$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HLCATV/VBIPSovJ5pUxHlRnt860UKd7ul0.roa File: VBIPSovJ5pUxHlRnt860UKd7ul0.roa (raw, json) Hash identifier: F606WjQgeQOktChNZYpC2+ypPBa2jDNNCTgoQwgtVI4= Subject key identifier: 54:12:0F:4A:8B:C9:E6:95:31:1E:54:67:B7:CE:B4:50:A7:7B:BA:5D Certificate issuer: /CN=28CB5CCFC90738D224CAEAC15E1C251000446BAA Certificate serial: 0C2A Authority key identifier: 28:CB:5C:CF:C9:07:38:D2:24:CA:EA:C1:5E:1C:25:10:00:44:6B:AA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KMtcz8kHONIkyurBXhwlEABEa6o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HLCATV/VBIPSovJ5pUxHlRnt860UKd7ul0.roa Signing time: Mon 10 Feb 2025 14:16:58 +0000 ROA not before: Mon 10 Feb 2025 14:16:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9676 IP address blocks: 211.76.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HLCATV/KMtcz8kHONIkyurBXhwlEABEa6o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HLCATV/KMtcz8kHONIkyurBXhwlEABEa6o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KMtcz8kHONIkyurBXhwlEABEa6o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 18:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3114 (0xc2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28CB5CCFC90738D224CAEAC15E1C251000446BAA Validity Not Before: Feb 10 14:16:58 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=54120F4A8BC9E695311E5467B7CEB450A77BBA5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9c:75:09:06:ed:bc:c3:4a:5b:25:4c:6e:f4: 40:db:cf:46:12:ce:e7:11:00:93:ef:bc:fc:a1:d3: dc:28:4d:5f:5e:b7:55:c7:0b:55:4d:8e:b7:64:f1: 5f:1b:3a:49:b2:51:33:dc:b5:1e:05:57:7c:38:24: 8c:73:37:c0:53:e7:4a:19:e2:96:5e:1e:f8:8c:6d: c8:7e:46:7c:b2:fc:5b:e5:e2:74:eb:11:6e:a7:f0: 5c:3b:de:30:03:66:20:61:c6:d7:4b:9f:79:94:46: 47:95:63:36:07:69:51:51:d6:7c:32:df:7f:8d:f2: df:ab:c8:2f:9e:f1:4b:0c:9d:1a:ed:63:e5:7c:6e: 77:0b:d5:21:91:9a:08:1b:8e:4a:1e:2b:15:cc:e6: 4b:8c:73:f4:62:22:65:7e:ac:4e:44:84:e6:a5:29: a5:9e:89:ce:9e:49:11:d5:f9:ac:c6:f6:40:3e:8d: 36:47:68:46:4f:bd:4a:33:fe:20:45:c3:f2:6d:3b: 8f:71:97:69:dd:43:fb:a2:a3:52:0d:c1:8d:89:3d: 5d:fc:2b:29:d8:9c:d2:95:a4:74:53:12:d3:40:cc: 51:72:e0:1b:5a:db:d9:0b:df:96:05:1a:ef:e3:3a: b6:38:64:2f:98:1a:29:a9:71:2d:69:d3:9b:82:57: 84:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:12:0F:4A:8B:C9:E6:95:31:1E:54:67:B7:CE:B4:50:A7:7B:BA:5D X509v3 Authority Key Identifier: keyid:28:CB:5C:CF:C9:07:38:D2:24:CA:EA:C1:5E:1C:25:10:00:44:6B:AA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HLCATV/KMtcz8kHONIkyurBXhwlEABEa6o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KMtcz8kHONIkyurBXhwlEABEa6o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HLCATV/VBIPSovJ5pUxHlRnt860UKd7ul0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.80.0/20 