$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TYCATV/4yRUDB4kSK65xrMtVwFBGRCX8a8.roa File: 4yRUDB4kSK65xrMtVwFBGRCX8a8.roa (raw, json) Hash identifier: IceeMA448og6BF7yylS2VdgAwE8gF4AgLTbUVUIRNto= Subject key identifier: E3:24:54:0C:1E:24:48:AE:B9:C6:B3:2D:57:01:41:19:10:97:F1:AF Certificate issuer: /CN=DF210700AE8EA25668E6BEA3FA6A6D3B378C3121 Certificate serial: 0C44 Authority key identifier: DF:21:07:00:AE:8E:A2:56:68:E6:BE:A3:FA:6A:6D:3B:37:8C:31:21 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/3yEHAK6OolZo5r6j-mptOzeMMSE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TYCATV/4yRUDB4kSK65xrMtVwFBGRCX8a8.roa Signing time: Mon 10 Feb 2025 13:50:25 +0000 ROA not before: Mon 10 Feb 2025 13:50:25 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9676 IP address blocks: 203.111.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TYCATV/3yEHAK6OolZo5r6j-mptOzeMMSE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TYCATV/3yEHAK6OolZo5r6j-mptOzeMMSE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/3yEHAK6OolZo5r6j-mptOzeMMSE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 18:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3140 (0xc44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF210700AE8EA25668E6BEA3FA6A6D3B378C3121 Validity Not Before: Feb 10 13:50:25 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E324540C1E2448AEB9C6B32D570141191097F1AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b0:48:ac:49:ef:81:2b:f7:fd:49:02:d1:45: a7:45:5b:e0:41:35:3f:f9:a0:98:32:d2:04:47:7e: bd:b7:4e:d9:85:e2:39:d9:ee:d8:68:ce:cc:43:56: d4:c2:38:b3:5e:70:ed:70:7a:c1:c6:65:02:90:e9: 41:99:9a:d3:ca:8c:2f:13:38:f9:c7:53:9f:78:97: 42:31:ef:11:8e:f5:d3:d0:8d:7e:b9:e5:42:3f:ed: e7:6d:a2:e3:37:33:ad:c8:c1:5d:6f:b9:42:72:9c: bc:ce:8e:6c:9a:ea:ed:ca:10:d4:00:5e:e3:62:3d: 3d:01:d6:b6:cd:33:c1:e1:2e:ed:30:10:d8:f9:e8: d9:e5:b1:e6:1d:c3:18:df:f2:e0:ef:4c:2f:17:45: 96:3a:4a:2b:ec:2e:c7:68:8c:1a:bc:26:cb:b8:e4: fa:b4:16:eb:99:86:b1:92:4c:e9:81:e8:c5:22:d8: da:7f:4b:7f:1f:f7:f4:b1:4e:e7:9a:ef:c3:c0:7d: 9d:01:36:cf:ef:c9:f2:b1:5e:33:d3:9d:90:9f:1d: 49:a8:81:52:26:66:bf:98:cd:39:7f:79:52:1e:96: e7:26:ce:ce:3e:a5:ce:64:b7:26:99:ad:3c:a4:6f: fa:56:12:1b:83:c2:99:0a:b5:01:64:ae:ce:ea:30: b4:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:24:54:0C:1E:24:48:AE:B9:C6:B3:2D:57:01:41:19:10:97:F1:AF X509v3 Authority Key Identifier: keyid:DF:21:07:00:AE:8E:A2:56:68:E6:BE:A3:FA:6A:6D:3B:37:8C:31:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TYCATV/3yEHAK6OolZo5r6j-mptOzeMMSE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/3yEHAK6OolZo5r6j-mptOzeMMSE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TYCATV/4yRUDB4kSK65xrMtVwFBGRCX8a8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.111.208.0/20 