$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/SXn6wDMTHRUbz35DAbuUOJO7ZtI.roa File: SXn6wDMTHRUbz35DAbuUOJO7ZtI.roa (raw, json) Hash identifier: kjqEEWJ0Iv5tS/e+eFBnQNGsfyKZZxfbyW64BFF3Qec= Subject key identifier: 49:79:FA:C0:33:13:1D:15:1B:CF:7E:43:01:BB:94:38:93:BB:66:D2 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 17CD Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/SXn6wDMTHRUbz35DAbuUOJO7ZtI.roa Signing time: Mon 10 Feb 2025 14:07:16 +0000 ROA not before: Mon 10 Feb 2025 14:07:16 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 122.146.96.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 02:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6093 (0x17cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Feb 10 14:07:16 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4979FAC033131D151BCF7E4301BB943893BB66D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:14:14:b5:f8:ad:6e:d6:48:14:3a:96:3f:86: ab:ae:44:86:17:53:e5:c9:05:31:7b:ff:49:47:d8: 37:77:a4:4b:fd:e3:ca:94:fd:e5:f6:be:13:d2:70: 18:ab:9a:38:b0:56:b3:05:17:04:be:65:f8:13:ce: 99:db:e4:be:bc:c5:64:f7:e9:9d:d5:63:b3:13:c2: 8d:bd:e3:6d:e1:9f:11:b6:6f:d5:73:4c:24:80:9c: 07:9f:2d:bb:f3:62:29:72:be:45:12:a9:bf:a9:10: 4a:a6:a5:b8:25:7d:77:29:ed:ff:21:77:b9:9d:08: bd:12:0b:43:a7:28:dc:dd:4f:29:02:5b:10:f6:19: 09:35:ce:00:f2:f7:19:03:49:6d:a9:16:7c:c8:6c: 45:c5:35:d3:1e:68:c1:ee:67:17:a1:f4:56:d8:d8: 04:dc:52:83:e3:2a:5b:d2:43:3c:4d:03:17:1a:c1: 4f:a0:a3:fb:1f:37:7b:7d:ec:30:cc:76:70:cc:22: b7:ff:aa:6d:25:85:e1:c2:d6:52:8d:cf:ef:c5:b4: 25:0e:31:16:d9:26:55:31:7c:45:e6:38:de:e0:02: 80:2f:39:48:33:c2:63:33:15:44:2c:66:3b:5d:23: 0f:01:b5:a8:24:e3:fe:2d:b5:23:f2:4d:fd:47:7f: 5c:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:79:FA:C0:33:13:1D:15:1B:CF:7E:43:01:BB:94:38:93:BB:66:D2 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/SXn6wDMTHRUbz35DAbuUOJO7ZtI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.146.96.0/21 Signature Algorithm: sha256WithRSAEncryption 30:bb:5c:fd:95:14:84:0b:01:96:e5:49:8e:5b:48:08:14:78: 17:6e:a3:1e:8b:f8:99:42:63:1b:8a:06:d2:06:b4:05:9a:2b: 8d:b1:dd:71:3c:c0:4d:77:34:ac:42:b2:89:a7:19:ce:c3:c5: bb:59:4f:34:4d:27:11:bc:b1:7a:20:b6:8b:3d:b0:8c:73:ed: ad:7f:ea:e3:e8:cf:26:9c:ac:7d:c8:70:53:34:61:02:bd:75: 29:4f:ea:0c:3f:b7:ad:c6:74:ea:03:86:42:67:42:84:ea:36: 69:55:4c:5b:f1:92:ac:3f:15:ca:39:65:ca:98:68:c8:d8:d2: 32:d9:43:49:b0:30:b8:67:f8:ce:1c:bb:1e:62:71:c4:6f:2c: 0a:c4:b8:4d:8c:b2:1a:91:ee:a3:8d:4f:f9:80:53:25:57:40: 50:82:b3:f5:0b:4a:d3:14:19:98:12:5b:95:f4:3f:40:97:78: d5:21:98:33:9f:90:31:f4:f3:68:63:54:85:0c:10:82:b9:63: b0:8b:8e:2b:e7:a1:96:61:8a:16:56:6d:c2:19:ca:79:f8:10: 71:6c:18:2f:41:9d:64:66:82:d7:4d:d3:d6:a4:4e:53:d6:eb: 8f:65:6c:53:02:37:dc:27:b5:91:60:db:15:bf:5d:9d:87:78: cf:c1:19:f7 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICF80wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx NDA3MTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ5NzlGQUMwMzMxMzFE MTUxQkNGN0U0MzAxQkI5NDM4OTNCQjY2RDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyFBS1+K1u1kgUOpY/hquuRIYXU+XJBTF7/0lH2Dd3pEv948qU /eX2vhPScBirmjiwVrMFFwS+ZfgTzpnb5L68xWT36Z3VY7MTwo29423hnxG2b9Vz TCSAnAefLbvzYilyvkUSqb+pEEqmpbglfXcp7f8hd7mdCL0SC0OnKNzdTykCWxD2 GQk1zgDy9xkDSW2pFnzIbEXFNdMeaMHuZxeh9FbY2ATcUoPjKlvSQzxNAxcawU+g o/sfN3t97DDMdnDMIrf/qm0lheHC1lKNz+/FtCUOMRbZJlUxfEXmON7gAoAvOUgz wmMzFUQsZjtdIw8Btagk4/4ttSPyTf1Hf1w9AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUSXn6wDMTHRUbz35DAbuUOJO7ZtIwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvU1huNndETVRIUlViejM1REFidVVP Sk83WnRJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3qSYDAN BgkqhkiG9w0BAQsFAAOCAQEAMLtc/ZUUhAsBluVJjltICBR4F26jHov4mUJjG4oG 0ga0BZorjbHdcTzATXc0rEKyiacZzsPFu1lPNE0nEbyxeiC2iz2wjHPtrX/q4+jP JpysfchwUzRhAr11KU/qDD+3rcZ06gOGQmdChOo2aVVMW/GSrD8VyjllyphoyNjS MtlDSbAwuGf4zhy7HmJxxG8sCsS4TYyyGpHuo41P+YBTJVdAUIKz9QtK0xQZmBJb lfQ/QJd41SGYM5+QMfTzaGNUhQwQgrljsIuOK+ehlmGKFlZtwhnKefgQcWwYL0Gd ZGaC103T1qROU9brj2VsUwI33Ce1kWDbFb9dnYd4z8EZ9w== -----END CERTIFICATE-----Generated at Sat Apr 5 23:14:28 2025 by rpki-client