$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/vevAA0t5fwFzMhcu_pQP47DDwYI.roa File: vevAA0t5fwFzMhcu_pQP47DDwYI.roa (raw, json) Hash identifier: MMQrZdDZDug/fuwguvDuOoV5GBJRWMWJ64SMXNgxAyc= Subject key identifier: BD:EB:C0:03:4B:79:7F:01:73:32:17:2E:FE:94:0F:E3:B0:C3:C1:82 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 127D Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/vevAA0t5fwFzMhcu_pQP47DDwYI.roa Signing time: Mon 10 Feb 2025 14:14:54 +0000 ROA not before: Mon 10 Feb 2025 14:14:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 63199 IP address blocks: 150.116.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 02:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4733 (0x127d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Feb 10 14:14:54 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BDEBC0034B797F017332172EFE940FE3B0C3C182 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:08:d6:4f:71:39:77:2e:5b:a2:b9:a7:59:a7: b1:83:93:7f:5a:9d:97:ea:12:ea:6b:3a:c3:0d:5d: fd:f9:53:f1:02:cb:91:75:56:e7:ff:5e:a7:c5:4f: 91:bb:83:05:fc:c8:93:01:12:50:3d:e6:41:b2:e5: fe:32:35:e0:a8:a1:e8:4a:e1:ec:d3:e4:1e:af:de: 25:01:f1:81:87:31:cc:bd:7e:75:d5:ee:46:a3:e0: d7:ee:a7:51:00:3f:b1:fe:27:ff:35:24:ef:24:1a: 41:90:06:6d:66:c8:6c:cd:8b:62:42:83:7c:fc:b6: f9:2c:a5:8a:dd:ca:b4:54:61:0c:88:e2:6c:a3:54: 78:90:55:6d:c2:ec:4c:e0:54:66:02:4f:14:8d:19: 13:97:41:fe:ae:cb:5c:72:fa:85:9c:2f:a0:93:0a: 55:db:45:13:79:26:2f:0b:b3:0e:48:ee:44:92:6d: 34:7c:58:f9:73:d0:53:c9:b5:61:5a:b0:32:eb:d9: 7a:6a:98:23:eb:cf:48:77:e6:a1:89:48:54:c9:fd: 77:2f:5f:5b:0f:60:01:c1:5a:28:5b:cb:2d:c1:9a: 41:67:aa:b0:9c:a3:40:2f:99:4e:64:23:85:3e:fb: a5:81:4e:bf:1d:50:bf:5b:7d:d9:86:dd:92:d5:46: 16:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:EB:C0:03:4B:79:7F:01:73:32:17:2E:FE:94:0F:E3:B0:C3:C1:82 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/vevAA0t5fwFzMhcu_pQP47DDwYI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.0.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:69:74:b0:8b:05:3d:f9:45:d3:a6:38:79:d1:5f:96:46:68: bc:d7:a6:66:b3:7f:a8:42:ce:4d:ef:8e:3e:31:41:f4:6b:94: b1:41:e8:8b:b2:71:bc:8c:7c:fc:47:7d:ee:39:6a:81:f6:22: ef:2a:5d:e3:cd:53:1a:fc:c6:89:03:5c:08:ed:cd:69:d4:91: 87:ad:9a:c5:f2:0f:01:5d:98:d5:55:85:a8:fd:1e:cc:c3:23: 12:32:cb:65:84:f4:b7:90:b8:ac:9c:b9:99:ee:43:49:7b:98: 8b:ca:c6:94:44:bf:ad:93:1c:f6:64:a3:e3:cc:8f:23:44:03: b5:18:2f:2c:1a:6c:f8:fe:87:c4:85:06:64:5c:01:f3:43:1f: 99:6f:d6:82:e7:fb:fa:c8:e5:c6:92:54:41:03:04:b3:db:f1: b3:6a:7f:d9:7a:98:e0:5e:1e:13:8c:37:b8:7d:db:1d:3f:60: ab:86:03:6f:7c:c8:ed:6f:36:b8:5d:a2:61:d9:c2:2a:64:71: 4c:85:8d:2d:bc:5a:18:c9:b2:30:11:7b:db:92:9a:9d:b6:c5: 89:b6:a3:55:d7:24:06:b4:ed:91:24:e9:5e:23:15:ed:8a:8d: e0:2b:c0:d0:b5:99:94:fc:13:78:fd:c9:d8:89:01:a3:91:6c: db:0e:c9:1e -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEn0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTAyMTAx NDE0NTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJERUJDMDAzNEI3OTdG MDE3MzMyMTcyRUZFOTQwRkUzQjBDM0MxODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQCNZPcTl3LluiuadZp7GDk39anZfqEuprOsMNXf35U/ECy5F1 Vuf/XqfFT5G7gwX8yJMBElA95kGy5f4yNeCooehK4ezT5B6v3iUB8YGHMcy9fnXV 7kaj4Nfup1EAP7H+J/81JO8kGkGQBm1myGzNi2JCg3z8tvkspYrdyrRUYQyI4myj VHiQVW3C7EzgVGYCTxSNGROXQf6uy1xy+oWcL6CTClXbRRN5Ji8Lsw5I7kSSbTR8 WPlz0FPJtWFasDLr2XpqmCPrz0h35qGJSFTJ/XcvX1sPYAHBWihbyy3BmkFnqrCc o0AvmU5kI4U++6WBTr8dUL9bfdmG3ZLVRhbBAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUvevAA0t5fwFzMhcu/pQP47DDwYIwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy92ZXZBQTB0NWZ3RnpN aGN1X3BRUDQ3RER3WUkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAlnQAMA0GCSqGSIb3DQEBCwUAA4IBAQBKaXSwiwU9+UXTpjh50V+WRmi816Zm s3+oQs5N744+MUH0a5SxQeiLsnG8jHz8R33uOWqB9iLvKl3jzVMa/MaJA1wI7c1p 1JGHrZrF8g8BXZjVVYWo/R7MwyMSMstlhPS3kLisnLmZ7kNJe5iLysaURL+tkxz2 ZKPjzI8jRAO1GC8sGmz4/ofEhQZkXAHzQx+Zb9aC5/v6yOXGklRBAwSz2/Gzan/Z epjgXh4TjDe4fdsdP2CrhgNvfMjtbza4XaJh2cIqZHFMhY0tvFoYybIwEXvbkpqd tsWJtqNV1yQGtO2RJOleIxXtio3gK8DQtZmU/BN4/cnYiQGjkWzbDske -----END CERTIFICATE-----Generated at Sun Apr 6 21:33:28 2025 by rpki-client