$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWDS/AjZZ73EzPOmx5FUKi0v3EXhghtg.roa File: AjZZ73EzPOmx5FUKi0v3EXhghtg.roa (raw, json) Hash identifier: eFeTuL7+KfiRMND6EMQhL73sz2unVN7zCH34F5yeE+E= Subject key identifier: 02:36:59:EF:71:33:3C:E9:B1:E4:55:0A:8B:4B:F7:11:78:60:86:D8 Certificate issuer: /CN=291BAF6A0C176CE0A32423666BCE78F9D91824CB Certificate serial: 0A49 Authority key identifier: 29:1B:AF:6A:0C:17:6C:E0:A3:24:23:66:6B:CE:78:F9:D9:18:24:CB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/AjZZ73EzPOmx5FUKi0v3EXhghtg.roa Signing time: Mon 10 Feb 2025 14:13:26 +0000 ROA not before: Mon 10 Feb 2025 14:13:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 141173 IP address blocks: 2405:a640:1173::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/KRuvagwXbOCjJCNma854-dkYJMs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/KRuvagwXbOCjJCNma854-dkYJMs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 02:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2633 (0xa49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=291BAF6A0C176CE0A32423666BCE78F9D91824CB Validity Not Before: Feb 10 14:13:26 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=023659EF71333CE9B1E4550A8B4BF711786086D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:78:cd:d1:ce:61:03:36:2c:c7:bb:0b:57:9a: 17:f6:f9:bb:9c:11:50:35:61:c4:ac:7e:c3:64:92: e0:3d:c8:8d:8a:0e:6c:9d:bf:6f:cb:8e:09:a4:00: 04:3c:58:c1:8a:41:96:72:0a:31:45:82:1e:d1:37: 14:20:b9:bf:37:5f:16:68:0e:c2:b5:63:9a:bd:b9: e0:c8:43:8b:4e:71:4e:6b:e5:39:4e:5c:78:da:f4: f2:f1:10:c2:ac:74:3e:24:12:f9:04:18:62:53:e3: e5:b8:ab:73:45:fd:3b:34:3a:b4:6e:fd:c0:be:9c: 56:5f:cd:57:f6:e6:fa:aa:c0:7c:69:ba:01:24:1b: a4:b2:e9:05:86:b8:d7:02:8d:59:5a:c5:c2:9d:af: 6a:ac:11:f6:1c:98:72:19:81:09:f1:64:e6:e3:20: f7:c2:83:0e:2c:0d:50:9b:4d:35:f6:61:79:df:14: 1d:81:a4:c6:d9:f0:42:d8:4e:91:e2:d5:9f:1b:f4: 21:67:ad:4c:2f:6c:04:4e:83:10:91:73:a7:97:4d: df:bf:86:3c:9a:58:90:3f:2d:d8:d9:c0:73:e5:80: ec:56:af:ca:c2:a5:2b:3a:82:4a:88:03:a8:25:36: eb:5c:e0:01:a6:fc:84:6f:d4:4a:60:a4:13:4e:8e: ee:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:36:59:EF:71:33:3C:E9:B1:E4:55:0A:8B:4B:F7:11:78:60:86:D8 X509v3 Authority Key Identifier: keyid:29:1B:AF:6A:0C:17:6C:E0:A3:24:23:66:6B:CE:78:F9:D9:18:24:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/KRuvagwXbOCjJCNma854-dkYJMs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/AjZZ73EzPOmx5FUKi0v3EXhghtg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:a640:1173::/48 