$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/sIB1YfG9KJwlSa7L_HKqR1uKapg.roa File: sIB1YfG9KJwlSa7L_HKqR1uKapg.roa (raw, json) Hash identifier: j2w2tl9RXyWKvCyO0ipDhK9OPLKNEPRR6gP+rOlQ8Fc= Subject key identifier: B0:80:75:61:F1:BD:28:9C:25:49:AE:CB:FC:72:AA:47:5B:8A:6A:98 Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0D55 Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/sIB1YfG9KJwlSa7L_HKqR1uKapg.roa Signing time: Mon 10 Feb 2025 14:13:12 +0000 ROA not before: Mon 10 Feb 2025 14:13:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131596 IP address blocks: 2405:9200::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 22:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3413 (0xd55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Feb 10 14:13:12 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B0807561F1BD289C2549AECBFC72AA475B8A6A98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:8a:71:08:9c:20:0c:ab:80:e4:bf:79:92:30: 05:8e:67:9e:14:0a:9b:20:5e:f9:33:c4:2d:8a:19: 99:f8:68:c8:39:30:d4:97:0e:fa:45:cc:ab:92:d9: 3b:6c:c4:79:74:68:0c:f7:97:20:81:4e:bd:a7:0d: 20:86:13:0d:43:3d:bf:f6:8b:91:5f:95:a7:75:bb: 08:d5:4f:4c:43:cf:01:f6:3a:e8:cb:6d:be:7d:1a: b9:05:6f:0c:f4:8e:95:95:d1:24:ba:4b:50:91:00: 55:c0:c0:6f:82:c4:58:ec:6c:f0:78:a7:86:0d:f7: 7e:7d:36:c0:ce:2f:b6:1e:63:2c:b2:5d:0d:e1:5f: 38:d4:35:02:a7:4d:a6:b7:84:dc:1a:de:3f:a1:36: fd:99:34:45:c4:b8:47:92:42:2d:8c:86:7a:07:a0: d6:b4:42:c8:e9:3e:10:4a:4a:d4:0f:83:56:7c:7e: 8a:bc:2a:12:11:15:38:3d:e2:db:7a:4f:99:4a:be: d7:ff:bf:9d:f4:23:10:a0:60:be:df:c4:d4:c6:c3: c1:e7:41:0e:bf:79:76:80:59:3a:e1:04:b4:5c:4e: 42:30:72:9c:7e:a9:c7:e8:82:01:0e:dd:ad:44:bc: ac:91:9a:f6:19:de:10:18:28:54:67:ee:52:33:ee: 1b:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:80:75:61:F1:BD:28:9C:25:49:AE:CB:FC:72:AA:47:5B:8A:6A:98 X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/sIB1YfG9KJwlSa7L_HKqR1uKapg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:9200::/32 Signature Algorithm: sha256WithRSAEncryption 4f:b1:2d:c2:63:cd:5b:78:de:60:6b:06:96:4a:b5:57:bf:33: 0d:51:f7:07:42:ce:6d:14:01:c7:78:34:be:4d:29:3b:b4:84: 19:6f:64:53:05:0d:1f:b1:72:bb:d8:97:91:50:f8:47:30:9a: ca:94:8c:50:65:21:62:c4:e7:a3:e8:b9:84:1c:32:d7:21:d5: 9b:c4:d2:00:ef:6a:ec:9b:fb:d0:be:3c:2c:ec:9f:95:37:b4: 54:7c:28:4c:97:bc:1a:bd:c8:8f:39:3a:12:12:5c:76:74:41: 1e:06:e5:8f:93:01:92:24:54:83:cd:50:41:d3:d2:39:c7:18: 69:4a:dd:7d:8e:47:ec:48:08:ef:20:54:d1:9d:7a:20:73:fc: 6a:20:af:6c:71:0e:bb:7f:62:6f:75:a0:4b:9b:d3:4c:92:c0: de:60:78:b7:71:6f:2a:7d:26:08:c8:5e:82:2c:30:b3:cf:e1: c3:4a:c1:60:dd:f9:97:bf:bb:ef:53:0e:73:ee:57:a3:00:e4: d9:f7:93:b0:4e:8d:d9:a0:2c:ba:c2:a8:6a:e5:e2:3a:5b:86: a8:93:de:19:0e:e8:fc:86:c0:f3:6e:19:9b:ce:a7:7e:34:93: 8f:b5:e2:92:9f:58:e7:b5:66:50:96:e1:d8:34:2a:4c:cc:87: e6:da:37:2e -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDVUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNTAyMTAx NDEzMTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIwODA3NTYxRjFCRDI4 OUMyNTQ5QUVDQkZDNzJBQTQ3NUI4QTZBOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDiinEInCAMq4Dkv3mSMAWOZ54UCpsgXvkzxC2KGZn4aMg5MNSX DvpFzKuS2TtsxHl0aAz3lyCBTr2nDSCGEw1DPb/2i5Fflad1uwjVT0xDzwH2OujL bb59GrkFbwz0jpWV0SS6S1CRAFXAwG+CxFjsbPB4p4YN9359NsDOL7YeYyyyXQ3h XzjUNQKnTaa3hNwa3j+hNv2ZNEXEuEeSQi2MhnoHoNa0QsjpPhBKStQPg1Z8foq8 KhIRFTg94tt6T5lKvtf/v530IxCgYL7fxNTGw8HnQQ6/eXaAWTrhBLRcTkIwcpx+ qcfoggEO3a1EvKyRmvYZ3hAYKFRn7lIz7hvdAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUsIB1YfG9KJwlSa7L/HKqR1uKapgwHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9zSUIxWWZHOUtKd2xTYTdMX0hL cVIxdUthcGcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAWS ADANBgkqhkiG9w0BAQsFAAOCAQEAT7EtwmPNW3jeYGsGlkq1V78zDVH3B0LObRQB x3g0vk0pO7SEGW9kUwUNH7Fyu9iXkVD4RzCaypSMUGUhYsTno+i5hBwy1yHVm8TS AO9q7Jv70L48LOyflTe0VHwoTJe8Gr3Ijzk6EhJcdnRBHgblj5MBkiRUg81QQdPS OccYaUrdfY5H7EgI7yBU0Z16IHP8aiCvbHEOu39ib3WgS5vTTJLA3mB4t3FvKn0m CMhegiwws8/hw0rBYN35l7+771MOc+5XowDk2feTsE6N2aAsusKoauXiOluGqJPe GQ7o/IbA824Zm86nfjSTj7Xikp9Y57VmUJbh2DQqTMyH5to3Lg== -----END CERTIFICATE-----Generated at Fri Apr 18 22:41:32 2025 by rpki-client