$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CATHDD/M4vhuu5U51Y-xmnsw_f0FNSLF8Q.roa File: M4vhuu5U51Y-xmnsw_f0FNSLF8Q.roa (raw, json) Hash identifier: uQtQbaYKHUunOImbA4MscLrOidPRNo4RF0XrZEYjy44= Subject key identifier: 33:8B:E1:BA:EE:54:E7:56:3E:C6:69:EC:C3:F7:F4:14:D4:8B:17:C4 Certificate issuer: /CN=20ACCA8718500373AFF77B414B23DC6A5F1474EE Certificate serial: 02F6 Authority key identifier: 20:AC:CA:87:18:50:03:73:AF:F7:7B:41:4B:23:DC:6A:5F:14:74:EE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/M4vhuu5U51Y-xmnsw_f0FNSLF8Q.roa Signing time: Thu 06 Mar 2025 13:01:46 +0000 ROA not before: Thu 06 Mar 2025 13:01:46 +0000 ROA not after: Wed 15 Oct 2025 15:30:20 +0000 asID: 9923 IP address blocks: 160.191.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 01:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 758 (0x2f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20ACCA8718500373AFF77B414B23DC6A5F1474EE Validity Not Before: Mar 6 13:01:46 2025 GMT Not After : Oct 15 15:30:20 2025 GMT Subject: CN=338BE1BAEE54E7563EC669ECC3F7F414D48B17C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:04:93:da:aa:4d:0b:ed:0b:3f:ce:cf:31:43: f7:e8:77:a3:c8:63:5c:d2:10:b5:e9:20:58:ab:f4: 81:1d:e0:2e:bc:03:0b:ac:a0:b6:66:5d:32:27:e3: bb:43:75:4e:ae:4c:6b:27:ea:2c:09:09:68:40:f6: fe:4a:19:25:d0:e1:c2:77:3d:68:fe:85:b3:2f:4d: e7:81:6d:a2:c0:1e:bb:ca:bd:7d:9f:53:40:cc:1e: 27:95:ba:a1:38:07:45:8f:26:55:b2:31:26:03:da: 44:37:a3:30:02:cb:27:53:9c:4d:2f:e4:bc:7f:cb: 09:13:d6:98:ff:00:73:58:c5:3f:42:ca:99:8f:c5: ba:d4:32:88:c6:9b:e9:2a:a2:1b:28:cb:ca:12:a8: 6b:f6:a0:3f:b2:2d:7f:5b:d7:79:24:26:f3:7c:96: 62:50:96:82:b6:2a:db:a5:38:be:ba:7f:df:cd:61: 85:bc:ae:20:45:96:64:dd:b0:08:53:84:3e:1f:85: 0b:95:9d:27:bb:99:e0:3b:3d:c4:23:5e:3b:6d:75: e4:8d:fe:03:77:ba:80:2e:04:01:09:29:65:36:d1: 4f:52:94:66:27:21:c7:48:9d:6d:46:de:94:7a:36: cf:a5:58:90:5c:27:70:5c:57:7d:58:20:0d:6d:57: e6:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:8B:E1:BA:EE:54:E7:56:3E:C6:69:EC:C3:F7:F4:14:D4:8B:17:C4 X509v3 Authority Key Identifier: keyid:20:AC:CA:87:18:50:03:73:AF:F7:7B:41:4B:23:DC:6A:5F:14:74:EE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/M4vhuu5U51Y-xmnsw_f0FNSLF8Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.191.8.0/24 Signature Algorithm: sha256WithRSAEncryption 94:e3:cd:87:49:3e:0c:2f:97:1a:1a:2a:d5:9f:bd:9e:2a:a4: 