$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ACEREDC/82RNhpOQfsJ79ku9w_rEn6d3UJ4.roa File: 82RNhpOQfsJ79ku9w_rEn6d3UJ4.roa (raw, json) Hash identifier: lmiVmJvlu/TxS9Thdv57gXegtXPG/GpHhH0HWduPAkI= Subject key identifier: F3:64:4D:86:93:90:7E:C2:7B:F6:4B:BD:C3:FA:C4:9F:A7:77:50:9E Certificate issuer: /CN=646D69C88D096F7D39220D288688914729045EF8 Certificate serial: 06F5 Authority key identifier: 64:6D:69:C8:8D:09:6F:7D:39:22:0D:28:86:88:91:47:29:04:5E:F8 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZG1pyI0Jb305Ig0ohoiRRykEXvg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ACEREDC/82RNhpOQfsJ79ku9w_rEn6d3UJ4.roa Signing time: Mon 10 Feb 2025 14:21:54 +0000 ROA not before: Mon 10 Feb 2025 14:21:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17420 IP address blocks: 211.79.192.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ACEREDC/ZG1pyI0Jb305Ig0ohoiRRykEXvg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ACEREDC/ZG1pyI0Jb305Ig0ohoiRRykEXvg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ZG1pyI0Jb305Ig0ohoiRRykEXvg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1781 (0x6f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=646D69C88D096F7D39220D288688914729045EF8 Validity Not Before: Feb 10 14:21:54 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F3644D8693907EC27BF64BBDC3FAC49FA777509E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:d6:98:59:82:cd:7a:ae:97:d4:af:e7:4f:73: 28:ca:6f:a1:f4:d0:ad:7a:d4:18:b6:f5:d1:23:3a: b0:ce:28:21:8a:e9:85:36:b5:83:04:4b:71:fe:b7: 2e:8a:84:e7:3c:aa:c1:e6:4d:51:25:5d:79:f6:3e: f3:e1:ea:de:2e:6c:f4:0e:48:50:eb:9d:b4:d0:7b: 57:9e:24:a7:04:63:f2:0e:1f:47:27:f3:e6:15:b0: fb:37:68:2b:f8:a7:3d:dc:bb:21:51:8a:10:6f:49: 04:c5:70:4e:8e:97:e0:7d:60:93:68:e9:4c:b6:03: 68:9f:2a:4d:08:46:20:bf:5e:ae:18:b2:03:03:1c: 27:ae:7c:44:1f:4c:9b:8c:77:cb:00:44:7d:6f:ce: 22:c7:c4:82:5d:b0:d1:ae:63:d6:8d:21:66:cb:a5: dd:ba:4f:9c:b7:7b:e2:8f:50:f0:95:68:46:4f:f0: 0b:cd:71:6f:bb:06:3d:34:ed:cd:38:b9:17:7c:1b: 7f:ea:79:05:48:e3:fe:5b:91:a6:8c:86:18:e8:10: 66:48:ed:d2:ff:a9:e1:43:71:91:fc:5a:0f:19:d6: fe:23:1d:5e:53:0f:84:89:41:95:bb:2d:96:30:e6: 34:6e:02:8a:50:84:ed:8b:fd:aa:16:0b:1f:ca:dd: b4:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:64:4D:86:93:90:7E:C2:7B:F6:4B:BD:C3:FA:C4:9F:A7:77:50:9E X509v3 Authority Key Identifier: keyid:64:6D:69:C8:8D:09:6F:7D:39:22:0D:28:86:88:91:47:29:04:5E:F8 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ACEREDC/ZG1pyI0Jb305Ig0ohoiRRykEXvg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZG1pyI0Jb305Ig0ohoiRRykEXvg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ACEREDC/82RNhpOQfsJ79ku9w_rEn6d3UJ4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.79.192.0/20 