$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/dllHI1WYfyykca1oLj7n-XWtezs.roa File: dllHI1WYfyykca1oLj7n-XWtezs.roa (raw, json) Hash identifier: 2BOIn3p+XC9REVHSbW0pVsRdUW1nluIgN3XhS/0EpV4= Subject key identifier: 76:59:47:23:55:98:7F:2C:A4:71:AD:68:2E:3E:E7:F9:75:AD:7B:3B Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1292 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/dllHI1WYfyykca1oLj7n-XWtezs.roa Signing time: Mon 10 Feb 2025 14:15:00 +0000 ROA not before: Mon 10 Feb 2025 14:15:00 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 10085 IP address blocks: 150.117.112.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 21:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4754 (0x1292) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Feb 10 14:15:00 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7659472355987F2CA471AD682E3EE7F975AD7B3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:75:8c:12:0a:ec:d4:8d:5a:98:cf:61:dd:ef: 8d:f1:a1:ba:7b:b4:1c:00:6f:f5:af:22:55:f8:a8: 55:76:1b:5e:31:8c:54:62:fb:20:14:dc:ef:4c:18: c1:c3:dd:c2:6c:68:69:f7:45:5f:45:55:21:a4:ce: 6d:5b:0c:bb:79:6d:8e:2a:e8:8d:76:11:a1:2b:7f: 64:09:14:3f:b2:96:00:db:dc:2a:5f:33:0b:02:22: 30:09:01:71:4b:a8:66:b5:2e:eb:7d:16:ac:58:35: 90:3f:c1:1b:ad:09:28:85:00:13:df:64:21:ab:23: 30:8d:6f:56:e0:d8:47:39:db:a8:9d:97:bf:f5:5d: 2d:0b:d1:3b:e5:90:f4:d8:0c:a2:e2:3f:aa:bd:5f: 70:ca:3b:4e:d1:af:fd:c8:e7:f3:41:5d:8e:c4:6f: ba:8e:81:49:eb:6e:be:fe:4b:08:ea:93:c9:01:91: 50:aa:55:4c:1a:87:7b:ab:4f:ea:63:c7:56:8b:b0: 41:28:92:28:e2:6c:69:ab:76:d6:8b:d7:bd:36:1c: 22:94:e3:b6:bb:56:3d:63:ee:69:59:94:66:5a:ec: 90:60:8f:af:1f:0d:84:f9:8e:f5:94:cf:db:4b:e2: ab:74:86:5b:06:2b:fc:11:be:94:d5:86:d9:f6:27: c5:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:59:47:23:55:98:7F:2C:A4:71:AD:68:2E:3E:E7:F9:75:AD:7B:3B X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/dllHI1WYfyykca1oLj7n-XWtezs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.117.112.0/21 Signature Algorithm: sha256WithRSAEncryption 6e:5d:3f:55:ce:f6:72:8f:e2:5b:29:3a:01:e5:5b:15:9d:38: 1a:85:e7:f5:e2:41:39:e2:25:cf:ff:f7:ab:2a:65:78:f0:c1: 59:46:3e:72:5e:03:b6:f5:7c:45:50:fe:02:d8:e0:f6:cb:ef: 3d:4d:64:3f:f8:37:b6:da:cb:9e:86:13:80:c5:cb:a9:fa:55: 9e:0a:67:f2:e4:a4:80:13:02:c4:57:aa:2f:46:67:61:3d:32: 03:d0:66:2f:f4:eb:df:80:95:e3:6d:ce:59:30:32:91:71:71: dc:0e:c2:5a:b6:9d:d5:57:bd:9c:d8:f2:65:bd:4c:16:de:41: ec:88:74:df:48:07:c1:50:3f:45:1c:00:c0:e4:16:f1:29:f8: fc:4c:10:13:81:49:49:63:6e:a8:dc:18:66:c4:67:eb:7a:a4: 11:ec:ba:65:98:16:1a:bd:e6:a4:c0:3b:72:87:b6:a0:62:d4: db:c1:97:e4:50:95:82:1e:7f:44:f2:c9:69:92:39:63:6c:05: a3:a7:b0:57:81:be:f4:a0:a7:ae:f5:d1:2a:63:5e:09:63:08: c2:8f:b1:a6:69:6e:4f:15:21:e1:f7:90:27:fe:b5:95:b5:48: 14:1f:33:37:d9:db:6c:30:8b:1c:f2:0a:f0:da:e3:1a:8f:da: 10:67:67:e5 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEpIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTAyMTAx NDE1MDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc2NTk0NzIzNTU5ODdG MkNBNDcxQUQ2ODJFM0VFN0Y5NzVBRDdCM0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMdYwSCuzUjVqYz2Hd743xobp7tBwAb/WvIlX4qFV2G14xjFRi +yAU3O9MGMHD3cJsaGn3RV9FVSGkzm1bDLt5bY4q6I12EaErf2QJFD+ylgDb3Cpf MwsCIjAJAXFLqGa1Lut9FqxYNZA/wRutCSiFABPfZCGrIzCNb1bg2Ec526idl7/1 XS0L0TvlkPTYDKLiP6q9X3DKO07Rr/3I5/NBXY7Eb7qOgUnrbr7+Swjqk8kBkVCq VUwah3urT+pjx1aLsEEokijibGmrdtaL1702HCKU47a7Vj1j7mlZlGZa7JBgj68f DYT5jvWUz9tL4qt0hlsGK/wRvpTVhtn2J8U7AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUdllHI1WYfyykca1oLj7n+XWtezswHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9kbGxISTFXWWZ5eWtj YTFvTGo3bi1YV3RlenMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDlnVwMA0GCSqGSIb3DQEBCwUAA4IBAQBuXT9VzvZyj+JbKToB5VsVnTgahef1 4kE54iXP//erKmV48MFZRj5yXgO29XxFUP4C2OD2y+89TWQ/+De22suehhOAxcup +lWeCmfy5KSAEwLEV6ovRmdhPTID0GYv9OvfgJXjbc5ZMDKRcXHcDsJatp3VV72c 2PJlvUwW3kHsiHTfSAfBUD9FHADA5BbxKfj8TBATgUlJY26o3BhmxGfreqQR7Lpl mBYaveakwDtyh7agYtTbwZfkUJWCHn9E8slpkjljbAWjp7BXgb70oKeu9dEqY14J YwjCj7GmaW5PFSHh95An/rWVtUgUHzM32dtsMIsc8grw2uMaj9oQZ2fl -----END CERTIFICATE-----Generated at Sun Apr 6 19:59:31 2025 by rpki-client