$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/N4zTMLr_TdZu5ErHrChE76sUc5E.roa File: N4zTMLr_TdZu5ErHrChE76sUc5E.roa (raw, json) Hash identifier: 01gsXsqHIpNaP0Xi8ecTMIElifmFbVuPD4B4RSJYtbk= Subject key identifier: 37:8C:D3:30:BA:FF:4D:D6:6E:E4:4A:C7:AC:28:44:EF:AB:14:73:91 Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0D5A Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/N4zTMLr_TdZu5ErHrChE76sUc5E.roa Signing time: Mon 10 Feb 2025 14:13:14 +0000 ROA not before: Mon 10 Feb 2025 14:13:14 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 123.0.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 07:36:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3418 (0xd5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Feb 10 14:13:14 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=378CD330BAFF4DD66EE44AC7AC2844EFAB147391 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:99:57:d7:aa:e4:49:ac:d6:86:52:7f:a6:c0: e5:a5:d4:66:80:89:6a:ce:e9:f2:fe:ef:2a:0c:d5: f4:3f:8d:4b:82:dd:55:fa:cb:78:dc:05:7d:c4:7e: 95:9f:0f:cc:14:ec:14:ed:06:27:30:63:9e:34:76: 77:f6:10:18:d0:74:fc:95:66:a0:05:25:3a:8a:b8: 7d:d7:0a:5f:5c:d1:c9:48:f0:52:43:4f:3e:73:13: 33:51:0d:19:ae:5c:86:29:5a:98:98:b9:d3:f3:78: 2e:90:fc:c6:c3:6e:3b:d1:97:41:3d:17:c7:b5:46: e2:f6:1b:96:6c:d1:bf:10:d0:0b:a0:0d:31:55:67: e3:69:b6:36:f6:9d:c2:88:96:a4:2d:c4:0c:bb:51: cc:3f:aa:d6:b8:8c:8f:09:d1:f5:94:a9:ff:b7:3a: b8:02:eb:51:6c:91:59:4f:4f:de:1b:64:d2:7c:13: 98:90:3c:94:c3:bf:b8:21:63:e8:a5:3c:b2:65:49: 8d:65:3c:b3:2f:4a:e3:2d:76:61:ee:c4:5d:5a:68: 61:19:44:0b:b0:cd:29:9c:ff:5d:82:d8:e1:4a:cf: 75:67:b1:3e:6d:89:15:87:a7:29:48:4d:11:ed:60: 7a:13:5a:b1:bc:e1:31:55:95:40:9b:b9:ac:73:14: 1a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:8C:D3:30:BA:FF:4D:D6:6E:E4:4A:C7:AC:28:44:EF:AB:14:73:91 X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/N4zTMLr_TdZu5ErHrChE76sUc5E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.0.192.0/18 Signature Algorithm: sha256WithRSAEncryption 65:11:1e:48:7b:2f:b7:99:d1:d3:b0:e3:e0:ef:21:eb:ff:10: f7:60:5f:62:b4:cd:52:12:3c:ae:76:f5:87:8d:ab:fc:97:c6: 55:49:0e:02:97:b0:cf:7f:c4:e3:81:5c:68:d7:58:61:3c:73: 63:6e:3a:de:6f:94:c7:19:01:ef:26:2f:a3:83:e3:b2:00:d5: de:d4:47:91:7b:67:8e:4e:6b:be:3e:52:e4:4e:e4:a4:0b:6e: c5:6d:f8:2e:bb:94:67:09:b0:de:ed:a8:84:6c:94:ee:75:38: 97:b3:17:99:22:31:ab:a1:c8:ec:28:04:d4:96:23:57:85:19: 80:55:1a:13:7d:67:50:7e:2a:f4:3a:9a:ce:92:4b:f7:35:cc: 44:38:e9:b9:43:e4:ba:68:1c:6f:6d:8c:eb:68:6b:4f:57:ff: c5:50:a9:61:7a:c0:94:b1:20:13:79:e4:dd:8b:5f:1f:78:c1: 79:af:d2:32:fc:38:29:b7:b6:06:af:87:e1:2c:12:6a:14:68: bd:df:e4:f3:0c:46:e6:b4:11:d0:bc:7a:c1:d5:72:80:27:c8: a0:2a:60:47:15:79:68:94:c5:4d:fb:67:c4:8c:03:ef:08:0e: 7d:99:a4:11:98:00:64:09:99:82:b5:be:c5:f7:3a:3b:36:95: 5a:23:d8:b8 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDVowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNTAyMTAx NDEzMTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM3OENEMzMwQkFGRjRE RDY2RUU0NEFDN0FDMjg0NEVGQUIxNDczOTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCUmVfXquRJrNaGUn+mwOWl1GaAiWrO6fL+7yoM1fQ/jUuC3VX6 y3jcBX3EfpWfD8wU7BTtBicwY540dnf2EBjQdPyVZqAFJTqKuH3XCl9c0clI8FJD Tz5zEzNRDRmuXIYpWpiYudPzeC6Q/MbDbjvRl0E9F8e1RuL2G5Zs0b8Q0AugDTFV Z+Nptjb2ncKIlqQtxAy7Ucw/qta4jI8J0fWUqf+3OrgC61FskVlPT94bZNJ8E5iQ PJTDv7ghY+ilPLJlSY1lPLMvSuMtdmHuxF1aaGEZRAuwzSmc/12C2OFKz3VnsT5t iRWHpylITRHtYHoTWrG84TFVlUCbuaxzFBopAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUN4zTMLr/TdZu5ErHrChE76sUc5EwHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9ONHpUTUxyX1RkWnU1RXJIckNo RTc2c1VjNUUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGewDA MA0GCSqGSIb3DQEBCwUAA4IBAQBlER5Iey+3mdHTsOPg7yHr/xD3YF9itM1SEjyu dvWHjav8l8ZVSQ4Cl7DPf8TjgVxo11hhPHNjbjreb5THGQHvJi+jg+OyANXe1EeR e2eOTmu+PlLkTuSkC27Fbfguu5RnCbDe7aiEbJTudTiXsxeZIjGrocjsKATUliNX hRmAVRoTfWdQfir0OprOkkv3NcxEOOm5Q+S6aBxvbYzraGtPV//FUKlhesCUsSAT eeTdi18feMF5r9Iy/Dgpt7YGr4fhLBJqFGi93+TzDEbmtBHQvHrB1XKAJ8igKmBH FXlolMVN+2fEjAPvCA59maQRmABkCZmCtb7F9zo7NpVaI9i4 -----END CERTIFICATE-----Generated at Tue Apr 8 07:31:22 2025 by rpki-client