$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/8BknVL_JZq9EMf0SPwoNjMwXPc4.roa File: 8BknVL_JZq9EMf0SPwoNjMwXPc4.roa (raw, json) Hash identifier: NAHVsiphkdN3glcsiwhrQ+mW3MMwmiXrrDapeqWRE8g= Subject key identifier: F0:19:27:54:BF:C9:66:AF:44:31:FD:12:3F:0A:0D:8C:CC:17:3D:CE Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0D5B Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/8BknVL_JZq9EMf0SPwoNjMwXPc4.roa Signing time: Mon 10 Feb 2025 14:13:14 +0000 ROA not before: Mon 10 Feb 2025 14:13:14 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131596 IP address blocks: 59.102.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 22:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3419 (0xd5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Feb 10 14:13:14 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F0192754BFC966AF4431FD123F0A0D8CCC173DCE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:40:db:9a:36:1b:6c:f7:e3:ee:25:02:55:4a: a6:17:5b:28:72:f6:39:c7:af:35:d3:8d:c1:f9:47: 22:15:27:0b:6f:93:b5:21:bc:0e:b7:64:10:4d:35: ef:de:d8:2d:79:20:c8:f7:38:12:82:08:ca:b6:77: 2a:27:45:11:16:06:cf:d3:96:f9:d5:58:bf:71:11: 8e:cd:2a:47:8e:79:6f:2b:dc:ec:0e:15:65:6f:91: c8:ff:67:a4:64:4e:3b:bf:2e:2a:12:38:5c:c5:51: 80:8f:af:6e:e7:75:88:bb:84:bb:bc:7c:b7:bd:e7: 9f:c6:e5:59:94:93:5e:2c:91:bb:11:e4:7f:8a:1b: 64:40:4d:7b:4a:92:6a:39:7a:b2:cb:44:34:f7:dd: ad:e6:ab:bf:53:b8:2c:a3:cd:5c:3b:ba:bc:40:d2: 89:12:f9:76:3b:20:b1:c7:bb:08:af:27:12:a6:30: 62:83:9d:c5:08:bf:87:ab:b0:cf:20:11:c4:bb:75: 3e:4d:b6:42:ff:e0:44:65:bb:6b:ab:28:71:47:92: 38:ef:b8:23:11:de:cf:2d:e3:6a:45:3d:ea:4a:f8: 75:b8:96:8b:ea:fb:5e:55:3f:de:83:32:31:93:15: f0:94:ca:33:ef:5b:f5:14:d4:4f:bf:58:80:44:54: 0a:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:19:27:54:BF:C9:66:AF:44:31:FD:12:3F:0A:0D:8C:CC:17:3D:CE X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/8BknVL_JZq9EMf0SPwoNjMwXPc4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 59.102.128.0/17 Signature Algorithm: sha256WithRSAEncryption a6:6e:a6:b8:e4:05:d9:2c:82:8f:96:90:e6:ee:b2:84:fd:4c: b7:61:96:03:9b:09:31:9c:0e:78:4a:9c:cc:0b:2e:b3:74:11: c2:13:2c:b0:00:1d:41:51:82:cc:fa:8e:b8:6d:6f:5c:0c:e4: f5:42:dc:bb:bc:a6:74:80:50:30:3c:06:31:5b:8a:a2:0e:6f: b2:3f:ed:e1:be:06:3d:0e:ad:ed:14:2d:ec:69:1a:23:7c:1b: 27:6c:88:b0:02:bc:e7:04:34:4a:54:9d:ea:68:07:11:61:79: 81:a0:7a:56:ed:78:3e:39:5f:d0:d0:18:16:81:02:87:fe:ba: 95:05:9d:6f:89:1b:3f:fb:cc:54:f3:a4:df:14:e5:dd:a8:1a: 78:93:77:79:3e:32:f8:29:a6:01:b4:18:de:62:70:bf:52:72: de:53:9d:68:22:a9:ee:66:8f:86:af:04:4d:ff:a4:2d:b4:de: 27:5d:3b:1e:b6:7d:37:fe:c7:a7:fc:44:36:c6:96:55:f1:d6: f8:63:d0:70:d5:6a:01:1e:06:1a:54:4d:a1:fc:77:f2:35:54: 3f:41:59:60:8a:c9:1c:bc:c5:55:cd:02:53:06:3d:cb:e7:e5: b0:77:a8:d2:a5:9b:9b:a4:c4:8a:a1:9a:ef:ca:90:05:10:b0: cc:42:1a:4c -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDVswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNTAyMTAx NDEzMTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYwMTkyNzU0QkZDOTY2 QUY0NDMxRkQxMjNGMEEwRDhDQ0MxNzNEQ0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCcQNuaNhts9+PuJQJVSqYXWyhy9jnHrzXTjcH5RyIVJwtvk7Uh vA63ZBBNNe/e2C15IMj3OBKCCMq2dyonRREWBs/TlvnVWL9xEY7NKkeOeW8r3OwO FWVvkcj/Z6RkTju/LioSOFzFUYCPr27ndYi7hLu8fLe955/G5VmUk14skbsR5H+K G2RATXtKkmo5erLLRDT33a3mq79TuCyjzVw7urxA0okS+XY7ILHHuwivJxKmMGKD ncUIv4ersM8gEcS7dT5NtkL/4ERlu2urKHFHkjjvuCMR3s8t42pFPepK+HW4lovq +15VP96DMjGTFfCUyjPvW/UU1E+/WIBEVAqRAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU8BknVL/JZq9EMf0SPwoNjMwXPc4wHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS84QmtuVkxfSlpxOUVNZjBTUHdv TmpNd1hQYzQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHO2aA MA0GCSqGSIb3DQEBCwUAA4IBAQCmbqa45AXZLIKPlpDm7rKE/Uy3YZYDmwkxnA54 SpzMCy6zdBHCEyywAB1BUYLM+o64bW9cDOT1Qty7vKZ0gFAwPAYxW4qiDm+yP+3h vgY9Dq3tFC3saRojfBsnbIiwArznBDRKVJ3qaAcRYXmBoHpW7Xg+OV/Q0BgWgQKH /rqVBZ1viRs/+8xU86TfFOXdqBp4k3d5PjL4KaYBtBjeYnC/UnLeU51oIqnuZo+G rwRN/6QttN4nXTsetn03/sen/EQ2xpZV8db4Y9Bw1WoBHgYaVE2h/HfyNVQ/QVlg iskcvMVVzQJTBj3L5+Wwd6jSpZubpMSKoZrvypAFELDMQhpM -----END CERTIFICATE-----Generated at Fri Apr 18 22:34:38 2025 by rpki-client