$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CATHDD/TB4OghHOYepbZGIguSbFaOXnyug.roa File: TB4OghHOYepbZGIguSbFaOXnyug.roa (raw, json) Hash identifier: WBlKAfz1GOqu/s2pyW1i1l2hbHGVVP9DmA7FYhvOyCk= Subject key identifier: 4C:1E:0E:82:11:CE:61:EA:5B:64:62:20:B9:26:C5:68:E5:E7:CA:E8 Certificate issuer: /CN=20ACCA8718500373AFF77B414B23DC6A5F1474EE Certificate serial: 027B Authority key identifier: 20:AC:CA:87:18:50:03:73:AF:F7:7B:41:4B:23:DC:6A:5F:14:74:EE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/TB4OghHOYepbZGIguSbFaOXnyug.roa Signing time: Mon 10 Feb 2025 14:05:30 +0000 ROA not before: Mon 10 Feb 2025 14:05:30 +0000 ROA not after: Wed 15 Oct 2025 15:30:20 +0000 asID: 150766 IP address blocks: 160.191.8.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 635 (0x27b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20ACCA8718500373AFF77B414B23DC6A5F1474EE Validity Not Before: Feb 10 14:05:30 2025 GMT Not After : Oct 15 15:30:20 2025 GMT Subject: CN=4C1E0E8211CE61EA5B646220B926C568E5E7CAE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:61:7b:30:79:70:4c:4c:1e:88:aa:47:2c:23: 63:9b:10:73:54:95:af:2b:e2:4a:ea:ee:32:52:8a: 27:a0:98:6d:4a:0b:16:6a:61:5e:20:29:2f:15:cd: 64:9a:97:b5:9b:f0:85:a7:15:5e:9a:04:2a:34:18: b9:fb:4b:d5:50:29:24:d4:ee:00:05:59:af:64:e4: a9:c7:3e:e1:88:f6:b2:37:78:1f:cf:7c:fd:51:76: 8e:5c:e4:12:34:43:2c:68:17:1a:8f:30:5e:d8:18: b2:31:2d:cb:a6:17:d3:25:83:a0:a6:40:14:97:e1: 35:59:f0:7e:f4:db:93:a1:a3:d8:53:3f:95:62:c0: 74:7f:d7:50:35:f0:9b:a5:cd:87:63:09:94:9a:98: 9a:25:f1:00:a8:11:9f:f4:81:83:35:63:15:4b:fc: ff:ac:19:7d:14:4e:92:33:58:ae:3d:9f:e0:b3:13: c1:af:f7:b5:e5:d3:7d:71:23:1d:e1:2b:73:84:a8: 1a:a7:8a:d2:7e:5c:09:96:ea:93:05:3f:a2:bd:1a: 65:4e:06:03:b3:b9:23:7b:8d:4a:fa:5f:84:17:ea: 87:8a:48:4d:7d:53:3e:0d:84:64:80:8f:3a:dc:b9: 2a:c2:5f:f9:6b:87:a6:14:b8:e8:25:74:2b:bb:6b: 83:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:1E:0E:82:11:CE:61:EA:5B:64:62:20:B9:26:C5:68:E5:E7:CA:E8 X509v3 Authority Key Identifier: keyid:20:AC:CA:87:18:50:03:73:AF:F7:7B:41:4B:23:DC:6A:5F:14:74:EE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/TB4OghHOYepbZGIguSbFaOXnyug.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.191.8.