$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/9-QU1NhB5_65sNA8CGIqeAHKpPs.roa File: 9-QU1NhB5_65sNA8CGIqeAHKpPs.roa (raw, json) Hash identifier: R5F3hE2DML+1ZBR9xWaQMHhjBrhpbXWqF1QR9WEwyU0= Subject key identifier: F7:E4:14:D4:D8:41:E7:FE:B9:B0:D0:3C:08:62:2A:78:01:CA:A4:FB Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1277 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/9-QU1NhB5_65sNA8CGIqeAHKpPs.roa Signing time: Mon 10 Feb 2025 14:14:53 +0000 ROA not before: Mon 10 Feb 2025 14:14:53 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 63199 IP address blocks: 150.116.2.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 21:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4727 (0x1277) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Feb 10 14:14:53 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F7E414D4D841E7FEB9B0D03C08622A7801CAA4FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:86:b4:19:9c:23:0a:b5:8a:b7:60:6e:6c:68: 5a:05:fd:59:1b:e7:a1:ca:a4:69:a9:b4:50:87:b0: 71:5a:a5:03:90:79:63:8d:53:9f:4f:c7:5e:72:3c: 33:3b:0d:a4:fb:bc:36:73:3d:ea:a9:7e:7e:4f:98: f8:cf:a9:0c:a9:6d:78:9c:a9:30:af:c6:50:21:bd: 4b:3d:c5:8b:07:52:d9:fa:73:08:67:7c:6c:91:02: ea:b4:d7:7c:96:bc:72:92:54:34:3c:63:27:1e:4e: 43:b0:3b:e6:2a:4c:8e:b9:61:27:67:9f:1e:99:3c: 02:85:31:18:e6:8c:57:7c:26:23:77:3a:92:f9:a8: 66:26:5b:75:4b:17:f8:d2:0b:0a:55:be:1a:1a:31: e9:44:0b:a8:52:82:3d:8a:62:31:0f:f2:1f:de:48: 35:f9:61:f9:ef:34:0c:ed:c5:b6:0c:b8:ba:a4:ac: 91:97:d5:66:3d:9e:32:3e:7f:a2:02:36:09:3e:3f: 14:1d:c6:b9:48:aa:98:72:9e:b8:16:9d:b1:29:7c: 54:d7:ce:0b:71:75:db:0d:62:7d:5e:df:86:55:18: 5a:70:d2:cb:7c:5a:9e:be:2a:ed:95:e6:ad:8e:31: 74:6e:9f:c1:c8:58:2c:80:61:94:6f:b5:c3:4a:e1: ee:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:E4:14:D4:D8:41:E7:FE:B9:B0:D0:3C:08:62:2A:78:01:CA:A4:FB X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/9-QU1NhB5_65sNA8CGIqeAHKpPs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.2.0/23 Signature Algorithm: sha256WithRSAEncryption 71:d9:46:0d:a4:5a:85:b7:41:04:5b:c5:cf:9a:6e:18:12:f4: 6b:0f:d7:48:47:11:66:f2:22:0a:e0:61:c0:9c:31:16:4e:51: 81:98:39:05:b7:1e:3c:30:c9:2e:f0:c7:79:e1:69:88:cf:d3: 4d:18:4e:74:55:84:c1:4e:7e:0e:68:ee:f6:99:67:86:32:09: a4:28:4a:0e:28:56:25:89:82:44:ea:d9:46:2a:98:f4:24:97: 90:13:b0:e9:1b:38:1f:4c:c7:86:d0:14:d2:65:7a:8e:cb:81: 69:09:af:97:12:ca:88:c8:33:9f:81:27:38:15:44:79:0d:32: 4b:0e:b5:10:64:64:fc:a8:a0:61:74:88:04:66:eb:71:45:67: 54:c7:fc:96:81:00:34:a6:d3:bc:32:b4:e9:7a:bb:93:c0:00: a2:34:11:ff:c2:41:27:fc:24:e7:5d:9d:ee:7a:24:71:b5:d1: 06:2c:1b:fa:f5:02:24:bf:64:24:91:f9:2a:69:d8:dd:7f:95: 55:1b:45:da:b4:be:3f:9f:8c:81:a0:3b:d2:c3:16:72:50:db: 0b:fb:c3:37:63:0f:4f:e4:e8:3a:54:76:6e:0b:ce:e5:3c:4f: 9d:ec:a6:7c:d2:42:cc:50:ab:2f:90:23:72:4b:55:c3:33:d8: 68:42:33:9d -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEncwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTAyMTAx NDE0NTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY3RTQxNEQ0RDg0MUU3 RkVCOUIwRDAzQzA4NjIyQTc4MDFDQUE0RkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyhrQZnCMKtYq3YG5saFoF/Vkb56HKpGmptFCHsHFapQOQeWON U59Px15yPDM7DaT7vDZzPeqpfn5PmPjPqQypbXicqTCvxlAhvUs9xYsHUtn6cwhn fGyRAuq013yWvHKSVDQ8YyceTkOwO+YqTI65YSdnnx6ZPAKFMRjmjFd8JiN3OpL5 qGYmW3VLF/jSCwpVvhoaMelEC6hSgj2KYjEP8h/eSDX5YfnvNAztxbYMuLqkrJGX 1WY9njI+f6ICNgk+PxQdxrlIqphynrgWnbEpfFTXzgtxddsNYn1e34ZVGFpw0st8 Wp6+Ku2V5q2OMXRun8HIWCyAYZRvtcNK4e6FAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU9+QU1NhB5/65sNA8CGIqeAHKpPswHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy85LVFVMU5oQjVfNjVz TkE4Q0dJcWVBSEtwUHMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBlnQCMA0GCSqGSIb3DQEBCwUAA4IBAQBx2UYNpFqFt0EEW8XPmm4YEvRrD9dI RxFm8iIK4GHAnDEWTlGBmDkFtx48MMku8Md54WmIz9NNGE50VYTBTn4OaO72mWeG MgmkKEoOKFYliYJE6tlGKpj0JJeQE7DpGzgfTMeG0BTSZXqOy4FpCa+XEsqIyDOf gSc4FUR5DTJLDrUQZGT8qKBhdIgEZutxRWdUx/yWgQA0ptO8MrTperuTwACiNBH/ wkEn/CTnXZ3ueiRxtdEGLBv69QIkv2Qkkfkqadjdf5VVG0XatL4/n4yBoDvSwxZy UNsL+8M3Yw9P5Og6VHZuC87lPE+d7KZ80kLMUKsvkCNyS1XDM9hoQjOd -----END CERTIFICATE-----Generated at Sun Apr 6 19:57:09 2025 by rpki-client