$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/RrC6EsFEezy96etvYexySdWJbuY.roa File: RrC6EsFEezy96etvYexySdWJbuY.roa (raw, json) Hash identifier: nApuxXjNb+Y6i1MTV5wSY9BrMW46sZk7Q4MO5901nO8= Subject key identifier: 46:B0:BA:12:C1:44:7B:3C:BD:E9:EB:6F:61:EC:72:49:D5:89:6E:E6 Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Certificate serial: 0D12 Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/RrC6EsFEezy96etvYexySdWJbuY.roa Signing time: Mon 10 Feb 2025 14:08:19 +0000 ROA not before: Mon 10 Feb 2025 14:08:19 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4782 IP address blocks: 211.79.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3346 (0xd12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Validity Not Before: Feb 10 14:08:19 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=46B0BA12C1447B3CBDE9EB6F61EC7249D5896EE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:78:3d:93:48:6d:7e:f0:01:ab:37:0b:a4:5d: 25:54:db:f2:82:7d:d8:bf:a7:45:70:f9:a3:a2:83: c8:a6:67:53:96:eb:92:60:70:f2:66:3e:7f:bd:a6: 62:9d:10:17:e2:65:f6:0b:7a:eb:59:f3:29:f6:0c: ff:91:51:98:9a:18:b3:96:9f:ff:84:56:d8:4f:c8: 2d:c3:65:8c:21:4b:2c:50:16:ec:b5:15:95:70:cd: c8:e0:b3:b0:1c:e9:1e:97:85:96:2d:26:19:22:42: 15:43:97:38:c4:d9:7a:e0:44:33:1d:9a:0c:5a:b5: 0a:67:c2:f5:36:62:0c:d4:83:f3:6d:4b:c8:4b:a2: af:24:6e:d0:69:2f:d7:db:29:d7:b1:18:8f:eb:3b: 01:20:df:98:eb:df:ec:ca:d1:6e:ff:e8:96:fa:06: 16:df:e4:0b:21:93:bc:79:f2:39:97:e8:fb:e5:8a: 77:2e:5e:ae:e7:dd:cc:29:2c:4a:59:81:af:2b:0a: d5:2e:58:d7:ed:41:72:49:55:22:f3:84:19:3c:6b: 30:6e:1d:42:a6:db:d2:93:d0:f9:62:af:56:dd:b4: e1:da:5c:7d:68:48:db:67:52:c5:77:c8:7b:b2:b6: 0e:fb:ab:b8:07:c1:cd:0b:5b:a5:9b:7b:8d:d2:ae: 7f:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:B0:BA:12:C1:44:7B:3C:BD:E9:EB:6F:61:EC:72:49:D5:89:6E:E6 X509v3 Authority Key Identifier: keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/RrC6EsFEezy96etvYexySdWJbuY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.79.160.0/19 Signature Algorithm: sha256WithRSAEncryption 48:aa:36:bf:95:c5:74:0f:3f:2a:8a:cc:74:af:ab:b9:d2:80: 21:dc:1e:ef:47:a6:c4:ad:a3:5d:3d:ee:20:19:7d:5c:bb:39: 27:1f:db:89:c4:15:9c:38:28:5e:9f:a1:83:e9:c8:f7:97:34: f8:ce:76:91:d3:a7:0b:4f:da:38:f1:d7:6b:6b:09:85:68:72: be:95:38:00:d8:3d:d0:cc:e3:1d:d2:b3:21:af:9b:f4:4c:ca: 5a:2c:d8:42:70:f5:ca:92:9c:c5:14:12:f8:66:c5:5f:40:a9: 0e:a6:e2:dd:85:c2:71:4f:b4:e5:6e:12:37:23:dc:48:f4:bd: ba:6c:e5:b4:b5:56:69:42:d5:15:0e:62:4d:bf:aa:71:b0:6e: 87:85:ac:4c:16:d2:42:d0:13:cc:03:5c:31:77:24:ff:03:83: 8a:c5:80:cd:37:3d:e9:bf:04:c7:98:cc:68:8e:da:02:3f:86: 46:0d:71:3a:99:7f:dc:1e:1d:ee:b1:01:5e:45:97:40:8e:2c: 6b:b3:74:fe:f9:01:b1:4f:68:f0:d7:27:00:40:3e:93:0e:47: 54:d1:e6:0d:07:1b:0b:c4:2f:32:06:d5:ae:6a:bd:b6:70:8b: 5e:62:85:ce:f7:07:d9:40:57:63:b9:18:2e:81:93:b4:bf:85: 96:76:8e:1a -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDRIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVG RTUzQzYxMUI0RkQ1NkIzRjY4MzE5RUVDQTYyODlGM0YwRjJBOTAeFw0yNTAyMTAx NDA4MTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ2QjBCQTEyQzE0NDdC M0NCREU5RUI2RjYxRUM3MjQ5RDU4OTZFRTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyeD2TSG1+8AGrNwukXSVU2/KCfdi/p0Vw+aOig8imZ1OW65Jg cPJmPn+9pmKdEBfiZfYLeutZ8yn2DP+RUZiaGLOWn/+EVthPyC3DZYwhSyxQFuy1 FZVwzcjgs7Ac6R6XhZYtJhkiQhVDlzjE2XrgRDMdmgxatQpnwvU2YgzUg/NtS8hL oq8kbtBpL9fbKdexGI/rOwEg35jr3+zK0W7/6Jb6Bhbf5Ashk7x58jmX6Pvlincu Xq7n3cwpLEpZga8rCtUuWNftQXJJVSLzhBk8azBuHUKm29KT0Plir1bdtOHaXH1o SNtnUsV3yHuytg77q7gHwc0LW6Wbe43Srn+LAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQURrC6EsFEezy96etvYexySdWJbuYwHwYDVR0jBBgwFoAUdf5TxhG0/Vaz9oMZ 7spiifPw8qkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2Rm NVR4aEcwX1ZhejlvTVo3c3BpaWZQdzhxay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZGY1VHhoRzBfVmF6OW9NWjdzcGlpZlB3OHFrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL1JyQzZFc0ZFZXp5OTZldHZZZXh5U2RX SmJ1WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXTT6AwDQYJ KoZIhvcNAQELBQADggEBAEiqNr+VxXQPPyqKzHSvq7nSgCHcHu9HpsSto1097iAZ fVy7OScf24nEFZw4KF6foYPpyPeXNPjOdpHTpwtP2jjx12trCYVocr6VOADYPdDM 4x3SsyGvm/RMylos2EJw9cqSnMUUEvhmxV9AqQ6m4t2FwnFPtOVuEjcj3Ej0vbps 5bS1VmlC1RUOYk2/qnGwboeFrEwW0kLQE8wDXDF3JP8Dg4rFgM03Pem/BMeYzGiO 2gI/hkYNcTqZf9weHe6xAV5Fl0COLGuzdP75AbFPaPDXJwBAPpMOR1TR5g0HGwvE LzIG1a5qvbZwi15ihc73B9lAV2O5GC6Bk7S/hZZ2jho= -----END CERTIFICATE-----Generated at Fri Apr 18 23:23:20 2025 by rpki-client