$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/TbTKJdlEVtUaIWi6LIISCuCh49s.roa File: TbTKJdlEVtUaIWi6LIISCuCh49s.roa (raw, json) Hash identifier: 4oGJfMUB6dDeAr4ucBnBad65vcRingVvoqfqZXP2JPI= Subject key identifier: 4D:B4:CA:25:D9:44:56:D5:1A:21:68:BA:2C:82:12:0A:E0:A1:E3:DB Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Certificate serial: 0CBE Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/TbTKJdlEVtUaIWi6LIISCuCh49s.roa Signing time: Mon 10 Feb 2025 13:58:25 +0000 ROA not before: Mon 10 Feb 2025 13:58:25 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17420 IP address blocks: 2403:9f00::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3262 (0xcbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Validity Not Before: Feb 10 13:58:25 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4DB4CA25D94456D51A2168BA2C82120AE0A1E3DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e0:c0:0b:8a:da:55:98:54:5c:49:c4:72:5b: bd:e0:bb:73:bc:ac:3e:3f:5a:f9:48:88:ed:cf:d2: 15:47:ea:59:19:68:33:d3:af:f2:ad:d6:b0:6c:78: 0b:04:60:40:51:32:8a:4b:41:11:7d:65:34:0e:8e: ec:50:ca:4a:83:7b:f1:69:87:e3:69:e3:cd:e4:89: 34:67:43:30:30:de:7f:62:fa:13:83:f7:be:be:fa: 9e:3f:e2:c0:76:9f:92:de:6a:90:86:9a:ce:75:76: c2:45:a5:80:8f:8d:c0:6a:3f:64:de:3e:e0:1d:13: 3f:c8:2b:bd:48:73:d4:3f:6e:86:f5:bc:61:82:30: c2:f3:81:d1:51:3c:a0:b3:da:4d:5f:5c:29:4f:9c: dc:85:49:46:aa:94:6d:39:ca:f0:66:31:da:22:8e: 45:cf:a7:14:32:d7:18:1e:dd:95:a7:20:e3:be:37: 7d:53:36:80:2a:3d:0d:c3:b8:66:12:5c:a6:d8:35: 98:79:fd:76:a1:01:a2:07:a5:8b:ee:fa:2b:1a:a1: c4:89:95:f7:9f:53:4a:00:a9:af:a4:a5:24:e4:4a: 93:8c:4b:54:4b:be:4a:52:71:97:07:ed:24:29:9f: 11:ef:fb:28:c9:c4:bc:b0:98:66:37:4f:c0:e4:df: 9f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:B4:CA:25:D9:44:56:D5:1A:21:68:BA:2C:82:12:0A:E0:A1:E3:DB X509v3 Authority Key Identifier: keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/TbTKJdlEVtUaIWi6LIISCuCh49s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:9f00::/32 Signature Algorithm: sha256WithRSAEncryption 8c:b3:db:0a:d4:6d:be:b5:a8:80:1e:a4:24:c0:cc:64:92:67: 32:60:62:b0:2f:e1:ba:a6:88:49:bb:7d:a2:93:2d:d3:75:a1: ad:d9:cc:5b:fe:5e:c3:43:e0:2e:4c:fb:52:8b:e9:cf:5b:91: 42:8f:55:5e:ac:2c:88:5a:45:c8:74:4b:b8:0f:74:ac:2f:6d: 04:86:1a:72:3d:5b:e8:26:35:89:73:d8:a3:46:2f:3b:52:fb: 34:be:f3:0b:26:df:f0:0e:ad:c4:5b:54:03:71:2f:5c:27:77: 21:90:c2:f8:07:07:ec:6b:c7:4b:32:42:7a:a9:1c:8b:d8:31: 75:3b:5c:39:f4:60:6e:b6:0f:a0:ca:a4:79:1d:01:2f:3b:eb: 95:6b:2e:42:8a:79:56:d0:e5:61:ed:53:bb:02:82:40:de:b9: 8f:35:9c:ca:05:24:c8:bd:8f:bd:da:39:97:43:fd:4a:ae:01: 06:df:fb:5c:d9:86:b5:43:12:7a:da:54:cb:e8:85:0a:fd:2b: 5e:65:92:51:52:72:fb:4e:e9:8c:18:29:9d:32:93:62:22:14: 1f:1a:9c:17:88:f3:02:99:23:56:9c:70:99:32:6c:37:f5:9b: e7:93:36:69:9c:bb:f2:23:85:9a:52:a3:5b:bb:6c:7b:99:0f: 7c:90:ec:af -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDL4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI5 QjYwNkRCODYyODNCRDRBMDhBRjdFQjMzRUYzOEEyNTY2MzFCQjAeFw0yNTAyMTAx MzU4MjVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDREQjRDQTI1RDk0NDU2 RDUxQTIxNjhCQTJDODIxMjBBRTBBMUUzREIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC54MALitpVmFRcScRyW73gu3O8rD4/WvlIiO3P0hVH6lkZaDPT r/Kt1rBseAsEYEBRMopLQRF9ZTQOjuxQykqDe/Fph+Np483kiTRnQzAw3n9i+hOD 976++p4/4sB2n5LeapCGms51dsJFpYCPjcBqP2TePuAdEz/IK71Ic9Q/bob1vGGC MMLzgdFRPKCz2k1fXClPnNyFSUaqlG05yvBmMdoijkXPpxQy1xge3ZWnIOO+N31T NoAqPQ3DuGYSXKbYNZh5/XahAaIHpYvu+isaocSJlfefU0oAqa+kpSTkSpOMS1RL vkpScZcH7SQpnxHv+yjJxLywmGY3T8Dk359xAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUTbTKJdlEVtUaIWi6LIISCuCh49swHwYDVR0jBBgwFoAUUptgbbhig71KCK9+ sz7ziiVmMbswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFHSUMv VXB0Z2JiaGlnNzFLQ0s5LXN6N3ppaVZtTWJzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VcHRnYmJoaWc3MUtDSzktc3o3emlpVm1NYnMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQUdJQy9UYlRLSmRsRVZ0VWFJV2k2TElJ U0N1Q2g0OXMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAOf ADANBgkqhkiG9w0BAQsFAAOCAQEAjLPbCtRtvrWogB6kJMDMZJJnMmBisC/huqaI Sbt9opMt03WhrdnMW/5ew0PgLkz7Uovpz1uRQo9VXqwsiFpFyHRLuA90rC9tBIYa cj1b6CY1iXPYo0YvO1L7NL7zCybf8A6txFtUA3EvXCd3IZDC+AcH7GvHSzJCeqkc i9gxdTtcOfRgbrYPoMqkeR0BLzvrlWsuQop5VtDlYe1TuwKCQN65jzWcygUkyL2P vdo5l0P9Sq4BBt/7XNmGtUMSetpUy+iFCv0rXmWSUVJy+07pjBgpnTKTYiIUHxqc F4jzApkjVpxwmTJsN/Wb55M2aZy78iOFmlKjW7tse5kPfJDsrw== -----END CERTIFICATE-----Generated at Fri Apr 18 23:43:56 2025 by rpki-client