$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/SdOXE4Pvk0Z4X6IVyGz18j86Pb0.roa File: SdOXE4Pvk0Z4X6IVyGz18j86Pb0.roa (raw, json) Hash identifier: zVPzE8JA5YA2Sbn3X1r6HiD2qFO9g5oW+rmhEStpXlY= Subject key identifier: 49:D3:97:13:83:EF:93:46:78:5F:A2:15:C8:6C:F5:F2:3F:3A:3D:BD Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 12AC Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/SdOXE4Pvk0Z4X6IVyGz18j86Pb0.roa Signing time: Mon 10 Feb 2025 14:15:07 +0000 ROA not before: Mon 10 Feb 2025 14:15:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18419 IP address blocks: 150.117.48.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 21:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4780 (0x12ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Feb 10 14:15:07 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=49D3971383EF9346785FA215C86CF5F23F3A3DBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ca:f8:cb:a9:1f:ad:38:16:9e:10:7a:be:c6: a1:1b:39:58:3d:5c:77:66:5a:f2:74:0d:a9:f5:07: 1d:1d:c0:07:ec:85:4f:47:b7:05:a1:25:14:47:a4: df:19:53:4c:a2:0e:51:d7:06:01:1e:b7:8c:91:df: a9:5d:1c:06:3c:84:ff:71:cc:07:96:7b:63:bd:40: 01:4c:e9:b3:5e:64:27:11:42:3f:12:e3:e8:60:81: 25:3d:a0:f8:89:2f:a1:69:e3:c2:0b:b9:a4:d8:09: 68:aa:71:ca:78:c6:31:23:d2:b5:fe:a4:b9:9a:fa: 43:d2:92:95:de:3d:b8:dd:17:6d:66:aa:72:4f:03: 3c:ac:e8:0a:0b:de:0b:57:46:f5:fa:5a:eb:65:0c: 93:5b:77:d1:16:ea:1b:11:a9:12:31:3e:b4:4c:32: ec:59:96:16:b8:c8:7f:d6:14:c0:e5:4e:b7:35:02: 41:e3:93:63:1d:1c:d3:22:c3:f4:b3:c4:90:f3:f8: 56:c2:60:a8:08:7a:5a:4e:40:33:bd:32:5c:ca:bf: 6e:19:ae:4e:5a:96:fa:78:59:7a:1f:b0:81:2a:e7: f5:fe:1d:15:05:89:d5:4e:74:0e:0b:55:4b:a1:a4: 18:7d:d5:a5:c7:17:98:fc:0a:2c:46:61:da:a8:cf: 45:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:D3:97:13:83:EF:93:46:78:5F:A2:15:C8:6C:F5:F2:3F:3A:3D:BD X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/SdOXE4Pvk0Z4X6IVyGz18j86Pb0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.117.48.0/21 Signature Algorithm: sha256WithRSAEncryption b3:91:50:bb:ad:3e:1f:38:1e:d7:8b:03:8b:cd:b8:4a:14:10: cc:93:77:2b:bb:66:1f:29:34:c9:15:f5:35:8c:8f:98:b8:9e: 41:45:ea:3b:03:45:45:72:10:e0:8d:10:cd:53:6e:05:68:cf: f9:28:d4:a1:ae:fb:b0:f0:8f:37:d3:d0:b5:34:4f:e5:fb:2f: 66:23:d5:83:d4:ea:18:b2:9e:f8:1d:5c:a8:3f:22:ce:12:e8: c4:f7:69:f6:75:0a:4c:e2:62:b0:d5:05:b4:22:35:c0:5c:a4: ab:33:d6:9f:9e:4e:78:6e:4a:e0:87:13:57:35:5a:36:da:a6: 52:e4:dd:4e:13:21:9d:e9:e2:0a:7d:13:9c:9a:d5:b8:d3:e7: 55:c2:cb:7a:82:76:97:05:25:22:cb:47:94:42:84:45:ba:ca: 73:0b:fb:29:41:d1:5e:5a:d0:54:16:34:d2:66:e5:48:84:bd: 98:b7:bd:19:5c:7e:95:85:f8:4a:23:70:76:3f:8f:09:22:08: f6:b1:b3:d8:38:52:89:1f:78:c8:68:75:7a:b3:19:99:56:93: ef:3c:c3:f9:ed:9b:5c:1a:db:31:1c:3c:2d:41:c3:51:8b:ec: c6:8f:51:5d:49:4a:06:7f:67:e8:13:28:2f:da:f9:40:6f:b4: 41:38:21:ec -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEqwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTAyMTAx NDE1MDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ5RDM5NzEzODNFRjkz NDY3ODVGQTIxNUM4NkNGNUYyM0YzQTNEQkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLyvjLqR+tOBaeEHq+xqEbOVg9XHdmWvJ0Dan1Bx0dwAfshU9H twWhJRRHpN8ZU0yiDlHXBgEet4yR36ldHAY8hP9xzAeWe2O9QAFM6bNeZCcRQj8S 4+hggSU9oPiJL6Fp48ILuaTYCWiqccp4xjEj0rX+pLma+kPSkpXePbjdF21mqnJP Azys6AoL3gtXRvX6WutlDJNbd9EW6hsRqRIxPrRMMuxZlha4yH/WFMDlTrc1AkHj k2MdHNMiw/SzxJDz+FbCYKgIelpOQDO9MlzKv24Zrk5alvp4WXofsIEq5/X+HRUF idVOdA4LVUuhpBh91aXHF5j8CixGYdqoz0V5AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUSdOXE4Pvk0Z4X6IVyGz18j86Pb0wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9TZE9YRTRQdmswWjRY NklWeUd6MThqODZQYjAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDlnUwMA0GCSqGSIb3DQEBCwUAA4IBAQCzkVC7rT4fOB7XiwOLzbhKFBDMk3cr u2YfKTTJFfU1jI+YuJ5BReo7A0VFchDgjRDNU24FaM/5KNShrvuw8I8309C1NE/l +y9mI9WD1OoYsp74HVyoPyLOEujE92n2dQpM4mKw1QW0IjXAXKSrM9afnk54bkrg hxNXNVo22qZS5N1OEyGd6eIKfROcmtW40+dVwst6gnaXBSUiy0eUQoRFuspzC/sp QdFeWtBUFjTSZuVIhL2Yt70ZXH6VhfhKI3B2P48JIgj2sbPYOFKJH3jIaHV6sxmZ VpPvPMP57ZtcGtsxHDwtQcNRi+zGj1FdSUoGf2foEygv2vlAb7RBOCHs -----END CERTIFICATE-----Generated at Sun Apr 6 19:49:51 2025 by rpki-client