$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/pMk_fm3t1ndiajIh1g2btT0rFHA.roa File: pMk_fm3t1ndiajIh1g2btT0rFHA.roa (raw, json) Hash identifier: 2WLrNobpPSUfDliRs/R/BjD8g4yWYZYPULlNCsBcNuc= Subject key identifier: A4:C9:3F:7E:6D:ED:D6:77:62:6A:32:21:D6:0D:9B:B5:3D:2B:14:70 Certificate issuer: /CN=ABD4DDB4BF932C5006B704B9828410174AC412AD Certificate serial: 0136 Authority key identifier: AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/pMk_fm3t1ndiajIh1g2btT0rFHA.roa Signing time: Mon 10 Feb 2025 14:23:51 +0000 ROA not before: Mon 10 Feb 2025 14:23:51 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 150766 IP address blocks: 2401:5da0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 310 (0x136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABD4DDB4BF932C5006B704B9828410174AC412AD Validity Not Before: Feb 10 14:23:51 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A4C93F7E6DEDD677626A3221D60D9BB53D2B1470 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:56:97:35:82:3f:7d:25:35:b2:f0:df:ca:a2: 77:cc:86:e0:14:2e:1c:b9:8d:33:cf:74:2d:06:4f: 73:f2:fb:2e:7f:bf:db:d4:f5:ef:a9:f2:36:5b:4f: 34:72:0e:86:48:0e:5b:96:e4:d3:1f:2c:65:00:58: 9d:08:f2:8f:61:56:14:00:98:b5:81:5c:26:fb:5a: 47:65:4c:43:a2:34:6b:2a:cc:d8:f5:c8:b5:32:3e: d0:28:4b:68:c2:9e:d9:9f:5b:fe:1e:6b:d4:5a:73: 5a:fa:32:36:56:00:91:b6:43:6a:ef:39:50:76:7e: 49:b5:0f:2e:b9:d7:e1:99:dc:52:20:cc:a0:a9:27: 3a:77:78:20:58:34:1b:e1:f8:14:50:29:25:d7:b7: 4c:b9:99:b5:99:de:f4:78:ca:f4:d5:7f:c8:4b:32: fa:64:b7:87:76:d4:3c:a4:aa:70:4e:f2:79:8d:d1: f0:63:7d:a9:7b:ba:1d:cb:16:b7:f6:46:f4:4d:f7: 25:d9:e5:c5:c1:3f:49:b8:d8:05:92:b5:b7:86:72: 4c:e8:8b:93:84:76:78:e6:2c:d5:d3:9d:d1:7c:d3: 7b:ee:2d:e7:a2:f3:61:51:3d:26:16:72:67:10:6d: 6a:c8:8d:cb:3c:5c:14:50:53:bc:19:a9:fa:4e:9f: ed:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:C9:3F:7E:6D:ED:D6:77:62:6A:32:21:D6:0D:9B:B5:3D:2B:14:70 X509v3 Authority Key Identifier: keyid:AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/pMk_fm3t1ndiajIh1g2btT0rFHA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:5da0::/32 Signature Algorithm: sha256WithRSAEncryption 75:60:73:b2:d9:75:95:4a:a3:fa:89:0a:17:ec:34:f1:74:79: 93:c0:1e:e5:fb:ae:28:05:06:28:b5:b4:a6:dd:c7:eb:3c:f2: 5b:74:f1:eb:92:30:c0:4f:9e:33:ae:9f:99:df:d8:c7:f1:c9: 70:72:9d:c0:60:74:d2:a9:2b:bc:f7:02:13:5f:cd:56:57:80: 04:a3:05:c1:f9:9c:ed:42:98:66:c5:ec:21:f8:37:13:30:36: 60:8f:81:19:95:92:c4:dc:dd:e7:a4:03:bf:81:5a:bb:41:23: 73:ff:b9:e8:6d:06:90:72:3e:f9:b4:f1:fc:38:30:d6:30:82: 27:20:bb:67:ec:99:48:54:ac:33:ef:5b:23:5e:dc:53:0b:a8: 5c:d6:19:b9:d4:c2:1b:1c:9e:ee:31:2f:7e:d2:f1:dd:ec:28: 7d:60:97:20:fa:b5:c9:77:49:7b:79:a1:f0:3c:38:26:fb:ea: 5b:fa:61:fa:59:20:3c:f9:99:d7:81:7d:b1:54:63:98:79:09: b7:81:b6:79:ae:25:eb:60:4f:c8:c2:b7:8e:59:96:8d:fa:a5: 94:89:52:68:52:96:75:b9:01:d3:b6:84:86:90:bb:28:79:24: 49:34:f8:e4:2f:42:4a:76:85:e4:74:a4:cc:00:9a:e2:93:ee: bd:b6:da:87 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgICATYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJE NEREQjRCRjkzMkM1MDA2QjcwNEI5ODI4NDEwMTc0QUM0MTJBRDAeFw0yNTAyMTAx NDIzNTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE0QzkzRjdFNkRFREQ2 Nzc2MjZBMzIyMUQ2MEQ5QkI1M0QyQjE0NzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeVpc1gj99JTWy8N/KonfMhuAULhy5jTPPdC0GT3Py+y5/v9vU 9e+p8jZbTzRyDoZIDluW5NMfLGUAWJ0I8o9hVhQAmLWBXCb7WkdlTEOiNGsqzNj1 yLUyPtAoS2jCntmfW/4ea9Rac1r6MjZWAJG2Q2rvOVB2fkm1Dy651+GZ3FIgzKCp Jzp3eCBYNBvh+BRQKSXXt0y5mbWZ3vR4yvTVf8hLMvpkt4d21DykqnBO8nmN0fBj fal7uh3LFrf2RvRN9yXZ5cXBP0m42AWStbeGckzoi5OEdnjmLNXTndF803vuLeei 82FRPSYWcmcQbWrIjcs8XBRQU7wZqfpOn+0hAgMBAAGjggH1MIIB8TAdBgNVHQ4E FgQUpMk/fm3t1ndiajIh1g2btT0rFHAwHwYDVR0jBBgwFoAUq9TdtL+TLFAGtwS5 goQQF0rEEq0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09DT0RJ R0lUL3E5VGR0TC1UTEZBR3R3UzVnb1FRRjByRUVxMC5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcTlUZHRMLVRMRkFHdHdTNWdvUVFGMHJFRXEwLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09DT0RJR0lUL3BNa19mbTN0MW5k aWFqSWgxZzJidFQwckZIQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAkAV2gMA0GCSqGSIb3DQEBCwUAA4IBAQB1YHOy2XWVSqP6iQoX7DTxdHmT wB7l+64oBQYotbSm3cfrPPJbdPHrkjDAT54zrp+Z39jH8clwcp3AYHTSqSu89wIT X81WV4AEowXB+ZztQphmxewh+DcTMDZgj4EZlZLE3N3npAO/gVq7QSNz/7nobQaQ cj75tPH8ODDWMIInILtn7JlIVKwz71sjXtxTC6hc1hm51MIbHJ7uMS9+0vHd7Ch9 YJcg+rXJd0l7eaHwPDgm++pb+mH6WSA8+ZnXgX2xVGOYeQm3gbZ5riXrYE/IwreO WZaN+qWUiVJoUpZ1uQHTtoSGkLsoeSRJNPjkL0JKdoXkdKTMAJrik+69ttqH -----END CERTIFICATE-----Generated at Fri Apr 18 17:49:56 2025 by rpki-client