$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/zjET0B8qthLSN4lkdazc2KaYY7o.roa File: zjET0B8qthLSN4lkdazc2KaYY7o.roa (raw, json) Hash identifier: qD0nDYLzc34FAwS0NjTut6MGQedokYvTicQ9w/bPO38= Subject key identifier: CE:31:13:D0:1F:2A:B6:12:D2:37:89:64:75:AC:DC:D8:A6:98:63:BA Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C Certificate serial: 06FB Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/zjET0B8qthLSN4lkdazc2KaYY7o.roa Signing time: Mon 10 Feb 2025 14:22:49 +0000 ROA not before: Mon 10 Feb 2025 14:22:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9678 IP address blocks: 2401:95c0:11ff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 12:06:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1787 (0x6fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C Validity Not Before: Feb 10 14:22:49 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CE3113D01F2AB612D237896475ACDCD8A69863BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:df:c3:f5:84:6b:5c:09:20:04:f0:fb:51:5c: 9a:2d:a3:d6:92:26:23:ab:74:c5:46:08:7d:27:31: 99:72:44:c8:01:e3:c6:f7:00:1e:b6:20:60:be:2f: c6:a0:13:7e:0d:75:37:a8:bb:f4:e6:e5:ab:de:30: e6:13:64:29:fc:b5:7a:22:3b:80:29:f7:d5:94:68: b7:91:73:e9:8b:3b:d1:22:4a:c0:51:5e:34:f7:1f: 0b:6f:c6:87:75:61:ce:c0:d6:5a:79:f1:fb:ba:d7: 73:c7:d5:63:ea:01:25:d3:61:1b:9c:a1:8c:26:a1: 24:53:47:bc:51:24:8e:43:03:84:d3:ef:61:e3:0c: ee:17:33:d0:cc:56:25:a6:7e:53:9e:34:50:3e:ee: a8:24:1f:0b:d8:8d:59:d2:88:b4:20:69:81:99:95: 94:83:34:ae:b6:86:65:6f:5b:93:d7:e2:23:1c:59: b2:a8:bb:a8:17:cd:ee:7c:67:4f:62:80:e0:21:d4: 24:5e:4c:b4:dc:f1:7e:19:b6:30:8b:9c:1e:d5:e6: 29:29:f1:22:56:0d:13:ef:0c:5b:e4:00:fe:ab:d5: f0:eb:5b:9b:f5:56:30:3a:2b:31:64:e3:e9:37:2b: ee:f2:86:34:47:9e:cd:b0:64:55:bb:42:e3:17:58: df:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:31:13:D0:1F:2A:B6:12:D2:37:89:64:75:AC:DC:D8:A6:98:63:BA X509v3 Authority Key Identifier: keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/zjET0B8qthLSN4lkdazc2KaYY7o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:95c0:11ff::/48 Signature Algorithm: sha256WithRSAEncryption 53:41:c4:27:e5:d0:7f:50:b8:83:62:66:c0:3d:60:04:c0:36: 68:87:24:c6:93:2f:56:85:7f:36:87:5a:79:08:5e:26:79:28: 75:10:9c:39:be:5a:91:86:88:d1:60:19:83:1c:50:0c:84:d1: c2:d1:d9:c0:34:41:9c:cf:14:f4:f3:c4:8a:6d:c6:c0:b3:05: 3b:0c:d9:82:1f:0e:0f:0f:b7:6c:46:d5:00:cd:9b:a4:dc:4f: 8a:2b:ac:64:0a:b8:80:42:be:fd:44:2b:0f:3c:7e:18:29:58: 03:8d:c1:14:9e:6a:8c:71:99:52:02:0e:10:10:65:7f:d9:ee: 0e:52:a2:0a:53:a6:37:f4:52:6e:5e:7f:80:10:65:7a:ec:9b: 8c:5b:d8:cc:39:b4:c0:c7:c0:92:39:81:71:03:75:4f:f9:f4: 9a:70:18:f3:9f:fc:2e:e3:c4:74:30:60:e3:40:db:88:18:96: a5:66:fa:b5:56:31:b0:49:da:b4:89:ad:aa:42:2d:ec:6a:ea: b7:c8:71:65:14:f8:df:ac:91:c5:ea:e8:a0:d9:74:5c:68:93: 85:a6:25:c4:25:99:1f:99:ba:c6:31:65:ce:f1:8f:5d:c4:4e: da:21:79:56:9d:8d:73:1b:c3:fe:44:ee:68:12:27:97:72:f9: 27:13:72:50 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICBvswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJF RDI4RkZDQzA0MEUzNjAzMkM0MjYxNTQ5NTU2MkJDQzZFRjQ1QzAeFw0yNTAyMTAx NDIyNDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENFMzExM0QwMUYyQUI2 MTJEMjM3ODk2NDc1QUNEQ0Q4QTY5ODYzQkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCn38P1hGtcCSAE8PtRXJoto9aSJiOrdMVGCH0nMZlyRMgB48b3 AB62IGC+L8agE34NdTeou/Tm5aveMOYTZCn8tXoiO4Ap99WUaLeRc+mLO9EiSsBR XjT3Hwtvxod1Yc7A1lp58fu613PH1WPqASXTYRucoYwmoSRTR7xRJI5DA4TT72Hj DO4XM9DMViWmflOeNFA+7qgkHwvYjVnSiLQgaYGZlZSDNK62hmVvW5PX4iMcWbKo u6gXze58Z09igOAh1CReTLTc8X4ZtjCLnB7V5ikp8SJWDRPvDFvkAP6r1fDrW5v1 VjA6KzFk4+k3K+7yhjRHns2wZFW7QuMXWN9DAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUzjET0B8qthLSN4lkdazc2KaYY7owHwYDVR0jBBgwFoAUq+0o/8wEDjYDLEJh VJVWK8xu9FwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElO L3EtMG9fOHdFRGpZRExFSmhWSlZXSzh4dTlGdy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvcS0wb184d0VEallETEVKaFZKVldLOHh1OUZ3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElOL3pqRVQwQjhxdGhMU040bGtk YXpjMkthWVk3by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk AZXAEf8wDQYJKoZIhvcNAQELBQADggEBAFNBxCfl0H9QuINiZsA9YATANmiHJMaT L1aFfzaHWnkIXiZ5KHUQnDm+WpGGiNFgGYMcUAyE0cLR2cA0QZzPFPTzxIptxsCz BTsM2YIfDg8Pt2xG1QDNm6TcT4orrGQKuIBCvv1EKw88fhgpWAONwRSeaoxxmVIC DhAQZX/Z7g5SogpTpjf0Um5ef4AQZXrsm4xb2Mw5tMDHwJI5gXEDdU/59JpwGPOf /C7jxHQwYONA24gYlqVm+rVWMbBJ2rSJrapCLexq6rfIcWUU+N+skcXq6KDZdFxo k4WmJcQlmR+ZusYxZc7xj13ETtoheVadjXMbw/5E7mgSJ5dy+ScTclA= -----END CERTIFICATE-----Generated at Sun Apr 6 11:30:16 2025 by rpki-client