$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/CeMkpZ8HxNQGFu4bP1lsOxUY-_Q.roa File: CeMkpZ8HxNQGFu4bP1lsOxUY-_Q.roa (raw, json) Hash identifier: jRkWDxakz+suU8WzElFrv1eo1YG7jwJCXNrbU8SO0zQ= Subject key identifier: 09:E3:24:A5:9F:07:C4:D4:06:16:EE:1B:3F:59:6C:3B:15:18:FB:F4 Certificate issuer: /CN=7B8257FFDC7CD1CB4196129CD40493352BC83BB9 Certificate serial: 0387 Authority key identifier: 7B:82:57:FF:DC:7C:D1:CB:41:96:12:9C:D4:04:93:35:2B:C8:3B:B9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/e4JX_9x80ctBlhKc1ASTNSvIO7k.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/CeMkpZ8HxNQGFu4bP1lsOxUY-_Q.roa Signing time: Mon 10 Feb 2025 14:17:07 +0000 ROA not before: Mon 10 Feb 2025 14:17:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38853 IP address blocks: 2407:9a40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/e4JX_9x80ctBlhKc1ASTNSvIO7k.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/e4JX_9x80ctBlhKc1ASTNSvIO7k.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/e4JX_9x80ctBlhKc1ASTNSvIO7k.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 903 (0x387) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7B8257FFDC7CD1CB4196129CD40493352BC83BB9 Validity Not Before: Feb 10 14:17:07 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=09E324A59F07C4D40616EE1B3F596C3B1518FBF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:db:a3:3e:a7:91:90:b1:d6:49:54:76:f8:91: a1:3a:36:d6:c1:83:e6:31:23:fc:3a:8c:05:61:ff: 10:bf:43:87:a0:4d:37:50:b4:29:e7:c3:56:11:75: f3:86:f2:4d:4e:3c:c4:4a:f1:a1:e0:c8:a7:64:69: 7a:ad:7b:5e:e9:03:d4:81:8d:d1:56:be:65:fd:ba: 81:a1:25:d3:a8:e4:7e:60:ec:10:13:8f:f0:86:59: a8:e2:50:ee:b3:3f:ae:cd:14:43:c1:ae:87:e9:65: 80:b0:de:be:c3:d0:d3:15:99:ec:a3:c6:4c:9c:1f: 10:c1:02:b7:d3:98:01:6b:63:0e:bc:0b:04:d1:36: 2c:54:6c:10:bc:93:bf:43:e3:c1:26:7f:e5:e9:df: da:71:aa:58:f4:c8:61:de:8f:08:c8:bc:e5:c6:19: 68:b2:dd:74:24:5f:48:44:b0:2b:ff:fd:2c:1b:bb: f0:93:13:4c:8f:2b:e3:37:fe:e5:56:11:23:fb:77: 6a:93:55:3a:8c:9b:a3:da:56:88:4b:75:a6:3e:24: 41:bb:64:13:79:57:67:6c:f2:73:5e:e7:ad:67:c9: d8:f0:18:a6:82:b2:a7:59:5a:f6:5c:21:33:78:5c: bd:07:e9:a0:81:8e:6d:b0:f2:15:cd:ab:34:4c:09: e5:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:E3:24:A5:9F:07:C4:D4:06:16:EE:1B:3F:59:6C:3B:15:18:FB:F4 X509v3 Authority Key Identifier: keyid:7B:82:57:FF:DC:7C:D1:CB:41:96:12:9C:D4:04:93:35:2B:C8:3B:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/e4JX_9x80ctBlhKc1ASTNSvIO7k.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/e4JX_9x80ctBlhKc1ASTNSvIO7k.