$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/S0k8PtJ9J6XkLIUF45vLx6-bMmo.roa File: S0k8PtJ9J6XkLIUF45vLx6-bMmo.roa (raw, json) Hash identifier: 8IReq7H2i46QG+ucAJHY+ioiy/kieOw1z868CXHP6/Q= Subject key identifier: 4B:49:3C:3E:D2:7D:27:A5:E4:2C:85:05:E3:9B:CB:C7:AF:9B:32:6A Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0D11 Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/S0k8PtJ9J6XkLIUF45vLx6-bMmo.roa Signing time: Mon 10 Feb 2025 14:02:29 +0000 ROA not before: Mon 10 Feb 2025 14:02:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18182 IP address blocks: 39.1.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 06:18:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3345 (0xd11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Feb 10 14:02:29 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4B493C3ED27D27A5E42C8505E39BCBC7AF9B326A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:48:3d:0d:3d:2a:e8:23:87:94:a4:8b:9a:ea: 22:8d:c4:e0:8e:3a:8e:cc:47:97:69:59:5d:4a:e5: aa:e7:ad:f2:2c:ef:95:99:d0:8f:62:eb:c4:32:6c: 85:60:ad:fb:8e:bb:f9:00:11:8f:a6:0d:c6:25:43: 15:14:11:6e:55:32:3a:1b:f8:f7:ee:d1:9d:12:39: fe:f5:0d:df:0f:25:39:d0:fc:7d:74:3c:8b:a2:67: 1d:77:10:4b:b2:a3:6d:cb:51:b5:00:87:6d:92:19: 82:84:01:72:aa:d8:18:ce:22:e4:ec:38:99:e6:c9: 0e:46:02:c9:76:4c:d6:96:03:a7:49:6e:3d:00:42: 62:1f:63:cb:e7:3d:0e:d2:34:f3:25:94:01:23:ed: 8a:13:22:10:b9:35:fa:04:96:b3:d2:35:a5:35:11: 85:cf:89:54:b4:2a:28:80:de:7a:b4:8f:cb:a5:e3: 82:10:43:ea:6a:83:0a:1e:9f:36:e1:05:5d:31:e6: 03:cb:98:8e:94:31:e4:0c:07:c6:3b:ab:19:47:1c: 89:da:34:ab:d7:4a:8e:47:90:65:d9:de:68:62:40: 27:4c:5f:cd:ad:dd:a5:dc:9c:dc:b7:f4:2c:5f:53: 97:5b:7b:82:7f:58:5f:ba:83:31:08:8d:e1:be:bb: e0:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:49:3C:3E:D2:7D:27:A5:E4:2C:85:05:E3:9B:CB:C7:AF:9B:32:6A X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/S0k8PtJ9J6XkLIUF45vLx6-bMmo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 39.1.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9d:32:b0:a9:04:76:cc:29:3f:43:0f:92:5c:6a:28:85:94:fd: 2d:63:68:05:e7:75:8a:79:52:14:26:f0:4e:50:58:9d:7f:93: 91:43:0e:59:cc:f8:a6:24:9d:04:29:99:49:f0:6c:c0:70:95: d1:4a:b9:fc:3a:dc:17:13:93:2f:68:5a:5e:84:ea:6d:6a:9b: 2f:1e:01:ad:72:b9:fe:9a:1a:91:72:e0:f6:fa:b0:ae:93:00: 25:bc:4a:24:89:5c:ec:45:8b:04:99:38:38:3f:73:17:83:62: 7d:7d:1e:fa:a2:41:2d:6e:87:de:5f:57:5a:20:9f:d4:4b:70: 67:53:c4:ba:42:86:dd:fd:8a:f8:76:01:58:89:08:b5:2f:c7: d3:64:d6:d8:d3:3f:fc:cf:fc:06:5d:c6:da:01:83:29:5f:7b: b1:19:2f:ef:17:b8:a9:da:b2:34:98:2b:e8:e9:b5:68:d6:6c: db:5f:41:6e:bc:df:48:6e:de:05:d8:07:be:9a:82:b8:c1:bb: 9a:35:a0:ba:8f:76:a1:be:67:8b:cc:c8:98:07:73:0a:52:98: 6c:5d:d0:05:97:93:9d:27:8c:99:32:48:45:7b:45:e1:dd:c9: c1:3c:1a:d2:6d:c7:e1:80:6c:7e:9d:27:d6:cb:4d:4e:92:c8: c4:b5:c8:7e -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDREwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yNTAyMTAx NDAyMjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRCNDkzQzNFRDI3RDI3 QTVFNDJDODUwNUUzOUJDQkM3QUY5QjMyNkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDoSD0NPSroI4eUpIua6iKNxOCOOo7MR5dpWV1K5arnrfIs75WZ 0I9i68QybIVgrfuOu/kAEY+mDcYlQxUUEW5VMjob+Pfu0Z0SOf71Dd8PJTnQ/H10 PIuiZx13EEuyo23LUbUAh22SGYKEAXKq2BjOIuTsOJnmyQ5GAsl2TNaWA6dJbj0A QmIfY8vnPQ7SNPMllAEj7YoTIhC5NfoElrPSNaU1EYXPiVS0KiiA3nq0j8ul44IQ Q+pqgwoenzbhBV0x5gPLmI6UMeQMB8Y7qxlHHInaNKvXSo5HkGXZ3mhiQCdMX82t 3aXcnNy39CxfU5dbe4J/WF+6gzEIjeG+u+DFAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUS0k8PtJ9J6XkLIUF45vLx6+bMmowHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9TMGs4UHRKOUo2WGtMSVVGNDV2 THg2LWJNbW8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAJwEw DQYJKoZIhvcNAQELBQADggEBAJ0ysKkEdswpP0MPklxqKIWU/S1jaAXndYp5UhQm 8E5QWJ1/k5FDDlnM+KYknQQpmUnwbMBwldFKufw63BcTky9oWl6E6m1qmy8eAa1y uf6aGpFy4Pb6sK6TACW8SiSJXOxFiwSZODg/cxeDYn19HvqiQS1uh95fV1ogn9RL cGdTxLpCht39ivh2AViJCLUvx9Nk1tjTP/zP/AZdxtoBgylfe7EZL+8XuKnasjSY K+jptWjWbNtfQW6830hu3gXYB76agrjBu5o1oLqPdqG+Z4vMyJgHcwpSmGxd0AWX k50njJkySEV7ReHdycE8GtJtx+GAbH6dJ9bLTU6SyMS1yH4= -----END CERTIFICATE-----Generated at Wed Apr 23 04:53:51 2025 by rpki-client