$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/p-wpyQFKkeOZDS24yiG1JiKxTl8.roa File: p-wpyQFKkeOZDS24yiG1JiKxTl8.roa (raw, json) Hash identifier: tHNaIdIOqqssW+YRuN2cfBlhdro3BgfRlPnHRO47XPM= Subject key identifier: A7:EC:29:C9:01:4A:91:E3:99:0D:2D:B8:CA:21:B5:26:22:B1:4E:5F Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A Certificate serial: 0CBE Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/p-wpyQFKkeOZDS24yiG1JiKxTl8.roa Signing time: Mon 10 Feb 2025 14:29:49 +0000 ROA not before: Mon 10 Feb 2025 14:29:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9264 IP address blocks: 2400:4500::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3262 (0xcbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A Validity Not Before: Feb 10 14:29:49 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A7EC29C9014A91E3990D2DB8CA21B52622B14E5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:3b:ef:f4:39:e6:b9:49:6d:4d:f4:2b:60:c0: d8:ba:25:67:cf:74:32:ec:6d:0b:4d:67:cd:3b:a8: a5:d0:e4:3a:8c:16:05:1c:72:f0:59:55:b8:cd:02: 2d:64:cd:a6:92:16:8f:a9:f2:bb:5d:99:08:45:03: d8:47:ee:9b:26:bc:be:cf:33:1f:f4:9d:ef:33:80: 90:1b:a4:56:c8:75:65:69:44:a8:b5:85:40:8d:80: d9:55:4b:7e:36:c9:17:f2:1e:b3:cf:71:2d:92:bb: 9e:53:a7:82:7d:1b:1f:85:06:90:08:88:c1:b0:d5: 09:45:22:0b:4a:d4:26:f5:f7:54:07:da:fb:7a:6f: ab:4a:19:b7:6d:f6:c1:bc:04:b6:4d:d4:1e:47:17: 27:95:36:33:90:96:97:c7:f1:ad:e8:ff:96:fd:40: 0d:ba:38:30:09:c5:a4:42:9e:67:ff:67:2f:7c:e5: 54:9f:58:ee:12:8d:5d:ca:67:34:8d:ce:31:fc:77: fa:9c:62:eb:e6:a8:15:9d:84:92:3d:40:b8:4c:cc: 41:df:f4:68:93:69:85:0c:b0:1a:d6:c1:16:06:68: 4c:d3:15:ed:ef:ff:57:0a:b3:a6:90:36:3d:62:41: 84:82:06:3c:04:21:db:bf:2c:65:ba:f0:4f:52:ee: b1:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:EC:29:C9:01:4A:91:E3:99:0D:2D:B8:CA:21:B5:26:22:B1:4E:5F X509v3 Authority Key Identifier: keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/p-wpyQFKkeOZDS24yiG1JiKxTl8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:4500::/32 Signature Algorithm: sha256WithRSAEncryption 0b:c5:c8:8d:7d:94:19:7e:e5:7c:f1:37:d0:12:2b:50:51:66: 29:ad:e9:ca:08:94:28:ca:97:20:5f:21:e7:5f:bb:f7:37:5e: 5f:c4:81:b7:10:f3:88:f8:3e:0d:d6:8d:90:ec:2f:56:58:c9: a5:56:6b:32:5f:86:57:8c:85:e8:23:99:2e:5a:1d:7d:b7:df: 7b:26:96:fc:5a:d4:08:e6:43:fa:14:2b:9b:eb:49:35:bb:5e: 65:de:20:4f:32:af:95:82:f3:d7:4c:06:cb:93:55:2a:53:07: b1:86:e2:18:ce:03:8e:f0:1e:53:36:4f:e6:81:e4:62:da:80: bf:e3:be:73:63:42:d9:5f:f8:a7:f6:a3:42:d3:fe:4b:b9:b9: ed:75:0c:24:5d:98:6f:0c:2c:c7:5b:10:18:a1:86:f7:30:d7: d8:20:8d:a8:e9:d9:13:84:72:8d:9b:f5:ae:8c:f8:fe:b5:6c: 57:12:2a:5b:a8:ee:e7:3f:e5:f5:eb:16:58:08:e0:e4:a6:e2: b8:48:25:31:6c:50:f7:a5:8b:6b:5a:ce:0b:52:ff:99:06:d3: 34:6f:32:ca:94:07:17:7b:59:5d:24:96:d8:96:d1:88:29:08: a7:91:d8:73:52:76:60:45:ab:ba:26:c7:63:56:38:6b:8a:43: 56:b1:2e:61 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDL4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzA5 ODRGMDA4Q0EyOEY2NDc1REI0MjYzNTNCRkQxQzQzM0Q4QkMxQTAeFw0yNTAyMTAx NDI5NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE3RUMyOUM5MDE0QTkx RTM5OTBEMkRCOENBMjFCNTI2MjJCMTRFNUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSO+/0Oea5SW1N9CtgwNi6JWfPdDLsbQtNZ807qKXQ5DqMFgUc cvBZVbjNAi1kzaaSFo+p8rtdmQhFA9hH7psmvL7PMx/0ne8zgJAbpFbIdWVpRKi1 hUCNgNlVS342yRfyHrPPcS2Su55Tp4J9Gx+FBpAIiMGw1QlFIgtK1Cb191QH2vt6 b6tKGbdt9sG8BLZN1B5HFyeVNjOQlpfH8a3o/5b9QA26ODAJxaRCnmf/Zy985VSf WO4SjV3KZzSNzjH8d/qcYuvmqBWdhJI9QLhMzEHf9GiTaYUMsBrWwRYGaEzTFe3v /1cKs6aQNj1iQYSCBjwEIdu/LGW68E9S7rGJAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUp+wpyQFKkeOZDS24yiG1JiKxTl8wHwYDVR0jBBgwFoAUcJhPAIyij2R120Jj U7/RxDPYvBowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNORVQv Y0poUEFJeWlqMlIxMjBKalU3X1J4RFBZdkJvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9jSmhQQUl5aWoyUjEyMEpqVTdfUnhEUFl2Qm8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BU05FVC9wLXdweVFGS2tlT1pEUzI0eWlH MUppS3hUbDgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJABF ADANBgkqhkiG9w0BAQsFAAOCAQEAC8XIjX2UGX7lfPE30BIrUFFmKa3pygiUKMqX IF8h51+79zdeX8SBtxDziPg+DdaNkOwvVljJpVZrMl+GV4yF6COZLlodfbffeyaW /FrUCOZD+hQrm+tJNbteZd4gTzKvlYLz10wGy5NVKlMHsYbiGM4DjvAeUzZP5oHk YtqAv+O+c2NC2V/4p/ajQtP+S7m57XUMJF2Ybwwsx1sQGKGG9zDX2CCNqOnZE4Ry jZv1roz4/rVsVxIqW6ju5z/l9esWWAjg5KbiuEglMWxQ96WLa1rOC1L/mQbTNG8y ypQHF3tZXSSW2JbRiCkIp5HYc1J2YEWruibHY1Y4a4pDVrEuYQ== -----END CERTIFICATE-----Generated at Fri Apr 18 15:44:04 2025 by rpki-client