$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NSSIT/Budv6NPQdpV5fRvNAKPwrn4yhf4.roa File: Budv6NPQdpV5fRvNAKPwrn4yhf4.roa (raw, json) Hash identifier: 1CSEE3sCTjjQYJ/cJOpIRWOcWxCxIrwdmmVbGs9NAxk= Subject key identifier: 06:E7:6F:E8:D3:D0:76:95:79:7D:1B:CD:00:A3:F0:AE:7E:32:85:FE Certificate issuer: /CN=AA11250A67BB9825B6EA1FA9A124A1FEC96701DA Certificate serial: 09F1 Authority key identifier: AA:11:25:0A:67:BB:98:25:B6:EA:1F:A9:A1:24:A1:FE:C9:67:01:DA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/qhElCme7mCW26h-poSSh_slnAdo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/Budv6NPQdpV5fRvNAKPwrn4yhf4.roa Signing time: Mon 10 Feb 2025 14:32:24 +0000 ROA not before: Mon 10 Feb 2025 14:32:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131626 IP address blocks: 2405:63c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/qhElCme7mCW26h-poSSh_slnAdo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/qhElCme7mCW26h-poSSh_slnAdo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/qhElCme7mCW26h-poSSh_slnAdo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2545 (0x9f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA11250A67BB9825B6EA1FA9A124A1FEC96701DA Validity Not Before: Feb 10 14:32:24 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=06E76FE8D3D07695797D1BCD00A3F0AE7E3285FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:1d:2e:f0:a9:64:71:23:6d:45:0b:f7:8c:fa: de:11:ad:f8:82:ee:84:06:97:bd:92:2a:99:19:4a: f3:e6:c1:ab:bc:d2:48:20:16:4b:64:86:ec:96:ab: 09:9e:b9:5a:a9:0e:d3:56:7c:47:67:43:0a:3e:fb: 8a:3c:4f:b2:9d:53:ec:2e:42:07:0a:e4:23:97:cf: a2:dd:95:4a:77:d0:93:be:38:93:f3:74:74:07:45: 38:ee:5f:80:89:2a:75:25:b8:30:a3:e9:12:59:35: dd:8e:b1:c2:99:af:a5:6c:d4:a4:52:6e:45:be:89: f8:8e:2a:32:34:63:da:18:9c:ff:53:b6:f0:49:ee: 3f:f9:c5:ab:82:d8:d2:8f:c2:40:7d:7f:74:fb:01: 41:6d:a0:e6:81:69:aa:17:73:f4:3b:52:fc:bc:64: 23:8a:ad:3d:11:f7:c1:97:76:4e:88:41:a8:b1:7f: 6f:1d:ce:21:bf:14:ca:26:bf:b4:16:e9:11:ad:86: 4c:de:2b:3e:d3:93:ea:ea:ec:51:ef:0d:86:61:d4: 63:b8:bc:c7:21:ee:ac:c4:c0:b7:21:1c:0c:d3:71: 98:4e:ab:b2:b6:eb:db:17:6f:a3:e7:ba:55:5f:bd: c7:5f:ce:7a:d5:0c:06:f8:1d:8a:df:4e:97:a5:08: 0b:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:E7:6F:E8:D3:D0:76:95:79:7D:1B:CD:00:A3:F0:AE:7E:32:85:FE X509v3 Authority Key Identifier: keyid:AA:11:25:0A:67:BB:98:25:B6:EA:1F:A9:A1:24:A1:FE:C9:67:01:DA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/qhElCme7mCW26h-poSSh_slnAdo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/qhElCme7mCW26h-poSSh_slnAdo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/Budv6NPQdpV5fRvNAKPwrn4yhf4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:63c0::/32 