$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/N0L_DqwfuwE6oqtpOcftRCt_Dxc.roa File: N0L_DqwfuwE6oqtpOcftRCt_Dxc.roa (raw, json) Hash identifier: 1DfREhKOJozHLNJTS9F6ZnNxlWdhSq7gH0MT2ZldO/o= Subject key identifier: 37:42:FF:0E:AC:1F:BB:01:3A:A2:AB:69:39:C7:ED:44:2B:7F:0F:17 Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Certificate serial: 0D15 Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/N0L_DqwfuwE6oqtpOcftRCt_Dxc.roa Signing time: Mon 10 Feb 2025 14:08:19 +0000 ROA not before: Mon 10 Feb 2025 14:08:19 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4782 IP address blocks: 61.60.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 22:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3349 (0xd15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Validity Not Before: Feb 10 14:08:19 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3742FF0EAC1FBB013AA2AB6939C7ED442B7F0F17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:d1:89:54:00:13:74:5a:0e:55:ad:f7:74:93: f0:8a:4d:54:39:b9:ee:3e:24:2b:57:0a:19:8e:80: 00:70:e9:69:1c:c3:b8:8b:ad:55:57:69:60:28:37: c8:e0:17:20:f3:59:fe:84:f2:19:08:ea:38:20:38: 95:9f:b6:ed:c7:96:3d:62:c2:6b:5e:ad:f6:fc:27: 7a:e0:15:20:d6:05:d8:2f:16:bc:54:6b:c0:da:fd: 75:44:cb:b4:4f:01:2f:9e:23:7c:fb:d9:dd:62:f5: ea:2c:ae:b9:95:35:4d:70:d4:22:39:bf:59:62:cf: 7f:99:a7:81:36:7b:64:6c:21:cf:66:a3:dd:15:94: 7d:c7:93:ea:46:2e:4a:57:9a:dd:bd:8c:71:e1:3d: a9:4f:e4:e5:d3:c3:7e:6b:eb:1f:9e:d5:f8:63:e1: 14:fa:72:f4:65:69:90:f7:67:11:a0:42:cb:44:99: b7:df:ff:4c:b9:9e:33:11:db:4a:d4:6c:7a:9a:b3: e3:88:c9:41:59:cf:80:15:43:91:87:22:8f:08:db: b7:5f:5a:ef:d7:5e:29:35:0a:4e:9f:3d:1f:f4:b1: b7:98:28:a3:8a:cd:0b:c6:3f:3e:b1:86:ab:93:51: c1:29:37:81:4d:e7:1a:2a:6e:6e:25:c2:6c:6f:63: 44:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:42:FF:0E:AC:1F:BB:01:3A:A2:AB:69:39:C7:ED:44:2B:7F:0F:17 X509v3 Authority Key Identifier: keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/N0L_DqwfuwE6oqtpOcftRCt_Dxc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.60.0.0/17 Signature Algorithm: sha256WithRSAEncryption 1d:31:93:e4:fd:6a:16:29:bd:5e:72:e2:73:05:37:3c:67:1c: 48:bf:23:4f:69:bc:c2:83:af:92:5d:b8:7c:1b:f2:31:85:8d: 4e:8d:0c:d1:68:d6:9c:64:78:3a:21:b2:4d:91:4f:ab:33:2f: 66:9b:eb:86:25:6d:02:58:c4:8f:ed:72:18:c9:19:dd:80:e2: 77:a6:37:d0:d5:c2:b1:cc:5d:9a:41:d3:ed:ff:c2:ed:50:f9: 86:76:38:eb:1f:dd:a8:81:99:f4:2b:60:d4:01:f1:ea:3a:d5: 8d:82:33:db:eb:07:11:94:3e:b7:6c:db:70:cf:e0:a2:7e:b8: 57:08:9f:35:5d:5c:51:de:58:ae:d1:66:cf:a5:13:5b:fd:da: dc:7f:8a:88:68:83:72:1c:d8:55:57:ea:df:91:fc:b4:55:91: 48:62:85:92:be:6a:3a:d1:50:03:33:da:64:24:f7:b3:ae:25: f9:c0:cc:70:68:80:bf:ea:48:d7:58:be:f1:a0:1a:cf:c2:73: 4c:dd:49:c4:49:d3:6d:af:14:ad:4d:72:f6:92:0c:ea:c0:7e: e8:3a:7e:b3:0a:6a:65:37:b3:e1:37:74:00:ac:e5:1a:d2:b3: 70:42:f2:c7:5d:92:d9:18:20:f1:77:3d:76:2f:92:99:42:4f: 78:d8:52:81 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDRUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVG RTUzQzYxMUI0RkQ1NkIzRjY4MzE5RUVDQTYyODlGM0YwRjJBOTAeFw0yNTAyMTAx NDA4MTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM3NDJGRjBFQUMxRkJC MDEzQUEyQUI2OTM5QzdFRDQ0MkI3RjBGMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDo0YlUABN0Wg5Vrfd0k/CKTVQ5ue4+JCtXChmOgABw6Wkcw7iL rVVXaWAoN8jgFyDzWf6E8hkI6jggOJWftu3Hlj1iwmterfb8J3rgFSDWBdgvFrxU a8Da/XVEy7RPAS+eI3z72d1i9eosrrmVNU1w1CI5v1liz3+Zp4E2e2RsIc9mo90V lH3Hk+pGLkpXmt29jHHhPalP5OXTw35r6x+e1fhj4RT6cvRlaZD3ZxGgQstEmbff /0y5njMR20rUbHqas+OIyUFZz4AVQ5GHIo8I27dfWu/XXik1Ck6fPR/0sbeYKKOK zQvGPz6xhquTUcEpN4FN5xoqbm4lwmxvY0R1AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUN0L/DqwfuwE6oqtpOcftRCt/DxcwHwYDVR0jBBgwFoAUdf5TxhG0/Vaz9oMZ 7spiifPw8qkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2Rm NVR4aEcwX1ZhejlvTVo3c3BpaWZQdzhxay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZGY1VHhoRzBfVmF6OW9NWjdzcGlpZlB3OHFrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL04wTF9EcXdmdXdFNm9xdHBPY2Z0UkN0 X0R4Yy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAc9PAAwDQYJ KoZIhvcNAQELBQADggEBAB0xk+T9ahYpvV5y4nMFNzxnHEi/I09pvMKDr5JduHwb 8jGFjU6NDNFo1pxkeDohsk2RT6szL2ab64YlbQJYxI/tchjJGd2A4nemN9DVwrHM XZpB0+3/wu1Q+YZ2OOsf3aiBmfQrYNQB8eo61Y2CM9vrBxGUPrds23DP4KJ+uFcI nzVdXFHeWK7RZs+lE1v92tx/iohog3Ic2FVX6t+R/LRVkUhihZK+ajrRUAMz2mQk 97OuJfnAzHBogL/qSNdYvvGgGs/Cc0zdScRJ022vFK1NcvaSDOrAfug6frMKamU3 s+E3dACs5RrSs3BC8sddktkYIPF3PXYvkplCT3jYUoE= -----END CERTIFICATE-----Generated at Fri Apr 18 22:26:11 2025 by rpki-client