$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/d6rqB04pvgQKQ1p7M9KvFzoaEls.roa File: d6rqB04pvgQKQ1p7M9KvFzoaEls.roa (raw, json) Hash identifier: gu6V8DFd6h3tkuQrB6OagKH5qcm9YmVLJj6ZkfRRmsA= Subject key identifier: 77:AA:EA:07:4E:29:BE:04:0A:43:5A:7B:33:D2:AF:17:3A:1A:12:5B Certificate issuer: /CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2 Certificate serial: 0CDA Authority key identifier: 0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/d6rqB04pvgQKQ1p7M9KvFzoaEls.roa Signing time: Mon 10 Feb 2025 14:02:56 +0000 ROA not before: Mon 10 Feb 2025 14:02:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131593 IP address blocks: 43.251.60.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3290 (0xcda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2 Validity Not Before: Feb 10 14:02:56 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=77AAEA074E29BE040A435A7B33D2AF173A1A125B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:49:69:01:e2:e4:cc:4f:55:a8:3a:a4:f3:b1: a2:0f:62:25:dd:10:de:11:fe:76:e5:31:48:6f:31: 13:7c:1c:2e:85:1e:24:f4:e2:3c:21:3b:ba:c4:19: fb:24:51:2b:c1:f6:14:24:f1:05:48:da:5e:92:1e: b8:70:5d:79:0b:b1:fb:b8:87:09:2a:e0:49:18:15: 63:e4:9c:0f:87:a8:d2:ae:ea:53:42:a4:e3:05:7f: 78:04:16:6a:fb:2f:9c:15:fe:de:dc:f1:6b:72:73: c1:31:82:b5:f1:35:2e:7a:64:b9:53:80:cb:56:57: 49:82:ed:12:c1:82:c1:e9:df:a9:c4:1d:2e:d3:e7: c6:82:cf:0e:2e:35:cb:58:ce:15:83:b7:bb:25:67: fa:92:f9:58:c8:36:fb:d4:da:4e:32:b8:60:21:af: 2c:13:66:5f:10:39:9c:0a:1c:e7:17:44:d4:5a:a2: 2b:ce:e7:9c:d4:43:a8:3f:26:c7:e4:ca:7c:a2:65: 8c:8f:c2:e6:89:18:ca:33:93:ff:ee:0e:c8:6d:33: e6:e9:03:11:f7:f0:cc:d8:49:84:59:20:97:91:87: 48:ce:35:a0:49:a5:6c:eb:b7:e2:e1:2f:02:0f:f2: 68:dc:5a:e5:45:46:70:33:06:82:40:52:76:58:bf: 78:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:AA:EA:07:4E:29:BE:04:0A:43:5A:7B:33:D2:AF:17:3A:1A:12:5B X509v3 Authority Key Identifier: keyid:0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/d6rqB04pvgQKQ1p7M9KvFzoaEls.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.251.60.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:d7:81:9a:f7:55:0b:92:de:81:e0:02:b1:ea:90:00:ea:a2: 00:04:f6:9d:86:b1:07:6d:df:ed:74:e8:8c:8f:b8:bd:86:c4: 9f:bc:23:5d:a4:3a:86:b4:75:08:63:51:53:26:8f:15:7e:81: ee:83:f0:c9:c8:45:c9:34:30:c9:37:5b:e1:06:fb:2e:17:f3: 59:f9:76:8d:fd:73:17:49:d8:9c:bd:7b:78:96:ac:d8:dc:a7: 27:68:69:24:72:32:e2:6d:09:01:da:18:71:60:ad:60:bd:20: e2:2f:1c:bc:12:d5:cf:22:c3:f2:57:56:b9:4a:43:3a:1b:e9: 64:42:01:9e:eb:88:75:0c:d1:00:80:7a:a2:a2:2a:d9:3f:e0: d2:62:86:d1:d6:bc:8b:b5:3f:24:eb:09:70:58:eb:70:56:98: 6c:a9:bf:a0:4d:e4:54:8f:48:a8:d0:a3:81:41:96:36:08:b5: f9:a1:89:94:3c:40:23:c3:08:7f:12:40:22:98:fd:68:9f:f4: 0d:76:2c:12:d5:f0:92:3d:3a:7c:9c:e9:55:81:0c:dd:b5:7c: 85:2a:c0:b4:22:e6:76:11:c9:0a:50:a8:76:aa:49:ae:e6:7a: ce:da:5e:e1:2a:53:69:a8:2c:95:6c:39:79:a5:5f:fb:6a:59: 0f:31:d3:ec -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDNowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMERG OTRBQjA3MjhDN0EzOEM1MEYwRDYxNTU0RDQ5RDY1MUYzM0FBMjAeFw0yNTAyMTAx NDAyNTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc3QUFFQTA3NEUyOUJF MDQwQTQzNUE3QjMzRDJBRjE3M0ExQTEyNUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVSWkB4uTMT1WoOqTzsaIPYiXdEN4R/nblMUhvMRN8HC6FHiT0 4jwhO7rEGfskUSvB9hQk8QVI2l6SHrhwXXkLsfu4hwkq4EkYFWPknA+HqNKu6lNC pOMFf3gEFmr7L5wV/t7c8Wtyc8ExgrXxNS56ZLlTgMtWV0mC7RLBgsHp36nEHS7T 58aCzw4uNctYzhWDt7slZ/qS+VjINvvU2k4yuGAhrywTZl8QOZwKHOcXRNRaoivO 55zUQ6g/JsfkynyiZYyPwuaJGMozk//uDshtM+bpAxH38MzYSYRZIJeRh0jONaBJ pWzrt+LhLwIP8mjcWuVFRnAzBoJAUnZYv3jXAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUd6rqB04pvgQKQ1p7M9KvFzoaElswHwYDVR0jBBgwFoAUDflKsHKMejjFDw1h VU1J1lHzOqIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEVHQVRS T04vRGZsS3NIS01lampGRHcxaFZVMUoxbEh6T3FJLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9EZmxLc0hLTWVqakZEdzFoVlUxSjFsSHpPcUkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QRUdBVFJPTi9kNnJxQjA0cHZnUUtR MXA3TTlLdkZ6b2FFbHMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCK/s8MA0GCSqGSIb3DQEBCwUAA4IBAQA714Ga91ULkt6B4AKx6pAA6qIABPad hrEHbd/tdOiMj7i9hsSfvCNdpDqGtHUIY1FTJo8VfoHug/DJyEXJNDDJN1vhBvsu F/NZ+XaN/XMXSdicvXt4lqzY3KcnaGkkcjLibQkB2hhxYK1gvSDiLxy8EtXPIsPy V1a5SkM6G+lkQgGe64h1DNEAgHqioirZP+DSYobR1ryLtT8k6wlwWOtwVphsqb+g TeRUj0io0KOBQZY2CLX5oYmUPEAjwwh/EkAimP1on/QNdiwS1fCSPTp8nOlVgQzd tXyFKsC0IuZ2EckKUKh2qkmu5nrO2l7hKlNpqCyVbDl5pV/7alkPMdPs -----END CERTIFICATE-----Generated at Fri Apr 18 23:53:42 2025 by rpki-client