$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/ylObY9z4QeHAx4ihrV8iNg0C4xg.roa File: ylObY9z4QeHAx4ihrV8iNg0C4xg.roa (raw, json) Hash identifier: c4sBok2ebQ79c4WuDPuvphtimXNn4SUSk0pDb3q5xBw= Subject key identifier: CA:53:9B:63:DC:F8:41:E1:C0:C7:88:A1:AD:5F:22:36:0D:02:E3:18 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 11AD Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/ylObY9z4QeHAx4ihrV8iNg0C4xg.roa Signing time: Mon 10 Feb 2025 14:27:37 +0000 ROA not before: Mon 10 Feb 2025 14:27:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9311 IP address blocks: 2404:0:4000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4525 (0x11ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:27:37 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CA539B63DCF841E1C0C788A1AD5F22360D02E318 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:02:a7:08:c6:b8:34:e4:b0:79:2b:2b:9e:32: 18:cc:37:fb:a2:22:fe:0d:e3:b8:fd:54:e8:f3:c4: 11:81:ca:c1:d5:3e:45:ed:a5:56:0d:08:97:00:e9: e2:99:c2:8a:b6:af:6a:2b:dd:7d:61:2d:68:48:98: bc:bc:be:f6:21:09:29:c0:35:3c:73:31:82:51:ce: 95:ec:c1:0c:27:14:92:48:fd:f4:97:52:48:09:6f: cc:f0:83:c9:2d:1a:b4:cd:ab:ec:02:02:a5:f4:42: 3d:44:8e:c2:ae:3a:78:16:d2:74:8f:c9:ca:15:37: 7a:a7:42:a4:b7:4a:9a:0c:26:8c:c3:99:f7:84:49: 70:f7:32:f0:93:29:5c:cf:fc:22:d6:b7:24:0e:f2: 59:aa:06:62:0d:54:9f:0c:a9:0f:7b:ae:d7:3b:b8: fc:20:96:1f:f1:11:ac:5c:0e:af:e5:e7:0c:28:eb: 92:2c:1a:12:e5:f5:6a:81:09:2f:20:68:70:e9:8e: 04:5f:e7:83:2f:db:f7:ed:06:58:a7:4d:e0:b5:66: 56:29:5f:a8:93:a4:15:23:16:20:d6:b7:40:6c:21: fc:55:09:68:35:aa:b6:f0:5a:f0:27:1f:a4:1f:94: 6e:58:e2:02:84:3e:47:6f:cf:d0:8c:bf:10:b0:10: ca:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:53:9B:63:DC:F8:41:E1:C0:C7:88:A1:AD:5F:22:36:0D:02:E3:18 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/ylObY9z4QeHAx4ihrV8iNg0C4xg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404:0:4000::/36 Signature Algorithm: sha256WithRSAEncryption c7:7a:7b:43:3f:a6:79:65:31:c4:65:cb:ae:8c:3c:b5:90:04: 09:59:42:34:f6:de:83:81:de:a9:30:51:84:fb:48:87:55:c8: 65:89:ad:47:f9:4e:65:6b:af:d3:34:93:95:76:e8:4f:f4:af: c3:76:e2:75:5b:bc:3c:91:27:35:90:4e:7a:e5:7d:30:a8:70: 84:80:b9:99:cb:e8:23:77:4f:c4:58:d1:bb:33:4d:6b:36:5a: ed:3b:9f:ec:2f:fd:92:84:58:1d:42:f5:d4:34:e2:d1:96:8b: fe:27:7b:ee:46:ff:ce:61:a2:ff:84:78:a6:ef:54:db:1a:90: 6f:23:8b:64:e5:87:0d:23:8c:04:18:4d:81:cf:6f:13:ce:8b: 13:4e:f9:04:91:37:63:7d:27:3c:24:54:ac:12:27:45:a5:4e: c6:32:00:e1:30:88:69:52:8f:90:8c:7a:a4:37:94:a0:da:58: 52:31:85:c4:4e:5c:a0:61:e5:07:75:46:11:7a:c2:f4:97:cf: 57:c0:c6:1a:c5:17:78:6e:d5:fc:fb:44:c6:fc:30:e5:53:a8: 98:ae:37:c3:19:b4:3f:fd:52:33:03:e3:4c:b9:e0:01:58:b5: ff:a0:a8:7c:c3:3c:c9:fb:76:37:b3:35:99:c7:86:fa:63:16: 32:39:ed:4c -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEa0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI3MzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENBNTM5QjYzRENGODQx RTFDMEM3ODhBMUFENUYyMjM2MEQwMkUzMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/AqcIxrg05LB5KyueMhjMN/uiIv4N47j9VOjzxBGBysHVPkXt pVYNCJcA6eKZwoq2r2or3X1hLWhImLy8vvYhCSnANTxzMYJRzpXswQwnFJJI/fSX UkgJb8zwg8ktGrTNq+wCAqX0Qj1EjsKuOngW0nSPycoVN3qnQqS3SpoMJozDmfeE SXD3MvCTKVzP/CLWtyQO8lmqBmINVJ8MqQ97rtc7uPwglh/xEaxcDq/l5wwo65Is GhLl9WqBCS8gaHDpjgRf54Mv2/ftBlinTeC1ZlYpX6iTpBUjFiDWt0BsIfxVCWg1 qrbwWvAnH6QflG5Y4gKEPkdvz9CMvxCwEMo3AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUylObY9z4QeHAx4ihrV8iNg0C4xgwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3lsT2JZOXo0UWVIQXg0aWhyVjhpTmcw QzR4Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQkBAAAQDAN BgkqhkiG9w0BAQsFAAOCAQEAx3p7Qz+meWUxxGXLrow8tZAECVlCNPbeg4HeqTBR hPtIh1XIZYmtR/lOZWuv0zSTlXboT/Svw3bidVu8PJEnNZBOeuV9MKhwhIC5mcvo I3dPxFjRuzNNazZa7Tuf7C/9koRYHUL11DTi0ZaL/id77kb/zmGi/4R4pu9U2xqQ byOLZOWHDSOMBBhNgc9vE86LE075BJE3Y30nPCRUrBInRaVOxjIA4TCIaVKPkIx6 pDeUoNpYUjGFxE5coGHlB3VGEXrC9JfPV8DGGsUXeG7V/PtExvww5VOomK43wxm0 P/1SMwPjTLngAVi1/6CofMM8yft2N7M1mceG+mMWMjntTA== -----END CERTIFICATE-----Generated at Mon Apr 7 20:56:36 2025 by rpki-client