$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ITRINET/tK74q7s6hF5X-EbkPA-DkK6LduE.roa File: tK74q7s6hF5X-EbkPA-DkK6LduE.roa (raw, json) Hash identifier: FSs+w1katN5nPtQ6UaZmEnBZ/s3+5BsBBsInla90Kos= Subject key identifier: B4:AE:F8:AB:BB:3A:84:5E:57:F8:46:E4:3C:0F:83:90:AE:8B:76:E1 Certificate issuer: /CN=2F9BECFFE7DA09CA053A2F9681412B19FB004A74 Certificate serial: 0C8B Authority key identifier: 2F:9B:EC:FF:E7:DA:09:CA:05:3A:2F:96:81:41:2B:19:FB:00:4A:74 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/L5vs_-faCcoFOi-WgUErGfsASnQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ITRINET/tK74q7s6hF5X-EbkPA-DkK6LduE.roa Signing time: Mon 10 Feb 2025 14:23:16 +0000 ROA not before: Mon 10 Feb 2025 14:23:16 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18422 IP address blocks: 2001:ed8::/32 maxlen: 56 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ITRINET/L5vs_-faCcoFOi-WgUErGfsASnQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ITRINET/L5vs_-faCcoFOi-WgUErGfsASnQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/L5vs_-faCcoFOi-WgUErGfsASnQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3211 (0xc8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F9BECFFE7DA09CA053A2F9681412B19FB004A74 Validity Not Before: Feb 10 14:23:16 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B4AEF8ABBB3A845E57F846E43C0F8390AE8B76E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:05:db:22:5f:22:11:0c:72:2c:4e:fb:d0:87: cf:77:2a:52:61:20:e3:b9:1e:5c:02:19:93:e6:1f: 28:f1:bf:b5:1f:d4:a7:1b:5f:5a:38:ce:e7:ef:43: 42:4e:ee:24:da:73:ca:8e:74:25:51:c1:e1:44:fd: 7d:7b:57:11:4b:df:2b:8d:da:0b:23:b7:a9:f4:45: 9f:b0:1a:cf:5d:b2:32:9e:09:88:6b:9c:74:6f:85: 00:3d:2d:81:ea:0d:93:90:6d:fb:88:07:b0:6d:91: f4:47:92:b6:58:08:22:42:68:8e:ac:88:08:51:6c: b4:c3:be:ce:98:1a:77:d7:c9:d8:48:b2:a4:5a:4d: 0a:76:93:ef:85:37:39:ee:5f:0a:81:90:58:10:3c: 73:42:56:b8:92:bb:bf:0c:8e:75:85:ad:17:bd:d2: b3:e4:dc:b5:a8:28:7a:aa:4b:5b:c5:de:f0:34:b6: 76:9d:98:84:39:8a:b4:37:18:12:8d:54:b8:39:76: 4a:8b:f3:51:c8:9d:ac:dc:c7:4e:97:5f:c3:41:ab: c9:ca:ab:99:a8:8e:f6:4c:09:02:15:e4:1d:31:b0: 8d:21:fd:8e:97:02:61:9a:73:c4:00:0f:e2:32:cb: 57:26:da:34:a0:34:9f:61:28:16:e9:e3:62:13:52: 14:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:AE:F8:AB:BB:3A:84:5E:57:F8:46:E4:3C:0F:83:90:AE:8B:76:E1 X509v3 Authority Key Identifier: keyid:2F:9B:EC:FF:E7:DA:09:CA:05:3A:2F:96:81:41:2B:19:FB:00:4A:74 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ITRINET/L5vs_-faCcoFOi-WgUErGfsASnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/L5vs_-faCcoFOi-WgUErGfsASnQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ITRINET/tK74q7s6hF5X-EbkPA-DkK6LduE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:ed8::/32 