$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/HhKPAxd3vvmwn1Yswdk2S7QJph0.roa File: HhKPAxd3vvmwn1Yswdk2S7QJph0.roa (raw, json) Hash identifier: 5T5ntbWpbtbgpwbW3WRK1jpdaqAKzR6rvWOhXLfy+m4= Subject key identifier: 1E:12:8F:03:17:77:BE:F9:B0:9F:56:2C:C1:D9:36:4B:B4:09:A6:1D Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Certificate serial: 0CF6 Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/HhKPAxd3vvmwn1Yswdk2S7QJph0.roa Signing time: Mon 10 Feb 2025 14:01:02 +0000 ROA not before: Mon 10 Feb 2025 14:01:02 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131149 IP address blocks: 43.254.16.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 15:37:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3318 (0xcf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Validity Not Before: Feb 10 14:01:02 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1E128F031777BEF9B09F562CC1D9364BB409A61D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f9:94:be:bf:72:5c:39:c4:0e:6c:00:43:01: 6f:15:30:ba:8b:45:7e:85:7d:e9:fb:e1:0e:68:55: f5:91:8a:13:46:38:33:3c:6c:4d:b2:a0:16:bf:09: f4:48:de:54:fe:76:44:19:ea:c8:72:36:e9:a7:88: 7c:9f:94:a4:d4:ca:1e:f2:54:6f:6b:92:96:a2:a8: ad:f1:d2:ea:39:ef:ea:b8:32:ac:fb:56:9a:24:a6: 00:6c:67:4b:b6:4e:1f:93:54:34:09:f8:b7:fb:2b: bc:5e:5d:e9:d4:87:9c:47:39:05:17:c9:46:db:81: 8f:db:5a:d4:48:9b:fd:e2:3b:77:85:35:4e:c8:05: 04:21:32:60:4b:54:fc:95:27:dc:49:98:be:3a:fd: fc:57:41:a7:76:ac:28:d2:c7:58:30:9a:b6:8b:22: 22:73:28:9d:77:55:2e:a6:62:9d:89:d7:3a:89:37: 3d:8d:7e:68:13:d3:18:c1:84:0b:43:1f:84:c0:60: 61:70:ff:b1:5c:82:53:5d:6e:7c:dc:e4:f1:b3:55: 5d:d8:97:b1:47:c3:59:d1:b9:a0:5c:ee:3e:52:1c: bb:d6:5a:57:c5:91:28:b7:96:62:c3:f9:3d:1a:03: 75:45:bf:2f:8e:66:13:42:e2:ea:9f:0b:c4:17:97: 67:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:12:8F:03:17:77:BE:F9:B0:9F:56:2C:C1:D9:36:4B:B4:09:A6:1D X509v3 Authority Key Identifier: keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/HhKPAxd3vvmwn1Yswdk2S7QJph0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.254.16.0/22 Signature Algorithm: sha256WithRSAEncryption 7d:48:f6:af:49:3b:5f:11:d8:7f:77:c8:f7:84:6d:50:ae:35: 6e:0a:07:d1:c4:51:ad:3a:37:2b:fc:69:55:1f:f7:66:b5:34: 4b:58:11:e2:73:5c:60:8f:20:a9:d2:70:86:9f:ea:4a:11:eb: 2f:f9:2e:50:df:90:53:c4:74:f5:26:cd:1c:00:fc:b7:9d:14: a5:c2:86:eb:64:f3:89:d9:82:f3:d3:0a:79:4d:5d:39:96:f3: 73:24:fd:27:80:9f:33:62:5e:e3:a8:24:83:b6:a1:55:3b:17: b7:ca:2f:be:23:fc:b4:67:35:b3:de:29:89:6d:3d:99:9d:65: 9a:04:87:c1:77:c9:5b:fd:d2:67:74:38:f3:63:9c:f1:4e:12: a8:9b:fa:fc:a3:7b:0a:2d:53:d0:07:f1:1d:57:7b:d2:30:68: a8:8e:eb:7c:a0:01:b9:ce:60:0d:49:11:6b:49:60:64:23:8a: 5c:ea:cb:39:8f:b3:a6:b5:27:4d:b9:e7:9c:8f:43:1c:87:c6: 7a:7c:d9:eb:90:18:43:b1:f5:c0:f0:0a:9a:38:ea:f6:be:8a: 96:9b:f5:5d:68:c5:be:96:f3:c0:f4:67:a2:01:7f:a2:54:e8: 66:2e:1a:c0:97:5a:e8:b4:82:a5:6e:00:e4:13:48:96:e0:14: a1:3e:61:d8 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDPYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODdB NEFGRDlFN0ZDMUZFRDRGOTU0NURFNDFDRTQ0MTNEQUNCMEUwNTAeFw0yNTAyMTAx NDAxMDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFFMTI4RjAzMTc3N0JF RjlCMDlGNTYyQ0MxRDkzNjRCQjQwOUE2MUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCt+ZS+v3JcOcQObABDAW8VMLqLRX6Ffen74Q5oVfWRihNGODM8 bE2yoBa/CfRI3lT+dkQZ6shyNumniHyflKTUyh7yVG9rkpaiqK3x0uo57+q4Mqz7 VpokpgBsZ0u2Th+TVDQJ+Lf7K7xeXenUh5xHOQUXyUbbgY/bWtRIm/3iO3eFNU7I BQQhMmBLVPyVJ9xJmL46/fxXQad2rCjSx1gwmraLIiJzKJ13VS6mYp2J1zqJNz2N fmgT0xjBhAtDH4TAYGFw/7FcglNdbnzc5PGzVV3Yl7FHw1nRuaBc7j5SHLvWWlfF kSi3lmLD+T0aA3VFvy+OZhNC4uqfC8QXl2chAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUHhKPAxd3vvmwn1Yswdk2S7QJph0wHwYDVR0jBBgwFoAUh6Sv2ef8H+1PlUXe Qc5EE9rLDgUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWVVBTkpI RU4vaDZTdjJlZjhILTFQbFVYZVFjNUVFOXJMRGdVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9oNlN2MmVmOEgtMVBsVVhlUWM1RUU5ckxEZ1UuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ZVUFOSkhFTi9IaEtQQXhkM3Z2bXdu MVlzd2RrMlM3UUpwaDAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCK/4QMA0GCSqGSIb3DQEBCwUAA4IBAQB9SPavSTtfEdh/d8j3hG1QrjVuCgfR xFGtOjcr/GlVH/dmtTRLWBHic1xgjyCp0nCGn+pKEesv+S5Q35BTxHT1Js0cAPy3 nRSlwobrZPOJ2YLz0wp5TV05lvNzJP0ngJ8zYl7jqCSDtqFVOxe3yi++I/y0ZzWz 3imJbT2ZnWWaBIfBd8lb/dJndDjzY5zxThKom/r8o3sKLVPQB/EdV3vSMGiojut8 oAG5zmANSRFrSWBkI4pc6ss5j7OmtSdNueecj0Mch8Z6fNnrkBhDsfXA8AqaOOr2 voqWm/VdaMW+lvPA9GeiAX+iVOhmLhrAl1rotIKlbgDkE0iW4BShPmHY -----END CERTIFICATE-----Generated at Wed Apr 9 11:11:13 2025 by rpki-client