$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/H7qYF6C8jVnB7SaqOAbuJSK_E6k.roa File: H7qYF6C8jVnB7SaqOAbuJSK_E6k.roa (raw, json) Hash identifier: jxynmVc0Q2m6rTeAA3MnMkMSqev4FeT2BHYyAOXsPR4= Subject key identifier: 1F:BA:98:17:A0:BC:8D:59:C1:ED:26:AA:38:06:EE:25:22:BF:13:A9 Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0D0D Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/H7qYF6C8jVnB7SaqOAbuJSK_E6k.roa Signing time: Mon 10 Feb 2025 14:02:28 +0000 ROA not before: Mon 10 Feb 2025 14:02:28 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18182 IP address blocks: 61.56.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 01:48:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3341 (0xd0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Feb 10 14:02:28 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1FBA9817A0BC8D59C1ED26AA3806EE2522BF13A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:73:86:08:45:6d:3f:2e:3c:ad:2e:a1:c3:6c: 08:07:b0:d0:d2:07:8b:03:12:9f:1e:2e:cd:f3:b3: da:d6:54:4b:73:3e:ee:f5:3c:74:a7:ff:f7:ae:8c: c0:b6:be:a6:08:8d:16:ce:c0:6f:89:56:3d:3d:e3: 33:cb:f9:d1:b8:30:69:73:7e:d4:3e:d9:eb:11:36: 2c:f7:2a:2d:07:85:17:2c:b8:89:3c:a6:a5:df:65: d4:9e:1f:e4:a5:ec:a8:e1:d6:27:60:5c:d8:96:38: 49:05:28:02:ba:1b:1d:61:65:ee:9a:26:d3:69:1f: 49:6e:cf:75:10:c9:8f:27:8b:05:02:24:31:f3:1c: 76:67:5f:0e:c6:8e:37:9c:7a:c6:dc:16:18:37:00: 42:81:73:d0:64:a8:46:ec:d3:f9:ea:1f:7b:a5:07: fe:f9:d1:d2:27:94:4f:52:7f:3f:40:95:f1:65:8f: ea:53:9e:ac:10:ec:d3:e0:47:78:cd:34:28:5a:00: 22:b1:32:3b:21:3b:55:12:33:5b:11:78:40:a3:48: d1:c8:9e:d4:6e:70:39:0f:d8:42:33:c8:ce:44:06: c3:28:af:90:55:8a:21:2d:72:c4:69:43:c9:64:de: 7e:61:ee:0d:de:20:08:44:12:43:06:46:e7:81:c5: fa:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:BA:98:17:A0:BC:8D:59:C1:ED:26:AA:38:06:EE:25:22:BF:13:A9 X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/H7qYF6C8jVnB7SaqOAbuJSK_E6k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.128.0/19 Signature Algorithm: sha256WithRSAEncryption 0d:da:9e:f0:11:86:5c:1c:32:49:15:ba:ac:55:ba:05:20:5b: a5:c9:3a:9e:6b:50:d3:a0:ec:66:bf:16:12:5e:0f:fc:f9:18: 26:3d:32:c1:8b:d4:06:d5:fd:fd:05:9d:bc:d0:0e:34:25:ea: 14:64:3a:ff:9d:f1:85:53:a9:7f:6c:9a:85:51:e6:70:5c:b1: d0:9d:49:39:52:e0:4e:e5:04:42:b3:a4:20:7b:b5:e5:c0:55: 1f:7a:c8:e2:37:c6:86:d3:12:84:45:2e:33:13:a8:82:33:09: 0a:66:bb:3d:e0:76:5c:c3:49:bd:0c:d5:7e:b7:83:06:a5:24: c9:fe:bd:95:62:66:53:d7:56:1c:b7:ac:b4:ac:cd:77:e6:ee: f1:98:fb:ee:5f:3a:8e:32:88:79:8a:08:47:e9:75:f6:14:00: 90:87:4d:dc:5c:83:c9:e8:a9:af:96:cc:da:12:cb:33:49:86: 35:8a:4f:0a:e5:56:9e:07:91:f9:55:b2:2a:1c:57:e0:b7:cc: 02:9b:85:47:63:46:df:d2:35:b1:58:e5:3f:d9:64:bf:71:2f: 72:ec:a0:31:5b:f6:cd:84:ef:1e:19:14:65:ab:df:f7:cd:7c: 84:a0:c8:31:b6:52:76:71:73:e6:54:f6:43:dc:c3:65:d2:4c: f3:ec:76:be -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDQ0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yNTAyMTAx NDAyMjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFGQkE5ODE3QTBCQzhE NTlDMUVEMjZBQTM4MDZFRTI1MjJCRjEzQTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRc4YIRW0/LjytLqHDbAgHsNDSB4sDEp8eLs3zs9rWVEtzPu71 PHSn//eujMC2vqYIjRbOwG+JVj094zPL+dG4MGlzftQ+2esRNiz3Ki0HhRcsuIk8 pqXfZdSeH+Sl7Kjh1idgXNiWOEkFKAK6Gx1hZe6aJtNpH0luz3UQyY8niwUCJDHz HHZnXw7GjjecesbcFhg3AEKBc9BkqEbs0/nqH3ulB/750dInlE9Sfz9AlfFlj+pT nqwQ7NPgR3jNNChaACKxMjshO1USM1sReECjSNHIntRucDkP2EIzyM5EBsMor5BV iiEtcsRpQ8lk3n5h7g3eIAhEEkMGRueBxfpFAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUH7qYF6C8jVnB7SaqOAbuJSK/E6kwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9IN3FZRjZDOGpWbkI3U2FxT0Fi dUpTS19FNmsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFPTiA MA0GCSqGSIb3DQEBCwUAA4IBAQAN2p7wEYZcHDJJFbqsVboFIFulyTqea1DToOxm vxYSXg/8+RgmPTLBi9QG1f39BZ280A40JeoUZDr/nfGFU6l/bJqFUeZwXLHQnUk5 UuBO5QRCs6Qge7XlwFUfesjiN8aG0xKERS4zE6iCMwkKZrs94HZcw0m9DNV+t4MG pSTJ/r2VYmZT11Yct6y0rM135u7xmPvuXzqOMoh5ighH6XX2FACQh03cXIPJ6Kmv lszaEsszSYY1ik8K5VaeB5H5VbIqHFfgt8wCm4VHY0bf0jWxWOU/2WS/cS9y7KAx W/bNhO8eGRRlq9/3zXyEoMgxtlJ2cXPmVPZD3MNl0kzz7Ha+ -----END CERTIFICATE-----Generated at Wed Apr 23 00:33:21 2025 by rpki-client