$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/WTiVIOAhQBaf9HLJDZ4od1kpIF0.roa File: WTiVIOAhQBaf9HLJDZ4od1kpIF0.roa (raw, json) Hash identifier: zBWVouJo4+yalOydS2jbXT0g1fZtxHyjAFPr23GrbZg= Subject key identifier: 59:38:95:20:E0:21:40:16:9F:F4:72:C9:0D:9E:28:77:59:29:20:5D Certificate issuer: /CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2 Certificate serial: 0CD8 Authority key identifier: 0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/WTiVIOAhQBaf9HLJDZ4od1kpIF0.roa Signing time: Mon 10 Feb 2025 14:02:56 +0000 ROA not before: Mon 10 Feb 2025 14:02:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131593 IP address blocks: 43.251.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3288 (0xcd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2 Validity Not Before: Feb 10 14:02:56 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=59389520E02140169FF472C90D9E28775929205D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:91:58:56:54:31:e5:27:9c:7a:c7:3e:2a:d3: 5e:43:8f:04:bd:bc:28:b1:f0:54:47:d0:f6:57:65: 43:c4:75:57:48:10:9b:9b:bb:07:f7:7c:0a:19:b8: 12:54:9b:8f:b1:d0:bd:05:27:6f:ad:4c:e8:cc:db: 04:ae:7e:ed:88:55:80:64:d1:31:02:02:ec:bd:d2: 49:92:ce:c0:65:de:c0:86:e9:d0:7b:a7:eb:ec:df: 84:cf:f7:b2:96:d0:e7:89:dd:fd:b3:86:12:8c:04: 6e:32:da:ea:cd:e7:62:b7:09:31:1a:e2:c8:a5:2d: dd:45:a0:1a:41:7e:8d:1f:a9:39:de:b7:50:b2:3b: 73:09:46:c5:9b:f8:fd:ff:8b:d9:6e:b8:d7:a3:e8: c7:d5:27:c2:bf:6b:0d:a7:ed:af:ee:e4:33:3e:66: 5e:8c:05:1e:f2:7a:b5:00:fd:64:14:c8:26:bb:cb: 4c:e5:5f:5c:a7:da:03:3d:fa:77:a9:db:fa:bf:e9: 27:0d:81:d5:b4:5d:22:4e:25:c3:56:48:33:89:0f: 17:e3:55:74:27:7f:2c:19:ba:df:36:8c:86:c5:30: a2:d8:b3:a7:bf:56:98:6d:5e:e1:ce:7e:7b:4f:f1: 3e:1f:1b:61:92:70:48:d9:eb:01:44:0b:0e:7e:64: 9a:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:38:95:20:E0:21:40:16:9F:F4:72:C9:0D:9E:28:77:59:29:20:5D X509v3 Authority Key Identifier: keyid:0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/WTiVIOAhQBaf9HLJDZ4od1kpIF0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.251.60.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:bd:74:6c:be:77:16:4e:45:0d:f0:b5:e6:2c:e6:3a:cf:b6: eb:20:3e:14:f7:d4:1e:cc:cd:7c:33:fc:09:29:83:ba:93:e2: 57:00:8d:92:2a:51:4f:d1:cd:1e:5b:bd:ed:4c:4d:8b:fe:4c: 88:cf:38:03:d8:55:83:1e:88:ea:de:b7:1e:a0:a2:ed:d7:20: f8:b2:bb:e7:9b:8e:79:88:99:5d:13:59:12:3f:d0:c4:73:f5: c9:f8:48:a8:40:c3:5f:dd:2d:36:34:ff:ba:b7:c2:d2:cd:02: 7f:bb:3b:06:93:71:be:98:ed:11:4f:03:6a:91:fa:d2:39:21: ef:fa:96:a8:2b:b1:e8:6e:73:42:b1:16:b8:63:c2:25:1b:dc: 48:20:69:c8:b9:80:b8:f5:8f:f0:91:4a:a3:01:56:ca:47:18: 51:d5:22:90:1f:ec:cc:0c:00:78:1f:12:bc:e3:be:89:76:d7: 5e:11:2f:a4:15:42:db:80:90:00:fa:46:24:97:4d:06:92:cd: bb:60:46:e0:60:57:69:f9:ac:d4:0c:15:b0:a3:e0:85:b2:e7: 00:f2:a5:46:b8:1f:9a:69:60:08:65:f5:42:a5:d2:f8:6f:44: c1:de:ed:c2:7a:d3:b2:12:60:99:ac:f0:35:83:6a:86:5e:6d: fd:56:70:f2 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDNgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMERG OTRBQjA3MjhDN0EzOEM1MEYwRDYxNTU0RDQ5RDY1MUYzM0FBMjAeFw0yNTAyMTAx NDAyNTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU5Mzg5NTIwRTAyMTQw MTY5RkY0NzJDOTBEOUUyODc3NTkyOTIwNUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCekVhWVDHlJ5x6xz4q015DjwS9vCix8FRH0PZXZUPEdVdIEJub uwf3fAoZuBJUm4+x0L0FJ2+tTOjM2wSufu2IVYBk0TECAuy90kmSzsBl3sCG6dB7 p+vs34TP97KW0OeJ3f2zhhKMBG4y2urN52K3CTEa4silLd1FoBpBfo0fqTnet1Cy O3MJRsWb+P3/i9luuNej6MfVJ8K/aw2n7a/u5DM+Zl6MBR7yerUA/WQUyCa7y0zl X1yn2gM9+nep2/q/6ScNgdW0XSJOJcNWSDOJDxfjVXQnfywZut82jIbFMKLYs6e/ VphtXuHOfntP8T4fG2GScEjZ6wFECw5+ZJqXAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUWTiVIOAhQBaf9HLJDZ4od1kpIF0wHwYDVR0jBBgwFoAUDflKsHKMejjFDw1h VU1J1lHzOqIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEVHQVRS T04vRGZsS3NIS01lampGRHcxaFZVMUoxbEh6T3FJLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9EZmxLc0hLTWVqakZEdzFoVlUxSjFsSHpPcUkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QRUdBVFJPTi9XVGlWSU9BaFFCYWY5 SExKRFo0b2Qxa3BJRjAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAK/s8MA0GCSqGSIb3DQEBCwUAA4IBAQB/vXRsvncWTkUN8LXmLOY6z7brID4U 99QezM18M/wJKYO6k+JXAI2SKlFP0c0eW73tTE2L/kyIzzgD2FWDHojq3rceoKLt 1yD4srvnm455iJldE1kSP9DEc/XJ+EioQMNf3S02NP+6t8LSzQJ/uzsGk3G+mO0R TwNqkfrSOSHv+paoK7HobnNCsRa4Y8IlG9xIIGnIuYC49Y/wkUqjAVbKRxhR1SKQ H+zMDAB4HxK8476JdtdeES+kFULbgJAA+kYkl00Gks27YEbgYFdp+azUDBWwo+CF sucA8qVGuB+aaWAIZfVCpdL4b0TB3u3CetOyEmCZrPA1g2qGXm39VnDy -----END CERTIFICATE-----Generated at Fri Apr 18 23:41:29 2025 by rpki-client