$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/_-pNbKWWYFAD4VesqFNxb2PL_TE.roa File: _-pNbKWWYFAD4VesqFNxb2PL_TE.roa (raw, json) Hash identifier: J+3UrHRxIL6I3H9twAhPye2dlQO/7S+qJIqFdUdoIX4= Subject key identifier: FF:EA:4D:6C:A5:96:60:50:03:E1:57:AC:A8:53:71:6F:63:CB:FD:31 Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A Certificate serial: 0CC1 Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/_-pNbKWWYFAD4VesqFNxb2PL_TE.roa Signing time: Mon 10 Feb 2025 14:29:49 +0000 ROA not before: Mon 10 Feb 2025 14:29:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9264 IP address blocks: 2403:c240::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3265 (0xcc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A Validity Not Before: Feb 10 14:29:49 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FFEA4D6CA596605003E157ACA853716F63CBFD31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ab:9d:e0:aa:d6:cf:f4:a1:9e:c3:e8:da:8f: cd:17:77:e0:38:3b:9b:33:df:60:9b:f5:2e:52:f1: 85:3e:47:e0:75:c5:15:ed:98:81:05:10:c5:2c:ce: 08:12:3c:39:35:fd:8a:32:70:24:d8:8d:db:73:80: 8c:c2:9e:46:8d:d3:b8:e0:48:29:18:17:2d:b5:64: d0:4a:79:93:bc:23:59:cd:7f:b4:6b:d4:87:0d:55: 11:7b:76:26:ea:a2:eb:0d:90:8d:11:a8:2d:37:7d: 49:d9:b9:e0:30:9e:b5:56:6b:f9:54:88:11:e6:70: d6:64:f8:09:33:9d:bd:85:93:bb:9d:91:66:0f:0f: 78:50:63:3e:02:24:44:81:98:c8:20:0f:16:3e:a6: da:05:44:e0:cf:60:34:b5:35:ca:b4:7d:b4:6c:44: 80:95:ea:07:bf:d6:dd:7f:44:e9:12:39:0d:db:3a: fe:39:a9:13:56:32:af:6a:97:11:cb:96:64:91:ae: fb:c3:7a:15:82:5f:16:0e:77:8b:9c:53:16:bc:79: 7d:5f:69:0e:b3:4e:85:e6:f5:de:b4:57:c3:18:99: ae:46:ae:2c:03:2d:cc:76:f5:7d:01:36:0a:29:eb: 3e:0f:fb:0c:8c:40:f3:2b:36:72:b9:bd:d8:67:e7: 2f:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:EA:4D:6C:A5:96:60:50:03:E1:57:AC:A8:53:71:6F:63:CB:FD:31 X509v3 Authority Key Identifier: keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/_-pNbKWWYFAD4VesqFNxb2PL_TE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:c240::/32 Signature Algorithm: sha256WithRSAEncryption 1c:ac:33:2d:b2:e2:d0:d3:b2:cc:67:a5:95:a9:b5:1e:9c:32: 7e:46:51:d1:a3:64:2e:fb:6d:d2:7e:c7:ba:cd:6f:64:12:aa: 6f:24:69:2f:ec:3b:90:69:ee:fb:d4:38:4d:43:d5:63:41:d9: bc:ab:4e:fc:75:4f:cb:cc:11:8c:27:5c:8c:46:82:77:e9:58: 63:59:79:be:fd:29:ce:23:a6:4c:b3:13:bd:65:26:2b:03:20: f6:9c:49:05:bd:08:e9:0f:34:5f:2d:e0:a7:2b:20:7e:57:57: 2b:68:1d:61:07:a9:99:28:94:36:ae:39:b8:f4:1c:f4:06:9e: 30:78:f6:cc:60:2f:93:68:97:87:34:95:bc:27:c8:9b:48:1b: 84:f8:ee:77:05:f8:0f:ff:f8:0b:11:a7:fc:b8:6a:be:01:2f: 52:31:b8:ea:a0:30:28:ff:2b:16:65:03:78:4a:e9:31:41:d1: a3:2a:95:97:5f:fe:21:a6:fe:52:9b:a3:3e:89:69:fd:7c:02: cb:0e:65:de:ec:d6:e7:6c:6b:1f:06:db:7e:f4:d0:80:4a:0b: b7:7e:7b:c2:7c:67:70:db:b0:4b:f0:02:d9:ef:04:07:9c:8f: 47:20:1f:b3:c8:71:3a:cd:a4:21:4a:9c:d0:78:e6:4e:9a:1d: 1c:30:95:3c -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDMEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzA5 ODRGMDA4Q0EyOEY2NDc1REI0MjYzNTNCRkQxQzQzM0Q4QkMxQTAeFw0yNTAyMTAx NDI5NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZGRUE0RDZDQTU5NjYw NTAwM0UxNTdBQ0E4NTM3MTZGNjNDQkZEMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCq53gqtbP9KGew+jaj80Xd+A4O5sz32Cb9S5S8YU+R+B1xRXt mIEFEMUszggSPDk1/YoycCTYjdtzgIzCnkaN07jgSCkYFy21ZNBKeZO8I1nNf7Rr 1IcNVRF7dibqousNkI0RqC03fUnZueAwnrVWa/lUiBHmcNZk+Akznb2Fk7udkWYP D3hQYz4CJESBmMggDxY+ptoFRODPYDS1Ncq0fbRsRICV6ge/1t1/ROkSOQ3bOv45 qRNWMq9qlxHLlmSRrvvDehWCXxYOd4ucUxa8eX1faQ6zToXm9d60V8MYma5GriwD Lcx29X0BNgop6z4P+wyMQPMrNnK5vdhn5y+VAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQU/+pNbKWWYFAD4VesqFNxb2PL/TEwHwYDVR0jBBgwFoAUcJhPAIyij2R120Jj U7/RxDPYvBowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNORVQv Y0poUEFJeWlqMlIxMjBKalU3X1J4RFBZdkJvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9jSmhQQUl5aWoyUjEyMEpqVTdfUnhEUFl2Qm8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BU05FVC9fLXBOYktXV1lGQUQ0VmVzcUZO eGIyUExfVEUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAPC QDANBgkqhkiG9w0BAQsFAAOCAQEAHKwzLbLi0NOyzGellam1HpwyfkZR0aNkLvtt 0n7Hus1vZBKqbyRpL+w7kGnu+9Q4TUPVY0HZvKtO/HVPy8wRjCdcjEaCd+lYY1l5 vv0pziOmTLMTvWUmKwMg9pxJBb0I6Q80Xy3gpysgfldXK2gdYQepmSiUNq45uPQc 9AaeMHj2zGAvk2iXhzSVvCfIm0gbhPjudwX4D//4CxGn/LhqvgEvUjG46qAwKP8r FmUDeErpMUHRoyqVl1/+Iab+UpujPolp/XwCyw5l3uzW52xrHwbbfvTQgEoLt357 wnxncNuwS/AC2e8EB5yPRyAfs8hxOs2kIUqc0HjmTpodHDCVPA== -----END CERTIFICATE-----Generated at Fri Apr 18 15:38:43 2025 by rpki-client