Signature Algorithm: sha256WithRSAEncryption 94:32:ee:67:4b:d7:6a:85:63:43:e3:4b:05:91:66:55:96:dc: 8d:92:45:69:4f:a6:5e:04:86:5f:de:3e:8f:da:86:49:f9:04: c8:63:6a:4f:cd:10:0f:73:95:1f:93:b4:1f:e2:5e:fb:45:9c: 40:df:8b:44:06:41:63:9f:a4:93:ce:79:62:15:1f:ad:cb:b7: d6:49:4c:a1:ed:ea:da:2f:49:ea:f3:e0:26:e2:23:c7:c2:ce: b3:c1:57:ea:d0:36:d8:e0:c9:a1:b4:c2:60:ea:c1:de:64:57: 86:1a:53:ad:f9:99:ba:7b:2f:d0:96:63:c3:86:39:b8:38:eb: 41:9f:66:88:fd:e6:6f:3a:54:e7:06:cd:48:46:72:ea:38:76: cb:94:0e:a8:07:40:3b:05:6e:d8:2b:85:b8:53:d4:9e:89:38: 20:2f:50:3d:7a:44:22:5f:73:c2:93:44:34:03:4b:05:25:37: 9f:5c:2c:fd:40:9b:58:64:28:d6:1d:d4:97:e0:a3:7a:ae:d9: 6b:5d:af:b2:81:8a:d8:92:d0:23:74:33:9c:96:50:b2:e7:23: 94:7f:35:f6:7c:13:ae:59:cb:cf:52:4b:0d:9a:bc:bf:0d:fa: e6:d9:26:35:f3:c4:ba:99:99:4f:2f:9a:93:af:da:c4:a7:b4: 34:17:17:8f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDCowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjhD QjVDQ0ZDOTA3MzhEMjI0Q0FFQUMxNUUxQzI1MTAwMDQ0NkJBQTAeFw0yNTAyMTAx NDE2NThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU0MTIwRjRBOEJDOUU2 OTUzMTFFNTQ2N0I3Q0VCNDUwQTc3QkJBNUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCnHUJBu28w0pbJUxu9EDbz0YSzucRAJPvvPyh09woTV9et1XH C1VNjrdk8V8bOkmyUTPctR4FV3w4JIxzN8BT50oZ4pZeHviMbch+Rnyy/Fvl4nTr EW6n8Fw73jADZiBhxtdLn3mURkeVYzYHaVFR1nwy33+N8t+ryC+e8UsMnRrtY+V8 bncL1SGRmggbjkoeKxXM5kuMc/RiImV+rE5EhOalKaWeic6eSRHV+azG9kA+jTZH aEZPvUoz/iBFw/JtO49xl2ndQ/uio1INwY2JPV38KynYnNKVpHRTEtNAzFFy4Bta 29kL35YFGu/jOrY4ZC+YGimpcS1p05uCV4R3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUVBIPSovJ5pUxHlRnt860UKd7ul0wHwYDVR0jBBgwFoAUKMtcz8kHONIkyurB XhwlEABEa6owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSExDQVRW L0tNdGN6OGtIT05Ja3l1ckJYaHdsRUFCRWE2by5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvS010Y3o4a0hPTklreXVyQlhod2xFQUJFYTZvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSExDQVRWL1ZCSVBTb3ZKNXBVeEhsUm50 ODYwVUtkN3VsMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATT TFAwDQYJKoZIhvcNAQELBQADggEBAJQy7mdL12qFY0PjSwWRZlWW3I2SRWlPpl4E hl/ePo/ahkn5BMhjak/NEA9zlR+TtB/iXvtFnEDfi0QGQWOfpJPOeWIVH63Lt9ZJ TKHt6tovSerz4CbiI8fCzrPBV+rQNtjgyaG0wmDqwd5kV4YaU635mbp7L9CWY8OG Obg460GfZoj95m86VOcGzUhGcuo4dsuUDqgHQDsFbtgrhbhT1J6JOCAvUD16RCJf c8KTRDQDSwUlN59cLP1Am1hkKNYd1Jfgo3qu2Wtdr7KBitiS0CN0M5yWULLnI5R/ NfZ8E65Zy89SSw2avL8N+ubZJjXzxLqZmU8vmpOv2sSntDQXF48= -----END CERTIFICATE-----Generated at Thu Apr 17 13:21:58 2025 by rpki-client