$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/tud43CdGZApt3vYiaxXgupFysfg.roa File: tud43CdGZApt3vYiaxXgupFysfg.roa (raw, json) Hash identifier: qm4WLX5+bkhJM0Bt56U6LRoRsjOSb1WbXU7XaLsa4BU= Subject key identifier: B6:E7:78:DC:27:46:64:0A:6D:DE:F6:22:6B:15:E0:BA:91:72:B1:F8 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 11F0 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/tud43CdGZApt3vYiaxXgupFysfg.roa Signing time: Mon 10 Feb 2025 14:27:54 +0000 ROA not before: Mon 10 Feb 2025 14:27:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 218.34.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4592 (0x11f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:27:54 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B6E778DC2746640A6DDEF6226B15E0BA9172B1F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:59:79:0b:a0:a4:68:bf:4c:e8:18:a2:ec:91: 68:58:52:8e:7c:82:c1:73:1b:7a:c0:74:1f:e9:5e: d5:7b:c0:45:8d:bc:ae:c3:0f:36:b1:f5:d8:1c:6c: 8e:d4:5a:03:3d:a6:1f:df:88:11:45:08:6e:19:0c: bb:5f:65:eb:e2:a4:3f:20:f1:38:81:10:dd:cb:e1: 78:3d:c3:65:e0:7b:27:23:2e:98:a1:6c:51:5b:16: 0a:ff:78:f3:3b:50:b2:c5:66:6e:f0:71:d4:97:e6: 68:13:e8:b8:25:6b:96:da:50:e3:6d:4e:e3:e8:19: 35:c8:4a:fe:8e:77:a7:d8:a2:5e:13:9a:9c:22:0d: a0:ea:6c:2b:4e:dd:9b:05:18:28:62:bf:e0:c5:a6: 41:1b:25:7a:44:cb:07:1d:7a:20:33:6b:85:7e:cd: 8c:70:84:43:a7:36:46:2f:c0:24:26:e7:36:8b:e9: a6:cf:8f:45:eb:f7:2b:db:3e:39:bd:9a:f6:6d:1d: f7:95:17:01:d6:5c:86:e8:03:83:77:af:05:c8:8d: 4c:80:d9:3e:e8:60:bc:ca:d6:ff:0b:8d:1d:ff:11: f9:3d:f5:49:12:7a:5d:96:44:01:07:c2:d8:e8:02: b2:5d:8a:b9:e3:e0:c8:9b:03:e9:69:70:4a:2d:9a: 76:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:E7:78:DC:27:46:64:0A:6D:DE:F6:22:6B:15:E0:BA:91:72:B1:F8 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/tud43CdGZApt3vYiaxXgupFysfg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.34.0.0/16 Signature Algorithm: sha256WithRSAEncryption ab:1d:21:8b:33:76:fc:4e:25:7a:11:ce:77:9d:a9:a5:80:37: d2:6e:69:1c:b7:79:27:d9:ac:6c:20:26:9c:21:fc:92:69:0d: 20:c8:c7:af:e4:42:c9:2c:06:81:b9:30:75:6b:0f:73:ea:19: 1a:bd:44:8c:5d:ef:89:2d:8c:8f:81:d3:61:6e:fc:c4:83:0e: 10:c9:98:1d:07:02:7b:ba:89:8c:16:1d:f2:fc:f5:68:03:f3: 0f:dc:d2:93:b2:67:74:eb:9a:d3:b0:5b:62:c5:eb:92:28:ff: 61:d9:58:ba:95:4f:27:ac:75:c0:4c:7f:92:18:8c:0d:8f:39: 28:13:1c:29:eb:dc:45:78:14:b9:75:9e:59:bf:70:b7:a7:38: 87:b0:cb:c5:40:59:20:8b:3c:44:f7:86:c3:51:0c:dd:0d:b4: dc:f5:a5:99:5b:b1:ec:46:d2:fb:1a:e2:9f:99:bb:46:e1:ae: d4:fe:bc:7e:a6:3b:e7:9f:00:b8:5a:57:bf:cd:3e:8f:ef:68: 7f:27:e0:5b:18:ef:3b:57:2f:cc:f9:e5:3d:bb:1f:d6:9c:87: a7:da:b5:fd:57:23:16:60:8a:89:3a:c9:1e:fe:77:88:1d:03: 70:c9:59:95:c7:60:9a:44:15:92:46:03:8f:08:32:cd:87:b8: 8d:85:57:34 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICEfAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI3NTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI2RTc3OERDMjc0NjY0 MEE2RERFRjYyMjZCMTVFMEJBOTE3MkIxRjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVWXkLoKRov0zoGKLskWhYUo58gsFzG3rAdB/pXtV7wEWNvK7D Dzax9dgcbI7UWgM9ph/fiBFFCG4ZDLtfZevipD8g8TiBEN3L4Xg9w2XgeycjLpih bFFbFgr/ePM7ULLFZm7wcdSX5mgT6Lgla5baUONtTuPoGTXISv6Od6fYol4Tmpwi DaDqbCtO3ZsFGChiv+DFpkEbJXpEywcdeiAza4V+zYxwhEOnNkYvwCQm5zaL6abP j0Xr9yvbPjm9mvZtHfeVFwHWXIboA4N3rwXIjUyA2T7oYLzK1v8LjR3/Efk99UkS el2WRAEHwtjoArJdirnj4MibA+lpcEotmnYxAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUtud43CdGZApt3vYiaxXgupFysfgwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3R1ZDQzQ2RHWkFwdDN2WWlheFhndXBG eXNmZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDaIjANBgkq hkiG9w0BAQsFAAOCAQEAqx0hizN2/E4lehHOd52ppYA30m5pHLd5J9msbCAmnCH8 kmkNIMjHr+RCySwGgbkwdWsPc+oZGr1EjF3viS2Mj4HTYW78xIMOEMmYHQcCe7qJ jBYd8vz1aAPzD9zSk7JndOua07BbYsXrkij/YdlYupVPJ6x1wEx/khiMDY85KBMc KevcRXgUuXWeWb9wt6c4h7DLxUBZIIs8RPeGw1EM3Q203PWlmVux7EbS+xrin5m7 RuGu1P68fqY7558AuFpXv80+j+9ofyfgWxjvO1cvzPnlPbsf1pyHp9q1/VcjFmCK iTrJHv53iB0DcMlZlcdgmkQVkkYDjwgyzYe4jYVXNA== -----END CERTIFICATE-----Generated at Mon Apr 7 20:49:22 2025 by rpki-client