4kVKp+eSHt3Ag8VvtV3xyXcE11TjrJut4rnA7LkYW8b/3WKnJ2tsV3tdfGD+r IkXThV+UKIe1oSJzXk6YUgWxQREHqXHVmGtZVhBS4Jo= -----END CERTIFICATE-----Generated at Mon Apr 7 20:44:40 2025 by rpki-client