$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/XsJ0qIf386p-ntEcBzAbyjl0vuE.roa File: XsJ0qIf386p-ntEcBzAbyjl0vuE.roa (raw, json) Hash identifier: wnhayTVHwyNH7eJrY/lkbbpgLDyHL0iaeOYkwuARY28= Subject key identifier: 5E:C2:74:A8:87:F7:F3:AA:7E:9E:D1:1C:07:30:1B:CA:39:74:BE:E1 Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0D0F Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/XsJ0qIf386p-ntEcBzAbyjl0vuE.roa Signing time: Mon 10 Feb 2025 14:02:29 +0000 ROA not before: Mon 10 Feb 2025 14:02:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18182 IP address blocks: 61.64.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 06:18:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3343 (0xd0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Feb 10 14:02:29 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5EC274A887F7F3AA7E9ED11C07301BCA3974BEE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:04:56:da:a2:32:97:6d:e6:c1:36:88:8e:cc: 58:84:c9:3c:74:8f:0d:00:a4:46:45:d1:41:d4:4a: ea:29:d9:2d:1d:9a:94:96:54:19:48:56:8e:6d:1d: 94:f8:8b:23:15:df:7b:d6:54:7b:36:ca:70:46:f2: 64:67:34:26:ca:06:d7:9f:54:36:aa:d9:f1:eb:bb: fe:c7:18:3a:01:ea:ea:33:99:4e:5b:28:7d:cf:5b: 37:aa:b3:41:7a:cf:37:d6:68:2c:e3:af:c8:a4:11: 2d:23:b5:38:42:04:80:a8:13:0e:c9:f8:56:58:41: 85:2b:dc:5b:ea:17:ef:83:20:55:14:a6:9f:64:62: 65:6b:37:89:41:2a:36:d1:46:33:a6:e4:6a:4e:62: 73:84:d8:5b:a7:e8:4f:3c:87:a4:fc:98:53:f2:7a: c8:bc:9c:97:93:a9:26:a8:f5:8f:2e:28:e7:f5:36: a1:a6:9f:6b:a0:b1:1a:23:f8:4f:92:49:f8:4d:28: 71:d7:02:30:b3:a3:6d:8c:ec:eb:84:94:d6:38:57: a7:ad:c7:08:ea:fa:50:c0:87:a8:58:6d:dd:dd:91: 40:e1:06:fd:05:58:25:a1:ee:f9:78:0a:d7:0e:e4: 46:18:df:4d:d1:3b:db:79:05:f1:8b:04:34:1f:a9: c7:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:C2:74:A8:87:F7:F3:AA:7E:9E:D1:1C:07:30:1B:CA:39:74:BE:E1 X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/XsJ0qIf386p-ntEcBzAbyjl0vuE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.64.64.0/18 Signature Algorithm: sha256WithRSAEncryption 1e:8a:f1:6c:33:6f:f0:70:95:ce:f1:5b:10:fc:7e:03:f2:4f: a5:6e:33:9b:18:cf:79:b5:a4:4e:69:b8:44:d3:a1:97:69:db: 48:c2:45:b0:77:c4:54:a4:eb:56:48:cf:94:3e:93:a8:9e:c5: e8:9c:e3:34:11:bd:9a:81:92:07:48:28:de:3d:35:ab:09:d9: 58:65:bd:36:35:15:5b:ab:0e:9d:5a:4d:0b:a3:14:d4:be:9a: 22:93:14:40:28:f4:83:01:d7:f0:7f:cd:6c:d7:26:83:b9:8e: 2f:c5:e7:0c:db:54:61:87:db:df:8c:92:2b:c5:ed:73:12:ac: b8:d6:b8:c1:86:fc:4d:4f:86:4b:53:09:06:0b:ef:f4:80:e9: 79:b9:07:52:56:cf:e2:9e:d0:05:e2:01:de:05:72:23:62:4c: 28:7d:14:d3:8b:07:9f:e3:53:7c:28:6b:05:81:e9:6f:9b:1f: 20:dc:8c:88:64:de:a3:b5:e4:d4:57:e7:81:74:1c:e1:bb:fe: 03:27:5d:e7:4f:51:33:d9:3c:93:7c:9c:e2:0c:c8:20:23:23: 84:58:29:36:b2:81:15:42:86:ca:28:be:d5:ea:54:49:d3:cb: ce:1c:1e:24:b0:73:5f:91:10:a1:2c:5f:1a:83:b0:bd:fc:2c: 9b:3c:e1:16 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDQ8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yNTAyMTAx NDAyMjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVFQzI3NEE4ODdGN0Yz QUE3RTlFRDExQzA3MzAxQkNBMzk3NEJFRTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdBFbaojKXbebBNoiOzFiEyTx0jw0ApEZF0UHUSuop2S0dmpSW VBlIVo5tHZT4iyMV33vWVHs2ynBG8mRnNCbKBtefVDaq2fHru/7HGDoB6uozmU5b KH3PWzeqs0F6zzfWaCzjr8ikES0jtThCBICoEw7J+FZYQYUr3FvqF++DIFUUpp9k YmVrN4lBKjbRRjOm5GpOYnOE2Fun6E88h6T8mFPyesi8nJeTqSao9Y8uKOf1NqGm n2ugsRoj+E+SSfhNKHHXAjCzo22M7OuElNY4V6etxwjq+lDAh6hYbd3dkUDhBv0F WCWh7vl4CtcO5EYY303RO9t5BfGLBDQfqcd5AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUXsJ0qIf386p+ntEcBzAbyjl0vuEwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9Yc0owcUlmMzg2cC1udEVjQnpB YnlqbDB2dUUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGPUBA MA0GCSqGSIb3DQEBCwUAA4IBAQAeivFsM2/wcJXO8VsQ/H4D8k+lbjObGM95taRO abhE06GXadtIwkWwd8RUpOtWSM+UPpOonsXonOM0Eb2agZIHSCjePTWrCdlYZb02 NRVbqw6dWk0LoxTUvpoikxRAKPSDAdfwf81s1yaDuY4vxecM21Rhh9vfjJIrxe1z Eqy41rjBhvxNT4ZLUwkGC+/0gOl5uQdSVs/intAF4gHeBXIjYkwofRTTiwef41N8 KGsFgelvmx8g3IyIZN6jteTUV+eBdBzhu/4DJ13nT1Ez2TyTfJziDMggIyOEWCk2 soEVQobKKL7V6lRJ08vOHB4ksHNfkRChLF8ag7C9/CybPOEW -----END CERTIFICATE-----Generated at Wed Apr 23 04:36:50 2025 by rpki-client