$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/vhb9bLkH-qj3ygq07IBxH28ZFl8.roa File: vhb9bLkH-qj3ygq07IBxH28ZFl8.roa (raw, json) Hash identifier: /i2wCNfsfIUBw0utGquxbWpJDFZ2NcOjuf2+hnOZhdE= Subject key identifier: BE:16:FD:6C:B9:07:FA:A8:F7:CA:0A:B4:EC:80:71:1F:6F:19:16:5F Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 11F8 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/vhb9bLkH-qj3ygq07IBxH28ZFl8.roa Signing time: Mon 10 Feb 2025 14:27:55 +0000 ROA not before: Mon 10 Feb 2025 14:27:55 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 222.250.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4600 (0x11f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:27:55 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BE16FD6CB907FAA8F7CA0AB4EC80711F6F19165F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:14:35:1c:16:9d:30:8d:aa:3c:2c:7d:80:33: a4:a9:30:12:14:5e:89:8f:e2:6d:6e:0c:fb:62:5d: 68:eb:3a:6f:35:9a:b8:9a:50:f6:8e:f3:4e:b3:c6: 1d:98:f2:e0:ca:87:e9:ef:1f:90:2f:36:c5:68:d8: 9d:4f:51:6f:91:37:60:97:50:35:28:73:fc:5e:32: a3:6a:4c:fc:b3:08:0b:e8:69:31:d2:52:0b:93:01: 8d:c9:7d:9c:20:50:4b:aa:ed:07:c1:df:5f:cd:77: 83:a7:26:5a:d3:23:f3:4b:87:c7:95:34:ab:4d:a2: 95:a5:cb:23:34:82:99:8f:10:b9:08:06:da:c3:df: 78:b3:47:fc:76:55:cf:a5:fe:7a:5a:fa:4a:40:b9: b3:85:91:35:36:d6:ea:a4:d5:4c:73:cd:41:40:ec: 89:2f:24:0b:3f:11:b0:9f:b9:e9:4f:81:d7:06:77: 18:ea:2f:b6:5b:0c:9e:74:39:1c:c2:01:0c:9e:b3: e3:a3:5b:2b:16:3b:e9:d7:3d:02:e5:34:ed:de:9b: 78:8a:34:58:ac:91:92:9b:5d:92:6f:f7:cc:55:48: 95:67:5c:22:d1:0e:a4:84:92:dc:04:33:1c:a8:19: b3:1b:60:96:22:52:f1:57:cb:c9:ef:78:77:bd:3f: 30:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:16:FD:6C:B9:07:FA:A8:F7:CA:0A:B4:EC:80:71:1F:6F:19:16:5F X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/vhb9bLkH-qj3ygq07IBxH28ZFl8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 222.250.192.0/18 Signature Algorithm: sha256WithRSAEncryption 2d:48:b7:5b:e3:82:a1:2d:f7:93:bc:84:2d:bd:d5:31:15:12: 96:64:da:40:dc:51:f6:ce:53:8f:8d:87:18:8c:37:12:c4:ee: 61:62:c0:a6:da:74:1b:3a:34:83:c3:d4:bf:04:c4:11:f9:6b: 40:20:bf:a5:ad:06:fe:d4:a0:06:c0:e9:a3:53:36:16:f9:78: 2c:5e:34:e7:ac:c0:df:77:5e:24:4c:58:d9:55:80:74:40:b0: cf:a7:07:30:e8:bd:10:31:42:e9:4a:b8:c0:c9:b4:27:4c:66: 6d:32:b2:23:3d:59:89:8f:d8:f4:a0:b2:02:b9:ef:75:ad:f2: 07:90:83:cb:af:48:f6:a9:a7:4e:f2:8a:74:55:15:c3:4b:2a: 07:18:11:f3:3a:0f:0d:f1:c1:9b:53:8a:5d:0c:1c:5e:6b:e6: e2:2a:46:be:8c:83:01:a6:b7:a4:ec:34:4a:f4:21:68:8a:29: 04:3c:9a:66:42:cb:c3:34:05:38:6a:b0:19:88:a8:a4:ac:87: 3f:30:3a:00:90:0e:b9:29:68:a4:03:64:48:ba:4e:32:ad:48: ba:3a:fd:14:4c:08:de:ef:9e:4a:3a:9e:94:be:6d:b2:9f:7a: 57:ec:0f:4b:09:16:63:19:61:80:e8:6b:dc:27:13:b4:05:b2: 18:b9:21:84 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEfgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI3NTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJFMTZGRDZDQjkwN0ZB QThGN0NBMEFCNEVDODA3MTFGNkYxOTE2NUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6FDUcFp0wjao8LH2AM6SpMBIUXomP4m1uDPtiXWjrOm81mria UPaO806zxh2Y8uDKh+nvH5AvNsVo2J1PUW+RN2CXUDUoc/xeMqNqTPyzCAvoaTHS UguTAY3JfZwgUEuq7QfB31/Nd4OnJlrTI/NLh8eVNKtNopWlyyM0gpmPELkIBtrD 33izR/x2Vc+l/npa+kpAubOFkTU21uqk1UxzzUFA7IkvJAs/EbCfuelPgdcGdxjq L7ZbDJ50ORzCAQyes+OjWysWO+nXPQLlNO3em3iKNFiskZKbXZJv98xVSJVnXCLR DqSEktwEMxyoGbMbYJYiUvFXy8nveHe9PzC9AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUvhb9bLkH+qj3ygq07IBxH28ZFl8wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3ZoYjliTGtILXFqM3lncTA3SUJ4SDI4 WkZsOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbe+sAwDQYJ KoZIhvcNAQELBQADggEBAC1It1vjgqEt95O8hC291TEVEpZk2kDcUfbOU4+NhxiM NxLE7mFiwKbadBs6NIPD1L8ExBH5a0Agv6WtBv7UoAbA6aNTNhb5eCxeNOeswN93 XiRMWNlVgHRAsM+nBzDovRAxQulKuMDJtCdMZm0ysiM9WYmP2PSgsgK573Wt8geQ g8uvSPapp07yinRVFcNLKgcYEfM6Dw3xwZtTil0MHF5r5uIqRr6MgwGmt6TsNEr0 IWiKKQQ8mmZCy8M0BThqsBmIqKSshz8wOgCQDrkpaKQDZEi6TjKtSLo6/RRMCN7v nko6npS+bbKfelfsD0sJFmMZYYDoa9wnE7QFshi5IYQ= -----END CERTIFICATE-----Generated at Mon Apr 7 20:51:51 2025 by rpki-client