Signature Algorithm: sha256WithRSAEncryption 8b:00:6e:08:74:26:78:7b:2e:0f:a5:6b:db:c2:e7:1f:9e:de: 17:6a:53:8d:2d:ee:e1:9f:b7:80:7b:1d:6a:f1:26:41:26:de: b7:af:0c:02:11:cf:f5:3e:ac:0d:46:ec:99:d0:7b:3e:19:18: 42:0b:9a:19:c5:1f:6d:5c:51:4b:90:c0:7a:5d:87:72:ae:43: 3a:39:d9:99:2e:2a:c0:6a:2f:39:20:a5:f4:44:19:84:ae:51: ae:ef:93:8b:5f:c1:0f:07:b1:b7:87:15:86:8c:48:63:62:a0: 75:c6:4f:5f:22:74:9f:ee:77:08:35:b1:eb:bd:f7:6b:78:38: eb:6b:c5:a0:9d:c3:5a:71:64:45:09:1f:30:8b:58:58:bb:4b: cc:a7:b4:5a:af:96:41:76:51:73:47:3b:e0:aa:bf:7a:14:ee: 06:87:81:12:0d:c1:bb:27:43:bd:6b:98:e9:76:22:96:ff:93: a4:db:a5:ac:13:3a:5c:9d:75:23:6f:48:93:9e:59:85:3a:94: 60:3c:41:9d:1a:10:88:c9:51:7a:96:49:8c:82:92:0e:dd:42: ad:52:fb:1c:2f:4d:1d:17:37:cc:a1:05:b6:ec:68:9b:6e:9a: d6:46:77:8a:c3:91:df:21:fe:62:a9:d4:43:19:36:e9:2f:2c: e6:f7:4c:60 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDEQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREYy MTA3MDBBRThFQTI1NjY4RTZCRUEzRkE2QTZEM0IzNzhDMzEyMTAeFw0yNTAyMTAx MzUwMjVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEUzMjQ1NDBDMUUyNDQ4 QUVCOUM2QjMyRDU3MDE0MTE5MTA5N0YxQUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrsEisSe+BK/f9SQLRRadFW+BBNT/5oJgy0gRHfr23TtmF4jnZ 7thozsxDVtTCOLNecO1wesHGZQKQ6UGZmtPKjC8TOPnHU594l0Ix7xGO9dPQjX65 5UI/7edtouM3M63IwV1vuUJynLzOjmya6u3KENQAXuNiPT0B1rbNM8HhLu0wENj5 6NnlseYdwxjf8uDvTC8XRZY6SivsLsdojBq8Jsu45Pq0FuuZhrGSTOmB6MUi2Np/ S38f9/SxTuea78PAfZ0BNs/vyfKxXjPTnZCfHUmogVImZr+YzTl/eVIelucmzs4+ pc5ktyaZrTykb/pWEhuDwpkKtQFkrs7qMLQhAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU4yRUDB4kSK65xrMtVwFBGRCX8a8wHwYDVR0jBBgwFoAU3yEHAK6OolZo5r6j +mptOzeMMSEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFlDQVRW LzN5RUhBSzZPb2xabzVyNmotbXB0T3plTU1TRS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvM3lFSEFLNk9vbFpvNXI2ai1tcHRPemVNTVNFLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFlDQVRWLzR5UlVEQjRrU0s2NXhyTXRW d0ZCR1JDWDhhOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATL b9AwDQYJKoZIhvcNAQELBQADggEBAIsAbgh0Jnh7Lg+la9vC5x+e3hdqU40t7uGf t4B7HWrxJkEm3revDAIRz/U+rA1G7JnQez4ZGEILmhnFH21cUUuQwHpdh3KuQzo5 2ZkuKsBqLzkgpfREGYSuUa7vk4tfwQ8HsbeHFYaMSGNioHXGT18idJ/udwg1seu9 92t4OOtrxaCdw1pxZEUJHzCLWFi7S8yntFqvlkF2UXNHO+Cqv3oU7gaHgRINwbsn Q71rmOl2Ipb/k6TbpawTOlyddSNvSJOeWYU6lGA8QZ0aEIjJUXqWSYyCkg7dQq1S +xwvTR0XN8yhBbbsaJtumtZGd4rDkd8h/mKp1EMZNukvLOb3TGA= -----END CERTIFICATE-----Generated at Thu Apr 17 13:21:58 2025 by rpki-client