$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/JSD3lOwoodsex2vgYhLy56PGW94.roa File: JSD3lOwoodsex2vgYhLy56PGW94.roa (raw, json) Hash identifier: Toe5KqgCRMaNQZUnpUtWaTnnEEx9V1ACHSy2rfuc7MI= Subject key identifier: 25:20:F7:94:EC:28:A1:DB:1E:C7:6B:E0:62:12:F2:E7:A3:C6:5B:DE Certificate issuer: /CN=44F8DCF66B25B719056D1ED65C16EA9257E5553D Certificate serial: 03E2 Authority key identifier: 44:F8:DC:F6:6B:25:B7:19:05:6D:1E:D6:5C:16:EA:92:57:E5:55:3D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RPjc9msltxkFbR7WXBbqklflVT0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/JSD3lOwoodsex2vgYhLy56PGW94.roa Signing time: Mon 10 Feb 2025 14:00:20 +0000 ROA not before: Mon 10 Feb 2025 14:00:20 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152611 IP address blocks: 160.30.78.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/RPjc9msltxkFbR7WXBbqklflVT0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/RPjc9msltxkFbR7WXBbqklflVT0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RPjc9msltxkFbR7WXBbqklflVT0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 14:08:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 994 (0x3e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44F8DCF66B25B719056D1ED65C16EA9257E5553D Validity Not Before: Feb 10 14:00:20 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2520F794EC28A1DB1EC76BE06212F2E7A3C65BDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:1c:3f:a7:87:6c:7a:bf:5c:6f:68:3c:c1:a1: 5c:80:06:42:e6:46:63:75:4c:42:19:05:75:48:d4: ea:ee:e4:9a:9d:84:27:76:c0:59:1a:89:b0:bc:e8: 80:d4:0f:3f:8a:a5:2f:26:8c:6d:11:99:6f:0d:0e: 6a:cc:6f:88:cb:94:9a:63:21:8f:79:6b:bf:b1:e6: 28:27:76:03:42:3a:66:1d:e4:25:7f:ef:c1:ef:d8: 11:77:35:af:f3:eb:b5:7b:11:75:91:d4:aa:65:09: e3:5c:f2:8d:b4:c0:85:b4:1e:e7:10:50:40:c6:35: 04:4d:ac:8b:bf:dc:80:d6:e0:a9:ed:84:29:34:d1: 00:e7:42:56:ab:9e:d9:6f:f4:63:4a:2d:23:0c:fe: 68:5b:71:40:1b:5a:ea:0a:5f:8c:50:20:19:50:6e: ce:d2:02:fb:8e:c4:67:0f:7e:6c:8b:4b:0c:03:7a: f8:5d:fa:dc:db:82:aa:52:67:d1:15:52:ca:46:36: 41:89:1a:35:69:5f:3f:50:35:22:8a:d5:50:e6:9b: bf:c4:43:78:40:15:4f:d0:88:da:8f:64:02:7f:ea: 3c:88:d6:47:39:42:22:05:93:c6:40:9e:85:68:9a: 36:31:1f:ff:2d:d6:91:b8:4d:7b:7a:9e:cc:99:b6: 5f:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:20:F7:94:EC:28:A1:DB:1E:C7:6B:E0:62:12:F2:E7:A3:C6:5B:DE X509v3 Authority Key Identifier: keyid:44:F8:DC:F6:6B:25:B7:19:05:6D:1E:D6:5C:16:EA:92:57:E5:55:3D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/RPjc9msltxkFbR7WXBbqklflVT0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RPjc9msltxkFbR7WXBbqklflVT0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/JSD3lOwoodsex2vgYhLy56PGW94.