$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/7jkb-qiId542WFjMjFeCzShoCsU.roa File: 7jkb-qiId542WFjMjFeCzShoCsU.roa (raw, json) Hash identifier: v6F38azfqv6ngUvB3voCsiMTzNniwh26albKevr0xqk= Subject key identifier: EE:39:1B:FA:A8:88:77:9E:36:58:58:CC:8C:57:82:CD:28:68:0A:C5 Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Certificate serial: 0CC7 Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/7jkb-qiId542WFjMjFeCzShoCsU.roa Signing time: Mon 10 Feb 2025 13:58:28 +0000 ROA not before: Mon 10 Feb 2025 13:58:28 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4781 IP address blocks: 210.63.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3271 (0xcc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Validity Not Before: Feb 10 13:58:28 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EE391BFAA888779E365858CC8C5782CD28680AC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:38:7b:c3:6a:2c:40:11:e8:b1:1f:1c:23:e3: 2b:79:c9:2f:31:42:27:dd:f2:a1:28:28:ce:5b:e1: e9:7f:5e:9b:af:6d:b5:b2:be:7b:12:56:f2:9a:7a: 41:a2:b4:56:5e:ae:08:b5:d7:1a:2a:6f:f4:f5:c7: 4e:70:68:f6:77:57:6d:4c:e3:6c:26:a3:d4:01:c5: 46:d9:90:99:b4:80:4d:99:43:77:7a:08:ae:33:a4: 98:28:96:a2:6f:b6:e3:ea:b5:80:4e:56:24:98:44: 02:07:d9:50:a7:62:92:dd:8f:15:60:23:48:fa:7a: 8b:59:12:63:8e:4a:64:8b:52:7b:21:e5:78:8d:d5: d1:a6:7d:64:82:ec:3d:44:7f:e2:b7:24:63:d5:18: 9a:bf:67:b6:2c:98:2f:91:e9:0b:87:d6:b3:f6:70: 55:07:e5:62:91:46:2b:06:f0:b6:75:26:a1:4c:de: 50:80:d6:53:b3:dc:a9:6a:85:b9:78:11:d2:8d:ed: f0:2c:51:82:e3:c1:82:e2:9c:2b:62:4b:a4:1b:a9: e1:be:99:bf:19:cd:9f:74:e5:3b:aa:15:af:d8:f3: 48:b8:84:a3:ed:ab:27:c2:04:55:09:f6:1b:6c:b9: ea:e3:bd:f9:f1:c6:08:31:e9:aa:1f:d5:ff:73:70: 08:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:39:1B:FA:A8:88:77:9E:36:58:58:CC:8C:57:82:CD:28:68:0A:C5 X509v3 Authority Key Identifier: keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/7jkb-qiId542WFjMjFeCzShoCsU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.63.101.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:db:a0:a0:92:e2:78:1e:5d:11:e5:bb:3e:c0:7d:97:3e:2a: 20:df:c0:3d:97:e4:d7:0d:34:31:67:4c:5b:5e:0d:ac:da:1f: 47:68:cc:dd:ea:04:b4:46:23:78:a2:3b:e2:eb:26:ce:8a:2e: 27:56:f5:aa:63:cb:e0:26:32:2c:1c:18:2a:c1:ca:79:c5:04: 6f:ed:d0:da:2b:3f:89:3f:80:ad:60:71:9f:1f:8d:ac:b8:08: 02:a2:0a:44:c1:ff:18:7c:4a:d3:36:98:c1:34:5b:be:22:8c: 21:48:d0:ea:8c:ae:1f:45:2e:6a:cc:eb:3f:e9:8d:de:92:6b: 2a:49:1f:67:7b:c2:93:3e:bb:80:4a:c6:2d:16:8a:2a:fc:ff: a5:fc:34:67:7e:24:04:00:e9:54:9c:b1:c4:6b:66:51:b8:34: d8:dd:e5:38:26:23:cf:2e:3a:90:a2:95:fa:da:49:67:ed:5d: 52:36:7e:a5:d9:7d:1c:08:bc:1f:98:3b:41:4c:16:26:67:15: 94:31:e4:7b:68:c6:af:f1:07:74:be:2f:d9:4c:d3:d1:bd:5c: 4c:96:b7:ad:b7:96:d3:e0:a5:04:19:80:07:5a:15:13:02:dc: 64:9d:bc:07:f0:a0:6c:f9:8b:fc:17:fb:ee:22:b7:94:82:90: 8e:a0:d1:ca -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDMcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI5 QjYwNkRCODYyODNCRDRBMDhBRjdFQjMzRUYzOEEyNTY2MzFCQjAeFw0yNTAyMTAx MzU4MjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVFMzkxQkZBQTg4ODc3 OUUzNjU4NThDQzhDNTc4MkNEMjg2ODBBQzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZOHvDaixAEeixHxwj4yt5yS8xQifd8qEoKM5b4el/XpuvbbWy vnsSVvKaekGitFZergi11xoqb/T1x05waPZ3V21M42wmo9QBxUbZkJm0gE2ZQ3d6 CK4zpJgolqJvtuPqtYBOViSYRAIH2VCnYpLdjxVgI0j6eotZEmOOSmSLUnsh5XiN 1dGmfWSC7D1Ef+K3JGPVGJq/Z7YsmC+R6QuH1rP2cFUH5WKRRisG8LZ1JqFM3lCA 1lOz3Klqhbl4EdKN7fAsUYLjwYLinCtiS6QbqeG+mb8ZzZ905TuqFa/Y80i4hKPt qyfCBFUJ9htsuerjvfnxxggx6aof1f9zcAjDAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU7jkb+qiId542WFjMjFeCzShoCsUwHwYDVR0jBBgwFoAUUptgbbhig71KCK9+ sz7ziiVmMbswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFHSUMv VXB0Z2JiaGlnNzFLQ0s5LXN6N3ppaVZtTWJzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VcHRnYmJoaWc3MUtDSzktc3o3emlpVm1NYnMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQUdJQy83amtiLXFpSWQ1NDJXRmpNakZl Q3pTaG9Dc1Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0j9l MA0GCSqGSIb3DQEBCwUAA4IBAQBN26CgkuJ4Hl0R5bs+wH2XPiog38A9l+TXDTQx Z0xbXg2s2h9HaMzd6gS0RiN4ojvi6ybOii4nVvWqY8vgJjIsHBgqwcp5xQRv7dDa Kz+JP4CtYHGfH42suAgCogpEwf8YfErTNpjBNFu+IowhSNDqjK4fRS5qzOs/6Y3e kmsqSR9ne8KTPruASsYtFooq/P+l/DRnfiQEAOlUnLHEa2ZRuDTY3eU4JiPPLjqQ opX62kln7V1SNn6l2X0cCLwfmDtBTBYmZxWUMeR7aMav8Qd0vi/ZTNPRvVxMlret t5bT4KUEGYAHWhUTAtxknbwH8KBs+Yv8F/vuIreUgpCOoNHK -----END CERTIFICATE-----Generated at Fri Apr 18 23:56:35 2025 by rpki-client