$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/ueAFekuU8ZOwjcMaM7k6MmYC9fM.roa File: ueAFekuU8ZOwjcMaM7k6MmYC9fM.roa (raw, json) Hash identifier: NXUzDgeLXsmKb7MT4w5dgR2MSRg+ZN73W22QcxqJ7TI= Subject key identifier: B9:E0:05:7A:4B:94:F1:93:B0:8D:C3:1A:33:B9:3A:32:66:02:F5:F3 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 116F Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/ueAFekuU8ZOwjcMaM7k6MmYC9fM.roa Signing time: Mon 10 Feb 2025 14:27:21 +0000 ROA not before: Mon 10 Feb 2025 14:27:21 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24154 IP address blocks: 2404:0:5000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 18:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4463 (0x116f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:27:21 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B9E0057A4B94F193B08DC31A33B93A326602F5F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:b8:c0:9c:33:85:33:66:33:25:39:70:3b:5e: ca:96:3c:b7:56:ab:aa:62:58:52:b6:2c:f4:e0:ed: c1:a5:50:53:7d:7d:20:45:77:f0:a1:dc:3a:f4:a1: a5:1a:d8:06:90:22:fb:84:a4:47:09:66:66:53:13: 18:4b:b8:79:ea:80:27:fb:93:30:63:12:15:c0:e2: 39:61:75:55:5a:07:1a:93:43:30:1f:0f:1a:d6:d0: ee:ac:ba:5d:70:2c:42:69:a4:9a:cc:31:7c:9b:4b: 9c:73:e2:7d:b2:88:e5:35:b9:09:32:27:73:99:c6: 36:85:8d:1c:9e:da:0b:a0:a2:70:07:a8:a4:a7:3e: 17:f4:7c:93:81:17:6f:79:a7:de:22:17:1a:64:de: b6:f1:a1:0a:af:39:1b:00:4d:0b:4b:27:9f:ac:e0: eb:42:95:35:70:54:e7:3f:1b:73:c6:ee:f0:d3:02: af:80:d7:e0:16:7c:13:8b:50:a7:92:52:d2:b8:df: 97:1d:bb:10:41:ab:7c:a5:42:16:5d:56:79:be:61: 09:39:8c:9c:cf:58:90:59:f3:5e:61:04:81:a8:f9: cd:65:e0:85:3d:53:02:68:c4:4a:a4:3c:0a:b9:bc: 4f:3b:dc:76:c8:3c:48:b5:ef:97:82:b2:a1:08:53: 29:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:E0:05:7A:4B:94:F1:93:B0:8D:C3:1A:33:B9:3A:32:66:02:F5:F3 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/ueAFekuU8ZOwjcMaM7k6MmYC9fM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404:0:5000::/36 Signature Algorithm: sha256WithRSAEncryption 5e:cc:1e:0f:6a:35:62:20:bd:64:66:5b:29:24:4b:93:65:bd: 4f:a2:8e:93:7e:fd:dd:dc:cb:5e:7e:54:4c:e3:f6:ab:b4:25: ad:cc:ca:39:80:a0:92:65:91:40:05:5d:b4:37:37:d2:57:e7: 01:31:8e:e1:d3:32:4e:14:ad:03:2d:b0:19:cb:57:d0:9d:c1: fb:e7:5d:e2:3b:b2:b8:0f:36:c1:91:37:e1:9e:e0:06:56:1c: d3:2c:57:02:e3:1b:6a:44:32:cb:7d:e4:c5:79:b3:f3:5f:20: c0:c3:54:59:b3:7c:d3:5e:f8:d4:f1:c9:63:7b:42:80:6e:2c: c4:0e:ef:39:37:70:b3:11:4b:0e:89:16:48:d4:68:87:d8:a1: 20:1b:70:22:1f:5d:f8:01:da:3f:e1:c8:64:c8:62:fe:8e:d4: b0:e2:61:02:0f:96:82:e8:0d:e3:86:56:a7:f2:db:e5:96:75: 73:22:bc:e1:60:9f:0d:e2:2b:4a:b6:dc:31:dd:e7:03:9d:91: e3:0c:ee:95:b8:49:ab:bf:1a:53:98:9a:e3:01:cf:19:90:9d: 75:61:da:88:3a:04:02:12:13:58:e6:a6:74:be:d7:80:fc:d3: ad:5f:cc:d3:ce:44:a3:6d:c7:71:e9:a6:cd:23:a3:18:ff:05: bb:a3:9a:a5 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEW8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI3MjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI5RTAwNTdBNEI5NEYx OTNCMDhEQzMxQTMzQjkzQTMyNjYwMkY1RjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpuMCcM4UzZjMlOXA7XsqWPLdWq6piWFK2LPTg7cGlUFN9fSBF d/Ch3Dr0oaUa2AaQIvuEpEcJZmZTExhLuHnqgCf7kzBjEhXA4jlhdVVaBxqTQzAf DxrW0O6sul1wLEJppJrMMXybS5xz4n2yiOU1uQkyJ3OZxjaFjRye2gugonAHqKSn Phf0fJOBF295p94iFxpk3rbxoQqvORsATQtLJ5+s4OtClTVwVOc/G3PG7vDTAq+A 1+AWfBOLUKeSUtK435cduxBBq3ylQhZdVnm+YQk5jJzPWJBZ815hBIGo+c1l4IU9 UwJoxEqkPAq5vE873HbIPEi175eCsqEIUymNAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUueAFekuU8ZOwjcMaM7k6MmYC9fMwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3VlQUZla3VVOFpPd2pjTWFNN2s2TW1Z QzlmTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQkBAAAUDAN BgkqhkiG9w0BAQsFAAOCAQEAXsweD2o1YiC9ZGZbKSRLk2W9T6KOk3793dzLXn5U TOP2q7QlrczKOYCgkmWRQAVdtDc30lfnATGO4dMyThStAy2wGctX0J3B++dd4juy uA82wZE34Z7gBlYc0yxXAuMbakQyy33kxXmz818gwMNUWbN801741PHJY3tCgG4s xA7vOTdwsxFLDokWSNRoh9ihIBtwIh9d+AHaP+HIZMhi/o7UsOJhAg+WgugN44ZW p/Lb5ZZ1cyK84WCfDeIrSrbcMd3nA52R4wzulbhJq78aU5ia4wHPGZCddWHaiDoE AhITWOamdL7XgPzTrV/M085Eo23HcemmzSOjGP8Fu6OapQ== -----END CERTIFICATE-----Generated at Mon Apr 7 17:42:07 2025 by rpki-client