$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/yFdyMM52xOT8Sf_ZtxsW21b31K0.roa File: yFdyMM52xOT8Sf_ZtxsW21b31K0.roa (raw, json) Hash identifier: xBuE6spQsVZfIkySS0yYwx/DBW6Rh9HIKVlcUh/g7ZU= Subject key identifier: C8:57:72:30:CE:76:C4:E4:FC:49:FF:D9:B7:1B:16:DB:56:F7:D4:AD Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 129A Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/yFdyMM52xOT8Sf_ZtxsW21b31K0.roa Signing time: Thu 13 Feb 2025 09:19:04 +0000 ROA not before: Thu 13 Feb 2025 09:19:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18412 IP address blocks: 2401:e180::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4762 (0x129a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 13 09:19:04 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C8577230CE76C4E4FC49FFD9B71B16DB56F7D4AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:97:b9:06:1d:1a:a6:d3:82:5d:02:48:f6:bf: 0b:de:41:11:96:b7:94:09:7b:2b:e2:0b:e0:37:1d: 90:11:9f:00:d1:f5:3c:77:c7:e9:7f:50:48:67:74: 6c:aa:1d:6a:8e:96:14:55:0a:7f:53:ec:02:11:28: 90:ba:50:21:89:3e:b2:07:58:8c:28:a3:67:37:b2: 7f:42:ab:74:dc:70:f5:a3:60:42:e4:80:16:ad:af: 9b:75:7e:14:c8:fa:72:55:ec:84:e8:4a:3a:c3:89: c6:87:60:67:3d:dd:93:be:71:c8:7b:3f:7c:87:0f: f3:94:ef:20:e6:55:f1:de:87:2b:b2:d1:e5:de:ca: 3d:aa:32:f6:e2:eb:f6:99:07:82:6d:80:5e:17:e2: 9d:4d:7a:20:08:71:00:dd:a5:bb:a5:04:2d:7e:2b: c6:6c:0e:98:c5:1f:d6:66:81:f8:4c:ea:7d:e4:db: d4:7d:9b:eb:9c:14:f3:a6:bb:3f:53:9b:67:a4:53: 77:14:4c:b6:97:a8:7a:49:ea:73:f7:d9:18:54:20: e7:00:69:c8:83:2b:d1:bf:98:15:cb:21:51:e2:fa: b2:c5:23:5d:26:5c:12:73:15:45:5d:c0:5e:d1:3a: 84:39:cd:b1:56:9e:0b:34:35:78:72:9b:2b:1e:d8: d0:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:57:72:30:CE:76:C4:E4:FC:49:FF:D9:B7:1B:16:DB:56:F7:D4:AD X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/yFdyMM52xOT8Sf_ZtxsW21b31K0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:e180::/32 Signature Algorithm: sha256WithRSAEncryption 70:3a:35:74:ee:0e:7d:2d:3a:bf:84:a1:28:a4:c7:70:da:46: cf:98:2f:77:aa:b1:c8:4c:f1:ce:e0:d6:fa:92:3d:b5:fc:29: b9:7b:52:0c:66:f8:49:9d:6b:ad:dc:f3:3a:f5:a0:2e:44:95: fe:1e:aa:ab:d1:75:69:3e:84:b2:c0:8e:91:7c:c4:bf:88:7e: 63:be:7f:4c:6e:10:f6:8f:5c:54:71:f9:a1:18:1c:01:b3:10: d3:51:20:1c:1d:d6:ab:93:1d:93:96:09:c3:05:e0:8e:59:f3: 7d:9c:7a:3a:d8:e3:37:6a:58:cc:4a:75:e4:10:d8:12:76:cd: 59:71:23:63:94:92:99:aa:18:a0:7f:b0:1b:ae:c6:42:9d:89: 83:b2:7b:3e:ee:88:d1:e7:a1:1e:3a:89:b5:85:8c:fd:99:77: 92:e5:67:40:90:34:de:4c:03:fb:7c:15:c4:73:1f:a7:40:d9: e7:f4:d4:fd:ed:78:41:f9:73:a4:2d:f7:69:7b:8a:d1:61:8a: 32:0f:93:41:fb:55:68:a0:6e:87:ac:55:f3:a4:75:81:05:24: 9f:2e:10:94:e7:ca:de:86:4e:cb:f4:40:9f:a8:5c:62:39:52: 6a:73:b3:7a:38:2a:38:57:eb:36:1c:2a:be:c1:55:6e:98:ed: 36:d0:08:d1 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICEpowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTMw OTE5MDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM4NTc3MjMwQ0U3NkM0 RTRGQzQ5RkZEOUI3MUIxNkRCNTZGN0Q0QUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfl7kGHRqm04JdAkj2vwveQRGWt5QJeyviC+A3HZARnwDR9Tx3 x+l/UEhndGyqHWqOlhRVCn9T7AIRKJC6UCGJPrIHWIwoo2c3sn9Cq3TccPWjYELk gBatr5t1fhTI+nJV7IToSjrDicaHYGc93ZO+cch7P3yHD/OU7yDmVfHehyuy0eXe yj2qMvbi6/aZB4JtgF4X4p1NeiAIcQDdpbulBC1+K8ZsDpjFH9ZmgfhM6n3k29R9 m+ucFPOmuz9Tm2ekU3cUTLaXqHpJ6nP32RhUIOcAaciDK9G/mBXLIVHi+rLFI10m XBJzFUVdwF7ROoQ5zbFWngs0NXhymyse2NB1AgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUyFdyMM52xOT8Sf/ZtxsW21b31K0wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3lGZHlNTTUyeE9UOFNmX1p0eHNXMjFi MzFLMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAeGAMA0G CSqGSIb3DQEBCwUAA4IBAQBwOjV07g59LTq/hKEopMdw2kbPmC93qrHITPHO4Nb6 kj21/Cm5e1IMZvhJnWut3PM69aAuRJX+Hqqr0XVpPoSywI6RfMS/iH5jvn9MbhD2 j1xUcfmhGBwBsxDTUSAcHdarkx2TlgnDBeCOWfN9nHo62OM3aljMSnXkENgSds1Z cSNjlJKZqhigf7AbrsZCnYmDsns+7ojR56EeOom1hYz9mXeS5WdAkDTeTAP7fBXE cx+nQNnn9NT97XhB+XOkLfdpe4rRYYoyD5NB+1VooG6HrFXzpHWBBSSfLhCU58re hk7L9ECfqFxiOVJqc7N6OCo4V+s2HCq+wVVumO020AjR -----END CERTIFICATE-----Generated at Mon Apr 7 20:54:14 2025 by rpki-client