$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/cTnqOlOOEeXt4xdwp0jv66OXZdI.roa File: cTnqOlOOEeXt4xdwp0jv66OXZdI.roa (raw, json) Hash identifier: vOu9zdeDUv2CIhuy0MHEhVSDbGcj/Rfh0REBr/nF410= Subject key identifier: 71:39:EA:3A:53:8E:11:E5:ED:E3:17:70:A7:48:EF:EB:A3:97:65:D2 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1725 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/cTnqOlOOEeXt4xdwp0jv66OXZdI.roa Signing time: Wed 12 Feb 2025 01:36:26 +0000 ROA not before: Wed 12 Feb 2025 01:36:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 36040 IP address blocks: 2001:b032:c0ff:2::/64 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 08:37:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5925 (0x1725) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:36:26 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7139EA3A538E11E5EDE31770A748EFEBA39765D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:03:26:39:da:17:a7:8a:00:65:e6:4d:1e:79: 25:18:a8:cc:47:db:92:c1:4c:54:37:06:7e:4c:77: 13:d0:1c:ed:bb:58:08:96:16:80:fd:ab:23:e5:4e: bf:89:4b:7a:a6:f1:fe:ca:83:a2:cc:ff:e4:d4:44: ab:4b:11:18:07:a8:78:13:57:aa:2a:8a:b6:34:9d: 25:4c:cf:ab:90:1d:52:df:31:92:5a:4c:4a:4d:f9: c7:ba:15:b1:9d:69:46:15:b6:91:cd:d5:ba:a1:c8: 11:83:8c:26:d2:96:4e:22:f2:5e:b6:0a:7c:04:3b: e3:40:49:0e:33:ff:4e:d0:fc:ca:2f:72:f3:21:fd: 08:92:d8:d4:59:3d:6b:30:90:fb:14:7b:91:bf:50: 90:3b:f2:99:e3:b8:1b:fb:2a:0b:59:27:76:c8:b9: cb:d6:80:01:1e:ab:cd:e8:50:e6:93:66:20:6f:a7: 00:b0:f4:69:d0:10:76:ce:50:00:37:94:da:e1:a5: 25:da:42:59:12:4c:07:db:ac:11:b7:3e:43:6a:fe: 1a:f4:bc:c8:a9:2f:ca:44:d5:c2:88:a0:31:c5:a1: 9a:f9:16:cc:07:00:98:8e:ca:d3:ba:59:e3:8b:c3: e9:d6:d9:35:f9:38:82:48:3d:98:df:13:df:3b:d3: ff:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:39:EA:3A:53:8E:11:E5:ED:E3:17:70:A7:48:EF:EB:A3:97:65:D2 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/cTnqOlOOEeXt4xdwp0jv66OXZdI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:b032:c0ff:2::/64 Signature Algorithm: sha256WithRSAEncryption 12:d3:fd:ed:d2:d7:79:e7:4b:69:f1:34:3d:c3:b6:90:bb:5f: 6e:ad:a2:f6:23:b9:2d:fb:8c:35:bf:d2:47:0a:23:04:cb:b4: 67:0d:53:7b:4d:b6:bd:a7:a2:f5:82:77:f7:a4:74:a8:b6:9e: ea:52:86:d1:21:94:ca:e0:dd:a8:99:b5:b4:0a:dd:de:5e:19: 27:53:a8:6c:e4:a9:53:eb:12:a4:b8:9d:f5:56:f7:d2:8d:3b: 81:e7:cb:77:8d:b3:3a:e6:00:a5:70:ad:05:f5:1c:71:7d:57: 62:50:81:4d:b8:78:fa:92:ff:7f:53:88:dc:4f:28:bf:a6:ee: 96:cf:32:20:6d:f5:6a:d1:5b:97:42:20:e3:99:30:80:f1:e8: be:57:29:f7:68:5d:bd:18:77:f3:d7:ea:25:f2:8b:44:c5:51: 4d:e7:1e:4c:71:c0:2d:29:dc:99:1d:38:a6:c5:a3:40:a8:4e: 04:0b:10:0f:32:88:71:e6:24:4e:ec:ac:71:c5:fd:f2:3e:15: ec:7d:5a:07:1c:bf:42:53:fc:04:03:ca:5e:8c:84:89:85:b2: d5:62:0a:79:a3:3e:97:54:46:30:00:e4:79:78:67:32:11:9c: 86:82:73:ef:c0:4d:33:d9:15:33:e7:97:16:fe:17:0c:51:26: 50:1a:71:dd -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFyUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM2MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDcxMzlFQTNBNTM4RTEx RTVFREUzMTc3MEE3NDhFRkVCQTM5NzY1RDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzAyY52henigBl5k0eeSUYqMxH25LBTFQ3Bn5MdxPQHO27WAiW FoD9qyPlTr+JS3qm8f7Kg6LM/+TURKtLERgHqHgTV6oqirY0nSVMz6uQHVLfMZJa TEpN+ce6FbGdaUYVtpHN1bqhyBGDjCbSlk4i8l62CnwEO+NASQ4z/07Q/MovcvMh /QiS2NRZPWswkPsUe5G/UJA78pnjuBv7KgtZJ3bIucvWgAEeq83oUOaTZiBvpwCw 9GnQEHbOUAA3lNrhpSXaQlkSTAfbrBG3PkNq/hr0vMipL8pE1cKIoDHFoZr5FswH AJiOytO6WeOLw+nW2TX5OIJIPZjfE9870/8lAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUcTnqOlOOEeXt4xdwp0jv66OXZdIwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9jVG5xT2xPT0VlWHQ0eGR3cDBq djY2T1haZEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCQGCCsGAQUFBwEHAQH/BBUwEzARBAIAAjALAwkAIAGw MsD/AAIwDQYJKoZIhvcNAQELBQADggEBABLT/e3S13nnS2nxND3DtpC7X26tovYj uS37jDW/0kcKIwTLtGcNU3tNtr2novWCd/ekdKi2nupShtEhlMrg3aiZtbQK3d5e GSdTqGzkqVPrEqS4nfVW99KNO4Hny3eNszrmAKVwrQX1HHF9V2JQgU24ePqS/39T iNxPKL+m7pbPMiBt9WrRW5dCIOOZMIDx6L5XKfdoXb0Yd/PX6iXyi0TFUU3nHkxx wC0p3JkdOKbFo0CoTgQLEA8yiHHmJE7srHHF/fI+Fex9Wgccv0JT/AQDyl6MhImF stViCnmjPpdURjAA5Hl4ZzIRnIaCc+/ATTPZFTPnlxb+FwxRJlAacd0= -----END CERTIFICATE-----Generated at Mon Apr 7 08:11:15 2025 by rpki-client