$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/Vjdc9nbqWAYl1xJTPGI-odXFcgw.roa File: Vjdc9nbqWAYl1xJTPGI-odXFcgw.roa (raw, json) Hash identifier: w0FzivTeHOkQhju4cV70BF/rtkGwMBmlVyTdVxvFplk= Subject key identifier: 56:37:5C:F6:76:EA:58:06:25:D7:12:53:3C:62:3E:A1:D5:C5:72:0C Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0D0E Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/Vjdc9nbqWAYl1xJTPGI-odXFcgw.roa Signing time: Mon 10 Feb 2025 14:02:29 +0000 ROA not before: Mon 10 Feb 2025 14:02:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18182 IP address blocks: 61.64.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 10:48:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3342 (0xd0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Feb 10 14:02:29 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=56375CF676EA580625D712533C623EA1D5C5720C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:8c:8f:40:d1:d6:aa:9e:f1:87:e8:64:03:66: ac:eb:c9:22:37:cd:4d:64:f4:78:6b:0f:4b:8c:c4: bc:4d:8b:02:b4:5c:87:27:f8:33:6e:62:0c:e0:94: c9:bd:a0:11:dc:ab:8e:57:85:61:0a:90:88:21:ac: 2b:17:35:fd:22:37:1a:a6:1b:cd:e2:05:d3:ea:00: d3:68:38:36:5b:49:04:1c:54:ab:64:31:8e:da:62: d9:23:38:89:6c:93:bd:fb:e6:c9:0e:0d:03:dc:e0: 8f:7c:e2:f3:16:4e:60:0b:c1:2e:f4:59:2d:1f:15: 77:17:48:16:73:74:a9:0d:3c:01:96:3b:7a:2b:95: 00:8b:4f:c0:f5:38:c2:e5:94:6b:88:0e:3f:ec:2a: 91:ed:ca:bf:f6:ba:11:2e:b8:15:ee:68:a5:c8:57: 27:f5:29:c7:81:65:0a:fc:00:74:52:e3:4c:1d:24: 0c:64:ea:ad:36:9a:d4:71:1e:7a:e7:65:8e:65:12: 41:ac:a2:53:2c:21:4a:a9:8d:0b:7d:d2:b7:a0:25: 1d:63:b0:3f:c3:16:3e:24:8a:e4:5b:c5:a4:49:e8: 28:4b:c5:57:3e:a9:e3:a5:aa:b5:20:a5:58:a6:39: 06:9a:74:b4:8b:6e:53:59:de:b6:19:05:44:ea:49: 36:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:37:5C:F6:76:EA:58:06:25:D7:12:53:3C:62:3E:A1:D5:C5:72:0C X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/Vjdc9nbqWAYl1xJTPGI-odXFcgw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.64.128.0/17 Signature Algorithm: sha256WithRSAEncryption 07:87:4e:9f:0b:59:14:53:c8:23:1e:e1:44:c1:15:dc:51:64: 39:95:32:dc:a4:96:9b:4f:ff:2c:d7:ec:74:c1:af:98:3e:e3: 7f:6c:53:a3:29:df:72:95:e4:83:ce:3c:d0:6d:db:97:af:01: b1:8c:4b:69:36:46:08:9a:cd:55:74:e0:73:f8:fb:d3:d0:bc: 27:2f:f3:57:d1:d5:d7:d8:7e:b0:8f:eb:4e:c8:18:c9:59:24: 7e:7c:9a:65:ee:98:d8:30:37:51:79:42:32:c9:f0:08:bd:39: 75:10:a9:db:81:02:d7:76:e5:66:9a:aa:6b:6b:37:da:29:2d: a8:5a:b5:30:cd:f3:02:bc:b7:b5:98:da:9c:49:5b:a9:84:8e: c9:79:ea:aa:bc:36:46:f9:20:fe:20:cb:57:30:b7:e2:7a:e2: 91:e4:59:e7:72:ee:99:92:75:7d:06:dd:d2:0d:37:2e:a4:7a: 42:13:3a:8c:97:3c:c1:1a:88:2c:da:43:4d:45:e4:ae:3c:97: 83:65:21:73:29:1b:a7:92:28:27:0f:c0:e3:92:08:76:5c:34: 70:20:7a:61:dd:cf:a0:fa:8f:14:14:5d:73:2e:16:75:56:4f: ba:f0:6f:68:74:cb:7f:3c:28:33:05:6b:1c:3a:7e:af:ff:e6: c3:93:07:76 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDQ4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yNTAyMTAx NDAyMjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU2Mzc1Q0Y2NzZFQTU4 MDYyNUQ3MTI1MzNDNjIzRUExRDVDNTcyMEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKjI9A0daqnvGH6GQDZqzrySI3zU1k9HhrD0uMxLxNiwK0XIcn +DNuYgzglMm9oBHcq45XhWEKkIghrCsXNf0iNxqmG83iBdPqANNoODZbSQQcVKtk MY7aYtkjOIlsk7375skODQPc4I984vMWTmALwS70WS0fFXcXSBZzdKkNPAGWO3or lQCLT8D1OMLllGuIDj/sKpHtyr/2uhEuuBXuaKXIVyf1KceBZQr8AHRS40wdJAxk 6q02mtRxHnrnZY5lEkGsolMsIUqpjQt90regJR1jsD/DFj4kiuRbxaRJ6ChLxVc+ qeOlqrUgpVimOQaadLSLblNZ3rYZBUTqSTY5AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUVjdc9nbqWAYl1xJTPGI+odXFcgwwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9WamRjOW5icVdBWWwxeEpUUEdJ LW9kWEZjZ3cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHPUCA MA0GCSqGSIb3DQEBCwUAA4IBAQAHh06fC1kUU8gjHuFEwRXcUWQ5lTLcpJabT/8s 1+x0wa+YPuN/bFOjKd9yleSDzjzQbduXrwGxjEtpNkYIms1VdOBz+PvT0LwnL/NX 0dXX2H6wj+tOyBjJWSR+fJpl7pjYMDdReUIyyfAIvTl1EKnbgQLXduVmmqprazfa KS2oWrUwzfMCvLe1mNqcSVuphI7JeeqqvDZG+SD+IMtXMLfieuKR5Fnncu6ZknV9 Bt3SDTcupHpCEzqMlzzBGogs2kNNReSuPJeDZSFzKRunkignD8Djkgh2XDRwIHph 3c+g+o8UFF1zLhZ1Vk+68G9odMt/PCgzBWscOn6v/+bDkwd2 -----END CERTIFICATE-----Generated at Wed Apr 23 08:41:40 2025 by rpki-client