$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/3hqgrWdSikm66pTBoFFxGubAFsk.roa File: 3hqgrWdSikm66pTBoFFxGubAFsk.roa (raw, json) Hash identifier: Yve5buWDuBaM+q8He9UnXOPYmvxvW0PJG5s2ZUpUeFw= Subject key identifier: DE:1A:A0:AD:67:52:8A:49:BA:EA:94:C1:A0:51:71:1A:E6:C0:16:C9 Certificate issuer: /CN=6D6C5CBFCECBA7987951112DAA187FFCB6204E26 Certificate serial: 0C9F Authority key identifier: 6D:6C:5C:BF:CE:CB:A7:98:79:51:11:2D:AA:18:7F:FC:B6:20:4E:26 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bWxcv87Lp5h5UREtqhh__LYgTiY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/3hqgrWdSikm66pTBoFFxGubAFsk.roa Signing time: Mon 10 Feb 2025 13:50:34 +0000 ROA not before: Mon 10 Feb 2025 13:50:34 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18179 IP address blocks: 2404:db00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/bWxcv87Lp5h5UREtqhh__LYgTiY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/bWxcv87Lp5h5UREtqhh__LYgTiY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/bWxcv87Lp5h5UREtqhh__LYgTiY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 22:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3231 (0xc9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D6C5CBFCECBA7987951112DAA187FFCB6204E26 Validity Not Before: Feb 10 13:50:34 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DE1AA0AD67528A49BAEA94C1A051711AE6C016C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:81:b3:69:8e:dc:5e:3a:eb:78:f7:49:85:de: f8:f8:26:34:8c:ae:7a:38:fc:59:bc:17:5a:df:ef: 89:d0:70:7d:1d:9d:59:ba:f0:0f:74:ec:02:23:c9: 09:82:3b:a9:18:3c:f8:fd:df:4d:25:94:04:0b:41: 68:c4:4d:b2:0b:2e:c1:5a:4d:ae:6d:74:13:09:c1: 62:7b:d4:68:06:07:0d:9b:7d:48:6b:91:21:5f:0c: dc:4a:81:74:42:93:b7:00:db:f0:88:5f:e8:54:aa: 2e:4c:1e:7c:a1:88:53:b9:19:bc:66:4a:d0:7c:91: b0:0c:25:e4:41:e8:57:ed:fb:b2:59:ac:12:3a:f3: 0f:f9:a4:1d:1c:6c:1f:40:1a:65:2d:97:93:f7:13: 88:44:cd:66:cb:d4:71:0a:8a:82:0a:f5:03:c9:06: 3d:10:07:a1:b2:48:ce:07:d8:36:32:e9:67:e8:b3: 7e:7e:dd:ba:5e:9b:00:ba:3a:f1:6b:d4:1a:6d:87: 0c:b9:42:f8:9f:7e:e4:e9:bc:ea:cb:22:3d:a8:40: 20:cb:d1:fb:66:f9:c6:b4:89:21:ea:bd:37:69:85: 27:24:07:8b:25:ab:88:40:68:b4:05:b3:e8:1e:37: fb:00:ef:65:1a:78:4b:a2:84:1a:ca:1a:96:15:15: 9e:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:1A:A0:AD:67:52:8A:49:BA:EA:94:C1:A0:51:71:1A:E6:C0:16:C9 X509v3 Authority Key Identifier: keyid:6D:6C:5C:BF:CE:CB:A7:98:79:51:11:2D:AA:18:7F:FC:B6:20:4E:26 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/bWxcv87Lp5h5UREtqhh__LYgTiY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bWxcv87Lp5h5UREtqhh__LYgTiY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/3hqgrWdSikm66pTBoFFxGubAFsk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404:db00::/32 