$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Wy2Dlqi_JOdq9hQwpOxvamlJ9fc.roa File: Wy2Dlqi_JOdq9hQwpOxvamlJ9fc.roa (raw, json) Hash identifier: xwFzeOMJweYM6Nwt0TE7IMFy2+eA0hpwvNhoOexUgiw= Subject key identifier: 5B:2D:83:96:A8:BF:24:E7:6A:F6:14:30:A4:EC:6F:6A:69:49:F5:F7 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 124E Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Wy2Dlqi_JOdq9hQwpOxvamlJ9fc.roa Signing time: Mon 10 Feb 2025 14:14:42 +0000 ROA not before: Mon 10 Feb 2025 14:14:42 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 63199 IP address blocks: 150.116.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 21:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4686 (0x124e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Feb 10 14:14:42 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5B2D8396A8BF24E76AF61430A4EC6F6A6949F5F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f6:cc:d4:59:70:cc:42:c9:8b:41:71:2e:25: 66:6e:72:5e:aa:16:e3:5e:58:dc:9e:04:61:d8:a5: 2f:53:f1:80:d4:ca:b2:80:c1:f5:74:29:9f:f3:4e: cd:bf:b2:4c:2d:bd:fb:f7:10:9a:da:ac:e8:5f:01: 43:2a:4d:2e:0d:f8:d1:49:23:38:f8:c6:a1:76:bf: b9:c5:e8:3c:a5:0c:d2:e2:4e:66:19:8e:bd:6d:50: c8:90:48:ed:ca:e4:50:72:31:d3:96:7c:05:98:ff: 24:87:88:a8:ec:dd:5c:af:ce:1a:45:58:8b:88:a4: f9:d1:2c:65:bd:f8:13:68:38:65:3b:e9:98:bc:61: bd:23:05:3f:0d:83:b0:4c:7c:e1:26:68:9c:98:58: f6:46:cc:41:c5:6c:cc:10:7d:b9:ab:dd:33:50:7a: 10:d7:91:1b:d3:48:96:f3:ad:f9:51:13:6d:2d:8f: 8f:6d:4f:0e:80:88:9a:90:12:22:1c:6a:67:a7:6a: 37:18:66:dc:f4:79:ba:93:ff:f5:d6:e9:66:fd:73: 6f:8f:cd:12:09:c0:72:77:83:63:e8:eb:51:88:90: 9f:77:5f:af:91:b6:1e:87:f4:85:ca:d1:d5:a0:66: fe:e2:e6:21:10:c3:56:e6:a3:66:d1:72:a1:58:4f: ba:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:2D:83:96:A8:BF:24:E7:6A:F6:14:30:A4:EC:6F:6A:69:49:F5:F7 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Wy2Dlqi_JOdq9hQwpOxvamlJ9fc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.82.0/24 Signature Algorithm: sha256WithRSAEncryption 50:63:75:57:03:c0:94:67:ae:9c:b5:b8:11:49:cf:05:28:87: dc:9f:b1:01:86:c6:ce:9b:ec:2c:a7:18:01:96:35:f9:04:46: c5:8a:d7:bb:b4:ec:54:8c:0e:1a:09:e1:87:fd:65:58:5c:46: 8d:ba:8f:50:17:be:51:3e:e5:7e:b0:4f:70:cd:bd:6f:a4:e5: 4b:c5:ae:04:7f:9b:df:53:ce:54:85:ad:2f:5b:3c:29:cf:ad: df:3a:38:03:56:a0:f1:dd:fc:0c:71:6f:fa:a5:05:24:67:6b: 85:39:0c:88:f4:95:e4:1e:67:3e:20:b7:98:9d:a9:b7:32:6e: 0c:fc:8a:64:fe:6d:7e:ca:ca:86:94:33:f8:5a:0b:b3:67:73: ca:05:3a:1d:08:1f:40:3a:80:8a:2f:22:b2:0f:c7:51:a1:ad: f4:d7:ab:80:44:52:c5:64:f8:ee:b5:52:ea:d2:1c:f4:12:3b: f3:ba:89:1f:af:12:0d:eb:73:2b:8e:61:38:c7:5e:d5:71:cb: 17:6e:55:3f:62:d4:67:96:36:bd:10:d2:9a:32:dd:fa:d7:91: dc:e2:2b:b2:3c:76:c8:2a:ce:62:75:c8:9f:d7:af:54:86:06: d8:6c:8c:82:0e:0f:5f:27:8b:2e:38:02:d4:a8:db:5f:f4:66: d3:de:43:45 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEk4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTAyMTAx NDE0NDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVCMkQ4Mzk2QThCRjI0 RTc2QUY2MTQzMEE0RUM2RjZBNjk0OUY1RjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDK9szUWXDMQsmLQXEuJWZucl6qFuNeWNyeBGHYpS9T8YDUyrKA wfV0KZ/zTs2/skwtvfv3EJrarOhfAUMqTS4N+NFJIzj4xqF2v7nF6DylDNLiTmYZ jr1tUMiQSO3K5FByMdOWfAWY/ySHiKjs3VyvzhpFWIuIpPnRLGW9+BNoOGU76Zi8 Yb0jBT8Ng7BMfOEmaJyYWPZGzEHFbMwQfbmr3TNQehDXkRvTSJbzrflRE20tj49t Tw6AiJqQEiIcamenajcYZtz0ebqT//XW6Wb9c2+PzRIJwHJ3g2Po61GIkJ93X6+R th6H9IXK0dWgZv7i5iEQw1bmo2bRcqFYT7r9AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUWy2Dlqi/JOdq9hQwpOxvamlJ9fcwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9XeTJEbHFpX0pPZHE5 aFF3cE94dmFtbEo5ZmMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAlnRSMA0GCSqGSIb3DQEBCwUAA4IBAQBQY3VXA8CUZ66ctbgRSc8FKIfcn7EB hsbOm+wspxgBljX5BEbFite7tOxUjA4aCeGH/WVYXEaNuo9QF75RPuV+sE9wzb1v pOVLxa4Ef5vfU85Uha0vWzwpz63fOjgDVqDx3fwMcW/6pQUkZ2uFOQyI9JXkHmc+ ILeYnam3Mm4M/Ipk/m1+ysqGlDP4WguzZ3PKBTodCB9AOoCKLyKyD8dRoa3016uA RFLFZPjutVLq0hz0EjvzuokfrxIN63MrjmE4x17VccsXblU/YtRnlja9ENKaMt36 15Hc4iuyPHbIKs5idcif169UhgbYbIyCDg9fJ4suOALUqNtf9GbT3kNF -----END CERTIFICATE-----Generated at Sun Apr 6 19:57:01 2025 by rpki-client