$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCREE/EnyzktiY39z3Epb0tPoD1ZTiCjY.roa File: EnyzktiY39z3Epb0tPoD1ZTiCjY.roa (raw, json) Hash identifier: SO15mkm9YyWSgnocBEp5LuWva3Kae27XN0W+lDbvaBs= Subject key identifier: 12:7C:B3:92:D8:98:DF:DC:F7:12:96:F4:B4:FA:03:D5:94:E2:0A:36 Certificate issuer: /CN=3B49B87A3FF389634C7D090D76DAEAA96FEEFD90 Certificate serial: 0C92 Authority key identifier: 3B:49:B8:7A:3F:F3:89:63:4C:7D:09:0D:76:DA:EA:A9:6F:EE:FD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O0m4ej_ziWNMfQkNdtrqqW_u_ZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCREE/EnyzktiY39z3Epb0tPoD1ZTiCjY.roa Signing time: Mon 10 Feb 2025 13:50:48 +0000 ROA not before: Mon 10 Feb 2025 13:50:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18183 IP address blocks: 2400:85a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCREE/O0m4ej_ziWNMfQkNdtrqqW_u_ZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCREE/O0m4ej_ziWNMfQkNdtrqqW_u_ZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O0m4ej_ziWNMfQkNdtrqqW_u_ZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 06:18:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3218 (0xc92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B49B87A3FF389634C7D090D76DAEAA96FEEFD90 Validity Not Before: Feb 10 13:50:48 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=127CB392D898DFDCF71296F4B4FA03D594E20A36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:b0:4e:e3:27:66:56:6d:30:7d:de:b4:67:b7: b6:a1:a7:ea:cb:d8:2f:2b:9d:ad:51:62:0a:8a:5c: 44:35:67:d9:b0:17:a2:c4:30:52:1a:9b:a9:16:ab: 9f:9e:6d:00:ab:f5:54:b5:f1:f7:c4:7c:fb:37:68: e7:65:da:72:30:a6:ec:48:63:9e:e4:64:6d:90:3f: 6c:09:1b:cb:b2:90:72:8e:e2:ba:bd:4f:e5:b7:22: 38:92:6c:2e:06:19:d8:7f:9b:0b:ad:58:52:90:4a: 10:11:1e:6a:2c:35:af:6b:87:39:73:53:7d:66:81: 96:72:8e:06:7b:1c:53:16:30:8a:06:42:12:1d:48: a7:a6:5d:8c:f7:6f:3d:32:e2:0f:66:67:c9:6a:a4: 86:51:6a:ad:44:77:19:cb:a6:f0:ee:5d:c5:e0:7d: 1a:d3:79:9b:fe:21:3b:b3:6c:1f:dc:f1:da:8c:2e: b5:93:82:39:78:40:fc:df:63:3f:41:7f:e4:b9:1e: 05:32:2d:55:97:c0:92:44:e6:c2:1f:04:7b:fd:6d: e6:df:9e:f1:ad:ba:47:b1:55:c5:ce:b0:17:f2:fb: 5d:41:45:8e:9d:31:8b:5c:d1:0e:e7:d2:ea:4c:c1: b1:d9:f5:16:91:22:ea:76:30:1a:86:ed:20:66:cf: 28:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:7C:B3:92:D8:98:DF:DC:F7:12:96:F4:B4:FA:03:D5:94:E2:0A:36 X509v3 Authority Key Identifier: keyid:3B:49:B8:7A:3F:F3:89:63:4C:7D:09:0D:76:DA:EA:A9:6F:EE:FD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCREE/O0m4ej_ziWNMfQkNdtrqqW_u_ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O0m4ej_ziWNMfQkNdtrqqW_u_ZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCREE/EnyzktiY39z3Epb0tPoD1ZTiCjY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:85a0::/32 