Signature Algorithm: sha256WithRSAEncryption a2:b8:a3:69:b3:9a:23:a4:af:e3:c8:94:0d:de:54:a3:71:41: ba:0e:ba:86:42:54:04:1c:7d:06:5e:af:0c:fa:97:db:a6:a7: f2:2a:05:4a:d1:63:0d:fb:f9:73:4d:f1:6a:23:8a:54:31:3c: 87:2f:75:03:77:44:55:a1:6c:ac:a6:f8:f7:2f:fe:53:b3:08: 6c:ea:f8:a4:06:14:0a:62:49:ee:71:9a:81:39:fc:9a:9b:eb: a6:34:0f:b4:fa:e4:09:12:ef:32:be:38:53:26:10:1a:d6:64: 7c:62:60:94:a6:93:5a:47:1e:0d:3e:35:4a:f6:87:21:4b:0b: c4:88:84:7d:c6:55:86:e9:d8:6b:81:28:1c:97:41:11:37:69: e9:31:8e:7a:97:0b:a4:76:e3:e4:4f:db:bb:3e:46:06:b3:78: 66:41:93:77:cd:8b:5c:4a:9f:4c:a7:93:e7:a2:58:71:48:7b: b9:89:ea:85:14:d7:45:0a:d6:28:7b:16:60:55:8c:5b:fe:6a: 07:c4:6e:2d:7a:07:01:35:c8:3f:ac:78:43:33:d5:d5:34:ec: 1c:48:cc:c9:a5:23:f9:b5:69:e3:07:ec:f8:4d:84:de:5a:d7: db:3e:06:0b:64:4a:07:bf:12:93:b7:13:d7:08:aa:05:36:47: 0a:fe:f9:5b -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICCkkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjkx QkFGNkEwQzE3NkNFMEEzMjQyMzY2NkJDRTc4RjlEOTE4MjRDQjAeFw0yNTAyMTAx NDEzMjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDAyMzY1OUVGNzEzMzND RTlCMUU0NTUwQThCNEJGNzExNzg2MDg2RDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDceM3RzmEDNizHuwtXmhf2+bucEVA1YcSsfsNkkuA9yI2KDmyd v2/LjgmkAAQ8WMGKQZZyCjFFgh7RNxQgub83XxZoDsK1Y5q9ueDIQ4tOcU5r5TlO XHja9PLxEMKsdD4kEvkEGGJT4+W4q3NF/Ts0OrRu/cC+nFZfzVf25vqqwHxpugEk G6Sy6QWGuNcCjVlaxcKdr2qsEfYcmHIZgQnxZObjIPfCgw4sDVCbTTX2YXnfFB2B pMbZ8ELYTpHi1Z8b9CFnrUwvbAROgxCRc6eXTd+/hjyaWJA/LdjZwHPlgOxWr8rC pSs6gkqIA6glNutc4AGm/IRv1EpgpBNOju79AgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUAjZZ73EzPOmx5FUKi0v3EXhghtgwHwYDVR0jBBgwFoAUKRuvagwXbOCjJCNm a854+dkYJMswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdEUy9L UnV2YWd3WGJPQ2pKQ05tYTg1NC1ka1lKTXMuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0tSdXZhZ3dYYk9DakpDTm1hODU0LWRrWUpNcy5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RXRFMvQWpaWjczRXpQT214NUZVS2kwdjNF WGhnaHRnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQFpkAR czANBgkqhkiG9w0BAQsFAAOCAQEAorijabOaI6Sv48iUDd5Uo3FBug66hkJUBBx9 Bl6vDPqX26an8ioFStFjDfv5c03xaiOKVDE8hy91A3dEVaFsrKb49y/+U7MIbOr4 pAYUCmJJ7nGagTn8mpvrpjQPtPrkCRLvMr44UyYQGtZkfGJglKaTWkceDT41SvaH IUsLxIiEfcZVhunYa4EoHJdBETdp6TGOepcLpHbj5E/buz5GBrN4ZkGTd82LXEqf TKeT56JYcUh7uYnqhRTXRQrWKHsWYFWMW/5qB8RuLXoHATXIP6x4QzPV1TTsHEjM yaUj+bVp4wfs+E2E3lrX2z4GC2RKB78Sk7cT1wiqBTZHCv75Ww== -----END CERTIFICATE-----Generated at Sat Apr 5 23:14:28 2025 by rpki-client