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.30.78.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:3e:43:d0:b5:24:65:81:06:1a:6e:22:19:2d:2f:e2:80:9b: 24:9a:59:f3:44:2c:c1:59:30:02:fb:f8:63:8e:5f:d0:7c:69: f9:21:e8:59:e2:5b:ae:7d:8b:86:c0:47:c5:d2:81:f0:69:c8: ca:f0:be:39:0a:09:55:42:fc:4a:76:d4:5f:7b:44:57:60:5e: c6:6a:c8:f4:6e:a0:84:70:41:c2:39:13:79:31:11:bf:33:5b: 16:91:b7:5c:5d:64:ac:c8:55:e0:13:34:f6:f9:61:59:34:80: 9a:bf:5a:79:0e:59:c0:f0:98:55:7b:51:15:54:ee:ac:fa:54: 1a:ee:cc:22:66:bd:43:12:ec:26:ed:1a:e1:87:a2:9d:47:8c: 54:01:ba:72:8c:70:d1:1f:8e:d3:95:ec:9b:fa:d2:e3:5c:99: 8a:ba:6c:53:c4:ec:34:88:d8:55:3c:c5:dc:72:19:06:85:20: 8d:2e:eb:e6:ee:3b:fa:56:72:bf:b2:00:60:f7:2d:12:af:56: 58:85:13:da:63:b1:2d:68:59:a9:70:4f:89:83:60:56:87:b3: 02:de:3d:10:54:39:80:28:56:d0:dd:a4:50:ee:28:8c:89:ba: e2:db:a6:da:a9:ec:5e:bd:0a:ee:8c:8d:5f:91:ad:d2:66:f0: 6b:67:17:b0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICA+IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDRG OERDRjY2QjI1QjcxOTA1NkQxRUQ2NUMxNkVBOTI1N0U1NTUzRDAeFw0yNTAyMTAx NDAwMjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI1MjBGNzk0RUMyOEEx REIxRUM3NkJFMDYyMTJGMkU3QTNDNjVCREUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXHD+nh2x6v1xvaDzBoVyABkLmRmN1TEIZBXVI1Oru5JqdhCd2 wFkaibC86IDUDz+KpS8mjG0RmW8NDmrMb4jLlJpjIY95a7+x5igndgNCOmYd5CV/ 78Hv2BF3Na/z67V7EXWR1KplCeNc8o20wIW0HucQUEDGNQRNrIu/3IDW4KnthCk0 0QDnQlarntlv9GNKLSMM/mhbcUAbWuoKX4xQIBlQbs7SAvuOxGcPfmyLSwwDevhd +tzbgqpSZ9EVUspGNkGJGjVpXz9QNSKK1VDmm7/EQ3hAFU/QiNqPZAJ/6jyI1kc5 QiIFk8ZAnoVomjYxH/8t1pG4TXt6nsyZtl8ZAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUJSD3lOwoodsex2vgYhLy56PGW94wHwYDVR0jBBgwFoAURPjc9msltxkFbR7W XBbqklflVT0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVJRE9V L1JQamM5bXNsdHhrRmJSN1dYQmJxa2xmbFZUMC5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvUlBqYzltc2x0eGtGYlI3V1hCYnFrbGZsVlQwLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVJRE9VL0pTRDNsT3dvb2RzZXgydmdZ aEx5NTZQR1c5NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGg Hk4wDQYJKoZIhvcNAQELBQADggEBAH4+Q9C1JGWBBhpuIhktL+KAmySaWfNELMFZ MAL7+GOOX9B8afkh6FniW659i4bAR8XSgfBpyMrwvjkKCVVC/Ep21F97RFdgXsZq yPRuoIRwQcI5E3kxEb8zWxaRt1xdZKzIVeATNPb5YVk0gJq/WnkOWcDwmFV7URVU 7qz6VBruzCJmvUMS7CbtGuGHop1HjFQBunKMcNEfjtOV7Jv60uNcmYq6bFPE7DSI 2FU8xdxyGQaFII0u6+buO/pWcr+yAGD3LRKvVliFE9pjsS1oWalwT4mDYFaHswLe PRBUOYAoVtDdpFDuKIyJuuLbptqp7F69Cu6MjV+RrdJm8GtnF7A= -----END CERTIFICATE-----Generated at Wed Apr 16 12:45:04 2025 by rpki-client