$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/6Tc88KtUH4wkyyxK4RJAXF10epI.roa File: 6Tc88KtUH4wkyyxK4RJAXF10epI.roa (raw, json) Hash identifier: uMmmQ2iag13yUgNp+2l3z7WSXV8jgGTR25EcDe5xdho= Subject key identifier: E9:37:3C:F0:AB:54:1F:8C:24:CB:2C:4A:E1:12:40:5C:5D:74:7A:92 Certificate issuer: /CN=ABD4DDB4BF932C5006B704B9828410174AC412AD Certificate serial: 0133 Authority key identifier: AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/6Tc88KtUH4wkyyxK4RJAXF10epI.roa Signing time: Mon 10 Feb 2025 14:23:50 +0000 ROA not before: Mon 10 Feb 2025 14:23:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 150766 IP address blocks: 2401:5da0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 307 (0x133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABD4DDB4BF932C5006B704B9828410174AC412AD Validity Not Before: Feb 10 14:23:50 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E9373CF0AB541F8C24CB2C4AE112405C5D747A92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6d:8c:3a:ab:6c:b3:94:37:28:32:a8:35:4c: 56:7b:5d:fd:d3:f3:92:31:36:e7:33:a5:06:59:bd: 95:ed:b5:46:5c:ae:03:c1:b1:1b:c0:f2:fb:50:c7: a0:c1:cf:e9:e4:db:a2:50:eb:59:1e:99:23:2e:2b: 8c:fc:15:9c:67:68:d7:4e:7e:4f:33:81:c7:a2:43: 77:9a:3d:29:1b:da:e3:30:35:43:b3:6b:36:34:f4: cd:86:b8:b0:2a:ad:ee:af:6c:ef:14:9a:83:8a:16: 95:a1:b6:f1:2d:9e:a8:79:93:aa:61:a6:52:56:33: c7:2d:d8:5d:2c:da:8c:6a:20:14:7c:0a:92:c8:51: 2d:af:a3:79:db:2b:a6:92:ef:9d:fa:b3:ec:ca:12: 50:92:f6:e0:0a:09:f6:ee:bd:ca:e3:f6:ab:72:fb: da:3f:ff:e9:a1:49:89:c6:85:4d:38:b3:c0:1f:1f: 5b:a1:58:1b:68:1f:50:e2:e6:b3:d1:96:0d:c3:39: 3f:35:99:65:d6:e4:e3:39:fa:b3:3b:8b:1d:1a:d3: 6e:ed:8f:e6:5e:f0:1e:87:2e:92:de:03:e0:b3:8d: 95:64:f9:ee:b5:fa:0d:e0:82:4f:09:6c:4f:e1:6c: d5:42:51:f4:21:94:0b:33:d4:6f:fd:4d:a6:2d:1e: 41:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:37:3C:F0:AB:54:1F:8C:24:CB:2C:4A:E1:12:40:5C:5D:74:7A:92 X509v3 Authority Key Identifier: keyid:AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/6Tc88KtUH4wkyyxK4RJAXF10epI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:5da0:1::/48 Signature Algorithm: sha256WithRSAEncryption 31:41:ac:13:11:06:3c:ae:c0:d3:48:ca:11:96:58:7e:78:4c: 4e:74:c8:24:af:33:a4:13:6e:9c:a8:b6:67:3a:c6:95:6f:09: 57:66:f4:d9:d8:4b:88:df:d0:7c:e9:91:ce:f3:cb:51:df:9a: 43:b8:d6:05:68:b8:ba:ae:85:39:c8:c1:6c:35:d3:86:b1:7a: 61:42:f8:e0:83:81:32:24:25:95:47:c5:d4:c7:04:b2:b0:a5: ed:64:45:62:50:d1:43:dd:91:06:13:e8:73:b4:6b:b8:a6:51: 5e:29:18:9c:6c:49:96:3c:a8:38:cf:00:19:bd:1f:cc:bd:18: a1:8e:56:47:4d:06:02:d2:b8:58:1b:81:bd:dd:bd:79:e6:58: fb:77:71:68:ee:03:59:ff:7b:30:ed:6e:5c:a4:ce:e0:a3:76: 8e:a9:32:91:c0:95:35:55:53:da:a6:4c:3d:ae:bc:39:c5:13: d8:cb:a4:d3:20:2d:36:9b:9d:ec:0f:46:42:7e:ce:0a:b0:b8: 94:ec:02:32:9d:b7:0c:a9:b0:1d:e3:11:ee:db:2b:a5:d3:8f: 4c:9e:40:83:7a:5f:8d:b3:f0:ff:37:9b:40:31:86:4b:a2:53: 29:52:ba:6a:c0:d5:30:09:53:9d:c4:4f:a1:97:7e:08:39:ff: 4e:80:1c:ef -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICATMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJE NEREQjRCRjkzMkM1MDA2QjcwNEI5ODI4NDEwMTc0QUM0MTJBRDAeFw0yNTAyMTAx NDIzNTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU5MzczQ0YwQUI1NDFG OEMyNENCMkM0QUUxMTI0MDVDNUQ3NDdBOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzbYw6q2yzlDcoMqg1TFZ7Xf3T85IxNuczpQZZvZXttUZcrgPB sRvA8vtQx6DBz+nk26JQ61kemSMuK4z8FZxnaNdOfk8zgceiQ3eaPSkb2uMwNUOz azY09M2GuLAqre6vbO8UmoOKFpWhtvEtnqh5k6phplJWM8ct2F0s2oxqIBR8CpLI US2vo3nbK6aS7536s+zKElCS9uAKCfbuvcrj9qty+9o//+mhSYnGhU04s8AfH1uh WBtoH1Di5rPRlg3DOT81mWXW5OM5+rM7ix0a027tj+Ze8B6HLpLeA+CzjZVk+e61 +g3ggk8JbE/hbNVCUfQhlAsz1G/9TaYtHkF9AgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQU6Tc88KtUH4wkyyxK4RJAXF10epIwHwYDVR0jBBgwFoAUq9TdtL+TLFAGtwS5 goQQF0rEEq0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09DT0RJ R0lUL3E5VGR0TC1UTEZBR3R3UzVnb1FRRjByRUVxMC5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcTlUZHRMLVRMRkFHdHdTNWdvUVFGMHJFRXEwLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09DT0RJR0lULzZUYzg4S3RVSDR3 a3l5eEs0UkpBWEYxMGVwSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAkAV2gAAEwDQYJKoZIhvcNAQELBQADggEBADFBrBMRBjyuwNNIyhGWWH54 TE50yCSvM6QTbpyotmc6xpVvCVdm9NnYS4jf0Hzpkc7zy1HfmkO41gVouLquhTnI wWw104axemFC+OCDgTIkJZVHxdTHBLKwpe1kRWJQ0UPdkQYT6HO0a7imUV4pGJxs SZY8qDjPABm9H8y9GKGOVkdNBgLSuFgbgb3dvXnmWPt3cWjuA1n/ezDtblykzuCj do6pMpHAlTVVU9qmTD2uvDnFE9jLpNMgLTabnewPRkJ+zgqwuJTsAjKdtwypsB3j Ee7bK6XTj0yeQIN6X42z8P83m0AxhkuiUylSumrA1TAJU53ET6GXfgg5/06AHO8= -----END CERTIFICATE-----Generated at Fri Apr 18 17:33:25 2025 by rpki-client