$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/M2NIM/YQ1I0cbjjF0EH-gmOLlgPej25zM.roa File: YQ1I0cbjjF0EH-gmOLlgPej25zM.roa (raw, json) Hash identifier: cB39qlLWGee8R1GLo5GpvHQgWKB51f0INlFUTur639o= Subject key identifier: 61:0D:48:D1:C6:E3:8C:5D:04:1F:E8:26:38:B9:60:3D:E8:F6:E7:33 Certificate issuer: /CN=CC4EFE97C9C1EA48F01A1F865DD617EBB13351A1 Certificate serial: F1 Authority key identifier: CC:4E:FE:97:C9:C1:EA:48:F0:1A:1F:86:5D:D6:17:EB:B1:33:51:A1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zE7-l8nB6kjwGh-GXdYX67EzUaE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/YQ1I0cbjjF0EH-gmOLlgPej25zM.roa Signing time: Mon 10 Feb 2025 13:45:55 +0000 ROA not before: Mon 10 Feb 2025 13:45:55 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 32595 IP address blocks: 2401:8420::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/zE7-l8nB6kjwGh-GXdYX67EzUaE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/zE7-l8nB6kjwGh-GXdYX67EzUaE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zE7-l8nB6kjwGh-GXdYX67EzUaE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 16:48:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CC4EFE97C9C1EA48F01A1F865DD617EBB13351A1 Validity Not Before: Feb 10 13:45:55 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=610D48D1C6E38C5D041FE82638B9603DE8F6E733 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:5f:10:3a:29:e5:d5:26:75:04:3a:ea:75:15: 25:e1:1b:4c:9f:a8:43:17:84:ce:98:eb:06:97:23: ae:b0:0b:d9:25:53:a3:54:65:7d:14:25:21:9d:1f: d2:73:f3:bf:d7:a0:04:93:88:f4:75:45:52:ec:2a: 5b:a6:25:60:01:14:49:04:56:fd:d1:7d:d4:73:74: 2f:9e:7f:37:61:67:4b:56:ba:b9:af:58:eb:d0:c1: 64:cc:c3:d7:42:65:e7:35:27:17:c3:a8:16:29:60: a4:0f:b8:5f:b6:0f:d2:07:1a:c0:63:35:ad:b9:a6: 41:87:3a:c3:9c:29:c1:9b:b4:1a:cf:24:4a:7b:83: 50:21:8c:4c:61:92:7e:83:03:64:98:18:70:20:da: 9e:04:c4:09:e1:25:64:22:b9:e8:fd:db:1d:27:40: ef:78:01:a3:60:fe:30:98:c9:1b:7e:69:bd:d7:19: d2:1a:5e:0a:2a:22:64:9d:e3:c7:f9:db:ae:d3:b0: 78:96:91:9c:b6:f0:a4:b3:c5:f6:58:96:74:1f:23: a5:9f:e5:63:4d:0b:d0:a5:8a:1b:59:4d:66:29:04: 19:94:ca:7b:0e:c7:36:bf:1e:48:5f:d7:ff:bf:f1: c3:84:30:eb:9b:9a:64:2f:77:f9:d1:92:33:f8:5b: 42:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:0D:48:D1:C6:E3:8C:5D:04:1F:E8:26:38:B9:60:3D:E8:F6:E7:33 X509v3 Authority Key Identifier: keyid:CC:4E:FE:97:C9:C1:EA:48:F0:1A:1F:86:5D:D6:17:EB:B1:33:51:A1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/zE7-l8nB6kjwGh-GXdYX67EzUaE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zE7-l8nB6kjwGh-GXdYX67EzUaE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/YQ1I0cbjjF0EH-gmOLlgPej25zM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:8420::/32 