$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/AtUd-UxnoCKUxjLBMABFkbUcY0M.roa File: AtUd-UxnoCKUxjLBMABFkbUcY0M.roa (raw, json) Hash identifier: SqKHl0/ozl5WGGojELcZZVrPEMD9yzMF417ZoBQ1WWQ= Subject key identifier: 02:D5:1D:F9:4C:67:A0:22:94:C6:32:C1:30:00:45:91:B5:1C:63:43 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 124F Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/AtUd-UxnoCKUxjLBMABFkbUcY0M.roa Signing time: Mon 10 Feb 2025 14:14:42 +0000 ROA not before: Mon 10 Feb 2025 14:14:42 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17408 IP address blocks: 150.116.168.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 13:06:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4687 (0x124f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Feb 10 14:14:42 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=02D51DF94C67A02294C632C130004591B51C6343 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d7:b4:5e:2d:68:d9:8c:6b:45:58:fe:07:0c: d1:9d:dd:26:6c:80:ef:ac:e9:c8:94:57:8a:94:38: ce:c7:26:61:6e:92:6b:67:bc:b5:5e:0d:eb:0e:70: 61:73:6c:6e:e2:2c:69:b8:1f:63:a4:31:b9:22:55: 60:cf:62:86:61:5d:ee:66:01:ef:40:1c:73:22:32: 74:d5:67:8a:d2:22:88:73:02:b6:bd:29:e5:06:e8: ec:a0:eb:f4:2f:ca:3c:54:7e:01:a8:a4:5d:ae:45: cc:90:de:ca:7f:f4:63:9f:60:7b:8d:c0:62:34:3b: 15:c1:2f:54:95:c4:9f:63:4a:09:94:d6:50:55:1a: 60:d1:d2:24:14:42:04:0a:c2:5c:80:92:2b:16:f6: 5d:f0:1b:31:fd:07:05:63:21:db:ab:c7:bc:9f:08: 8a:ae:6c:5e:cf:04:d7:b6:b8:39:44:7d:5e:8e:0e: 1b:df:53:be:a4:91:a9:79:87:e9:40:b2:58:19:1a: d4:a7:df:62:ed:53:d2:47:d9:dc:99:d7:9c:85:6f: e9:06:1f:26:7d:4d:19:c8:3d:35:79:49:78:ba:e7: 1a:37:93:88:a0:b0:d5:ce:e5:f9:37:dd:f4:02:93: 5a:bc:3a:97:8a:77:09:f8:08:d9:98:90:9d:c1:5b: 17:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:D5:1D:F9:4C:67:A0:22:94:C6:32:C1:30:00:45:91:B5:1C:63:43 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/AtUd-UxnoCKUxjLBMABFkbUcY0M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.168.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:87:d3:8c:0f:68:9e:52:a5:18:d6:5b:cb:30:8d:28:28:a4: e1:a0:52:32:6c:95:7a:76:3f:dd:8c:76:96:9a:4c:81:c2:42: 53:9c:df:d9:10:e8:6c:ac:ef:0d:b0:37:65:c0:1d:2b:4e:72: c4:eb:83:b0:33:67:0e:d5:02:e4:aa:2b:63:0f:d2:b6:28:79: b9:70:e4:bf:00:f5:05:60:07:49:5e:53:13:47:24:24:7b:b6: 33:a6:ee:66:5a:8d:5e:87:a2:f2:de:a0:86:ce:ab:11:c9:77: 1b:d6:08:ad:23:fd:91:54:0a:bd:76:25:41:59:1e:65:d4:d3: bd:54:60:6c:c1:b9:02:ac:b7:26:b5:2b:9e:8c:a8:d3:37:82: 8c:a7:84:a5:74:9c:a2:b2:69:1d:69:de:3c:ab:c6:ee:91:4f: 3d:08:0f:3d:d2:af:93:ce:0e:75:61:f5:74:05:6d:52:f6:8e: 5b:11:a8:1f:70:e2:f7:b2:46:6c:be:38:58:e8:d6:4c:2d:bf: 15:69:72:ac:08:5f:49:4e:b5:61:36:3a:70:5e:f1:a0:13:c5: a5:3f:64:3a:f3:4a:6a:f2:18:71:af:37:a8:d3:5c:3c:22:9f: 18:42:d0:ff:5e:57:93:9f:73:59:05:99:be:e0:c0:09:d8:5b: b9:60:c5:2a -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEk8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTAyMTAx NDE0NDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDAyRDUxREY5NEM2N0Ew MjI5NEM2MzJDMTMwMDA0NTkxQjUxQzYzNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDR17ReLWjZjGtFWP4HDNGd3SZsgO+s6ciUV4qUOM7HJmFukmtn vLVeDesOcGFzbG7iLGm4H2OkMbkiVWDPYoZhXe5mAe9AHHMiMnTVZ4rSIohzAra9 KeUG6Oyg6/QvyjxUfgGopF2uRcyQ3sp/9GOfYHuNwGI0OxXBL1SVxJ9jSgmU1lBV GmDR0iQUQgQKwlyAkisW9l3wGzH9BwVjIdurx7yfCIqubF7PBNe2uDlEfV6ODhvf U76kkal5h+lAslgZGtSn32LtU9JH2dyZ15yFb+kGHyZ9TRnIPTV5SXi65xo3k4ig sNXO5fk33fQCk1q8OpeKdwn4CNmYkJ3BWxfzAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUAtUd+UxnoCKUxjLBMABFkbUcY0MwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9BdFVkLVV4bm9DS1V4 akxCTUFCRmtiVWNZME0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBlnSoMA0GCSqGSIb3DQEBCwUAA4IBAQAPh9OMD2ieUqUY1lvLMI0oKKThoFIy bJV6dj/djHaWmkyBwkJTnN/ZEOhsrO8NsDdlwB0rTnLE64OwM2cO1QLkqitjD9K2 KHm5cOS/APUFYAdJXlMTRyQke7Yzpu5mWo1eh6Ly3qCGzqsRyXcb1gitI/2RVAq9 diVBWR5l1NO9VGBswbkCrLcmtSuejKjTN4KMp4SldJyismkdad48q8bukU89CA89 0q+Tzg51YfV0BW1S9o5bEagfcOL3skZsvjhY6NZMLb8VaXKsCF9JTrVhNjpwXvGg E8WlP2Q680pq8hhxrzeo01w8Ip8YQtD/XleTn3NZBZm+4MAJ2Fu5YMUq -----END CERTIFICATE-----Generated at Sat Apr 5 11:26:46 2025 by rpki-client