$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NSS/BzUu-_hl16hnITgpWNAZnYOkt_Y.roa File: BzUu-_hl16hnITgpWNAZnYOkt_Y.roa (raw, json) Hash identifier: d9zlmCg/eSQEWbJ95UfF3XujoGGfhkb1bVb7/IlZ/n8= Subject key identifier: 07:35:2E:FB:F8:65:D7:A8:67:21:38:29:58:D0:19:9D:83:A4:B7:F6 Certificate issuer: /CN=7957076E29BFC1648EFF71A398BAAC4A9E886820 Certificate serial: 0C81 Authority key identifier: 79:57:07:6E:29:BF:C1:64:8E:FF:71:A3:98:BA:AC:4A:9E:88:68:20 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/eVcHbim_wWSO_3GjmLqsSp6IaCA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NSS/BzUu-_hl16hnITgpWNAZnYOkt_Y.roa Signing time: Mon 10 Feb 2025 14:31:57 +0000 ROA not before: Mon 10 Feb 2025 14:31:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131626 IP address blocks: 2403:f3c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NSS/eVcHbim_wWSO_3GjmLqsSp6IaCA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NSS/eVcHbim_wWSO_3GjmLqsSp6IaCA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/eVcHbim_wWSO_3GjmLqsSp6IaCA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3201 (0xc81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7957076E29BFC1648EFF71A398BAAC4A9E886820 Validity Not Before: Feb 10 14:31:57 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=07352EFBF865D7A86721382958D0199D83A4B7F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:31:ee:f9:ad:e1:d9:6f:f2:89:bd:ce:2d:3c: 53:0f:45:f1:8a:49:9e:82:75:f3:86:4e:0e:40:f7: 6f:b4:bc:da:35:cc:08:20:91:0c:fc:21:ba:b3:87: fa:f7:88:74:3f:b1:d3:06:7e:7c:7c:ee:79:75:0a: 5f:8c:ad:15:8a:1c:d9:9a:e8:ff:5e:b9:66:fb:ee: 63:2e:96:85:63:69:eb:a1:2e:22:92:cc:99:b7:77: c2:c8:07:77:0f:ef:e4:cb:1f:90:4a:5b:d8:21:21: f9:96:8a:dd:0c:74:87:d2:15:dd:a8:0f:f1:41:b8: a4:a9:8c:67:61:f0:39:70:93:ff:eb:1e:b8:01:24: 13:5a:fd:2d:25:c5:59:57:91:5b:5e:f6:cb:2b:f6: 62:ab:21:62:ec:3c:bd:fb:51:ec:7b:d2:49:de:d2: f7:08:b5:4f:ee:69:81:4c:91:41:83:47:cd:b5:e1: 22:b2:82:3f:4c:1f:e9:79:cb:60:2f:c0:91:6c:42: d0:96:b8:65:60:60:85:67:56:f1:37:15:87:a1:42: f6:f4:b8:de:7f:dd:c6:3c:7a:67:df:b7:ce:e3:fb: 54:5e:0c:2a:fd:79:83:04:58:43:fd:8a:44:4d:8b: eb:82:cd:c7:5b:4a:27:df:3c:4b:bc:e3:12:1a:52: a0:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:35:2E:FB:F8:65:D7:A8:67:21:38:29:58:D0:19:9D:83:A4:B7:F6 X509v3 Authority Key Identifier: keyid:79:57:07:6E:29:BF:C1:64:8E:FF:71:A3:98:BA:AC:4A:9E:88:68:20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NSS/eVcHbim_wWSO_3GjmLqsSp6IaCA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/eVcHbim_wWSO_3GjmLqsSp6IaCA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NSS/BzUu-_hl16hnITgpWNAZnYOkt_Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:f3c0::/32 