$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NARL/iOufHrffSrTSQU4JsSr1UJh93FM.roa File: iOufHrffSrTSQU4JsSr1UJh93FM.roa (raw, json) Hash identifier: mdtWuCj++SOTtiOiVW9vCNHWkeLBb+2oKZw3D3bJj3c= Subject key identifier: 88:EB:9F:1E:B7:DF:4A:B4:D2:41:4E:09:B1:2A:F5:50:98:7D:DC:53 Certificate issuer: /CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0 Certificate serial: 0CFA Authority key identifier: 45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/iOufHrffSrTSQU4JsSr1UJh93FM.roa Signing time: Mon 10 Feb 2025 14:32:37 +0000 ROA not before: Mon 10 Feb 2025 14:32:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7539 IP address blocks: 2001:4500:1000::/40 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 12:06:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3322 (0xcfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0 Validity Not Before: Feb 10 14:32:37 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=88EB9F1EB7DF4AB4D2414E09B12AF550987DDC53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2a:8e:64:b5:a0:f2:84:bb:ad:e9:65:a0:7e: 7d:95:89:90:cc:d4:72:98:b5:68:3d:64:5f:4c:41: 58:00:ec:8e:a6:93:ca:70:79:bb:46:cb:9b:98:27: 36:e0:96:6e:71:30:08:dd:5c:17:35:36:4b:a7:56: 16:d0:8d:7b:f9:8d:45:32:da:22:a2:46:2d:e6:f1: 05:19:d3:6e:bd:af:94:c3:1d:42:48:2c:9c:61:b0: 88:97:82:e0:4a:84:02:01:10:5b:54:3d:df:b6:d9: ce:74:e0:ec:ee:cb:3f:6c:e1:37:7b:79:7b:de:82: 8e:0c:4c:dc:d4:95:8e:6a:c9:9e:86:40:cb:37:20: 6b:93:84:f1:0c:cf:0f:ea:dd:b3:1a:b5:c0:25:2c: c4:c3:a6:06:0e:15:bb:6c:9f:86:72:8b:81:b1:b1: b7:f6:46:20:1b:6d:8f:4b:7d:4a:84:c2:72:9f:c6: 8b:b0:dd:2c:93:bf:24:a5:55:75:38:91:e0:31:e2: 7f:a8:06:95:93:f2:4c:2e:a7:05:70:76:c7:5f:aa: d5:40:ec:6a:2a:06:41:1f:0d:8e:b7:6c:5c:4a:70: 57:f9:58:bf:cf:60:91:ef:77:b7:83:c3:0d:05:3b: 12:b3:46:a2:8d:be:f7:8c:8f:0c:70:28:0d:ab:86: 96:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:EB:9F:1E:B7:DF:4A:B4:D2:41:4E:09:B1:2A:F5:50:98:7D:DC:53 X509v3 Authority Key Identifier: keyid:45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/iOufHrffSrTSQU4JsSr1UJh93FM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:4500:1000::/40 Signature Algorithm: sha256WithRSAEncryption 4d:94:0c:12:93:20:68:9c:49:6f:43:81:88:46:fd:81:90:db: 38:30:2b:54:ba:99:25:e6:17:11:fa:48:55:e8:ce:21:b4:6f: 42:c7:8e:b0:44:c1:62:a5:c7:77:18:32:02:6f:49:1f:a9:7b: 99:28:0e:f5:e9:0e:07:12:44:6c:52:2a:03:73:25:76:c4:e2: 5f:cb:b2:c1:2d:c0:b2:95:54:8f:16:fe:a5:91:7e:29:bc:89: 10:4c:f8:a1:18:49:ef:66:a5:04:be:61:78:53:ff:3b:1c:9e: ea:08:86:bd:a4:06:e7:91:e6:d6:0e:db:23:84:09:ef:e0:34: a5:38:bc:2c:b7:b3:ba:50:ad:cd:f7:4a:34:d4:77:09:d4:14: c6:5f:6e:d0:07:67:a8:d5:23:4d:6b:e9:f4:65:a9:0f:d2:18: b1:a0:75:8d:86:21:39:86:57:be:75:b9:fc:a4:5d:78:6c:73: a2:64:17:64:d5:9a:28:e5:75:2a:5b:a1:a9:17:e1:a9:85:46: e4:48:47:20:3a:d0:c7:2a:2e:6e:87:ab:e8:0b:9a:54:f4:7b: ba:fd:d6:2b:cb:a8:f8:e7:cc:52:2b:4e:e8:69:4f:00:da:64: 16:7b:25:07:06:8f:82:99:50:10:a0:75:32:83:44:4a:90:f0: 36:a4:0c:61 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDPowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDUx RUY5MzU5QTk4NEY2QTRDRjkxRkU5MDA0RUFFQjA4OUE5ODRDMDAeFw0yNTAyMTAx NDMyMzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg4RUI5RjFFQjdERjRB QjREMjQxNEUwOUIxMkFGNTUwOTg3RERDNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0Ko5ktaDyhLut6WWgfn2ViZDM1HKYtWg9ZF9MQVgA7I6mk8pw ebtGy5uYJzbglm5xMAjdXBc1NkunVhbQjXv5jUUy2iKiRi3m8QUZ0269r5TDHUJI LJxhsIiXguBKhAIBEFtUPd+22c504Ozuyz9s4Td7eXvego4MTNzUlY5qyZ6GQMs3 IGuThPEMzw/q3bMatcAlLMTDpgYOFbtsn4Zyi4Gxsbf2RiAbbY9LfUqEwnKfxouw 3SyTvySlVXU4keAx4n+oBpWT8kwupwVwdsdfqtVA7GoqBkEfDY63bFxKcFf5WL/P YJHvd7eDww0FOxKzRqKNvveMjwxwKA2rhpa5AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUiOufHrffSrTSQU4JsSr1UJh93FMwHwYDVR0jBBgwFoAURR75NZqYT2pM+R/p AE6usImphMAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkFSTC9S Ujc1TlpxWVQycE0tUl9wQUU2dXNJbXBoTUEuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L1JSNzVOWnFZVDJwTS1SX3BBRTZ1c0ltcGhNQS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05BUkwvaU91ZkhyZmZTclRTUVU0SnNTcjFV Smg5M0ZNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACABRQAQ MA0GCSqGSIb3DQEBCwUAA4IBAQBNlAwSkyBonElvQ4GIRv2BkNs4MCtUupkl5hcR +khV6M4htG9Cx46wRMFipcd3GDICb0kfqXuZKA716Q4HEkRsUioDcyV2xOJfy7LB LcCylVSPFv6lkX4pvIkQTPihGEnvZqUEvmF4U/87HJ7qCIa9pAbnkebWDtsjhAnv 4DSlOLwst7O6UK3N90o01HcJ1BTGX27QB2eo1SNNa+n0ZakP0hixoHWNhiE5hle+ dbn8pF14bHOiZBdk1Zoo5XUqW6GpF+GphUbkSEcgOtDHKi5uh6voC5pU9Hu6/dYr y6j458xSK07oaU8A2mQWeyUHBo+CmVAQoHUyg0RKkPA2pAxh -----END CERTIFICATE-----Generated at Tue Apr 8 09:25:31 2025 by rpki-client