Signature Algorithm: sha256WithRSAEncryption 02:95:ac:fb:79:16:c4:65:09:e4:19:18:30:13:55:67:73:de: fd:13:d4:0a:ae:8d:31:bc:c6:bb:b9:dd:9e:f1:69:aa:75:c3: 3f:8b:4f:58:88:0e:c8:f1:ab:d8:6f:30:ab:9a:fe:15:08:db: 22:01:45:e2:a7:34:f6:d0:66:62:fc:9d:98:9c:3d:7f:cd:70: 98:02:b2:d3:fe:01:97:00:f1:a8:7a:33:9c:a3:75:96:aa:4e: 85:80:2a:95:c8:c1:60:e8:8c:7f:9a:6d:d9:49:6d:cc:92:81: 04:07:83:b3:c6:77:fc:1e:61:64:35:68:30:ed:66:bc:31:41: e0:25:89:69:7e:cc:91:3a:1b:0b:df:2b:f6:22:c9:07:9c:80: 3c:df:2c:26:25:84:60:f9:b0:0a:d3:5a:11:34:f4:e6:07:46: 87:b8:82:e0:31:7d:50:b0:0c:d2:df:eb:7c:6d:11:90:7e:4b: c0:07:eb:00:f8:79:fe:5c:8f:79:c9:41:45:30:2b:44:88:bc: 4f:14:52:64:91:24:3a:fb:9a:71:8f:84:8e:f9:2f:83:ba:91: 76:00:66:c5:e0:ae:20:5c:53:9b:ac:18:2c:e9:45:68:bc:4c: 6b:7f:c5:7b:81:c9:c5:b1:fc:4b:26:d4:b9:ed:6d:68:7a:ed: c8:89:ad:75 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0M0 RUZFOTdDOUMxRUE0OEYwMUExRjg2NURENjE3RUJCMTMzNTFBMTAeFw0yNTAyMTAx MzQ1NTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDYxMEQ0OEQxQzZFMzhD NUQwNDFGRTgyNjM4Qjk2MDNERThGNkU3MzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD4XxA6KeXVJnUEOup1FSXhG0yfqEMXhM6Y6waXI66wC9klU6NU ZX0UJSGdH9Jz87/XoASTiPR1RVLsKlumJWABFEkEVv3RfdRzdC+efzdhZ0tWurmv WOvQwWTMw9dCZec1JxfDqBYpYKQPuF+2D9IHGsBjNa25pkGHOsOcKcGbtBrPJEp7 g1AhjExhkn6DA2SYGHAg2p4ExAnhJWQiuej92x0nQO94AaNg/jCYyRt+ab3XGdIa XgoqImSd48f5267TsHiWkZy28KSzxfZYlnQfI6Wf5WNNC9ClihtZTWYpBBmUynsO xza/Hkhf1/+/8cOEMOubmmQvd/nRkjP4W0IFAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUYQ1I0cbjjF0EH+gmOLlgPej25zMwHwYDVR0jBBgwFoAUzE7+l8nB6kjwGh+G XdYX67EzUaEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTTJOSU0v ekU3LWw4bkI2a2p3R2gtR1hkWVg2N0V6VWFFLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96RTctbDhuQjZrandHaC1HWGRZWDY3RXpVYUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NMk5JTS9ZUTFJMGNiampGMEVILWdtT0xs Z1BlajI1ek0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAGE IDANBgkqhkiG9w0BAQsFAAOCAQEAApWs+3kWxGUJ5BkYMBNVZ3Pe/RPUCq6NMbzG u7ndnvFpqnXDP4tPWIgOyPGr2G8wq5r+FQjbIgFF4qc09tBmYvydmJw9f81wmAKy 0/4BlwDxqHoznKN1lqpOhYAqlcjBYOiMf5pt2UltzJKBBAeDs8Z3/B5hZDVoMO1m vDFB4CWJaX7MkTobC98r9iLJB5yAPN8sJiWEYPmwCtNaETT05gdGh7iC4DF9ULAM 0t/rfG0RkH5LwAfrAPh5/lyPeclBRTArRIi8TxRSZJEkOvuacY+Ejvkvg7qRdgBm xeCuIFxTm6wYLOlFaLxMa3/Fe4HJxbH8SybUue1taHrtyImtdQ== -----END CERTIFICATE-----Generated at Tue Apr 22 14:59:39 2025 by rpki-client