$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/RMCaFSq--eBsWELHz0FpCx9tyUA.roa File: RMCaFSq--eBsWELHz0FpCx9tyUA.roa (raw, json) Hash identifier: sq2xsV60e6RKC9gP1uXcvikZHOv4FA6wmteYq4HaVxk= Subject key identifier: 44:C0:9A:15:2A:BE:F9:E0:6C:58:42:C7:CF:41:69:0B:1F:6D:C9:40 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 126B Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/RMCaFSq--eBsWELHz0FpCx9tyUA.roa Signing time: Mon 10 Feb 2025 14:14:50 +0000 ROA not before: Mon 10 Feb 2025 14:14:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 63199 IP address blocks: 150.116.4.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4715 (0x126b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Feb 10 14:14:50 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=44C09A152ABEF9E06C5842C7CF41690B1F6DC940 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4c:3f:46:29:e2:67:8c:fa:04:ce:07:ba:75: c6:65:90:b8:33:af:c6:32:eb:89:39:94:67:57:51: 83:b9:5a:2a:7a:48:fa:7f:ef:f4:a3:79:7d:73:c1: d6:5b:aa:53:42:75:ad:04:e7:23:41:0e:62:4e:38: 94:96:a2:ad:fc:6e:c4:07:a7:b0:26:5e:75:57:14: 11:61:77:c4:48:2c:f7:8f:8c:ed:f2:fc:74:d1:89: 9a:90:a1:fc:d6:ad:76:61:2a:3c:83:a6:ea:81:0d: 2d:47:a6:db:ee:13:17:6e:8f:51:1a:89:a3:46:3b: f2:b7:89:cf:01:60:71:16:0f:f4:fd:08:91:d7:ad: 59:47:86:31:8a:38:1b:d6:5f:16:e4:24:b1:2e:31: ac:87:a3:22:2e:51:fb:45:9f:83:7e:bc:77:95:e5: 2f:8b:ab:cf:92:82:b0:72:0e:5d:68:ef:2b:c1:35: 18:f1:f9:db:79:3a:52:18:35:2d:63:d5:6a:f3:b0: 8d:d2:8b:55:c1:23:a5:8e:50:40:37:c9:bf:0d:e9: e4:af:20:0e:a3:53:5c:b5:df:d8:cc:a5:95:3d:73: 74:0b:f5:a0:7a:4f:d2:ec:20:20:71:a2:f9:d3:4c: f5:88:5d:29:f0:63:11:c3:3c:13:5c:ca:e8:85:34: 18:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:C0:9A:15:2A:BE:F9:E0:6C:58:42:C7:CF:41:69:0B:1F:6D:C9:40 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/RMCaFSq--eBsWELHz0FpCx9tyUA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.4.0/23 Signature Algorithm: sha256WithRSAEncryption 71:88:65:34:4f:0e:5b:f4:f4:dd:5b:09:a9:e1:ed:02:4d:eb: 84:e2:c9:f8:5a:17:36:10:1a:c1:d9:52:e0:a1:61:84:b3:35: 91:ed:fd:a0:80:13:f3:c9:55:23:f6:2d:99:27:35:27:2a:0b: a5:85:fa:f4:13:ae:9e:a6:4f:a8:31:32:5a:9b:a2:69:bc:ed: 4b:be:d7:0c:05:2f:df:1c:44:7e:7d:39:f2:cf:61:1e:e0:5e: c2:fd:cc:42:ba:86:2a:57:2d:26:d6:e1:98:89:80:a4:9d:33: 16:9e:6e:a3:d7:63:4b:b8:75:7f:6b:97:40:ad:d0:8a:e4:17: 89:f8:c0:24:d3:6a:ad:df:a4:c6:f8:0a:8d:92:ac:12:8a:40: 7c:11:b3:38:70:f7:61:37:c7:34:09:99:22:16:49:92:0c:a2: 9e:1a:e2:93:f4:47:e7:10:bd:7b:42:e3:98:69:c4:70:1a:6c: e3:16:db:0f:fb:c1:f3:80:43:c0:10:07:5d:fa:52:98:7a:02: bd:d3:a0:c3:c3:bd:b7:37:ff:8f:8c:51:13:f0:61:a1:fa:1f: 61:cb:55:36:c8:8b:e9:0c:8d:23:d7:15:fe:ba:32:8b:88:37: e6:34:0b:9b:c7:25:76:e7:eb:5a:e3:86:dd:35:5b:54:c8:7a: 7b:76:56:58 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEmswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTAyMTAx NDE0NTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ0QzA5QTE1MkFCRUY5 RTA2QzU4NDJDN0NGNDE2OTBCMUY2REM5NDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBTD9GKeJnjPoEzge6dcZlkLgzr8Yy64k5lGdXUYO5Wip6SPp/ 7/SjeX1zwdZbqlNCda0E5yNBDmJOOJSWoq38bsQHp7AmXnVXFBFhd8RILPePjO3y /HTRiZqQofzWrXZhKjyDpuqBDS1HptvuExduj1EaiaNGO/K3ic8BYHEWD/T9CJHX rVlHhjGKOBvWXxbkJLEuMayHoyIuUftFn4N+vHeV5S+Lq8+SgrByDl1o7yvBNRjx +dt5OlIYNS1j1WrzsI3Si1XBI6WOUEA3yb8N6eSvIA6jU1y139jMpZU9c3QL9aB6 T9LsICBxovnTTPWIXSnwYxHDPBNcyuiFNBi3AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQURMCaFSq++eBsWELHz0FpCx9tyUAwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9STUNhRlNxLS1lQnNX RUxIejBGcEN4OXR5VUEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBlnQEMA0GCSqGSIb3DQEBCwUAA4IBAQBxiGU0Tw5b9PTdWwmp4e0CTeuE4sn4 Whc2EBrB2VLgoWGEszWR7f2ggBPzyVUj9i2ZJzUnKgulhfr0E66epk+oMTJam6Jp vO1LvtcMBS/fHER+fTnyz2Ee4F7C/cxCuoYqVy0m1uGYiYCknTMWnm6j12NLuHV/ a5dArdCK5BeJ+MAk02qt36TG+AqNkqwSikB8EbM4cPdhN8c0CZkiFkmSDKKeGuKT 9EfnEL17QuOYacRwGmzjFtsP+8HzgEPAEAdd+lKYegK906DDw723N/+PjFET8GGh +h9hy1U2yIvpDI0j1xX+ujKLiDfmNAubxyV25+ta44bdNVtUyHp7dlZY -----END CERTIFICATE-----Generated at Wed Jun 4 00:57:06 2025 by rpki-client