$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Ft9mRTALFGnBsm1suQWXADjkSXM.roa File: Ft9mRTALFGnBsm1suQWXADjkSXM.roa (raw, json) Hash identifier: iCc/I8sWnjdyIUmzF5R5v4GZZJRw2aI8sDX7xKoC9Hk= Subject key identifier: 16:DF:66:45:30:0B:14:69:C1:B2:6D:6C:B9:05:97:00:38:E4:49:73 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 12C3 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Ft9mRTALFGnBsm1suQWXADjkSXM.roa Signing time: Mon 10 Feb 2025 14:15:12 +0000 ROA not before: Mon 10 Feb 2025 14:15:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 10085 IP address blocks: 203.163.208.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 21:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4803 (0x12c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Feb 10 14:15:12 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=16DF6645300B1469C1B26D6CB905970038E44973 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e7:9e:48:c4:51:12:d3:29:c8:2a:18:00:9e: 4a:07:93:eb:8e:29:70:61:d9:b3:cc:43:42:5d:00: 3f:ab:06:1e:dd:69:c0:f7:7e:bc:15:24:3c:ae:bf: 19:35:56:a5:b1:ba:fb:13:56:f3:f6:66:d0:4d:78: e0:8d:5f:70:c1:d8:57:6b:e9:4f:72:35:8c:38:bb: 77:74:f7:22:fd:54:76:d4:8b:ef:0a:22:05:2a:e9: 47:f4:77:7f:97:14:a6:55:f7:1d:8f:15:c4:f8:6c: 03:40:97:65:9d:69:24:62:ee:c7:3d:fc:b3:8c:ba: 84:71:4d:a3:45:1b:0e:10:2b:09:5c:96:7e:ef:a4: ed:de:e9:4d:16:e5:ca:42:45:fd:69:ab:9b:b1:33: 6d:b7:5b:1b:c9:4c:b5:5d:39:12:3f:73:fe:fa:21: da:53:65:8f:55:65:d6:57:93:6a:02:ea:52:6a:8d: f4:94:a3:15:bb:70:00:6c:9c:15:03:83:19:55:cb: 00:15:db:49:40:fc:9e:0e:c6:93:55:76:78:8c:f6: 25:36:97:04:a3:7b:81:97:06:9b:b3:e8:da:82:3d: 6a:fc:fc:d7:35:c8:dd:1d:f8:8e:c2:ba:41:54:4a: b3:ee:3f:6c:2f:f2:db:55:9c:5a:f4:d7:f3:9c:b0: 73:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:DF:66:45:30:0B:14:69:C1:B2:6D:6C:B9:05:97:00:38:E4:49:73 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Ft9mRTALFGnBsm1suQWXADjkSXM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.163.208.0/22 Signature Algorithm: sha256WithRSAEncryption 3a:4b:63:3d:69:61:de:42:a1:ec:00:d9:24:d2:bf:2a:7c:f7: 7d:3a:a0:f6:eb:c1:62:91:74:e5:15:89:f9:32:5f:82:8c:7e: f7:01:ee:ba:48:f1:a8:15:11:6e:44:52:1d:f8:d8:d5:fe:82: 94:61:ad:7d:12:9a:07:a3:b6:b0:da:42:05:b1:2c:40:7a:51: c1:ee:50:7e:34:35:95:c7:12:df:0e:94:e0:fd:30:5c:03:eb: fa:09:33:c4:48:40:60:3b:30:90:bb:eb:63:81:25:37:c0:e8: 54:7a:b4:e2:46:9c:80:06:88:1c:7e:83:bf:dd:f1:1c:50:61: 05:49:cd:0d:4b:12:b1:e1:52:c8:9b:a4:e1:d1:6c:a6:d7:22: 75:d6:ed:c2:75:6c:cd:f5:f8:0c:41:cc:00:b5:e7:82:33:e3: 80:58:e3:09:e4:b9:07:22:e5:62:bc:25:87:4f:e3:ea:ba:5b: 6b:1d:72:34:c0:1e:8f:75:9b:c1:5f:ce:16:9b:72:ad:03:e6: a1:66:59:1f:d0:ec:d6:41:fb:e4:f5:36:e6:6c:ba:08:65:e2: 66:92:d2:bf:03:8c:6e:13:16:72:f9:92:ae:27:ff:9d:9e:df: a0:e9:c2:d7:13:e8:0a:a1:7d:db:ab:cb:a5:0e:93:22:d1:e4: 50:d2:8e:a4 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEsMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTAyMTAx NDE1MTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE2REY2NjQ1MzAwQjE0 NjlDMUIyNkQ2Q0I5MDU5NzAwMzhFNDQ5NzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDM555IxFES0ynIKhgAnkoHk+uOKXBh2bPMQ0JdAD+rBh7dacD3 frwVJDyuvxk1VqWxuvsTVvP2ZtBNeOCNX3DB2Fdr6U9yNYw4u3d09yL9VHbUi+8K IgUq6Uf0d3+XFKZV9x2PFcT4bANAl2WdaSRi7sc9/LOMuoRxTaNFGw4QKwlcln7v pO3e6U0W5cpCRf1pq5uxM223WxvJTLVdORI/c/76IdpTZY9VZdZXk2oC6lJqjfSU oxW7cABsnBUDgxlVywAV20lA/J4OxpNVdniM9iU2lwSje4GXBpuz6NqCPWr8/Nc1 yN0d+I7CukFUSrPuP2wv8ttVnFr01/OcsHPnAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUFt9mRTALFGnBsm1suQWXADjkSXMwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9GdDltUlRBTEZHbkJz bTFzdVFXWEFEamtTWE0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCy6PQMA0GCSqGSIb3DQEBCwUAA4IBAQA6S2M9aWHeQqHsANkk0r8qfPd9OqD2 68FikXTlFYn5Ml+CjH73Ae66SPGoFRFuRFId+NjV/oKUYa19EpoHo7aw2kIFsSxA elHB7lB+NDWVxxLfDpTg/TBcA+v6CTPESEBgOzCQu+tjgSU3wOhUerTiRpyABogc foO/3fEcUGEFSc0NSxKx4VLIm6Th0Wym1yJ11u3CdWzN9fgMQcwAteeCM+OAWOMJ 5LkHIuVivCWHT+PqultrHXI0wB6PdZvBX84Wm3KtA+ahZlkf0OzWQfvk9TbmbLoI ZeJmktK/A4xuExZy+ZKuJ/+dnt+g6cLXE+gKoX3bq8ulDpMi0eRQ0o6k -----END CERTIFICATE-----Generated at Sun Apr 6 19:52:32 2025 by rpki-client