Signature Algorithm: sha256WithRSAEncryption 75:68:ed:88:6e:69:24:e5:f4:8a:4d:96:97:c0:10:84:71:f3: c1:40:2d:89:74:16:99:8f:85:1f:44:ea:63:a6:8b:9c:62:75: ff:b5:f8:fe:38:ac:ea:23:c3:32:6e:4d:76:78:f2:0a:fd:c9: 67:56:40:f4:8e:e2:31:a4:17:f2:f1:94:ed:6c:bc:3d:2c:d0: 0f:b8:19:40:87:34:73:3a:78:72:e8:43:70:1d:c3:2f:cf:2a: d1:7b:95:6c:77:18:ff:64:61:b8:86:c3:4b:d6:b2:73:cd:ab: 90:75:1b:96:ab:f3:a6:bc:d3:0b:88:05:78:1c:3a:88:38:d2: be:8b:b6:6c:23:45:29:ae:06:87:99:74:0b:56:d9:25:ca:87: 88:23:47:bf:57:1b:b8:db:79:03:71:3f:aa:ba:c7:15:4c:26: 09:27:64:e8:5a:46:ae:a2:ac:42:36:4b:07:b1:d7:cf:73:ca: 7a:17:5a:8e:9a:a0:51:c5:08:1e:f5:09:cf:15:f8:32:5d:5b: 61:e5:c2:1f:fd:d1:c2:d7:47:09:78:ab:14:dc:bf:4d:94:5c: a2:d8:6c:36:7f:e5:0e:33:86:a3:f9:9d:44:94:a4:6e:3c:11: dd:a4:8c:9b:b3:38:61:37:1b:f4:25:db:f3:92:3c:58:31:b0: 4e:a4:9e:c5 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDJIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0I0 OUI4N0EzRkYzODk2MzRDN0QwOTBENzZEQUVBQTk2RkVFRkQ5MDAeFw0yNTAyMTAx MzUwNDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDEyN0NCMzkyRDg5OERG RENGNzEyOTZGNEI0RkEwM0Q1OTRFMjBBMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDvsE7jJ2ZWbTB93rRnt7ahp+rL2C8rna1RYgqKXEQ1Z9mwF6LE MFIam6kWq5+ebQCr9VS18ffEfPs3aOdl2nIwpuxIY57kZG2QP2wJG8uykHKO4rq9 T+W3IjiSbC4GGdh/mwutWFKQShARHmosNa9rhzlzU31mgZZyjgZ7HFMWMIoGQhId SKemXYz3bz0y4g9mZ8lqpIZRaq1EdxnLpvDuXcXgfRrTeZv+ITuzbB/c8dqMLrWT gjl4QPzfYz9Bf+S5HgUyLVWXwJJE5sIfBHv9bebfnvGtukexVcXOsBfy+11BRY6d MYtc0Q7n0upMwbHZ9RaRIup2MBqG7SBmzyglAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUEnyzktiY39z3Epb0tPoD1ZTiCjYwHwYDVR0jBBgwFoAUO0m4ej/ziWNMfQkN dtrqqW/u/ZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNSRUUv TzBtNGVqX3ppV05NZlFrTmR0cnFxV191X1pBLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9PMG00ZWpfemlXTk1mUWtOZHRycXFXX3VfWkEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9OQ1JFRS9Fbnl6a3RpWTM5ejNFcGIwdFBv RDFaVGlDalkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJACF oDANBgkqhkiG9w0BAQsFAAOCAQEAdWjtiG5pJOX0ik2Wl8AQhHHzwUAtiXQWmY+F H0TqY6aLnGJ1/7X4/jis6iPDMm5NdnjyCv3JZ1ZA9I7iMaQX8vGU7Wy8PSzQD7gZ QIc0czp4cuhDcB3DL88q0XuVbHcY/2RhuIbDS9ayc82rkHUblqvzprzTC4gFeBw6 iDjSvou2bCNFKa4Gh5l0C1bZJcqHiCNHv1cbuNt5A3E/qrrHFUwmCSdk6FpGrqKs QjZLB7HXz3PKehdajpqgUcUIHvUJzxX4Ml1bYeXCH/3RwtdHCXirFNy/TZRcoths Nn/lDjOGo/mdRJSkbjwR3aSMm7M4YTcb9CXb85I8WDGwTqSexQ== -----END CERTIFICATE-----Generated at Wed Apr 23 04:39:48 2025 by rpki-client