$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/l7UlGQ0oG3Dr9OJs9YNnKrnw5i8.roa File: l7UlGQ0oG3Dr9OJs9YNnKrnw5i8.roa (raw, json) Hash identifier: 0iBfi1lEfdBUHwEmsjmeQa8bCZ2G7grLaeSgeJxDuok= Subject key identifier: 97:B5:25:19:0D:28:1B:70:EB:F4:E2:6C:F5:83:67:2A:B9:F0:E6:2F Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 185D Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/l7UlGQ0oG3Dr9OJs9YNnKrnw5i8.roa Signing time: Mon 10 Feb 2025 14:07:51 +0000 ROA not before: Mon 10 Feb 2025 14:07:51 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 2401:8000::/26 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 02:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6237 (0x185d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Feb 10 14:07:51 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=97B525190D281B70EBF4E26CF583672AB9F0E62F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9e:a4:8a:7d:d1:ef:7a:38:48:2a:c4:94:51: aa:b4:0a:34:07:b9:db:ab:f0:d5:d3:d6:19:60:69: 5d:04:d3:7f:22:a9:ec:a0:48:17:66:21:7e:8f:99: 03:82:53:f3:a5:b0:7c:fd:fe:62:c0:1c:a1:36:33: f9:15:58:2f:74:07:b7:8c:c3:9e:ec:03:2a:3b:22: 74:ae:36:35:a2:9a:cd:a0:59:16:f2:d8:21:7e:11: 84:32:1c:1a:0a:12:9f:b3:b8:24:ac:48:6a:84:2a: b3:e1:9e:8c:c3:2a:25:d4:c8:70:2f:0a:81:d5:46: ff:85:d3:1a:30:42:0a:a7:17:94:0c:e6:6f:f3:fc: af:a8:cc:1b:5f:24:04:2a:d8:3a:cb:3e:c3:a9:07: e3:b8:99:f7:f2:87:c5:32:e5:0f:6b:a7:f6:87:b2: 64:23:6c:ab:e4:cf:01:55:d2:91:7d:74:16:ff:e3: 67:5b:5c:d3:05:ba:4f:cb:de:a7:75:23:1c:78:99: 5b:3a:61:0e:b2:6a:52:71:c3:55:7b:54:9c:c0:15: b0:3b:ed:41:aa:fc:a5:89:5e:c3:bc:83:3c:84:5b: ec:7e:26:68:83:9f:c9:0e:ee:d3:fa:ff:20:34:e0: 7f:07:5e:a1:10:12:af:f9:36:f4:14:c9:1e:66:a4: 04:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:B5:25:19:0D:28:1B:70:EB:F4:E2:6C:F5:83:67:2A:B9:F0:E6:2F X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/l7UlGQ0oG3Dr9OJs9YNnKrnw5i8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:8000::/26 Signature Algorithm: sha256WithRSAEncryption 73:c2:b1:b8:2d:92:26:6b:7d:c4:57:92:8e:ae:0a:2b:08:39: 9f:dc:cb:d0:e6:3e:69:7a:96:e8:2d:ba:86:70:26:11:a2:75: b1:d2:bf:c5:5f:1d:86:87:d7:0e:fc:1e:a4:a2:28:3a:71:29: e2:3a:43:95:0c:a4:fc:c9:f9:08:8d:02:14:26:38:9a:9b:0f: a9:ca:a8:c8:0e:c2:5d:b3:ea:83:e3:72:44:50:47:d9:b4:ec: ad:85:6c:fc:e7:64:0f:48:cc:83:57:0f:7a:90:37:13:4f:94: 80:04:1a:42:c8:57:dc:46:f5:e8:35:2c:dc:49:a6:63:0c:7e: 02:a7:5c:78:e8:81:4f:c3:b9:2d:f4:70:02:38:76:3f:6e:f9: 65:c0:b6:1c:c1:ae:77:d3:b2:2e:2b:75:3f:4b:e6:29:94:f3: 15:30:ee:bf:c0:d1:89:7b:61:45:a7:42:ef:c2:c8:65:ef:5e: e1:e1:6d:3f:86:cb:ac:64:65:fc:d2:87:3c:e7:7a:00:b1:be: 12:6f:f8:65:43:a2:7c:55:da:8b:7d:9c:57:66:a6:3c:e6:56: b9:14:b2:06:2c:3b:17:a5:f2:8c:1d:97:09:94:bb:bb:6a:3c: 4a:68:58:b7:b3:f1:dc:d6:57:89:44:5c:48:5c:a3:b6:49:1d: d9:39:37:f1 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICGF0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx NDA3NTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk3QjUyNTE5MEQyODFC NzBFQkY0RTI2Q0Y1ODM2NzJBQjlGMEU2MkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCnqSKfdHvejhIKsSUUaq0CjQHudur8NXT1hlgaV0E038iqeyg SBdmIX6PmQOCU/OlsHz9/mLAHKE2M/kVWC90B7eMw57sAyo7InSuNjWims2gWRby 2CF+EYQyHBoKEp+zuCSsSGqEKrPhnozDKiXUyHAvCoHVRv+F0xowQgqnF5QM5m/z /K+ozBtfJAQq2DrLPsOpB+O4mffyh8Uy5Q9rp/aHsmQjbKvkzwFV0pF9dBb/42db XNMFuk/L3qd1Ixx4mVs6YQ6yalJxw1V7VJzAFbA77UGq/KWJXsO8gzyEW+x+JmiD n8kO7tP6/yA04H8HXqEQEq/5NvQUyR5mpAQzAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUl7UlGQ0oG3Dr9OJs9YNnKrnw5i8wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvbDdVbEdRMG9HM0RyOU9KczlZTm5L cm53NWk4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFBiQBgAAw DQYJKoZIhvcNAQELBQADggEBAHPCsbgtkiZrfcRXko6uCisIOZ/cy9DmPml6lugt uoZwJhGidbHSv8VfHYaH1w78HqSiKDpxKeI6Q5UMpPzJ+QiNAhQmOJqbD6nKqMgO wl2z6oPjckRQR9m07K2FbPznZA9IzINXD3qQNxNPlIAEGkLIV9xG9eg1LNxJpmMM fgKnXHjogU/DuS30cAI4dj9u+WXAthzBrnfTsi4rdT9L5imU8xUw7r/A0Yl7YUWn Qu/CyGXvXuHhbT+Gy6xkZfzShzznegCxvhJv+GVDonxV2ot9nFdmpjzmVrkUsgYs Oxel8owdlwmUu7tqPEpoWLez8dzWV4lEXEhco7ZJHdk5N/E= -----END CERTIFICATE-----Generated at Sat Apr 5 23:14:25 2025 by rpki-client