Signature Algorithm: sha256WithRSAEncryption 9e:ab:eb:74:7f:2e:bc:cf:47:97:51:34:0c:5a:7a:89:81:51: 85:d9:7a:a0:b8:55:c7:be:1e:f7:af:ca:cf:3b:d9:df:cb:f5: ef:57:36:ea:b7:2b:34:5d:ec:3e:94:e2:9b:a7:95:5e:bd:de: 5f:fd:dd:ae:f0:87:24:2a:db:48:e3:9b:83:97:df:b7:72:4b: a6:c6:7b:13:57:90:93:a5:26:81:92:18:7b:15:90:ce:60:6d: f3:16:d5:0b:61:e1:fd:a0:5a:a4:cf:4f:67:40:6c:bf:1e:ba: 48:99:3c:15:1e:a3:35:f1:dd:7f:17:92:0d:11:50:40:34:ec: c2:cd:cf:c7:e1:04:c0:91:d9:be:78:5b:05:79:9d:be:40:3f: 50:3b:0d:22:9c:16:e3:cf:0f:4f:ff:b0:5c:57:73:95:88:7e: c5:c2:25:3f:ef:e0:1f:b2:f6:b2:61:e6:49:d4:b6:c0:64:33: ce:63:2c:21:de:63:f4:cc:32:1c:78:85:92:59:ca:23:57:cb: 56:69:2b:08:21:ab:dc:a3:d2:2c:67:86:f4:c7:e7:0e:07:7f: 1e:db:da:91:93:c2:32:13:b7:5a:a4:f0:e1:1d:16:bb:39:e7: 2a:98:55:6b:d0:f6:27:bb:b4:60:b5:06:78:e7:69:5e:90:0a: 2e:a2:40:31 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICDJ8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkQ2 QzVDQkZDRUNCQTc5ODc5NTExMTJEQUExODdGRkNCNjIwNEUyNjAeFw0yNTAyMTAx MzUwMzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERFMUFBMEFENjc1MjhB NDlCQUVBOTRDMUEwNTE3MTFBRTZDMDE2QzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjgbNpjtxeOut490mF3vj4JjSMrno4/Fm8F1rf74nQcH0dnVm6 8A907AIjyQmCO6kYPPj9300llAQLQWjETbILLsFaTa5tdBMJwWJ71GgGBw2bfUhr kSFfDNxKgXRCk7cA2/CIX+hUqi5MHnyhiFO5GbxmStB8kbAMJeRB6Fft+7JZrBI6 8w/5pB0cbB9AGmUtl5P3E4hEzWbL1HEKioIK9QPJBj0QB6GySM4H2DYy6Wfos35+ 3bpemwC6OvFr1Bpthwy5QviffuTpvOrLIj2oQCDL0ftm+ca0iSHqvTdphSckB4sl q4hAaLQFs+geN/sA72UaeEuihBrKGpYVFZ75AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU3hqgrWdSikm66pTBoFFxGubAFskwHwYDVR0jBBgwFoAUbWxcv87Lp5h5UREt qhh//LYgTiYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlUQUNN REMvYld4Y3Y4N0xwNWg1VVJFdHFoaF9fTFlnVGlZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9iV3hjdjg3THA1aDVVUkV0cWhoX19MWWdUaVkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NSVRBQ01EQy8zaHFncldkU2lrbTY2 cFRCb0ZGeEd1YkFGc2sucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUAJATbADANBgkqhkiG9w0BAQsFAAOCAQEAnqvrdH8uvM9Hl1E0DFp6iYFRhdl6 oLhVx74e96/KzzvZ38v171c26rcrNF3sPpTim6eVXr3eX/3drvCHJCrbSOObg5ff t3JLpsZ7E1eQk6UmgZIYexWQzmBt8xbVC2Hh/aBapM9PZ0Bsvx66SJk8FR6jNfHd fxeSDRFQQDTsws3Px+EEwJHZvnhbBXmdvkA/UDsNIpwW488PT/+wXFdzlYh+xcIl P+/gH7L2smHmSdS2wGQzzmMsId5j9MwyHHiFklnKI1fLVmkrCCGr3KPSLGeG9Mfn Dgd/HtvakZPCMhO3WqTw4R0WuznnKphVa9D2J7u0YLUGeOdpXpAKLqJAMQ== -----END CERTIFICATE-----Generated at Fri Apr 18 22:31:54 2025 by rpki-client