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/CeMkpZ8HxNQGFu4bP1lsOxUY-_Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:9a40::/32 Signature Algorithm: sha256WithRSAEncryption 4d:d9:51:60:03:f8:c5:b2:70:87:98:4f:8f:05:61:c8:fc:6f: 7e:49:e7:5f:7e:91:3a:ca:c8:c0:ae:a4:1d:bf:2f:13:73:bc: 1c:51:51:db:ac:1a:ea:5b:5d:8b:b8:d5:8f:14:dc:e1:d1:4a: 57:ca:0c:c4:11:42:f4:86:2e:bd:29:b3:f9:d5:3e:16:fd:6c: 6c:7d:39:9d:33:21:4d:12:10:9e:e6:88:42:68:a9:a9:48:bf: 88:78:a6:be:e3:17:c6:96:d9:42:18:fb:a8:25:fa:a3:92:d4: 60:f1:d3:48:aa:b1:ff:cc:e5:88:14:79:0d:2a:1a:72:06:95: 94:7f:57:c6:12:5f:c6:48:0e:6a:6a:5d:87:9a:66:5c:2a:09: a2:69:58:f9:d1:6f:55:e6:ca:0c:dc:07:2c:d5:12:b5:44:75: b5:ea:3b:dc:dd:dc:db:21:15:3e:f4:56:f6:83:6f:26:a7:8d: d1:51:3a:8e:74:98:21:bb:13:b9:73:35:57:75:30:97:13:89: 44:57:f1:0a:7f:4b:8d:72:34:c3:d8:cd:5a:a6:ed:12:1a:5c: b7:ad:89:6d:16:d1:0d:b8:49:f9:9f:87:d1:9f:6b:f9:0c:79: b1:81:5c:16:74:89:73:87:30:6b:17:5f:ea:69:a5:09:a6:08: 79:a5:d2:69 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICA4cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0I4 MjU3RkZEQzdDRDFDQjQxOTYxMjlDRDQwNDkzMzUyQkM4M0JCOTAeFw0yNTAyMTAx NDE3MDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA5RTMyNEE1OUYwN0M0 RDQwNjE2RUUxQjNGNTk2QzNCMTUxOEZCRjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCp26M+p5GQsdZJVHb4kaE6NtbBg+YxI/w6jAVh/xC/Q4egTTdQ tCnnw1YRdfOG8k1OPMRK8aHgyKdkaXqte17pA9SBjdFWvmX9uoGhJdOo5H5g7BAT j/CGWajiUO6zP67NFEPBrofpZYCw3r7D0NMVmeyjxkycHxDBArfTmAFrYw68CwTR NixUbBC8k79D48Emf+Xp39pxqlj0yGHejwjIvOXGGWiy3XQkX0hEsCv//Swbu/CT E0yPK+M3/uVWESP7d2qTVTqMm6PaVohLdaY+JEG7ZBN5V2ds8nNe561nydjwGKaC sqdZWvZcITN4XL0H6aCBjm2w8hXNqzRMCeWLAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUCeMkpZ8HxNQGFu4bP1lsOxUY+/QwHwYDVR0jBBgwFoAUe4JX/9x80ctBlhKc 1ASTNSvIO7kwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFSQU1J VEEvZTRKWF85eDgwY3RCbGhLYzFBU1ROU3ZJTzdrLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9lNEpYXzl4ODBjdEJsaEtjMUFTVE5TdklPN2suY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQVJBTUlUQS9DZU1rcFo4SHhOUUdG dTRiUDFsc094VVktX1Eucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUAJAeaQDANBgkqhkiG9w0BAQsFAAOCAQEATdlRYAP4xbJwh5hPjwVhyPxvfknn X36ROsrIwK6kHb8vE3O8HFFR26wa6ltdi7jVjxTc4dFKV8oMxBFC9IYuvSmz+dU+ Fv1sbH05nTMhTRIQnuaIQmipqUi/iHimvuMXxpbZQhj7qCX6o5LUYPHTSKqx/8zl iBR5DSoacgaVlH9XxhJfxkgOampdh5pmXCoJomlY+dFvVebKDNwHLNUStUR1teo7 3N3c2yEVPvRW9oNvJqeN0VE6jnSYIbsTuXM1V3UwlxOJRFfxCn9LjXI0w9jNWqbt Ehpct62JbRbRDbhJ+Z+H0Z9r+Qx5sYFcFnSJc4cwaxdf6mmlCaYIeaXSaQ== -----END CERTIFICATE-----Generated at Fri Apr 18 23:46:50 2025 by rpki-client