Signature Algorithm: sha256WithRSAEncryption 7e:b8:30:29:06:1f:42:a9:54:91:e4:db:6c:45:26:ed:b6:ac: 6c:84:f1:f8:f0:6d:11:07:5b:7d:a7:f0:0f:15:70:16:32:8a: 3d:57:a5:2f:2f:7f:77:4f:cb:81:ab:39:cf:97:f0:9f:12:f2: 99:fc:de:52:a0:58:2c:44:f0:f9:56:72:85:82:36:2a:a6:73: 92:15:be:67:ff:f0:d6:4b:23:2c:56:d4:62:84:b3:c1:c0:6c: 8e:6b:39:f8:a1:9e:49:26:f6:fd:05:29:62:88:26:29:37:1b: b7:55:9c:5e:a9:5d:ae:00:1a:d4:be:7c:0b:2e:77:c4:37:af: e7:15:c3:1d:e4:bd:40:e3:67:75:8f:fc:ff:6a:af:7c:2a:8c: f4:a3:25:d6:4f:1e:86:2a:dd:d3:8c:cc:05:6a:32:29:7f:dd: a1:1e:38:87:17:1b:20:66:1b:17:8e:20:82:8a:e8:c0:f7:e9: 3c:7d:5b:e6:28:d8:b5:c0:96:d9:db:32:74:65:e2:49:86:d6: 16:57:74:3b:fb:16:ee:a6:1e:55:b7:44:35:8c:23:f8:94:c5: 8e:01:75:86:3a:a6:db:8c:4c:0a:b6:5f:b9:40:9b:7c:ae:88: 5d:e2:39:5b:61:b2:e6:c3:c1:ef:3f:d3:54:75:19:93:72:bc: 6c:b6:f0:33 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICBvUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjQ2 RDY5Qzg4RDA5NkY3RDM5MjIwRDI4ODY4ODkxNDcyOTA0NUVGODAeFw0yNTAyMTAx NDIxNTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYzNjQ0RDg2OTM5MDdF QzI3QkY2NEJCREMzRkFDNDlGQTc3NzUwOUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDq1phZgs16rpfUr+dPcyjKb6H00K161Bi29dEjOrDOKCGK6YU2 tYMES3H+ty6KhOc8qsHmTVElXXn2PvPh6t4ubPQOSFDrnbTQe1eeJKcEY/IOH0cn 8+YVsPs3aCv4pz3cuyFRihBvSQTFcE6Ol+B9YJNo6Uy2A2ifKk0IRiC/Xq4YsgMD HCeufEQfTJuMd8sARH1vziLHxIJdsNGuY9aNIWbLpd26T5y3e+KPUPCVaEZP8AvN cW+7Bj007c04uRd8G3/qeQVI4/5bkaaMhhjoEGZI7dL/qeFDcZH8Wg8Z1v4jHV5T D4SJQZW7LZYw5jRuAopQhO2L/aoWCx/K3bQ3AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU82RNhpOQfsJ79ku9w/rEn6d3UJ4wHwYDVR0jBBgwFoAUZG1pyI0Jb305Ig0o hoiRRykEXvgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQUNFUkVE Qy9aRzFweUkwSmIzMDVJZzBvaG9pUlJ5a0VYdmcuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1pHMXB5STBKYjMwNUlnMG9ob2lSUnlrRVh2Zy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0FDRVJFREMvODJSTmhwT1Fmc0o3OWt1 OXdfckVuNmQzVUo0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BNNPwDANBgkqhkiG9w0BAQsFAAOCAQEAfrgwKQYfQqlUkeTbbEUm7basbITx+PBt EQdbfafwDxVwFjKKPVelLy9/d0/Lgas5z5fwnxLymfzeUqBYLETw+VZyhYI2KqZz khW+Z//w1ksjLFbUYoSzwcBsjms5+KGeSSb2/QUpYogmKTcbt1WcXqldrgAa1L58 Cy53xDev5xXDHeS9QONndY/8/2qvfCqM9KMl1k8ehird04zMBWoyKX/doR44hxcb IGYbF44ggorowPfpPH1b5ijYtcCW2dsydGXiSYbWFld0O/sW7qYeVbdENYwj+JTF jgF1hjqm24xMCrZfuUCbfK6IXeI5W2Gy5sPB7z/TVHUZk3K8bLbwMw== -----END CERTIFICATE-----Generated at Wed Feb 19 22:06:20 2025 by rpki-client