$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/2JVg__V-yZEIe9Gm2xlRXrFXgBU.roa File: 2JVg__V-yZEIe9Gm2xlRXrFXgBU.roa (raw, json) Hash identifier: W2NSDNst1pckZ5vgqfcMF6K6et/vScVdIBXgfYYHe7Q= Subject key identifier: D8:95:60:FF:F5:7E:C9:91:08:7B:D1:A6:DB:19:51:5E:B1:57:80:15 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1280 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/2JVg__V-yZEIe9Gm2xlRXrFXgBU.roa Signing time: Mon 10 Feb 2025 14:14:56 +0000 ROA not before: Mon 10 Feb 2025 14:14:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17408 IP address blocks: 113.21.80.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 17:36:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4736 (0x1280) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Feb 10 14:14:56 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D89560FFF57EC991087BD1A6DB19515EB1578015 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:37:5d:0c:34:9e:b1:24:21:84:17:ee:63:76: 5e:fa:33:e3:00:94:f0:70:db:8b:e8:81:0b:80:d5: 30:c7:14:36:22:74:a7:fb:c6:1b:60:f2:60:83:13: 04:5e:b6:41:71:e0:bf:e4:1e:f6:3a:c1:6e:22:21: ef:64:af:41:83:93:28:b1:43:7b:36:12:73:e6:a8: b4:40:41:e1:cd:8c:57:79:b8:4f:a7:af:af:65:c8: fe:7d:36:0e:50:c8:c5:32:af:97:47:7b:79:07:80: 4c:d0:1a:2a:7b:7f:6d:48:5c:48:39:de:63:fb:a8: d9:8c:0f:14:66:ce:24:46:5d:09:3d:0e:e7:58:7b: 3a:a2:d6:eb:da:fa:f5:77:6f:0f:85:ee:33:31:68: 02:aa:19:cf:a5:48:6a:01:18:a2:1a:bc:d6:aa:ee: 97:dd:d7:3b:5a:52:d1:0e:37:89:14:93:85:d4:84: bc:ac:72:1f:28:c7:ea:80:4a:88:65:ee:4f:e2:e6: 1b:e7:0c:11:41:73:6e:58:f1:84:c5:f2:2c:68:5a: e3:1e:3a:a7:87:86:cb:7b:bb:c4:43:a7:b1:0b:9b: b2:9b:28:a7:11:bb:96:e5:b4:de:51:05:1f:70:d7: 92:da:85:5b:2c:b8:af:8d:fc:16:ee:a4:02:24:e6: 40:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:95:60:FF:F5:7E:C9:91:08:7B:D1:A6:DB:19:51:5E:B1:57:80:15 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/2JVg__V-yZEIe9Gm2xlRXrFXgBU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.21.80.0/21 Signature Algorithm: sha256WithRSAEncryption 17:11:8a:55:48:ed:ad:95:b9:57:67:55:c5:1e:51:ed:41:c3: 32:31:01:55:58:ba:6c:4e:dc:cf:aa:a6:ed:9e:f2:2f:1c:6f: 3f:41:60:c3:ca:75:ce:d2:36:ef:6c:2e:6c:6c:fd:aa:39:4c: 45:fe:7e:87:d5:f1:cd:78:85:92:f2:8d:8b:7e:24:5b:08:55: 9b:ce:18:a7:0b:fc:04:1d:c4:cd:cc:9f:f0:74:8d:09:6d:b3: aa:81:0a:9b:f3:6c:25:42:dc:83:61:6a:e9:66:95:51:da:b0: 6c:43:bc:1e:ec:fe:55:ad:5a:42:d5:28:08:0c:92:fb:9b:5b: c7:8c:8e:e9:84:1e:f4:88:28:2c:d2:0a:e9:8d:c2:78:bb:b1: 89:1a:2a:e1:09:6e:7f:d7:fd:c7:d8:1c:2f:47:2a:96:c1:21: f1:04:2d:bc:ee:8e:93:dd:d3:18:99:66:05:76:53:a5:4f:3b: f6:e3:96:e9:0b:b4:d7:7f:f0:75:49:ed:e6:b8:9e:ad:5d:7f: 57:cb:be:0d:56:92:4f:b9:d6:16:33:00:d5:40:f8:e5:35:f5: 9c:37:df:57:01:19:ce:9f:5d:be:b3:c4:15:21:56:ce:8b:a2: 84:71:70:e6:09:dd:ed:7a:cf:5e:1d:2a:f0:22:e2:d4:42:50: 46:58:3a:e4 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEoAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTAyMTAx NDE0NTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ4OTU2MEZGRjU3RUM5 OTEwODdCRDFBNkRCMTk1MTVFQjE1NzgwMTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClN10MNJ6xJCGEF+5jdl76M+MAlPBw24vogQuA1TDHFDYidKf7 xhtg8mCDEwRetkFx4L/kHvY6wW4iIe9kr0GDkyixQ3s2EnPmqLRAQeHNjFd5uE+n r69lyP59Ng5QyMUyr5dHe3kHgEzQGip7f21IXEg53mP7qNmMDxRmziRGXQk9DudY ezqi1uva+vV3bw+F7jMxaAKqGc+lSGoBGKIavNaq7pfd1ztaUtEON4kUk4XUhLys ch8ox+qASohl7k/i5hvnDBFBc25Y8YTF8ixoWuMeOqeHhst7u8RDp7ELm7KbKKcR u5bltN5RBR9w15LahVssuK+N/BbupAIk5kDlAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU2JVg//V+yZEIe9Gm2xlRXrFXgBUwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy8ySlZnX19WLXlaRUll OUdtMnhsUlhyRlhnQlUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDcRVQMA0GCSqGSIb3DQEBCwUAA4IBAQAXEYpVSO2tlblXZ1XFHlHtQcMyMQFV WLpsTtzPqqbtnvIvHG8/QWDDynXO0jbvbC5sbP2qOUxF/n6H1fHNeIWS8o2LfiRb CFWbzhinC/wEHcTNzJ/wdI0JbbOqgQqb82wlQtyDYWrpZpVR2rBsQ7we7P5VrVpC 1SgIDJL7m1vHjI7phB70iCgs0grpjcJ4u7GJGirhCW5/1/3H2BwvRyqWwSHxBC28 7o6T3dMYmWYFdlOlTzv245bpC7TXf/B1Se3muJ6tXX9Xy74NVpJPudYWMwDVQPjl NfWcN99XARnOn12+s8QVIVbOi6KEcXDmCd3tes9eHSrwIuLUQlBGWDrk -----END CERTIFICATE-----Generated at Sat Apr 5 14:09:02 2025 by rpki-client