$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/dHjTbLEU4WVoK_xJ3jAJn7pOFBE.roa File: dHjTbLEU4WVoK_xJ3jAJn7pOFBE.roa (raw, json) Hash identifier: 3yUab3wfeMyya3l6LNmK2U7usm6ONv+uz+OGSVkYp2w= Subject key identifier: 74:78:D3:6C:B1:14:E1:65:68:2B:FC:49:DE:30:09:9F:BA:4E:14:11 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 17F5 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/dHjTbLEU4WVoK_xJ3jAJn7pOFBE.roa Signing time: Mon 10 Feb 2025 14:07:27 +0000 ROA not before: Mon 10 Feb 2025 14:07:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 218.210.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 22:06:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6133 (0x17f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Feb 10 14:07:27 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7478D36CB114E165682BFC49DE30099FBA4E1411 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:37:22:eb:0c:80:a4:98:b6:ae:82:9d:6b:2e: c6:81:d2:82:87:5e:c4:17:b1:00:cb:30:ab:28:be: 81:bf:a3:35:10:a8:e1:89:9e:7f:c9:95:97:14:34: 6d:e2:97:9c:36:55:f5:48:55:1a:10:81:53:23:51: cb:9b:a9:0b:38:50:a1:ed:5f:06:9b:5f:03:7c:6a: ff:f9:66:e6:16:a6:b6:cc:83:c5:db:f6:32:a0:8b: f1:0b:4c:1d:bf:59:73:29:f4:e4:e7:b1:02:27:d0: 6f:73:c8:04:7c:40:bd:b9:69:db:46:af:e5:b0:0b: de:37:ad:44:88:32:de:37:f5:65:3a:a9:27:d5:5e: d1:88:98:c1:1d:36:7b:11:6e:85:58:d4:e1:9b:1d: 98:d0:de:18:d5:86:b1:57:8c:3e:73:6a:96:ca:d5: 5e:8b:bf:9d:ec:61:f6:a6:69:03:7e:55:15:61:28: 36:36:ba:63:d1:81:2b:54:80:0e:89:7b:e3:72:11: 58:45:84:74:30:1a:2f:20:95:ec:2c:14:56:8c:8e: 6d:b6:9e:4b:e0:34:3f:9a:e1:93:7d:f3:ae:b7:a9: f6:5f:2a:67:e1:e1:9b:3b:4f:2c:48:54:f3:9b:58: a1:04:a8:de:93:41:f2:0d:e8:fd:55:43:25:57:c0: b8:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:78:D3:6C:B1:14:E1:65:68:2B:FC:49:DE:30:09:9F:BA:4E:14:11 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/dHjTbLEU4WVoK_xJ3jAJn7pOFBE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.210.0.0/15 Signature Algorithm: sha256WithRSAEncryption 9a:28:91:f1:c5:70:bc:28:fa:4a:37:86:15:19:40:12:93:d5: 2f:c8:72:ae:aa:11:96:c9:df:79:37:93:c4:76:29:28:d6:7d: 17:0a:d9:45:a6:9d:36:8c:af:76:95:e4:0f:f2:aa:ee:13:9f: 0d:3f:2e:6e:41:94:e3:d3:c2:82:cd:db:ed:2e:af:f6:5b:b1: c2:c6:08:b5:1a:20:fb:59:82:0d:ef:d4:f0:5f:69:73:33:8c: 09:88:7b:df:8f:9a:af:d8:6f:04:87:b2:8a:61:48:81:02:a7: 76:94:35:4a:45:eb:09:c4:76:7b:f7:6d:60:06:6a:e0:94:5c: ad:81:6d:db:1e:3e:5a:66:17:d7:6b:45:11:c0:66:ea:aa:64: 7a:34:f1:44:55:44:f6:c4:84:68:39:54:4c:20:61:5e:ad:a2: bf:b5:61:e6:35:c5:e7:12:6a:28:02:ab:3c:09:72:50:31:69: 95:a3:71:ce:c5:07:f3:1f:8f:6e:f1:08:3f:30:93:a7:fb:58: 3c:11:a3:d3:e0:0c:8f:51:33:f1:5b:5c:ed:17:af:0b:a3:bd: 3a:6c:df:b2:0f:89:10:d5:e8:4b:43:15:ff:25:bd:20:38:66: 4e:d9:e4:6b:05:1d:a7:f0:00:1d:43:9e:9e:1a:44:ef:a0:71: 61:c7:8d:af -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICF/UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx NDA3MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc0NzhEMzZDQjExNEUx NjU2ODJCRkM0OURFMzAwOTlGQkE0RTE0MTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQNyLrDICkmLaugp1rLsaB0oKHXsQXsQDLMKsovoG/ozUQqOGJ nn/JlZcUNG3il5w2VfVIVRoQgVMjUcubqQs4UKHtXwabXwN8av/5ZuYWprbMg8Xb 9jKgi/ELTB2/WXMp9OTnsQIn0G9zyAR8QL25adtGr+WwC943rUSIMt439WU6qSfV XtGImMEdNnsRboVY1OGbHZjQ3hjVhrFXjD5zapbK1V6Lv53sYfamaQN+VRVhKDY2 umPRgStUgA6Je+NyEVhFhHQwGi8glewsFFaMjm22nkvgND+a4ZN98663qfZfKmfh 4Zs7TyxIVPObWKEEqN6TQfIN6P1VQyVXwLg3AgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUdHjTbLEU4WVoK/xJ3jAJn7pOFBEwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvZEhqVGJMRVU0V1ZvS194SjNqQUpu N3BPRkJFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAdrSMA0G CSqGSIb3DQEBCwUAA4IBAQCaKJHxxXC8KPpKN4YVGUASk9UvyHKuqhGWyd95N5PE diko1n0XCtlFpp02jK92leQP8qruE58NPy5uQZTj08KCzdvtLq/2W7HCxgi1GiD7 WYIN79TwX2lzM4wJiHvfj5qv2G8Eh7KKYUiBAqd2lDVKResJxHZ7921gBmrglFyt gW3bHj5aZhfXa0URwGbqqmR6NPFEVUT2xIRoOVRMIGFeraK/tWHmNcXnEmooAqs8 CXJQMWmVo3HOxQfzH49u8Qg/MJOn+1g8EaPT4AyPUTPxW1ztF68Lo706bN+yD4kQ 1ehLQxX/Jb0gOGZO2eRrBR2n8AAdQ56eGkTvoHFhx42v -----END CERTIFICATE-----Generated at Sat Apr 5 20:07:49 2025 by rpki-client