$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CATHDD/_L_y3hbEWYJwd6tm8SGf8z9IT2o.roa File: _L_y3hbEWYJwd6tm8SGf8z9IT2o.roa (raw, json) Hash identifier: 2lJ3Y9lXHmj1N2wWeZm/SOjYiPl/c3T79V5uQj/PA3Y= Subject key identifier: FC:BF:F2:DE:16:C4:59:82:70:77:AB:66:F1:21:9F:F3:3F:48:4F:6A Certificate issuer: /CN=43514F485EC01C9D0F311BEA61D93BD62C236992 Certificate serial: 0275 Authority key identifier: 43:51:4F:48:5E:C0:1C:9D:0F:31:1B:EA:61:D9:3B:D6:2C:23:69:92 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Q1FPSF7AHJ0PMRvqYdk71iwjaZI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/_L_y3hbEWYJwd6tm8SGf8z9IT2o.roa Signing time: Mon 10 Feb 2025 14:05:30 +0000 ROA not before: Mon 10 Feb 2025 14:05:30 +0000 ROA not after: Wed 15 Oct 2025 15:30:20 +0000 asID: 214030 IP address blocks: 2401:cd60::/40 maxlen: 40 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/Q1FPSF7AHJ0PMRvqYdk71iwjaZI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/Q1FPSF7AHJ0PMRvqYdk71iwjaZI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Q1FPSF7AHJ0PMRvqYdk71iwjaZI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 11:07:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 629 (0x275) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43514F485EC01C9D0F311BEA61D93BD62C236992 Validity Not Before: Feb 10 14:05:30 2025 GMT Not After : Oct 15 15:30:20 2025 GMT Subject: CN=FCBFF2DE16C459827077AB66F1219FF33F484F6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ff:a0:fb:e6:e6:4b:a2:fc:95:46:73:7c:17: a8:0d:5d:60:0c:d0:6b:50:36:ee:f0:16:1c:12:d8: 5f:d0:61:bb:78:ca:27:15:2f:b5:b7:f7:1a:f8:23: 69:f6:86:e4:91:77:11:85:34:86:74:b5:3b:58:e6: 47:dd:82:bd:00:5d:72:ea:50:28:81:75:7d:54:cc: 9e:54:ac:f7:dd:55:9e:00:70:9c:94:cb:19:6e:38: 89:04:ee:c9:e5:3e:96:cc:37:6d:b1:6c:bc:18:cc: b3:45:28:c3:cd:36:ab:71:e7:47:cf:76:2b:44:66: 22:7b:b3:d7:df:0c:c6:eb:e6:22:d5:65:c3:fa:7d: 36:1a:41:06:15:a0:5a:09:d5:10:53:ab:b5:90:e1: 2c:0c:15:56:6d:0a:00:a7:06:af:1d:32:74:a6:bf: 46:f6:83:b6:e1:13:af:d3:00:49:78:3d:7c:a2:03: 70:18:0f:05:4a:8e:df:fa:94:ef:ea:ba:29:9c:12: ed:28:2c:18:e1:f5:3f:20:f0:02:a4:c4:43:64:ff: 9e:08:62:ab:1f:fe:78:05:a3:56:c2:12:b3:f7:c6: c5:7b:6d:2f:7a:38:4e:df:c2:0c:24:fb:d0:9b:0e: 96:bd:cb:f7:49:9b:51:91:b1:73:e2:94:e5:ae:5b: 66:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:BF:F2:DE:16:C4:59:82:70:77:AB:66:F1:21:9F:F3:3F:48:4F:6A X509v3 Authority Key Identifier: keyid:43:51:4F:48:5E:C0:1C:9D:0F:31:1B:EA:61:D9:3B:D6:2C:23:69:92 