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:31:fe:df:83:66:d8:ac:68:36:24:27:6f:d5:85:b9:ee:81: 79:d4:00:3b:93:97:04:fd:43:f9:29:3c:92:e8:6f:6e:a0:65: 2a:fe:03:a8:a8:a5:4d:3b:f7:1b:a9:9a:be:51:8d:76:5c:95: 84:1f:aa:04:17:f5:ad:ff:79:1d:c6:59:0c:1b:23:e3:91:a3: f9:f5:13:31:07:b7:d7:7f:27:a7:8d:8c:37:f9:e8:36:81:62: 8b:9c:1b:e9:02:ca:02:2f:b5:b6:b5:55:d4:63:b0:ef:02:68: 5f:38:ff:3b:56:51:f1:cb:bb:d8:d1:a2:0e:a6:17:06:2a:78: 5e:53:d5:40:1d:15:e6:4f:68:e1:a7:ef:a0:f5:ac:d6:f4:0e: ad:f6:6b:e8:9c:48:9e:c0:8d:d6:bb:47:cf:07:b1:7c:cd:78: d5:f2:80:69:dd:1a:ba:0d:f8:88:d4:a6:56:02:82:0e:ad:b3: f6:33:e2:a8:80:7d:30:2a:2a:b9:8d:19:92:31:2b:52:06:58: fc:57:18:bd:c7:c7:f6:37:71:1c:1f:07:80:a2:8b:93:13:1f: 8c:71:00:a8:ec:7b:ed:28:6f:62:d3:dc:33:31:04:5d:4f:99: 8e:a9:4a:76:95:90:8f:4d:07:1e:04:49:ab:49:47:ca:e7:45: 29:67:1f:ce -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICAnswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjBB Q0NBODcxODUwMDM3M0FGRjc3QjQxNEIyM0RDNkE1RjE0NzRFRTAeFw0yNTAyMTAx NDA1MzBaFw0yNTEwMTUxNTMwMjBaMDMxMTAvBgNVBAMTKDRDMUUwRTgyMTFDRTYx RUE1QjY0NjIyMEI5MjZDNTY4RTVFN0NBRTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtYXsweXBMTB6IqkcsI2ObEHNUla8r4krq7jJSiiegmG1KCxZq YV4gKS8VzWSal7Wb8IWnFV6aBCo0GLn7S9VQKSTU7gAFWa9k5KnHPuGI9rI3eB/P fP1Rdo5c5BI0QyxoFxqPMF7YGLIxLcumF9Mlg6CmQBSX4TVZ8H7025Oho9hTP5Vi wHR/11A18JulzYdjCZSamJol8QCoEZ/0gYM1YxVL/P+sGX0UTpIzWK49n+CzE8Gv 97Xl031xIx3hK3OEqBqnitJ+XAmW6pMFP6K9GmVOBgOzuSN7jUr6X4QX6oeKSE19 Uz4NhGSAjzrcuSrCX/lrh6YUuOgldCu7a4O7AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUTB4OghHOYepbZGIguSbFaOXnyugwHwYDVR0jBBgwFoAUIKzKhxhQA3Ov93tB SyPcal8UdO4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FUSERE L0lLektoeGhRQTNPdjkzdEJTeVBjYWw4VWRPNC5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSUt6S2h4aFFBM092OTN0QlN5UGNhbDhVZE80LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FUSEREL1RCNE9naEhPWWVwYlpHSWd1 U2JGYU9Ybnl1Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACg vwgwDQYJKoZIhvcNAQELBQADggEBAF0x/t+DZtisaDYkJ2/VhbnugXnUADuTlwT9 Q/kpPJLob26gZSr+A6iopU079xupmr5RjXZclYQfqgQX9a3/eR3GWQwbI+ORo/n1 EzEHt9d/J6eNjDf56DaBYoucG+kCygIvtba1VdRjsO8CaF84/ztWUfHLu9jRog6m FwYqeF5T1UAdFeZPaOGn76D1rNb0Dq32a+icSJ7Ajda7R88HsXzNeNXygGndGroN +IjUplYCgg6ts/Yz4qiAfTAqKrmNGZIxK1IGWPxXGL3Hx/Y3cRwfB4Cii5MTH4xx AKjse+0ob2LT3DMxBF1PmY6pSnaVkI9NBx4ESatJR8rnRSlnH84= -----END CERTIFICATE-----Generated at Fri Apr 18 17:42:53 2025 by rpki-client