$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/T0-4OsbzDODDmQAvej-o-7oiGo4.roa File: T0-4OsbzDODDmQAvej-o-7oiGo4.roa (raw, json) Hash identifier: 4qveo6fs12K/GTQ8LvFEO4HDQ+QKgkGggDZcNCfj32E= Subject key identifier: 4F:4F:B8:3A:C6:F3:0C:E0:C3:99:00:2F:7A:3F:A8:FB:BA:22:1A:8E Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Certificate serial: 0CC6 Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/T0-4OsbzDODDmQAvej-o-7oiGo4.roa Signing time: Mon 10 Feb 2025 13:58:28 +0000 ROA not before: Mon 10 Feb 2025 13:58:28 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4781 IP address blocks: 210.63.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3270 (0xcc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Validity Not Before: Feb 10 13:58:28 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4F4FB83AC6F30CE0C399002F7A3FA8FBBA221A8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f2:33:52:67:84:78:27:b3:4c:1b:bf:fb:85: d1:25:d7:e8:24:19:47:c8:c4:fa:a0:47:03:ff:6a: 6c:71:82:f2:88:23:f0:dc:46:48:d9:de:1f:c4:4e: b7:94:ca:69:b7:da:32:55:8f:2c:43:f2:df:77:fb: 11:f1:22:a8:da:f4:f1:b6:61:6d:74:ee:62:d9:c7: 13:84:dd:0d:75:df:a7:aa:47:8f:d1:1a:c3:fd:fa: 08:a1:29:49:42:f0:77:b6:05:64:32:11:a1:82:9c: c5:a8:56:a9:57:96:10:0b:d6:74:79:05:c2:a1:f6: 19:b5:f7:2d:03:be:49:1d:c6:d3:f3:b6:c3:fb:a9: 84:73:0d:7a:04:13:b7:e9:61:14:d2:87:71:2a:27: 66:b0:11:70:9c:25:1d:16:4f:13:b3:d0:c0:27:ef: 96:0c:11:4d:64:d3:74:d2:ea:fa:1d:a5:b5:51:d9: 63:c4:2c:84:1b:f5:b2:9c:87:b8:58:3b:89:7b:ca: f5:3d:58:84:de:43:f2:7e:7f:07:ad:7f:45:ad:f8: 8b:c4:cd:93:af:ee:a9:ea:8c:f6:df:d2:ae:eb:fb: dd:3c:6c:16:fc:4b:96:b3:82:8d:68:de:e3:e5:32: 12:f3:b0:21:ae:84:b3:d3:be:3a:6c:0d:92:43:e6: e7:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:4F:B8:3A:C6:F3:0C:E0:C3:99:00:2F:7A:3F:A8:FB:BA:22:1A:8E X509v3 Authority Key Identifier: keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/T0-4OsbzDODDmQAvej-o-7oiGo4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.63.99.0/24 Signature Algorithm: sha256WithRSAEncryption 63:d8:76:77:7f:13:ee:ab:92:2d:f1:c8:40:7c:2d:b8:6d:c6: b4:71:9b:da:c2:84:9b:b8:51:ec:2a:d9:95:b5:32:af:78:f4: 04:b6:6f:b2:52:0e:74:41:d2:0d:41:58:f2:25:97:08:d5:0c: c1:3b:7a:4a:0e:7e:c9:e6:8a:16:a2:aa:00:72:54:df:ab:33: 35:d0:4a:a9:17:2f:f8:4f:83:f8:fb:b0:70:db:c7:a1:af:1a: 9f:b2:6e:69:c9:30:bb:9d:6e:e1:d9:1a:fd:21:8f:b2:4e:a8: b9:18:dc:c0:80:c1:f7:df:34:90:0a:03:b5:97:93:a6:14:38: b5:df:3d:85:4a:1c:ca:01:9f:d5:8f:60:05:5e:88:10:fa:a1: ea:9a:9d:ea:79:ed:01:2e:5d:fa:01:e9:0a:f2:4f:25:21:24: 02:3c:bd:e6:09:3d:97:ac:2b:e7:de:49:cc:cf:73:89:f0:9f: 53:e2:db:8e:7e:09:b0:68:90:aa:8d:55:e7:2c:c8:d0:53:86: 2a:c1:36:5d:37:fb:66:df:25:a3:83:90:68:d8:c0:7b:05:90: 66:46:c8:4f:b6:2f:e8:d4:dd:12:fa:b8:a9:a8:3e:e8:28:9c: fe:1c:b4:3c:a5:ca:64:7b:71:f1:37:ca:11:d9:a4:2d:62:1e: 04:26:df:50 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDMYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI5 QjYwNkRCODYyODNCRDRBMDhBRjdFQjMzRUYzOEEyNTY2MzFCQjAeFw0yNTAyMTAx MzU4MjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRGNEZCODNBQzZGMzBD RTBDMzk5MDAyRjdBM0ZBOEZCQkEyMjFBOEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCn8jNSZ4R4J7NMG7/7hdEl1+gkGUfIxPqgRwP/amxxgvKII/Dc RkjZ3h/ETreUymm32jJVjyxD8t93+xHxIqja9PG2YW107mLZxxOE3Q1136eqR4/R GsP9+gihKUlC8He2BWQyEaGCnMWoVqlXlhAL1nR5BcKh9hm19y0DvkkdxtPztsP7 qYRzDXoEE7fpYRTSh3EqJ2awEXCcJR0WTxOz0MAn75YMEU1k03TS6vodpbVR2WPE LIQb9bKch7hYO4l7yvU9WITeQ/J+fwetf0Wt+IvEzZOv7qnqjPbf0q7r+908bBb8 S5azgo1o3uPlMhLzsCGuhLPTvjpsDZJD5ue9AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUT0+4OsbzDODDmQAvej+o+7oiGo4wHwYDVR0jBBgwFoAUUptgbbhig71KCK9+ sz7ziiVmMbswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFHSUMv VXB0Z2JiaGlnNzFLQ0s5LXN6N3ppaVZtTWJzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VcHRnYmJoaWc3MUtDSzktc3o3emlpVm1NYnMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQUdJQy9UMC00T3NiekRPRERtUUF2ZWot by03b2lHbzQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0j9j MA0GCSqGSIb3DQEBCwUAA4IBAQBj2HZ3fxPuq5It8chAfC24bca0cZvawoSbuFHs KtmVtTKvePQEtm+yUg50QdINQVjyJZcI1QzBO3pKDn7J5ooWoqoAclTfqzM10Eqp Fy/4T4P4+7Bw28ehrxqfsm5pyTC7nW7h2Rr9IY+yTqi5GNzAgMH33zSQCgO1l5Om FDi13z2FShzKAZ/Vj2AFXogQ+qHqmp3qee0BLl36AekK8k8lISQCPL3mCT2XrCvn 3knMz3OJ8J9T4tuOfgmwaJCqjVXnLMjQU4YqwTZdN/tm3yWjg5Bo2MB7BZBmRshP ti/o1N0S+ripqD7oKJz+HLQ8pcpke3HxN8oR2aQtYh4EJt9Q -----END CERTIFICATE-----Generated at Fri Apr 18 23:51:00 2025 by rpki-client