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/Q1FPSF7AHJ0PMRvqYdk71iwjaZI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Q1FPSF7AHJ0PMRvqYdk71iwjaZI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/_L_y3hbEWYJwd6tm8SGf8z9IT2o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:cd60::/40 Signature Algorithm: sha256WithRSAEncryption 53:6a:22:7f:ac:2a:eb:45:d6:c3:65:bf:8a:8e:f3:38:e4:57: 51:d6:de:a0:ee:0a:fb:7a:74:68:67:58:7a:40:c3:e1:43:71: b8:53:4d:fa:4b:c6:8f:d8:fa:8b:4d:56:ed:c1:84:f6:b7:ff: f1:8c:3b:a7:2e:fa:15:45:79:b6:7b:b4:37:4b:b5:74:4c:2c: 94:c8:88:b2:01:b8:ed:3e:67:35:ec:b3:ee:c3:c1:49:b0:a7: 2f:6f:ed:83:46:04:2f:c9:15:3c:a0:b5:ef:88:25:e3:e7:b3: 7d:67:fe:e9:c6:97:df:c5:30:1b:4b:77:b2:c5:7c:17:e1:0b: 02:8a:06:be:52:c6:1a:e4:00:fb:22:75:a4:58:0a:e1:92:ef: d0:b2:b1:c4:cd:6e:b0:cd:5f:ae:a2:5f:68:f6:d9:45:ea:e6: 84:a4:72:cd:05:a6:37:97:e0:c6:90:a3:a1:b2:2e:b2:88:5a: 0d:50:ce:8b:a6:b4:d7:c2:ad:0b:23:82:75:8f:4b:2a:63:f5: 2e:dd:30:09:57:ba:f6:db:a1:35:fe:f6:0f:ea:4e:b4:86:56: d4:5a:e3:63:7d:14:4a:4c:0f:54:55:d7:a9:2f:2c:4c:33:a7: f2:de:24:63:7f:14:70:ed:42:0a:a2:e5:4c:8b:00:38:9c:79: 6c:7b:53:0b -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICAnUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDM1 MTRGNDg1RUMwMUM5RDBGMzExQkVBNjFEOTNCRDYyQzIzNjk5MjAeFw0yNTAyMTAx NDA1MzBaFw0yNTEwMTUxNTMwMjBaMDMxMTAvBgNVBAMTKEZDQkZGMkRFMTZDNDU5 ODI3MDc3QUI2NkYxMjE5RkYzM0Y0ODRGNkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDP/6D75uZLovyVRnN8F6gNXWAM0GtQNu7wFhwS2F/QYbt4yicV L7W39xr4I2n2huSRdxGFNIZ0tTtY5kfdgr0AXXLqUCiBdX1UzJ5UrPfdVZ4AcJyU yxluOIkE7snlPpbMN22xbLwYzLNFKMPNNqtx50fPditEZiJ7s9ffDMbr5iLVZcP6 fTYaQQYVoFoJ1RBTq7WQ4SwMFVZtCgCnBq8dMnSmv0b2g7bhE6/TAEl4PXyiA3AY DwVKjt/6lO/quimcEu0oLBjh9T8g8AKkxENk/54IYqsf/ngFo1bCErP3xsV7bS96 OE7fwgwk+9CbDpa9y/dJm1GRsXPilOWuW2ZlAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU/L/y3hbEWYJwd6tm8SGf8z9IT2owHwYDVR0jBBgwFoAUQ1FPSF7AHJ0PMRvq Ydk71iwjaZIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FUSERE L1ExRlBTRjdBSEowUE1SdnFZZGs3MWl3amFaSS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvUTFGUFNGN0FISjBQTVJ2cVlkazcxaXdqYVpJLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FUSEREL19MX3kzaGJFV1lKd2Q2dG04 U0dmOHo5SVQyby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAk Ac1gADANBgkqhkiG9w0BAQsFAAOCAQEAU2oif6wq60XWw2W/io7zOORXUdbeoO4K +3p0aGdYekDD4UNxuFNN+kvGj9j6i01W7cGE9rf/8Yw7py76FUV5tnu0N0u1dEws lMiIsgG47T5nNeyz7sPBSbCnL2/tg0YEL8kVPKC174gl4+ezfWf+6caX38UwG0t3 ssV8F+ELAooGvlLGGuQA+yJ1pFgK4ZLv0LKxxM1usM1frqJfaPbZRermhKRyzQWm N5fgxpCjobIusohaDVDOi6a018KtCyOCdY9LKmP1Lt0wCVe69tuhNf72D+pOtIZW 1FrjY30USkwPVFXXqS8sTDOn8t4kY38UcO1CCqLlTIsAOJx5bHtTCw== -----END CERTIFICATE-----Generated at Wed Apr 9 10:01:52 2025 by rpki-client