Signature Algorithm: sha256WithRSAEncryption 62:47:e7:38:62:ae:5d:e5:61:38:8b:56:12:af:5a:5a:73:e4: b4:1b:08:6f:69:c6:f8:25:ff:80:2e:d7:be:52:f4:7b:71:d6: a7:12:53:54:40:62:85:d1:66:47:02:5f:ad:20:3b:6c:ac:e1: 7e:a0:96:52:c3:24:f0:0b:98:d5:f3:8b:ec:69:53:bd:60:ac: ff:7f:60:6d:b7:a0:5b:07:20:93:a5:f5:8a:17:9e:22:4b:33: e6:ac:7a:25:12:33:1c:55:33:19:6f:c9:43:b5:b6:b6:ae:34: d5:a4:23:3a:aa:48:7b:f7:4f:dc:bd:d9:50:29:8e:44:26:d0: 7e:30:c4:ce:c9:06:82:9c:74:0c:fe:e3:4e:87:24:f8:8b:4d: 40:d3:5f:4e:2a:dc:7e:9d:da:04:af:14:ed:ba:47:c4:37:ab: 10:12:82:93:9d:3a:16:9d:f2:0c:0e:a0:30:7f:01:2f:05:c0: df:a9:c2:e9:8e:23:aa:6e:0a:46:dd:4e:44:8d:52:f3:30:5c: 3f:31:2f:13:6b:39:6a:7e:ad:a6:b6:1e:98:e5:f9:06:cf:7a: c6:24:97:7e:ee:43:bf:02:ba:14:64:1e:be:8f:2b:76:f2:6d: 59:7f:45:6d:69:ab:b9:09:47:52:5c:70:8c:72:52:a8:6c:14: 00:c3:03:e9 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICDIswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkY5 QkVDRkZFN0RBMDlDQTA1M0EyRjk2ODE0MTJCMTlGQjAwNEE3NDAeFw0yNTAyMTAx NDIzMTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI0QUVGOEFCQkIzQTg0 NUU1N0Y4NDZFNDNDMEY4MzkwQUU4Qjc2RTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCBdsiXyIRDHIsTvvQh893KlJhIOO5HlwCGZPmHyjxv7Uf1Kcb X1o4zufvQ0JO7iTac8qOdCVRweFE/X17VxFL3yuN2gsjt6n0RZ+wGs9dsjKeCYhr nHRvhQA9LYHqDZOQbfuIB7BtkfRHkrZYCCJCaI6siAhRbLTDvs6YGnfXydhIsqRa TQp2k++FNznuXwqBkFgQPHNCVriSu78MjnWFrRe90rPk3LWoKHqqS1vF3vA0tnad mIQ5irQ3GBKNVLg5dkqL81HInazcx06XX8NBq8nKq5mojvZMCQIV5B0xsI0h/Y6X AmGac8QAD+Iyy1cm2jSgNJ9hKBbp42ITUhRhAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUtK74q7s6hF5X+EbkPA+DkK6LduEwHwYDVR0jBBgwFoAUL5vs/+faCcoFOi+W gUErGfsASnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVRSSU5F VC9MNXZzXy1mYUNjb0ZPaS1XZ1VFckdmc0FTblEuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0w1dnNfLWZhQ2NvRk9pLVdnVUVyR2ZzQVNuUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0lUUklORVQvdEs3NHE3czZoRjVYLUVi a1BBLURrSzZMZHVFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF ACABDtgwDQYJKoZIhvcNAQELBQADggEBAGJH5zhirl3lYTiLVhKvWlpz5LQbCG9p xvgl/4Au175S9Htx1qcSU1RAYoXRZkcCX60gO2ys4X6gllLDJPALmNXzi+xpU71g rP9/YG23oFsHIJOl9YoXniJLM+aseiUSMxxVMxlvyUO1trauNNWkIzqqSHv3T9y9 2VApjkQm0H4wxM7JBoKcdAz+406HJPiLTUDTX04q3H6d2gSvFO26R8Q3qxASgpOd Ohad8gwOoDB/AS8FwN+pwumOI6puCkbdTkSNUvMwXD8xLxNrOWp+raa2Hpjl+QbP esYkl37uQ78CuhRkHr6PK3bybVl/RW1pq7kJR1JccIxyUqhsFADDA+k= -----END CERTIFICATE-----Generated at Fri Apr 18 23:52:02 2025 by rpki-client