$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/eH1OgS0Xfl4WF14JcdPDEY1iRdU.roa File: eH1OgS0Xfl4WF14JcdPDEY1iRdU.roa (raw, json) Hash identifier: Qjii/aigzao5TZE5nMcOCEpML0knpFsHY4Jkk6TTIgc= Subject key identifier: 78:7D:4E:81:2D:17:7E:5E:16:17:5E:09:71:D3:C3:11:8D:62:45:D5 Certificate issuer: /CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864 Certificate serial: 0762 Authority key identifier: AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/eH1OgS0Xfl4WF14JcdPDEY1iRdU.roa Signing time: Mon 10 Feb 2025 13:49:10 +0000 ROA not before: Mon 10 Feb 2025 13:49:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17415 IP address blocks: 2406:3540::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 05:08:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1890 (0x762) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864 Validity Not Before: Feb 10 13:49:10 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=787D4E812D177E5E16175E0971D3C3118D6245D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2e:70:4e:83:1a:f6:61:4c:81:c3:ab:ac:c8: 1e:c9:09:9c:b5:29:f7:be:32:87:1a:7a:c9:7b:d2: 26:17:4d:c8:7b:b4:b4:35:fa:18:44:a8:4d:ca:f0: ac:66:9d:38:09:2a:a2:e2:b0:8d:97:24:00:f8:36: aa:c1:17:a3:2d:f4:02:17:23:25:61:61:b1:84:84: 80:9c:ed:b4:e9:9c:f1:0c:22:a4:9c:63:72:53:ac: d0:b3:4e:b8:2f:67:21:04:80:11:47:2f:24:08:35: 03:ac:b0:c3:be:aa:45:42:11:08:64:43:97:de:a7: eb:2b:31:c6:a7:0e:42:20:76:04:b2:87:9a:1f:94: 7a:f8:8b:0f:b5:b7:b4:88:b0:2b:9b:05:60:4c:63: 55:0c:ff:a0:f1:92:87:df:29:6a:62:4e:13:d9:2c: c0:54:f6:b5:ac:55:12:cb:fb:36:8d:22:e3:1e:98: f8:c1:cb:eb:56:1c:03:a4:00:4c:fb:a5:19:38:b5: 53:06:2b:ea:da:a6:9d:3b:51:08:3d:7b:8e:fb:7f: 56:52:eb:44:05:09:e6:34:39:dc:0a:1c:fd:3c:2c: 99:ec:4d:31:77:b5:e8:b5:b3:15:8f:78:61:c6:cf: e6:3e:dd:ea:03:4d:f1:b0:39:27:ac:61:56:7a:77: 65:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:7D:4E:81:2D:17:7E:5E:16:17:5E:09:71:D3:C3:11:8D:62:45:D5 X509v3 Authority Key Identifier: keyid:AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/eH1OgS0Xfl4WF14JcdPDEY1iRdU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:3540::/32 Signature Algorithm: sha256WithRSAEncryption 5b:1c:9c:be:54:9a:74:68:98:3a:ef:71:a2:70:76:fe:52:62: 99:7c:b2:be:73:13:40:a5:cd:33:e2:cb:d2:a8:cd:13:d5:c0: 80:73:2b:15:d8:5f:21:a6:e6:1e:a7:b0:d7:f6:aa:ce:a0:5f: bb:38:31:67:1f:63:d8:bd:4e:27:9e:ff:31:fe:00:97:e9:47: c5:94:9d:2e:2d:32:9d:6b:db:f0:ca:39:5e:b3:01:7f:72:f6: ff:85:f1:f3:2f:25:45:b0:34:65:bd:8a:02:84:c3:2e:1e:a0: 67:87:94:3e:18:fc:1e:7c:fd:3b:8c:ca:00:80:f5:10:5c:3c: ae:18:28:64:f6:e4:55:26:2d:27:52:f7:b0:27:48:a6:c8:44: 45:66:f4:3a:b0:31:e6:2b:87:29:8f:16:95:fd:28:db:5f:a8: b4:6d:34:bb:ca:86:90:fa:54:9d:0f:12:35:ce:cc:9f:07:55: 0f:72:ea:3e:d7:59:92:17:e3:56:30:5b:76:2e:d2:5d:54:e1: 75:ca:dd:21:52:a8:1f:b9:cd:79:ee:8e:dc:9e:5f:c3:0d:a5: 80:f6:22:92:9f:ba:0f:26:7e:66:86:c2:67:af:d4:6b:39:f0: e5:3d:06:ef:d4:d1:58:d1:61:92:2d:85:ce:ba:cc:50:e1:db: 15:00:3c:31 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgICB2IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQURG RTZFNTZEQUY4NDkyRUM3REU4OEIzQTkwNkIzMTM5QjU1Qjg2NDAeFw0yNTAyMTAx MzQ5MTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc4N0Q0RTgxMkQxNzdF NUUxNjE3NUUwOTcxRDNDMzExOEQ2MjQ1RDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7LnBOgxr2YUyBw6usyB7JCZy1Kfe+Mocaesl70iYXTch7tLQ1 +hhEqE3K8KxmnTgJKqLisI2XJAD4NqrBF6Mt9AIXIyVhYbGEhICc7bTpnPEMIqSc Y3JTrNCzTrgvZyEEgBFHLyQINQOssMO+qkVCEQhkQ5fep+srMcanDkIgdgSyh5of lHr4iw+1t7SIsCubBWBMY1UM/6DxkoffKWpiThPZLMBU9rWsVRLL+zaNIuMemPjB y+tWHAOkAEz7pRk4tVMGK+rapp07UQg9e477f1ZS60QFCeY0OdwKHP08LJnsTTF3 tei1sxWPeGHGz+Y+3eoDTfGwOSesYVZ6d2VPAgMBAAGjggH1MIIB8TAdBgNVHQ4E FgQUeH1OgS0Xfl4WF14JcdPDEY1iRdUwHwYDVR0jBBgwFoAUrf5uVtr4SS7H3oiz qQazE5tVuGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR1lJ VEVBL3JmNXVWdHI0U1M3SDNvaXpxUWF6RTV0VnVHUS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcmY1dVZ0cjRTUzdIM29penFRYXpFNXRWdUdRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR1lJVEVBL2VIMU9nUzBYZmw0 V0YxNEpjZFBERVkxaVJkVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAkBjVAMA0GCSqGSIb3DQEBCwUAA4IBAQBbHJy+VJp0aJg673GicHb+UmKZ fLK+cxNApc0z4svSqM0T1cCAcysV2F8hpuYep7DX9qrOoF+7ODFnH2PYvU4nnv8x /gCX6UfFlJ0uLTKda9vwyjleswF/cvb/hfHzLyVFsDRlvYoChMMuHqBnh5Q+GPwe fP07jMoAgPUQXDyuGChk9uRVJi0nUvewJ0imyERFZvQ6sDHmK4cpjxaV/SjbX6i0 bTS7yoaQ+lSdDxI1zsyfB1UPcuo+11mSF+NWMFt2LtJdVOF1yt0hUqgfuc157o7c nl/DDaWA9iKSn7oPJn5mhsJnr9RrOfDlPQbv1NFY0WGSLYXOusxQ4dsVADwx -----END CERTIFICATE-----Generated at Wed Apr 16 02:46:06 2025 by rpki-client