$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/3FbtiqUOI_wGmSYk1Vnyyq07maQ.roa File: 3FbtiqUOI_wGmSYk1Vnyyq07maQ.roa (raw, json) Hash identifier: VJPu7KVk//kb8+fEkyglta56H1HGJcRBuMNUJNEvCMw= Subject key identifier: DC:56:ED:8A:A5:0E:23:FC:06:99:26:24:D5:59:F2:CA:AD:3B:99:A4 Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6 Certificate serial: 0C62 Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/3FbtiqUOI_wGmSYk1Vnyyq07maQ.roa Signing time: Mon 10 Feb 2025 13:55:48 +0000 ROA not before: Mon 10 Feb 2025 13:55:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 133955 IP address blocks: 223.165.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 03:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3170 (0xc62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6 Validity Not Before: Feb 10 13:55:48 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DC56ED8AA50E23FC06992624D559F2CAAD3B99A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:0b:db:dc:79:a7:ec:c2:cb:10:e8:ec:ca:9d: 43:d4:b2:78:b1:68:ec:68:1c:84:cd:d2:e8:68:59: 74:95:db:47:be:25:86:11:db:2a:bf:7c:21:5f:c3: 48:dd:ab:b8:75:78:d6:91:55:5e:76:4e:07:ce:22: 47:b9:2f:dc:c4:7e:82:a9:c9:f2:e5:b6:7c:d2:ff: 99:63:7d:15:8c:63:25:20:7a:f6:ae:49:a2:6d:de: da:54:7f:d4:90:70:34:fe:1d:c9:97:d0:a0:55:44: 05:c6:e7:a5:c4:ac:af:6d:29:cc:10:38:da:8d:27: 4a:e1:f9:c9:a2:39:73:08:4e:c8:dd:ef:b0:34:fe: 1a:38:46:dc:2d:b3:24:2e:99:f4:50:99:e8:da:c4: 4f:28:f5:58:7c:4f:a6:04:f3:df:14:83:79:be:d1: b0:9d:3e:a2:a5:2e:b2:7d:3e:55:f9:5d:bb:b2:ab: 02:ce:22:01:16:a2:64:3c:42:41:9f:55:df:b8:fe: 89:22:ea:5c:a4:8d:97:78:4e:c0:06:40:7d:70:f6: d6:55:10:e1:e8:8a:a1:65:16:19:08:fe:c6:bb:8e: 8e:3e:0b:bd:97:8b:9c:10:cc:15:ba:2d:c5:61:b6: 98:b8:dc:da:d0:ba:9a:d4:bd:30:01:c0:a4:20:9f: 9a:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:56:ED:8A:A5:0E:23:FC:06:99:26:24:D5:59:F2:CA:AD:3B:99:A4 X509v3 Authority Key Identifier: keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/3FbtiqUOI_wGmSYk1Vnyyq07maQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.165.8.0/24 Signature Algorithm: sha256WithRSAEncryption 50:95:5c:1c:72:dd:02:95:4d:e5:88:d7:ec:c5:ee:b8:70:05: c9:e4:b7:83:54:90:4c:a9:3b:ea:26:5b:9c:81:88:c1:49:36: d7:ea:2c:da:d3:50:f6:3d:67:8e:d1:cd:a6:81:e7:87:e7:4c: df:eb:29:ed:64:ea:0c:bd:8d:25:2f:2b:84:fe:8f:69:05:f2: 5b:05:01:7a:99:94:89:55:5a:87:8d:f4:f0:91:7d:16:38:4a: 8a:28:1e:0e:36:99:78:fa:cf:42:f3:e3:78:11:34:db:a4:fd: bf:f2:d3:b6:a6:e3:51:9f:0f:9a:a3:3a:32:d5:3f:0f:50:6f: 77:fa:c7:2e:4e:ed:4c:62:73:f0:44:dc:d1:af:67:d1:29:11: 5c:ed:51:7c:5e:c8:17:ac:cf:db:2f:e7:ae:10:aa:e6:32:b9: f1:d1:61:30:5e:78:e1:8b:52:d5:a1:af:d1:0a:bb:e1:5e:e9: ec:32:04:22:57:e8:9f:00:e3:2c:da:4d:00:a3:40:72:83:20: ba:66:3b:75:f1:c6:c8:3d:f0:7e:cc:7b:62:b5:aa:55:6f:92: 75:c4:ec:d7:b5:ca:78:d6:d1:5c:44:a3:2a:2b:ce:8d:91:75: a0:f5:77:7b:3f:25:a2:e7:5f:40:32:53:79:bf:7c:9d:51:1a: e9:f6:cb:87 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDGIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzI4 RjU3MzI0RTc2NkJDNUU5RkE5OUM0RDdBRDRDNDBEMzk1OEZDNjAeFw0yNTAyMTAx MzU1NDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERDNTZFRDhBQTUwRTIz RkMwNjk5MjYyNEQ1NTlGMkNBQUQzQjk5QTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCiC9vceafswssQ6OzKnUPUsnixaOxoHITN0uhoWXSV20e+JYYR 2yq/fCFfw0jdq7h1eNaRVV52TgfOIke5L9zEfoKpyfLltnzS/5ljfRWMYyUgevau SaJt3tpUf9SQcDT+HcmX0KBVRAXG56XErK9tKcwQONqNJ0rh+cmiOXMITsjd77A0 /ho4RtwtsyQumfRQmejaxE8o9Vh8T6YE898Ug3m+0bCdPqKlLrJ9PlX5XbuyqwLO IgEWomQ8QkGfVd+4/oki6lykjZd4TsAGQH1w9tZVEOHoiqFlFhkI/sa7jo4+C72X i5wQzBW6LcVhtpi43NrQuprUvTABwKQgn5pZAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU3FbtiqUOI/wGmSYk1Vnyyq07maQwHwYDVR0jBBgwFoAUwo9XMk52a8Xp+pnE 161MQNOVj8YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdELUNP TS1UVy93bzlYTWs1MmE4WHAtcG5FMTYxTVFOT1ZqOFkuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL3dvOVhNazUyYThYcC1wbkUxNjFNUU5PVmo4WS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RXRC1DT00tVFcvM0ZidGlxVU9J X3dHbVNZazFWbnl5cTA3bWFRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAN+lCDANBgkqhkiG9w0BAQsFAAOCAQEAUJVcHHLdApVN5YjX7MXuuHAF yeS3g1SQTKk76iZbnIGIwUk21+os2tNQ9j1njtHNpoHnh+dM3+sp7WTqDL2NJS8r hP6PaQXyWwUBepmUiVVah4308JF9FjhKiigeDjaZePrPQvPjeBE026T9v/LTtqbj UZ8PmqM6MtU/D1Bvd/rHLk7tTGJz8ETc0a9n0SkRXO1RfF7IF6zP2y/nrhCq5jK5 8dFhMF544YtS1aGv0Qq74V7p7DIEIlfonwDjLNpNAKNAcoMgumY7dfHGyD3wfsx7 YrWqVW+SdcTs17XKeNbRXESjKivOjZF1oPV3ez8loudfQDJTeb98nVEa6fbLhw== -----END CERTIFICATE-----Generated at Fri Apr 18 00:49:35 2025 by rpki-client