$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Q-ZXGsto2VGCTnmTxMadpUu1v8I.roa File: Q-ZXGsto2VGCTnmTxMadpUu1v8I.roa (raw, json) Hash identifier: OMzSG2OJAxWhMC3i3B385Cs9iHCQ+7tFNq3Y6YFqnHA= Subject key identifier: 43:E6:57:1A:CB:68:D9:51:82:4E:79:93:C4:C6:9D:A5:4B:B5:BF:C2 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1722 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Q-ZXGsto2VGCTnmTxMadpUu1v8I.roa Signing time: Wed 12 Feb 2025 01:36:26 +0000 ROA not before: Wed 12 Feb 2025 01:36:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 36040 IP address blocks: 202.39.67.192/27 maxlen: 27 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 13:36:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5922 (0x1722) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:36:26 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=43E6571ACB68D951824E7993C4C69DA54BB5BFC2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:91:d8:ab:09:3f:8c:a6:87:05:96:c8:ae:be: 07:df:3e:61:db:7c:31:b0:78:90:03:ef:f4:a8:42: 90:ee:a1:ae:60:87:60:c8:b7:34:e1:70:fa:44:cf: f4:74:d0:d3:db:aa:db:b9:71:a8:81:6c:a9:c2:c7: 54:d5:05:fa:ba:50:b5:99:a0:7b:a7:ed:93:8c:92: 6e:98:89:38:22:c9:54:f2:18:88:ac:1d:d7:b1:2d: ea:37:8a:5e:42:c4:c5:67:57:45:35:7c:69:46:21: 14:4b:f7:1a:d2:98:1c:18:8e:19:77:9f:cf:f5:8d: 9b:c0:d4:ae:59:bc:57:7f:b1:ae:8b:7d:77:f9:b6: 71:5f:41:04:36:8c:6b:e5:78:8d:c4:77:f4:10:f1: c7:e1:27:2b:c9:a8:d2:b9:ce:e1:70:88:90:6f:f0: 05:c7:8b:93:58:20:08:19:c0:51:c2:75:12:16:ab: 49:e4:c6:69:77:29:2c:67:8e:2f:b7:e3:a3:f4:69: 47:c9:9f:f2:e2:fa:e2:8e:63:cd:f1:e4:9e:a1:6c: ac:f2:56:38:92:7c:c6:b0:87:e0:93:7a:9e:b8:3c: 43:4a:02:27:ab:07:9c:f5:51:ea:ac:4b:b9:67:60: 30:f8:7f:82:8e:3b:ba:c3:cf:f7:b9:8d:0c:fa:30: 66:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:E6:57:1A:CB:68:D9:51:82:4E:79:93:C4:C6:9D:A5:4B:B5:BF:C2 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Q-ZXGsto2VGCTnmTxMadpUu1v8I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.39.67.192/27 Signature Algorithm: sha256WithRSAEncryption 09:dd:5b:f4:22:e9:cc:70:f5:bd:3f:41:30:ed:6c:28:fd:c8: 58:71:e6:4c:30:e3:e0:75:43:bf:a0:ed:52:9e:31:3d:0c:f1: 80:9b:c4:18:7b:93:76:a6:81:95:e0:5a:e4:87:b7:62:93:13: ec:c3:44:d8:80:9a:62:6d:3a:7e:19:44:ba:3f:b5:44:83:f3: 13:8c:8e:ae:b3:33:5c:c5:28:13:74:49:96:de:20:b3:36:6c: 5f:df:33:8a:53:bb:53:e2:68:c1:bf:d4:24:a5:95:5c:dc:6b: a9:52:91:3d:01:04:03:46:b0:a9:14:f2:a3:20:65:24:68:5d: e8:80:63:62:4d:19:9e:44:79:9f:98:c5:3c:62:5b:f1:cb:7d: d3:e2:0c:f2:33:69:0d:2b:59:1c:62:11:7d:e1:5f:ed:7f:45: 76:d7:2a:b5:be:c2:2c:4b:7d:e5:bc:30:f3:fa:05:e7:5b:43: 3b:36:2e:97:7a:0e:34:bb:29:72:bb:9f:f9:1a:b2:17:df:4b: 58:11:ba:38:dd:bb:33:38:1e:95:9a:95:4d:ba:03:c7:81:3b: 7c:96:15:cb:d0:08:91:82:e9:74:22:4b:b9:f5:82:b9:da:97: 84:38:ba:3f:89:4b:9a:7b:ab:85:05:13:2c:ab:e8:e7:a8:9f: a6:11:db:37 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICFyIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM2MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQzRTY1NzFBQ0I2OEQ5 NTE4MjRFNzk5M0M0QzY5REE1NEJCNUJGQzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEkdirCT+MpocFlsiuvgffPmHbfDGweJAD7/SoQpDuoa5gh2DI tzThcPpEz/R00NPbqtu5caiBbKnCx1TVBfq6ULWZoHun7ZOMkm6YiTgiyVTyGIis HdexLeo3il5CxMVnV0U1fGlGIRRL9xrSmBwYjhl3n8/1jZvA1K5ZvFd/sa6LfXf5 tnFfQQQ2jGvleI3Ed/QQ8cfhJyvJqNK5zuFwiJBv8AXHi5NYIAgZwFHCdRIWq0nk xml3KSxnji+346P0aUfJn/Li+uKOY83x5J6hbKzyVjiSfMawh+CTep64PENKAier B5z1UeqsS7lnYDD4f4KOO7rDz/e5jQz6MGZrAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUQ+ZXGsto2VGCTnmTxMadpUu1v8IwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9RLVpYR3N0bzJWR0NUbm1UeE1h ZHBVdTF2OEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUFyidD wDANBgkqhkiG9w0BAQsFAAOCAQEACd1b9CLpzHD1vT9BMO1sKP3IWHHmTDDj4HVD v6DtUp4xPQzxgJvEGHuTdqaBleBa5Ie3YpMT7MNE2ICaYm06fhlEuj+1RIPzE4yO rrMzXMUoE3RJlt4gszZsX98zilO7U+Jowb/UJKWVXNxrqVKRPQEEA0awqRTyoyBl JGhd6IBjYk0ZnkR5n5jFPGJb8ct90+IM8jNpDStZHGIRfeFf7X9Fdtcqtb7CLEt9 5bww8/oF51tDOzYul3oONLspcruf+RqyF99LWBG6ON27MzgelZqVTboDx4E7fJYV y9AIkYLpdCJLufWCudqXhDi6P4lLmnurhQUTLKvo56ifphHbNw== -----END CERTIFICATE-----Generated at Mon Apr 7 11:21:42 2025 by rpki-client