$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/SSvjzfMbgEx5TmUB7z_z85bF2gA.roa File: SSvjzfMbgEx5TmUB7z_z85bF2gA.roa (raw, json) Hash identifier: 5NaOkq3zVw5ldZ/kNNxZLwUZfVh6/5kc8xiq5BpO6q8= Subject key identifier: 49:2B:E3:CD:F3:1B:80:4C:79:4E:65:01:EF:3F:F3:F3:96:C5:DA:00 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1745 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/SSvjzfMbgEx5TmUB7z_z85bF2gA.roa Signing time: Wed 12 Feb 2025 01:36:32 +0000 ROA not before: Wed 12 Feb 2025 01:36:32 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 15133 IP address blocks: 203.74.4.64/26 maxlen: 26 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 02:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5957 (0x1745) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:36:32 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=492BE3CDF31B804C794E6501EF3FF3F396C5DA00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:33:f6:91:c0:19:e9:bc:6c:6f:f6:0e:02:4f: af:be:ff:6d:9f:0f:3f:70:71:10:12:1e:fb:02:e1: 71:5c:27:05:c4:b2:cc:4b:c9:7f:20:db:b9:0d:f8: c0:f1:4e:06:15:1d:50:1a:be:60:d1:28:e2:97:48: bd:a2:3b:8d:8b:8f:ae:7b:cd:b0:99:b9:b4:b7:c2: 73:4d:e4:35:71:e7:e0:1e:8c:ee:aa:bb:ed:90:45: 88:a4:d8:90:0b:7e:a0:06:54:14:a9:5c:94:e6:0c: 91:bc:c3:ec:94:d7:92:63:5e:21:bc:d9:6c:c2:01: b9:e1:95:e2:12:cf:71:5e:5c:9f:2b:eb:ff:5a:a2: 7b:5b:54:01:4e:f9:ae:13:d2:65:aa:ae:42:c2:c9: 54:54:f6:2f:91:75:d0:c0:47:18:76:bc:29:25:20: 20:4c:81:da:91:aa:2c:2c:e5:f5:59:29:38:94:ea: 23:f4:28:08:a2:b5:cc:61:e9:63:c0:cd:65:64:f0: 98:0f:10:e2:97:f3:5f:de:f2:62:61:9f:d4:23:ab: ce:5f:01:fc:06:63:f8:b2:a4:1c:2c:12:36:8d:b7: 4e:4b:bc:a7:ef:f4:cf:81:a0:c7:20:84:1d:a6:23: ba:92:0c:6a:7c:e5:62:ad:48:21:bf:1d:4a:b0:61: d6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:2B:E3:CD:F3:1B:80:4C:79:4E:65:01:EF:3F:F3:F3:96:C5:DA:00 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/SSvjzfMbgEx5TmUB7z_z85bF2gA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.74.4.64/26 Signature Algorithm: sha256WithRSAEncryption 7c:04:0c:e9:d7:22:b6:c7:f2:b8:5a:df:6c:80:c8:f2:f1:8d: 5b:ae:e7:1f:90:d7:fd:6f:43:5c:3f:00:ba:c0:a0:01:f8:f6: d2:a9:cd:b2:e2:0f:17:77:2f:76:c3:5d:14:5d:9b:28:48:a3: 22:dc:3b:ac:06:ea:68:dc:1f:8f:40:00:4d:ba:1e:7c:3c:a4: 81:4e:94:e0:8e:b9:dc:5c:6c:de:28:72:56:b3:17:86:4f:c7: 52:2c:12:d6:24:be:98:85:e2:ad:c7:b1:e6:d8:41:52:7a:bf: c5:03:58:c2:f2:23:bd:8d:a6:6e:47:83:92:c3:c6:a0:5d:6c: 36:73:e9:fd:9e:77:02:d7:fa:ae:42:c0:cb:5a:c6:b5:08:7b: ad:6f:2b:80:83:c7:09:66:c6:33:5b:f4:8f:b8:ee:40:65:4a: 43:80:94:75:49:fa:ad:6c:e0:ff:fe:dd:5a:5e:6c:a2:14:77: c5:52:d6:66:2c:63:91:f3:d7:d3:ef:36:6f:6b:5f:fc:23:1a: 54:67:45:d1:2f:43:7d:4b:44:44:6b:d6:1a:fe:5e:5d:05:01: 84:11:91:52:80:09:3d:49:21:04:c6:f1:29:70:42:84:d1:dd: 11:1a:c3:5e:9d:e9:d4:e3:40:3d:38:80:17:3d:a1:1c:b5:2f: 1b:77:e5:cd -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICF0UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM2MzJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ5MkJFM0NERjMxQjgw NEM3OTRFNjUwMUVGM0ZGM0YzOTZDNURBMDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnM/aRwBnpvGxv9g4CT6++/22fDz9wcRASHvsC4XFcJwXEssxL yX8g27kN+MDxTgYVHVAavmDRKOKXSL2iO42Lj657zbCZubS3wnNN5DVx5+AejO6q u+2QRYik2JALfqAGVBSpXJTmDJG8w+yU15JjXiG82WzCAbnhleISz3FeXJ8r6/9a ontbVAFO+a4T0mWqrkLCyVRU9i+RddDARxh2vCklICBMgdqRqiws5fVZKTiU6iP0 KAiitcxh6WPAzWVk8JgPEOKX81/e8mJhn9Qjq85fAfwGY/iypBwsEjaNt05LvKfv 9M+BoMcghB2mI7qSDGp85WKtSCG/HUqwYda9AgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUSSvjzfMbgEx5TmUB7z/z85bF2gAwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9TU3ZqemZNYmdFeDVUbVVCN3pf ejg1YkYyZ0Eucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUGy0oE QDANBgkqhkiG9w0BAQsFAAOCAQEAfAQM6dcitsfyuFrfbIDI8vGNW67nH5DX/W9D XD8AusCgAfj20qnNsuIPF3cvdsNdFF2bKEijItw7rAbqaNwfj0AATboefDykgU6U 4I653Fxs3ihyVrMXhk/HUiwS1iS+mIXircex5thBUnq/xQNYwvIjvY2mbkeDksPG oF1sNnPp/Z53Atf6rkLAy1rGtQh7rW8rgIPHCWbGM1v0j7juQGVKQ4CUdUn6rWzg //7dWl5sohR3xVLWZixjkfPX0+82b2tf/CMaVGdF0S9DfUtERGvWGv5eXQUBhBGR UoAJPUkhBMbxKXBChNHdERrDXp3p1ONAPTiAFz2hHLUvG3flzQ== -----END CERTIFICATE-----Generated at Sun Apr 6 01:57:49 2025 by rpki-client