$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/Kw5iW9SrMFSMowkICxV4HcPCwKY.roa File: Kw5iW9SrMFSMowkICxV4HcPCwKY.roa (raw, json) Hash identifier: xSdKXiq1kR4Mcin8WOojtY/rtN+9/n17Tg+t0iQlJuw= Subject key identifier: 2B:0E:62:5B:D4:AB:30:54:8C:A3:09:08:0B:15:78:1D:C3:C2:C0:A6 Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A Certificate serial: 0CBF Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/Kw5iW9SrMFSMowkICxV4HcPCwKY.roa Signing time: Mon 10 Feb 2025 14:29:49 +0000 ROA not before: Mon 10 Feb 2025 14:29:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18217 IP address blocks: 2001:c08:ffff:ffff:ffff:ffff:fffa:800/119 maxlen: 119 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 05:08:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3263 (0xcbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A Validity Not Before: Feb 10 14:29:49 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2B0E625BD4AB30548CA309080B15781DC3C2C0A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:15:e5:2c:29:68:99:79:62:af:04:9e:1b:56: 3f:50:df:37:7c:ab:cf:1e:43:94:6a:08:dd:ed:37: 3b:d2:83:e3:2d:f0:7a:71:1f:aa:89:fb:19:ba:3d: e0:19:47:ac:02:12:58:9c:3e:73:25:c6:00:0b:8d: 0c:ea:7f:5c:ef:1b:81:e4:e4:cd:64:f7:a6:62:52: 96:5d:3c:14:23:e0:5a:2e:88:c0:a4:f2:4a:f2:80: 79:fc:0d:8a:48:16:53:87:44:4b:47:c4:17:5e:fe: 9a:e6:5e:ba:a5:44:16:d1:e9:aa:d9:38:b3:20:dc: 7a:94:b1:3d:d6:5b:1a:3f:a6:d8:3f:ee:61:d1:3f: 4a:e1:7b:ab:e2:7a:bc:80:59:1d:9b:7d:cd:7a:3c: 99:4b:f0:a5:80:2f:1e:88:86:c6:79:29:5c:64:43: 73:dc:39:fb:2f:79:69:21:89:f1:be:f9:da:44:9b: ed:fd:4b:69:56:39:64:43:e7:32:e1:08:a0:1a:7a: 7f:86:e2:8a:31:e9:4a:74:79:d6:cb:b8:a7:d4:c8: 9a:c2:61:44:3d:6c:b0:7a:25:d3:91:50:67:a6:34: 59:bc:1f:1b:95:77:3a:a6:b3:e2:b9:6f:53:3a:f6: c6:a2:5d:49:a5:a6:9b:6c:71:4f:c7:53:15:f1:a4: 2d:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:0E:62:5B:D4:AB:30:54:8C:A3:09:08:0B:15:78:1D:C3:C2:C0:A6 X509v3 Authority Key Identifier: keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/Kw5iW9SrMFSMowkICxV4HcPCwKY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:c08:ffff:ffff:ffff:ffff:fffa:800/119 Signature Algorithm: sha256WithRSAEncryption b1:53:dd:2e:32:29:18:cc:73:7a:2e:9c:bc:19:e4:c6:41:3c: 60:e3:c5:9e:07:85:1f:8e:b7:1a:f8:be:05:4d:97:7b:1c:f8: 5f:eb:40:fe:d5:04:47:97:b5:ea:3e:12:51:a9:2d:a4:67:4f: 6e:69:29:3b:56:55:63:33:a6:ec:39:35:de:ef:95:40:dd:a8: d1:e6:43:c3:9f:43:b8:ab:c5:a7:fc:df:ae:87:89:1f:a5:08: e7:ea:fe:a2:71:3b:dc:dd:e1:27:5a:48:94:bb:f9:fa:7b:40: 1e:f4:23:7b:77:bd:61:cf:0b:d4:e2:16:be:f3:22:74:18:98: 1a:2d:71:66:84:38:6a:13:06:3f:55:90:77:ec:a2:2f:40:32: be:4c:26:ae:5e:e8:52:60:b1:ca:21:f9:7c:89:b9:63:22:57: 73:58:4e:95:46:72:8c:0f:da:24:1b:c3:8f:0b:60:3d:f6:39: e6:88:5c:8c:93:f6:ae:1f:8f:35:d3:da:5d:d4:21:47:96:e5: 80:11:0c:70:de:35:9e:6b:23:a7:4b:74:4e:8f:44:d6:3f:5f: e9:e9:e6:c8:b9:5f:ff:d9:ca:44:e0:e1:07:cd:86:40:48:78: e7:92:1f:93:13:ae:e5:ca:8d:a4:14:77:94:30:34:a8:46:0e: 91:cb:86:27 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgICDL8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzA5 ODRGMDA4Q0EyOEY2NDc1REI0MjYzNTNCRkQxQzQzM0Q4QkMxQTAeFw0yNTAyMTAx NDI5NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJCMEU2MjVCRDRBQjMw NTQ4Q0EzMDkwODBCMTU3ODFEQzNDMkMwQTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKFeUsKWiZeWKvBJ4bVj9Q3zd8q88eQ5RqCN3tNzvSg+Mt8Hpx H6qJ+xm6PeAZR6wCElicPnMlxgALjQzqf1zvG4Hk5M1k96ZiUpZdPBQj4FouiMCk 8krygHn8DYpIFlOHREtHxBde/prmXrqlRBbR6arZOLMg3HqUsT3WWxo/ptg/7mHR P0rhe6vieryAWR2bfc16PJlL8KWALx6IhsZ5KVxkQ3PcOfsveWkhifG++dpEm+39 S2lWOWRD5zLhCKAaen+G4oox6Up0edbLuKfUyJrCYUQ9bLB6JdORUGemNFm8HxuV dzqms+K5b1M69saiXUmlpptscU/HUxXxpC2nAgMBAAGjggH4MIIB9DAdBgNVHQ4E FgQUKw5iW9SrMFSMowkICxV4HcPCwKYwHwYDVR0jBBgwFoAUcJhPAIyij2R120Jj U7/RxDPYvBowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNORVQv Y0poUEFJeWlqMlIxMjBKalU3X1J4RFBZdkJvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9jSmhQQUl5aWoyUjEyMEpqVTdfUnhEUFl2Qm8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BU05FVC9LdzVpVzlTck1GU01vd2tJQ3hW NEhjUEN3S1kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAxABIAEM CP////////////oIMA0GCSqGSIb3DQEBCwUAA4IBAQCxU90uMikYzHN6Lpy8GeTG QTxg48WeB4Ufjrca+L4FTZd7HPhf60D+1QRHl7XqPhJRqS2kZ09uaSk7VlVjM6bs OTXe75VA3ajR5kPDn0O4q8Wn/N+uh4kfpQjn6v6icTvc3eEnWkiUu/n6e0Ae9CN7 d71hzwvU4ha+8yJ0GJgaLXFmhDhqEwY/VZB37KIvQDK+TCauXuhSYLHKIfl8iblj IldzWE6VRnKMD9okG8OPC2A99jnmiFyMk/auH48109pd1CFHluWAEQxw3jWeayOn S3ROj0TWP1/p6ebIuV//2cpE4OEHzYZASHjnkh+TE67lyo2kFHeUMDSoRg6Ry4Yn -----END CERTIFICATE-----Generated at Wed Apr 16 02:26:24 2025 by rpki-client