22:ad:92:c3:4d:0f:6f:c2:dd:8d:61:16:fb:c3:45:b8:40:bd: 71:77:57:58:ff:7b:ec:14:dc:15:4a:ec:05:64:7e:50:4f:25: 81:d2:c6:2e:b0:64:05:01:87:ce:d7:00:95:95:7d:5e:c2:22: 96:64:85:8d:9d:c2:9d:8d:16:3f:25:ec:04:fb:5d:48:ef:d6: 31:33:86:20:26:c5:38:27:9e:c8:c5:0a:ad:f1:98:99:45:bf: ff:62:c7:ec:9c:22:de:3e:1c:d0:62:4d:46:36:4c:5b:5b:26: 5a:37:6a:06:d8:71:83:a4:ea:a0:99:5d:28:52:72:12:9a:12: d3:77:56:03:99:c6:ab:78:26:63:a7:6c:5c:f2:7f:58:3c:ca: 48:f7:40:24:03:23:ea:fb:d9:f9:de:fe:73:e7:1d:0f:76:e0: dd:75:c0:49:59:fa:ea:a9:56:2c:c4:89:60:34:d9:f6:76:d1: 09:15:45:18:5c:23:e8:48:ca:8c:89:f4:6f:b1:dd:2f:3a:13: 21:85:92:bb:da:0d:b6:cb:8a:4c:71:cf:0d:05:78:04:29:6e: 92:b1:f5:84:2b:42:77:ca:70:21:3f:28:c6:3e:c5:73:79:0e: 53:e6:92:37 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICAvYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjBB Q0NBODcxODUwMDM3M0FGRjc3QjQxNEIyM0RDNkE1RjE0NzRFRTAeFw0yNTAzMDYx MzAxNDZaFw0yNTEwMTUxNTMwMjBaMDMxMTAvBgNVBAMTKDMzOEJFMUJBRUU1NEU3 NTYzRUM2NjlFQ0MzRjdGNDE0RDQ4QjE3QzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/BJPaqk0L7Qs/zs8xQ/fod6PIY1zSELXpIFir9IEd4C68Awus oLZmXTIn47tDdU6uTGsn6iwJCWhA9v5KGSXQ4cJ3PWj+hbMvTeeBbaLAHrvKvX2f U0DMHieVuqE4B0WPJlWyMSYD2kQ3ozACyydTnE0v5Lx/ywkT1pj/AHNYxT9CypmP xbrUMojGm+kqohsoy8oSqGv2oD+yLX9b13kkJvN8lmJQloK2KtulOL66f9/NYYW8 riBFlmTdsAhThD4fhQuVnSe7meA7PcQjXjttdeSN/gN3uoAuBAEJKWU20U9SlGYn IcdInW1G3pR6Ns+lWJBcJ3BcV31YIA1tV+bFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUM4vhuu5U51Y+xmnsw/f0FNSLF8QwHwYDVR0jBBgwFoAUIKzKhxhQA3Ov93tB SyPcal8UdO4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FUSERE L0lLektoeGhRQTNPdjkzdEJTeVBjYWw4VWRPNC5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSUt6S2h4aFFBM092OTN0QlN5UGNhbDhVZE80LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FUSEREL000dmh1dTVVNTFZLXhtbnN3 X2YwRk5TTEY4US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACg vwgwDQYJKoZIhvcNAQELBQADggEBAJTjzYdJPgwvlxoaKtWfvZ4qpCKtksNND2/C 3Y1hFvvDRbhAvXF3V1j/e+wU3BVK7AVkflBPJYHSxi6wZAUBh87XAJWVfV7CIpZk hY2dwp2NFj8l7AT7XUjv1jEzhiAmxTgnnsjFCq3xmJlFv/9ix+ycIt4+HNBiTUY2 TFtbJlo3agbYcYOk6qCZXShSchKaEtN3VgOZxqt4JmOnbFzyf1g8ykj3QCQDI+r7 2fne/nPnHQ924N11wElZ+uqpVizEiWA02fZ20QkVRRhcI+hIyoyJ9G+x3S86EyGF krvaDbbLikxxzw0FeAQpbpKx9YQrQnfKcCE/KMY+xXN5DlPmkjc= -----END CERTIFICATE-----Generated at Sun Apr 6 22:18:29 2025 by rpki-client