Signature Algorithm: sha256WithRSAEncryption 6d:de:f6:e6:0c:f5:92:92:ac:5f:04:5f:54:30:1a:5e:75:84: 7e:cb:2d:9d:62:fe:ed:ec:6c:75:c1:48:34:a9:2a:58:e4:0b: 1e:0f:99:f1:85:d0:03:ca:0b:d0:15:79:c4:04:04:37:fd:00: 0e:6f:c4:4e:8f:54:0a:2f:a9:60:a5:59:54:b2:eb:4b:6f:10: 2c:7f:c9:e4:02:46:cc:ca:06:d0:ad:6e:ed:1a:ba:50:45:40: fb:6d:80:d2:c0:e3:54:25:07:c2:05:52:4b:48:ae:00:50:28: 4b:ab:65:a3:96:36:c2:e3:1a:ef:62:73:5b:29:52:f6:64:fe: d3:67:cb:0d:08:e8:fc:f5:89:75:71:5c:51:24:9e:a6:21:85: 27:c3:d8:70:77:15:17:fb:9b:94:75:39:14:76:79:43:7c:26: 77:2f:eb:0c:9e:b1:96:e9:22:2e:ca:10:46:8d:4f:58:77:d4: e7:8c:6a:85:18:99:00:3a:19:4f:97:f0:01:4a:e4:b2:4d:0c: 6a:c5:dc:bf:2e:13:bc:57:37:3a:7b:dd:72:6a:ac:93:e2:e2: db:d5:b3:9f:85:9e:a8:19:4e:31:c5:7c:12:df:51:b0:75:6e: b4:dd:61:22:09:05:aa:4b:ac:82:11:4c:ef:e9:64:31:01:27: fe:93:23:46 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICDIEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzk1 NzA3NkUyOUJGQzE2NDhFRkY3MUEzOThCQUFDNEE5RTg4NjgyMDAeFw0yNTAyMTAx NDMxNTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA3MzUyRUZCRjg2NUQ3 QTg2NzIxMzgyOTU4RDAxOTlEODNBNEI3RjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/Me75reHZb/KJvc4tPFMPRfGKSZ6CdfOGTg5A92+0vNo1zAgg kQz8Ibqzh/r3iHQ/sdMGfnx87nl1Cl+MrRWKHNma6P9euWb77mMuloVjaeuhLiKS zJm3d8LIB3cP7+TLH5BKW9ghIfmWit0MdIfSFd2oD/FBuKSpjGdh8Dlwk//rHrgB JBNa/S0lxVlXkVte9ssr9mKrIWLsPL37Uex70kne0vcItU/uaYFMkUGDR8214SKy gj9MH+l5y2AvwJFsQtCWuGVgYIVnVvE3FYehQvb0uN5/3cY8emfft87j+1ReDCr9 eYMEWEP9ikRNi+uCzcdbSiffPEu84xIaUqA/AgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUBzUu+/hl16hnITgpWNAZnYOkt/YwHwYDVR0jBBgwFoAUeVcHbim/wWSO/3Gj mLqsSp6IaCAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTlNTL2VW Y0hiaW1fd1dTT18zR2ptTHFzU3A2SWFDQS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZVZjSGJpbV93V1NPXzNHam1McXNTcDZJYUNBLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvTlNTL0J6VXUtX2hsMTZobklUZ3BXTkFabllP a3RfWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkA/PAMA0G CSqGSIb3DQEBCwUAA4IBAQBt3vbmDPWSkqxfBF9UMBpedYR+yy2dYv7t7Gx1wUg0 qSpY5AseD5nxhdADygvQFXnEBAQ3/QAOb8ROj1QKL6lgpVlUsutLbxAsf8nkAkbM ygbQrW7tGrpQRUD7bYDSwONUJQfCBVJLSK4AUChLq2WjljbC4xrvYnNbKVL2ZP7T Z8sNCOj89Yl1cVxRJJ6mIYUnw9hwdxUX+5uUdTkUdnlDfCZ3L+sMnrGW6SIuyhBG jU9Yd9TnjGqFGJkAOhlPl/ABSuSyTQxqxdy/LhO8Vzc6e91yaqyT4uLb1bOfhZ6o GU4xxXwS31GwdW603WEiCQWqS6yCEUzv6WQxASf+kyNG -----END CERTIFICATE-----Generated at Fri Apr 18 23:53:53 2025 by rpki-client