Signature Algorithm: sha256WithRSAEncryption 15:d0:c4:35:f6:69:df:29:d3:6e:5b:11:e1:5c:cb:74:6f:16: ac:ad:83:e1:b2:52:1e:b5:9a:b2:72:0d:a4:cb:06:58:85:c4: e0:62:80:3a:ac:39:fd:9e:46:b8:c9:a3:33:bf:c3:ee:a5:ca: 3a:ef:6d:70:46:a4:c2:27:bc:52:92:44:a9:ef:f6:5e:43:f0: d5:1c:45:23:2b:fd:58:fb:d6:37:ca:bf:a0:99:46:7d:71:f3: 8b:b1:f7:3c:bc:d0:17:98:78:3e:ee:ba:e8:67:ba:f7:da:82: 96:a6:48:11:fb:e4:62:19:c6:6d:2d:fe:85:c7:61:ba:f7:1c: 9b:c5:4e:7e:66:50:22:e0:d2:12:e9:77:43:b3:f5:44:1b:e6: f2:d9:99:08:54:51:a3:1a:ce:db:f5:d1:90:9f:16:43:49:5a: 23:b6:0e:38:01:b6:05:39:cd:53:45:7a:b7:11:19:d0:be:b8: 37:48:95:90:47:1c:29:26:24:1c:2c:1f:de:38:2e:8d:79:76: 28:d6:88:02:46:b3:b0:b4:80:24:f4:7a:e4:f0:c3:c3:4d:36: bb:54:e0:68:74:c3:3a:76:2a:aa:d4:36:6d:ca:ed:42:6a:ee: bc:b8:ac:ec:c4:f8:7d:ec:4d:a2:c6:74:11:af:47:38:b9:66: 9a:23:13:1a -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICCfEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUEx MTI1MEE2N0JCOTgyNUI2RUExRkE5QTEyNEExRkVDOTY3MDFEQTAeFw0yNTAyMTAx NDMyMjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA2RTc2RkU4RDNEMDc2 OTU3OTdEMUJDRDAwQTNGMEFFN0UzMjg1RkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIHS7wqWRxI21FC/eM+t4RrfiC7oQGl72SKpkZSvPmwau80kgg FktkhuyWqwmeuVqpDtNWfEdnQwo++4o8T7KdU+wuQgcK5COXz6LdlUp30JO+OJPz dHQHRTjuX4CJKnUluDCj6RJZNd2OscKZr6Vs1KRSbkW+ifiOKjI0Y9oYnP9TtvBJ 7j/5xauC2NKPwkB9f3T7AUFtoOaBaaoXc/Q7Uvy8ZCOKrT0R98GXdk6IQaixf28d ziG/FMomv7QW6RGthkzeKz7Tk+rq7FHvDYZh1GO4vMch7qzEwLchHAzTcZhOq7K2 69sXb6PnulVfvcdfznrVDAb4HYrfTpelCAtTAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUBudv6NPQdpV5fRvNAKPwrn4yhf4wHwYDVR0jBBgwFoAUqhElCme7mCW26h+p oSSh/slnAdowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTlNTSVQv cWhFbENtZTdtQ1cyNmgtcG9TU2hfc2xuQWRvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9xaEVsQ21lN21DVzI2aC1wb1NTaF9zbG5BZG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9OU1NJVC9CdWR2Nk5QUWRwVjVmUnZOQUtQ d3JuNHloZjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAVj wDANBgkqhkiG9w0BAQsFAAOCAQEAFdDENfZp3ynTblsR4VzLdG8WrK2D4bJSHrWa snINpMsGWIXE4GKAOqw5/Z5GuMmjM7/D7qXKOu9tcEakwie8UpJEqe/2XkPw1RxF Iyv9WPvWN8q/oJlGfXHzi7H3PLzQF5h4Pu666Ge699qClqZIEfvkYhnGbS3+hcdh uvccm8VOfmZQIuDSEul3Q7P1RBvm8tmZCFRRoxrO2/XRkJ8WQ0laI7YOOAG2BTnN U0V6txEZ0L64N0iVkEccKSYkHCwf3jgujXl2KNaIAkazsLSAJPR65PDDw002u1Tg aHTDOnYqqtQ2bcrtQmruvLis7MT4fexNosZ0Ea9HOLlmmiMTGg== -----END CERTIFICATE-----Generated at Fri Apr 18 23:37:35 2025 by rpki-client