$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/K47ORmLidXa-eBFtrmMWmmRBSlE.roa File: K47ORmLidXa-eBFtrmMWmmRBSlE.roa (raw, json) Hash identifier: FF+OBZJacV1N9tU/5Wwwb2oLkVHPVE8q/+P7QiYvQLY= Subject key identifier: 2B:8E:CE:46:62:E2:75:76:BE:78:11:6D:AE:63:16:9A:64:41:4A:51 Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Certificate serial: 0CF4 Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/K47ORmLidXa-eBFtrmMWmmRBSlE.roa Signing time: Mon 10 Feb 2025 14:01:01 +0000 ROA not before: Mon 10 Feb 2025 14:01:01 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131149 IP address blocks: 2407:7100::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 15:37:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3316 (0xcf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Validity Not Before: Feb 10 14:01:01 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2B8ECE4662E27576BE78116DAE63169A64414A51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:37:37:18:45:a6:d6:11:c8:9e:47:f5:6a:8f: 2a:25:f6:f7:9a:a0:ba:ea:e7:8c:03:b7:12:d6:ae: 76:b8:6a:5d:42:69:43:e7:83:3d:b8:e5:44:88:ad: 2b:46:a2:ae:b4:05:50:83:75:79:70:50:e2:ca:58: 6c:ae:aa:9a:c4:17:61:e6:b7:2b:1a:a1:0f:6b:fb: cd:a8:8b:f5:07:d9:6a:e0:7d:6c:11:8e:53:5a:37: 90:6a:8a:45:96:77:9f:06:ad:df:52:29:cd:69:ac: a5:2c:ee:7e:2e:2e:23:1d:22:e2:9b:fc:3f:f2:f4: 52:13:7e:61:bd:07:5d:fe:8b:a0:3d:52:bc:6e:f1: bf:cb:2d:4c:de:d4:e4:6c:62:6d:0e:8d:40:11:e6: 90:f5:f7:5a:f5:6d:02:1e:8a:ee:ff:f2:ad:25:00: be:3b:a3:e4:3d:d1:a5:68:ee:38:7e:a1:3d:8d:6a: 28:05:12:9b:53:03:a7:a2:2b:7e:9d:64:89:3f:f7: f4:03:52:ce:c7:68:35:7e:62:74:ce:55:b2:57:fd: 6e:e4:bb:8c:06:11:4d:f0:da:3d:bd:45:cc:9c:a1: 8f:63:a5:11:16:72:1f:5e:f8:2e:51:41:51:05:2f: 12:80:2c:8f:4b:f6:69:e1:d0:6c:3d:d7:a0:76:15: fd:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:8E:CE:46:62:E2:75:76:BE:78:11:6D:AE:63:16:9A:64:41:4A:51 X509v3 Authority Key Identifier: keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/K47ORmLidXa-eBFtrmMWmmRBSlE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:7100::/32 Signature Algorithm: sha256WithRSAEncryption 5e:40:1d:b8:47:37:1d:5d:7e:58:29:68:71:45:d7:ee:9e:1f: 9c:95:6e:9b:95:96:a0:b2:f1:2f:a9:82:b3:60:36:16:72:e5: 08:24:4a:37:47:ae:e5:2b:a9:05:0d:72:1f:48:a9:37:07:0c: 3c:f5:d2:a2:82:43:a2:68:aa:8f:ce:02:e0:ad:7b:13:1c:45: 28:f2:49:a1:0e:1a:c0:bd:1c:cb:3c:49:d2:f4:f4:40:9e:e3: b1:08:eb:7b:3e:5e:35:4a:03:63:6f:05:f4:b7:e3:fb:b0:2e: 97:af:f4:c6:89:c5:89:be:e2:fa:b7:0a:4f:c5:31:78:b7:43: bf:f0:65:dd:6b:f2:34:4e:b3:9e:d0:e5:53:34:a3:32:07:11: 45:e6:00:18:6f:5e:ad:97:99:47:6f:a3:41:58:d6:5a:b1:c1: a3:28:77:72:27:12:52:9f:c0:aa:48:71:60:c6:26:fd:a3:26: 36:7a:2b:22:bd:a1:0c:7a:cb:7e:c2:95:55:28:1a:62:a6:a1: 23:bf:04:40:69:fd:43:ef:0a:99:02:96:d1:02:29:4d:8d:a7: 5c:08:64:d6:8d:aa:05:a2:43:cf:c2:11:e6:9d:d2:dd:58:5e: cf:6e:34:7f:ab:07:79:f2:dc:f0:a1:0a:91:62:6d:65:2a:e2: fe:13:95:2f -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICDPQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODdB NEFGRDlFN0ZDMUZFRDRGOTU0NURFNDFDRTQ0MTNEQUNCMEUwNTAeFw0yNTAyMTAx NDAxMDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJCOEVDRTQ2NjJFMjc1 NzZCRTc4MTE2REFFNjMxNjlBNjQ0MTRBNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVNzcYRabWEcieR/Vqjyol9veaoLrq54wDtxLWrna4al1CaUPn gz245USIrStGoq60BVCDdXlwUOLKWGyuqprEF2HmtysaoQ9r+82oi/UH2WrgfWwR jlNaN5BqikWWd58Grd9SKc1prKUs7n4uLiMdIuKb/D/y9FITfmG9B13+i6A9Urxu 8b/LLUze1ORsYm0OjUAR5pD191r1bQIeiu7/8q0lAL47o+Q90aVo7jh+oT2NaigF EptTA6eiK36dZIk/9/QDUs7HaDV+YnTOVbJX/W7ku4wGEU3w2j29RcycoY9jpREW ch9e+C5RQVEFLxKALI9L9mnh0Gw916B2Ff1FAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUK47ORmLidXa+eBFtrmMWmmRBSlEwHwYDVR0jBBgwFoAUh6Sv2ef8H+1PlUXe Qc5EE9rLDgUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWVVBTkpI RU4vaDZTdjJlZjhILTFQbFVYZVFjNUVFOXJMRGdVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9oNlN2MmVmOEgtMVBsVVhlUWM1RUU5ckxEZ1UuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ZVUFOSkhFTi9LNDdPUm1MaWRYYS1l QkZ0cm1NV21tUkJTbEUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUAJAdxADANBgkqhkiG9w0BAQsFAAOCAQEAXkAduEc3HV1+WClocUXX7p4fnJVu m5WWoLLxL6mCs2A2FnLlCCRKN0eu5SupBQ1yH0ipNwcMPPXSooJDomiqj84C4K17 ExxFKPJJoQ4awL0cyzxJ0vT0QJ7jsQjrez5eNUoDY28F9Lfj+7Aul6/0xonFib7i +rcKT8UxeLdDv/Bl3WvyNE6zntDlUzSjMgcRReYAGG9erZeZR2+jQVjWWrHBoyh3 cicSUp/AqkhxYMYm/aMmNnorIr2hDHrLfsKVVSgaYqahI78EQGn9Q+8KmQKW0QIp TY2nXAhk1o2qBaJDz8IR5p3S3Vhez240f6sHefLc8KEKkWJtZSri/hOVLw== -----END CERTIFICATE-----Generated at Wed Apr 9 11:14:08 2025 by rpki-client