$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CATHDD/tsy-IbmMZv9hefDrXagitLd_YAU.roa File: tsy-IbmMZv9hefDrXagitLd_YAU.roa (raw, json) Hash identifier: YS/uTkXnxIDyIz9T/oa43118ZUtAMJmEZ7RU4cOtzvs= Subject key identifier: B6:CC:BE:21:B9:8C:66:FF:61:79:F0:EB:5D:A8:22:B4:B7:7F:60:05 Certificate issuer: /CN=20ACCA8718500373AFF77B414B23DC6A5F1474EE Certificate serial: 0279 Authority key identifier: 20:AC:CA:87:18:50:03:73:AF:F7:7B:41:4B:23:DC:6A:5F:14:74:EE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/tsy-IbmMZv9hefDrXagitLd_YAU.roa Signing time: Mon 10 Feb 2025 14:05:30 +0000 ROA not before: Mon 10 Feb 2025 14:05:30 +0000 ROA not after: Wed 15 Oct 2025 15:30:20 +0000 asID: 150766 IP address blocks: 160.191.9.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:58:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 633 (0x279) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20ACCA8718500373AFF77B414B23DC6A5F1474EE Validity Not Before: Feb 10 14:05:30 2025 GMT Not After : Oct 15 15:30:20 2025 GMT Subject: CN=B6CCBE21B98C66FF6179F0EB5DA822B4B77F6005 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:c3:1a:90:63:8a:0a:83:de:cf:0d:9c:ab:69: e7:fb:90:bc:13:74:72:40:e9:e7:03:e3:36:e0:f2: c3:e2:6b:4b:73:0a:13:57:b1:5c:9c:5e:0d:ba:c8: dd:be:21:b6:78:4f:c6:9c:25:9c:48:2b:36:aa:be: c9:32:b4:94:0d:e7:a2:04:80:4f:c0:ee:75:c8:1f: c4:fe:b0:bc:c6:4d:cc:2e:43:2f:5f:53:1d:cf:0d: b2:84:08:88:8a:8e:d9:4d:88:03:9d:cc:50:e3:3c: ad:da:62:c9:96:c6:0d:23:34:6b:7d:60:b4:88:8b: a9:cc:21:8b:f2:e0:6d:76:35:df:7f:b6:7f:63:98: 72:84:46:81:bd:a2:8c:99:b0:83:60:6b:4c:85:ed: fd:72:a6:a0:87:46:eb:09:c8:61:94:f6:e3:59:14: c5:ae:88:d9:22:02:3a:b7:6a:bf:21:86:af:b8:26: 77:e8:3c:ee:4f:93:5c:10:8a:df:f5:75:b8:75:c0: 62:da:37:55:ab:df:76:08:17:8a:cf:c0:4c:b0:3f: 00:a4:ec:9e:9c:c1:12:ae:b8:d1:cc:ba:e0:f3:9a: 1b:f1:bc:23:6c:65:41:49:90:d3:e3:cd:95:dd:b9: a8:d0:b6:ae:e9:ba:e6:8c:59:0b:2b:1b:25:22:f8: 2f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:CC:BE:21:B9:8C:66:FF:61:79:F0:EB:5D:A8:22:B4:B7:7F:60:05 X509v3 Authority Key Identifier: keyid:20:AC:CA:87:18:50:03:73:AF:F7:7B:41:4B:23:DC:6A:5F:14:74:EE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/tsy-IbmMZv9hefDrXagitLd_YAU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.191.9.0/24 Signature Algorithm: sha256WithRSAEncryption 70:bf:e6:57:e0:db:d2:d9:f1:57:04:4a:7f:06:94:91:70:5f: 