$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/tmglbtPFD74N3wh3zRlzSfL7MFc.roa File: tmglbtPFD74N3wh3zRlzSfL7MFc.roa (raw, json) Hash identifier: zS8nTYFLzdXIyKJHuyzzUJONZdixhGlL985MniBI5RE= Subject key identifier: B6:68:25:6E:D3:C5:0F:BE:0D:DF:08:77:CD:19:73:49:F2:FB:30:57 Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Certificate serial: 0CC1 Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/tmglbtPFD74N3wh3zRlzSfL7MFc.roa Signing time: Mon 10 Feb 2025 13:58:25 +0000 ROA not before: Mon 10 Feb 2025 13:58:25 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17420 IP address blocks: 211.73.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3265 (0xcc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Validity Not Before: Feb 10 13:58:25 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B668256ED3C50FBE0DDF0877CD197349F2FB3057 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:e1:2d:ad:be:47:fd:74:ea:26:3f:50:d0:65: b4:af:7c:83:f5:34:f3:49:d6:2e:0a:55:e0:84:6a: d1:1a:13:2d:0b:6b:1d:20:10:61:ed:40:6f:09:90: 2c:50:39:ab:b5:b3:6b:56:dc:80:6b:da:a2:6e:e5: 3c:78:9e:dc:54:ed:21:7c:f1:28:27:5f:44:64:72: 0a:c4:4e:85:30:a8:df:01:b6:d3:25:32:84:f9:4b: 1e:f7:c5:b4:ca:6f:29:ed:bd:e5:36:e5:d6:9f:a2: 34:1d:fc:ec:0c:74:23:8b:88:c2:b8:aa:8c:ec:1a: c1:9b:57:bc:62:7a:44:cc:c7:76:9a:c9:af:81:bd: 8c:02:80:51:65:db:b3:40:d7:61:b0:27:ef:39:88: 39:96:4d:25:91:84:2c:21:67:de:ef:54:c8:f6:92: d1:7c:53:7e:b4:65:36:37:6f:6a:92:84:c7:1f:ff: 66:56:45:41:46:1f:62:ca:8d:2d:b3:4f:b3:d6:76: 5c:45:da:73:cd:b7:aa:50:8b:ef:48:76:5e:39:66: fe:f7:41:61:8e:20:61:7a:78:92:23:31:2c:8b:3d: de:1b:95:8a:91:ca:76:ec:12:ef:c6:e7:47:b5:f4: 66:9a:58:ec:e7:fb:3c:99:a8:f0:ac:38:62:68:35: e0:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:68:25:6E:D3:C5:0F:BE:0D:DF:08:77:CD:19:73:49:F2:FB:30:57 X509v3 Authority Key Identifier: keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/tmglbtPFD74N3wh3zRlzSfL7MFc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.73.192.0/19 Signature Algorithm: sha256WithRSAEncryption 72:0f:11:9b:b9:99:c6:25:19:4f:fb:7d:29:22:ce:dd:80:2f: e6:77:3b:4b:b9:c0:fc:5a:f4:55:93:fb:39:1f:c7:b8:e9:ef: 4f:e1:10:cb:10:fe:ba:8f:2f:16:2e:d2:80:97:e4:a8:74:55: 8a:98:24:78:84:1d:71:e1:c4:db:cb:f3:37:cb:4c:45:37:92: d1:29:96:f3:26:54:8f:6e:3a:cd:a9:91:be:81:f7:25:a4:a0: 5e:8a:2c:bd:7a:3d:fb:d1:19:c5:4b:7f:14:e8:ed:f7:88:22: c1:c5:a4:08:f8:c5:e5:0a:e1:cd:f0:fe:11:14:3e:4e:22:bc: 65:a7:22:3e:b1:ca:03:da:fd:ec:0b:dd:47:82:2a:25:27:34: f2:a1:02:ff:97:73:b6:20:28:6b:f4:9d:32:d3:f7:de:af:e0: 4b:9d:c8:1d:a5:c2:2b:f0:e7:62:f2:30:64:72:6b:25:6a:b4: a3:12:12:f4:5e:16:68:4b:a8:c8:27:62:3c:a8:34:b6:5d:8e: a8:f2:32:52:48:43:bc:e3:99:93:61:40:f5:d7:c9:36:25:d9: 40:5c:08:f4:75:1e:3c:d4:0e:47:bc:3e:34:f7:9f:68:77:5e: fd:fe:c6:64:65:25:cc:43:07:87:66:ea:91:76:99:60:91:fb: f1:e4:b0:a1 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDMEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI5 QjYwNkRCODYyODNCRDRBMDhBRjdFQjMzRUYzOEEyNTY2MzFCQjAeFw0yNTAyMTAx MzU4MjVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI2NjgyNTZFRDNDNTBG QkUwRERGMDg3N0NEMTk3MzQ5RjJGQjMwNTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDp4S2tvkf9dOomP1DQZbSvfIP1NPNJ1i4KVeCEatEaEy0Lax0g EGHtQG8JkCxQOau1s2tW3IBr2qJu5Tx4ntxU7SF88SgnX0RkcgrEToUwqN8BttMl MoT5Sx73xbTKbyntveU25dafojQd/OwMdCOLiMK4qozsGsGbV7xiekTMx3aaya+B vYwCgFFl27NA12GwJ+85iDmWTSWRhCwhZ97vVMj2ktF8U360ZTY3b2qShMcf/2ZW RUFGH2LKjS2zT7PWdlxF2nPNt6pQi+9Idl45Zv73QWGOIGF6eJIjMSyLPd4blYqR ynbsEu/G50e19GaaWOzn+zyZqPCsOGJoNeDHAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUtmglbtPFD74N3wh3zRlzSfL7MFcwHwYDVR0jBBgwFoAUUptgbbhig71KCK9+ sz7ziiVmMbswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFHSUMv VXB0Z2JiaGlnNzFLQ0s5LXN6N3ppaVZtTWJzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VcHRnYmJoaWc3MUtDSzktc3o3emlpVm1NYnMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQUdJQy90bWdsYnRQRkQ3NE4zd2gzelJs elNmTDdNRmMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQF00nA MA0GCSqGSIb3DQEBCwUAA4IBAQByDxGbuZnGJRlP+30pIs7dgC/mdztLucD8WvRV k/s5H8e46e9P4RDLEP66jy8WLtKAl+SodFWKmCR4hB1x4cTby/M3y0xFN5LRKZbz JlSPbjrNqZG+gfclpKBeiiy9ej370RnFS38U6O33iCLBxaQI+MXlCuHN8P4RFD5O IrxlpyI+scoD2v3sC91HgiolJzTyoQL/l3O2IChr9J0y0/fer+BLncgdpcIr8Odi 8jBkcmslarSjEhL0XhZoS6jIJ2I8qDS2XY6o8jJSSEO845mTYUD118k2JdlAXAj0 dR481A5HvD40959od179/sZkZSXMQweHZuqRdplgkfvx5LCh -----END CERTIFICATE-----Generated at Fri Apr 18 23:43:51 2025 by rpki-client