$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/yurZnfV8GalIvW7pP9xN0gOO3FE.roa File: yurZnfV8GalIvW7pP9xN0gOO3FE.roa (raw, json) Hash identifier: kB06K0PDVbQRohaGSjPZAqVnyFdiMfaNFekXyLcn65Y= Subject key identifier: CA:EA:D9:9D:F5:7C:19:A9:48:BD:6E:E9:3F:DC:4D:D2:03:8E:DC:51 Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Certificate serial: 0CC8 Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/yurZnfV8GalIvW7pP9xN0gOO3FE.roa Signing time: Mon 10 Feb 2025 13:58:28 +0000 ROA not before: Mon 10 Feb 2025 13:58:28 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4781 IP address blocks: 210.63.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3272 (0xcc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Validity Not Before: Feb 10 13:58:28 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CAEAD99DF57C19A948BD6EE93FDC4DD2038EDC51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:30:30:87:77:a8:d3:2a:58:57:6e:5e:94:d4: 27:3d:49:cb:80:f8:17:f9:6c:07:10:f7:8d:6d:03: dc:11:f5:9c:f9:9c:e2:9a:3e:0c:5d:10:85:84:9c: 2c:98:86:06:3d:d8:e9:af:8a:0b:ba:ce:9a:5b:16: cd:a3:b4:7e:2e:7d:3f:48:20:c0:d2:c6:93:be:3f: 6c:1e:4a:52:8c:1e:ef:11:96:0f:1a:87:be:fb:dc: fe:2a:e8:ab:c3:14:f2:30:d5:54:8d:5d:28:4c:45: a2:d4:5e:14:b6:6e:33:b5:a4:5c:75:18:6b:39:ff: a5:ab:7d:be:2e:14:6d:45:6c:81:23:f1:c3:ec:62: 8c:b9:93:13:79:0d:11:6a:74:f8:5d:b0:61:99:7d: 82:6a:06:08:56:4d:89:21:0d:33:ab:a6:22:19:9b: ee:e3:98:a1:e1:e1:a6:d5:84:1a:05:0a:ad:2b:61: cd:5d:e1:68:e4:54:90:5f:fd:93:8e:0f:62:9a:45: e2:cc:f5:1c:06:fe:04:87:40:98:6c:9b:2d:90:ca: 24:e3:1a:b5:90:f7:ef:33:42:08:e7:09:dc:87:69: b5:c2:d9:6b:90:28:1c:ef:0f:53:da:48:33:1b:11: c2:91:39:23:99:a1:b8:7c:33:0f:08:01:25:68:b6: 7f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:EA:D9:9D:F5:7C:19:A9:48:BD:6E:E9:3F:DC:4D:D2:03:8E:DC:51 X509v3 Authority Key Identifier: keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/yurZnfV8GalIvW7pP9xN0gOO3FE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.63.102.0/24 Signature Algorithm: sha256WithRSAEncryption 15:fc:17:63:24:48:66:fd:52:8c:47:47:5d:39:f1:46:12:b8: 5e:6d:f0:c0:50:75:8a:24:22:8e:4d:ca:2b:73:97:fb:fd:63: ea:fa:00:1b:9f:b2:9d:69:6b:e5:2b:d7:ca:29:17:c2:f8:f9: 81:40:fd:8a:ab:3b:c8:48:31:9f:bb:e7:77:fc:15:ab:e2:5d: 7a:57:8f:5a:90:45:1e:3b:04:9f:29:e6:4c:24:3c:e7:ba:aa: ce:17:da:be:91:f8:32:e4:9b:ba:85:13:18:e5:bb:43:4a:45: ff:12:57:35:bd:14:6b:87:01:99:14:53:af:2b:66:8c:5b:fd: ac:33:ff:41:cf:14:57:e7:be:2a:9e:2a:be:3b:8d:ca:63:43: 29:d2:f1:16:95:8d:5d:82:b6:c8:68:f9:53:66:65:36:28:fb: 22:2c:6b:3f:02:c5:6f:14:cf:72:a1:47:c7:2c:8f:73:78:e8: 32:c6:23:2b:94:77:9c:8a:fa:2d:3d:a9:42:e9:fe:b4:a7:b6: 17:e4:a6:b7:b0:3b:f6:b1:b0:5f:1a:19:61:70:e3:f5:2e:35: 2b:75:dd:c3:4e:a1:d8:c9:1f:b4:aa:34:d3:10:fa:b4:6c:d7: af:ff:9e:3d:f5:eb:a0:f8:c3:8c:62:e6:06:62:1f:3d:5a:76: b8:68:50:f7 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDMgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI5 QjYwNkRCODYyODNCRDRBMDhBRjdFQjMzRUYzOEEyNTY2MzFCQjAeFw0yNTAyMTAx MzU4MjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENBRUFEOTlERjU3QzE5 QTk0OEJENkVFOTNGREM0REQyMDM4RURDNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLMDCHd6jTKlhXbl6U1Cc9ScuA+Bf5bAcQ941tA9wR9Zz5nOKa PgxdEIWEnCyYhgY92Omvigu6zppbFs2jtH4ufT9IIMDSxpO+P2weSlKMHu8Rlg8a h7773P4q6KvDFPIw1VSNXShMRaLUXhS2bjO1pFx1GGs5/6Wrfb4uFG1FbIEj8cPs Yoy5kxN5DRFqdPhdsGGZfYJqBghWTYkhDTOrpiIZm+7jmKHh4abVhBoFCq0rYc1d 4WjkVJBf/ZOOD2KaReLM9RwG/gSHQJhsmy2QyiTjGrWQ9+8zQgjnCdyHabXC2WuQ KBzvD1PaSDMbEcKROSOZobh8Mw8IASVotn9rAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUyurZnfV8GalIvW7pP9xN0gOO3FEwHwYDVR0jBBgwFoAUUptgbbhig71KCK9+ sz7ziiVmMbswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFHSUMv VXB0Z2JiaGlnNzFLQ0s5LXN6N3ppaVZtTWJzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VcHRnYmJoaWc3MUtDSzktc3o3emlpVm1NYnMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQUdJQy95dXJabmZWOEdhbEl2VzdwUDl4 TjBnT08zRkUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0j9m MA0GCSqGSIb3DQEBCwUAA4IBAQAV/BdjJEhm/VKMR0ddOfFGErhebfDAUHWKJCKO Tcorc5f7/WPq+gAbn7KdaWvlK9fKKRfC+PmBQP2KqzvISDGfu+d3/BWr4l16V49a kEUeOwSfKeZMJDznuqrOF9q+kfgy5Ju6hRMY5btDSkX/Elc1vRRrhwGZFFOvK2aM W/2sM/9BzxRX574qniq+O43KY0Mp0vEWlY1dgrbIaPlTZmU2KPsiLGs/AsVvFM9y oUfHLI9zeOgyxiMrlHecivotPalC6f60p7YX5Ka3sDv2sbBfGhlhcOP1LjUrdd3D TqHYyR+0qjTTEPq0bNev/5499eug+MOMYuYGYh89Wna4aFD3 -----END CERTIFICATE-----Generated at Fri Apr 18 23:56:34 2025 by rpki-client