53:44:8c:f1:7f:3c:90:6e:e6:d4:4a:a6:1c:e8:96:06:43:22: 8b:26:6a:8a:01:b9:b3:b7:bb:2a:9d:0c:ef:5f:0e:a4:af:3e: 96:a9:39:65:5e:7f:25:ab:74:27:9a:92:cd:55:61:80:e3:9c: b0:cf:67:97:d9:0a:2a:d2:0a:b3:e6:4d:ac:62:7c:63:a1:47: 54:7c:47:7e:39:40:f9:66:e0:c2:fb:b0:1f:78:fb:a5:ac:c8: 9e:c6:a8:c6:54:3b:b8:b3:7d:6f:bd:45:05:0d:2a:8d:60:93: fb:29:bb:e1:db:a3:56:b4:f8:5e:44:15:6e:fc:bf:0a:30:48: 08:3c:db:11:cb:a4:b4:cd:7b:03:25:95:14:04:ac:84:13:a9: 79:c1:9e:81:17:72:03:ce:3e:93:1c:22:01:06:cf:0b:8b:64: 0f:78:7f:c0:89:6f:9e:30:72:e2:a2:e6:de:6c:63:68:a1:f5: 69:4e:9e:05:4d:ac:0e:bd:bd:c4:8d:ba:2e:07:23:eb:db:bf: 09:7c:cc:84:fd:84:0d:bc:59:5f:b6:f5:31:13:74:70:36:51: d7:99:c7:25:1e:a8:fa:7e:84:5f:8f:e4:4f:4e:da:d1:f8:5f: 48:fc:a6:58 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICAnkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjBB Q0NBODcxODUwMDM3M0FGRjc3QjQxNEIyM0RDNkE1RjE0NzRFRTAeFw0yNTAyMTAx NDA1MzBaFw0yNTEwMTUxNTMwMjBaMDMxMTAvBgNVBAMTKEI2Q0NCRTIxQjk4QzY2 RkY2MTc5RjBFQjVEQTgyMkI0Qjc3RjYwMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCcwxqQY4oKg97PDZyraef7kLwTdHJA6ecD4zbg8sPia0tzChNX sVycXg26yN2+IbZ4T8acJZxIKzaqvskytJQN56IEgE/A7nXIH8T+sLzGTcwuQy9f Ux3PDbKECIiKjtlNiAOdzFDjPK3aYsmWxg0jNGt9YLSIi6nMIYvy4G12Nd9/tn9j mHKERoG9ooyZsINga0yF7f1ypqCHRusJyGGU9uNZFMWuiNkiAjq3ar8hhq+4Jnfo PO5Pk1wQit/1dbh1wGLaN1Wr33YIF4rPwEywPwCk7J6cwRKuuNHMuuDzmhvxvCNs ZUFJkNPjzZXduajQtq7puuaMWQsrGyUi+C9FAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUtsy+IbmMZv9hefDrXagitLd/YAUwHwYDVR0jBBgwFoAUIKzKhxhQA3Ov93tB SyPcal8UdO4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FUSERE L0lLektoeGhRQTNPdjkzdEJTeVBjYWw4VWRPNC5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSUt6S2h4aFFBM092OTN0QlN5UGNhbDhVZE80LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FUSEREL3RzeS1JYm1NWnY5aGVmRHJY YWdpdExkX1lBVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACg vwkwDQYJKoZIhvcNAQELBQADggEBAHC/5lfg29LZ8VcESn8GlJFwX1NEjPF/PJBu 5tRKphzolgZDIosmaooBubO3uyqdDO9fDqSvPpapOWVefyWrdCeaks1VYYDjnLDP Z5fZCirSCrPmTaxifGOhR1R8R345QPlm4ML7sB94+6WsyJ7GqMZUO7izfW+9RQUN Ko1gk/spu+Hbo1a0+F5EFW78vwowSAg82xHLpLTNewMllRQErIQTqXnBnoEXcgPO PpMcIgEGzwuLZA94f8CJb54wcuKi5t5sY2ih9WlOngVNrA69vcSNui4HI+vbvwl8 zIT9hA28WV+29TETdHA2UdeZxyUeqPp+hF+P5E9O2tH4X0j8plg= -----END CERTIFICATE-----Generated at Wed Feb 19 22:07:14 2025 by rpki-client