$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/tI2HHjGwY0tMjBGmrCh_TdiaI9o.roa File: tI2HHjGwY0tMjBGmrCh_TdiaI9o.roa (raw, json) Hash identifier: US3lgXWpSJzVsX687Vof8Qku5IKerbNd6hwl6JF/ba0= Subject key identifier: B4:8D:87:1E:31:B0:63:4B:4C:8C:11:A6:AC:28:7F:4D:D8:9A:23:DA Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 11C9 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/tI2HHjGwY0tMjBGmrCh_TdiaI9o.roa Signing time: Mon 10 Feb 2025 14:27:44 +0000 ROA not before: Mon 10 Feb 2025 14:27:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 2404::/36 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4553 (0x11c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:27:44 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B48D871E31B0634B4C8C11A6AC287F4DD89A23DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ee:65:58:00:1b:c3:ed:61:75:99:c5:b4:eb: 4b:b9:6b:4a:46:3f:49:3f:27:0d:9b:dd:2b:95:a2: de:a4:fd:70:10:a3:2f:e1:28:77:26:06:ed:b6:3c: df:19:d9:c8:2b:c6:a2:67:82:b1:72:dd:fb:25:9e: 15:ce:9d:ed:40:1c:a0:75:0a:5a:e4:a8:e1:6e:fa: 83:58:d7:dc:98:97:f6:7e:05:54:17:74:a3:fc:3b: e1:85:fa:75:08:9e:17:73:3b:cd:e2:1e:c6:8b:f2: 04:ca:d8:56:22:ec:64:9a:cb:2d:12:ed:d4:bb:6f: 41:9f:aa:22:9c:6c:8f:45:9c:bf:b5:0d:4a:78:f5: 00:50:83:f8:46:7b:c8:54:7c:3c:fc:f9:86:23:97: fa:2d:b9:a0:05:4d:08:34:6e:66:ec:c8:15:8f:29: 00:e7:67:30:c8:90:7d:72:f6:41:c3:7a:46:05:d8: 9b:98:76:67:56:25:56:4e:e7:38:de:9e:95:cd:ae: 4c:9a:86:76:a0:b9:08:a7:99:a4:d4:26:cd:6a:6f: da:bf:7c:ae:c5:0c:88:4a:ec:23:b8:6c:ba:70:6f: ed:7e:b5:1c:9b:21:50:fc:ed:07:76:30:2e:6b:96: 45:f0:29:01:93:a0:49:a9:3c:59:e4:fd:2c:3e:f2: 67:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:8D:87:1E:31:B0:63:4B:4C:8C:11:A6:AC:28:7F:4D:D8:9A:23:DA X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/tI2HHjGwY0tMjBGmrCh_TdiaI9o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404::/36 Signature Algorithm: sha256WithRSAEncryption 76:ca:39:aa:76:04:7c:38:9e:c5:b4:6d:16:f8:af:76:44:41: c7:bf:8f:16:be:46:cd:27:02:38:8e:d0:73:25:bb:c1:52:b7: 0f:82:6d:f4:b4:a2:ca:09:36:b3:89:1c:16:e8:16:21:2b:22: 82:d1:6a:c0:62:62:9d:c2:7e:0e:25:c0:98:8c:03:18:7d:a2: 57:cd:e2:d2:0d:bc:a4:59:97:a5:22:67:2a:91:7e:f2:a1:8b: 15:96:2f:e0:ad:a0:89:be:63:a2:5c:a6:24:69:28:c5:6e:8b: 18:fb:63:b7:09:1d:e6:04:c5:8c:f5:f0:8a:42:e8:60:04:5c: 6c:30:f0:c0:0b:64:b9:c3:17:af:b8:45:cb:9f:01:76:65:60: f0:12:eb:3a:b3:c7:d2:23:35:70:83:b1:f0:03:8e:ac:e8:83: 36:3c:97:04:b5:79:6a:f4:58:01:62:a5:b5:46:0a:5f:b0:c3: cf:c2:21:5e:3a:1d:bc:a3:24:d7:75:42:fd:61:e8:c3:43:dd: 70:8a:c7:8f:05:d1:38:43:04:f5:a5:58:ac:57:a9:d9:95:cb: 0a:ec:31:9d:a7:65:44:1a:2b:e7:3c:3a:65:fe:b8:94:98:0f: af:2a:e8:f9:ba:7f:45:25:37:da:3f:1e:61:74:65:fd:55:87: 82:b4:9f:46 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEckwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI3NDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI0OEQ4NzFFMzFCMDYz NEI0QzhDMTFBNkFDMjg3RjRERDg5QTIzREEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDf7mVYABvD7WF1mcW060u5a0pGP0k/Jw2b3SuVot6k/XAQoy/h KHcmBu22PN8Z2cgrxqJngrFy3fslnhXOne1AHKB1ClrkqOFu+oNY19yYl/Z+BVQX dKP8O+GF+nUInhdzO83iHsaL8gTK2FYi7GSayy0S7dS7b0GfqiKcbI9FnL+1DUp4 9QBQg/hGe8hUfDz8+YYjl/otuaAFTQg0bmbsyBWPKQDnZzDIkH1y9kHDekYF2JuY dmdWJVZO5zjenpXNrkyahnaguQinmaTUJs1qb9q/fK7FDIhK7CO4bLpwb+1+tRyb IVD87Qd2MC5rlkXwKQGToEmpPFnk/Sw+8meVAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUtI2HHjGwY0tMjBGmrCh/TdiaI9owHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3RJMkhIakd3WTB0TWpCR21yQ2hfVGRp YUk5by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQkBAAAADAN BgkqhkiG9w0BAQsFAAOCAQEAdso5qnYEfDiexbRtFvivdkRBx7+PFr5GzScCOI7Q cyW7wVK3D4Jt9LSiygk2s4kcFugWISsigtFqwGJincJ+DiXAmIwDGH2iV83i0g28 pFmXpSJnKpF+8qGLFZYv4K2gib5jolymJGkoxW6LGPtjtwkd5gTFjPXwikLoYARc bDDwwAtkucMXr7hFy58BdmVg8BLrOrPH0iM1cIOx8AOOrOiDNjyXBLV5avRYAWKl tUYKX7DDz8IhXjodvKMk13VC/WHow0PdcIrHjwXROEME9aVYrFep2ZXLCuwxnadl RBor5zw6Zf64lJgPryro+bp/RSU32j8eYXRl/VWHgrSfRg== -----END CERTIFICATE-----Generated at Mon Apr 7 20:54:22 2025 by rpki-client