$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/XvW3FGlq0MFwhXB7t0o-dj0Rhq4.roa File: XvW3FGlq0MFwhXB7t0o-dj0Rhq4.roa (raw, json) Hash identifier: xUZ9aj/msdMfDuid9fi8MaQ7M0Vz0xUZWTH2CagJStg= Subject key identifier: 5E:F5:B7:14:69:6A:D0:C1:70:85:70:7B:B7:4A:3E:76:3D:11:86:AE Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A Certificate serial: 0CC3 Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/XvW3FGlq0MFwhXB7t0o-dj0Rhq4.roa Signing time: Mon 10 Feb 2025 14:29:50 +0000 ROA not before: Mon 10 Feb 2025 14:29:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9264 IP address blocks: 2001:c08::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3267 (0xcc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A Validity Not Before: Feb 10 14:29:50 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5EF5B714696AD0C17085707BB74A3E763D1186AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ec:b2:9a:25:c4:63:93:dd:fd:a3:e1:8c:a8: d9:37:ab:45:7f:76:ea:3c:56:21:4d:6e:18:ef:03: b9:f1:4e:3e:27:8c:d8:9c:9d:89:ea:d5:51:dc:24: d1:4a:ef:bf:25:55:f0:39:5c:08:c4:b3:37:ba:e2: 04:9d:cd:03:66:3e:50:8f:6a:ef:6d:fa:e8:e0:55: 45:dd:f5:83:b9:1b:44:e6:29:d6:10:43:83:8b:db: 78:8a:7c:88:85:af:ed:97:90:87:05:ae:7f:5e:19: ab:9e:26:78:b8:d5:b5:d2:98:ec:2d:cc:db:00:89: c8:85:9f:81:d9:c7:39:58:95:e6:32:c1:19:fb:6b: 2f:0c:87:a1:29:04:40:42:ad:28:e0:6f:e8:d2:9d: 35:c7:03:ca:92:77:3d:bc:62:4a:75:be:24:b8:38: 83:90:1a:ad:7c:dd:70:87:6d:3c:76:3d:18:d1:5f: 43:1a:5f:34:09:86:6d:fc:3b:b1:a5:75:cd:e7:58: 4f:55:e8:0a:6d:75:11:4c:36:1a:41:5b:8d:be:62: 41:b5:55:28:5e:75:20:a2:ca:63:6a:26:81:1d:e4: d3:b8:a1:89:0e:61:65:22:e8:4e:6a:2b:26:d9:55: c1:67:29:3a:2e:0d:20:70:85:b7:cc:58:20:a7:ee: 4c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:F5:B7:14:69:6A:D0:C1:70:85:70:7B:B7:4A:3E:76:3D:11:86:AE X509v3 Authority Key Identifier: keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/XvW3FGlq0MFwhXB7t0o-dj0Rhq4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:c08::/32 Signature Algorithm: sha256WithRSAEncryption 99:ab:78:82:77:22:84:b3:4d:0b:de:dd:e7:4b:df:a6:21:f3: d3:3d:9c:bc:53:31:7d:1f:11:0b:3b:86:d9:3c:59:72:f2:1b: bc:3e:6f:07:32:cd:69:79:24:7f:7d:86:78:24:7e:55:0b:7f: 12:17:34:f5:08:bf:73:64:80:57:d0:5b:7a:d3:17:93:59:c2: 3d:17:11:7f:5c:77:b8:17:85:27:36:b6:2c:00:9d:ad:ed:4c: 6a:b1:f1:0d:09:45:c4:c9:04:69:6f:5d:d5:d9:99:01:65:05: 0d:b6:e9:f3:f6:58:02:96:49:82:5f:71:8e:5b:b4:83:6d:69: a6:42:90:bc:9d:bc:d0:ba:62:7e:7e:8b:93:81:78:b3:5f:b7: f9:f3:da:db:a7:86:10:cb:fd:27:d3:9d:8a:84:5a:dd:0a:03: 77:8b:03:59:b9:03:d9:ae:20:2d:99:f1:f9:62:36:1f:11:3f: 9f:cf:c5:74:f2:59:9f:72:be:af:28:42:52:9b:19:26:df:c3: 4b:38:69:fb:67:06:b8:42:23:f2:06:04:1b:15:d3:38:2f:fb: a8:57:32:87:a8:7e:87:b1:95:5d:de:0d:da:35:0a:99:e2:79: ea:17:e4:ba:a2:d2:b9:8c:97:6b:28:43:66:a1:0b:2c:7e:ae: ef:5e:c6:a9 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDMMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzA5 ODRGMDA4Q0EyOEY2NDc1REI0MjYzNTNCRkQxQzQzM0Q4QkMxQTAeFw0yNTAyMTAx NDI5NTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVFRjVCNzE0Njk2QUQw QzE3MDg1NzA3QkI3NEEzRTc2M0QxMTg2QUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDH7LKaJcRjk939o+GMqNk3q0V/duo8ViFNbhjvA7nxTj4njNic nYnq1VHcJNFK778lVfA5XAjEsze64gSdzQNmPlCPau9t+ujgVUXd9YO5G0TmKdYQ Q4OL23iKfIiFr+2XkIcFrn9eGaueJni41bXSmOwtzNsAiciFn4HZxzlYleYywRn7 ay8Mh6EpBEBCrSjgb+jSnTXHA8qSdz28Ykp1viS4OIOQGq183XCHbTx2PRjRX0Ma XzQJhm38O7Gldc3nWE9V6AptdRFMNhpBW42+YkG1VShedSCiymNqJoEd5NO4oYkO YWUi6E5qKybZVcFnKTouDSBwhbfMWCCn7kwBAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUXvW3FGlq0MFwhXB7t0o+dj0Rhq4wHwYDVR0jBBgwFoAUcJhPAIyij2R120Jj U7/RxDPYvBowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNORVQv Y0poUEFJeWlqMlIxMjBKalU3X1J4RFBZdkJvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9jSmhQQUl5aWoyUjEyMEpqVTdfUnhEUFl2Qm8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BU05FVC9YdlczRkdscTBNRndoWEI3dDBv LWRqMFJocTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAIAEM CDANBgkqhkiG9w0BAQsFAAOCAQEAmat4gncihLNNC97d50vfpiHz0z2cvFMxfR8R CzuG2TxZcvIbvD5vBzLNaXkkf32GeCR+VQt/Ehc09Qi/c2SAV9BbetMXk1nCPRcR f1x3uBeFJza2LACdre1MarHxDQlFxMkEaW9d1dmZAWUFDbbp8/ZYApZJgl9xjlu0 g21ppkKQvJ280Lpifn6Lk4F4s1+3+fPa26eGEMv9J9OdioRa3QoDd4sDWbkD2a4g LZnx+WI2HxE/n8/FdPJZn3K+ryhCUpsZJt/DSzhp+2cGuEIj8gYEGxXTOC/7qFcy h6h+h7GVXd4N2jUKmeJ56hfkuqLSuYyXayhDZqELLH6u717GqQ== -----END CERTIFICATE-----Generated at Fri Apr 18 15:45:36 2025 by rpki-client