$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/_7rdgf3MstxjV13wfizet_1466g.roa File: _7rdgf3MstxjV13wfizet_1466g.roa (raw, json) Hash identifier: tx5ru9HuNvx1NeLoN4sLat3jjFhp7rGzwr+1yR0mOA8= Subject key identifier: FF:BA:DD:81:FD:CC:B2:DC:63:57:5D:F0:7E:2C:DE:B7:FD:78:EB:A8 Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Certificate serial: 0CD2 Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/_7rdgf3MstxjV13wfizet_1466g.roa Signing time: Mon 10 Feb 2025 14:12:58 +0000 ROA not before: Mon 10 Feb 2025 14:12:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 61.58.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 08:37:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3282 (0xcd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Validity Not Before: Feb 10 14:12:58 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FFBADD81FDCCB2DC63575DF07E2CDEB7FD78EBA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:cd:96:c2:29:2c:79:ef:95:ee:bb:ab:c8:48: 0b:1a:56:7c:c2:c6:d3:a3:6a:0d:ba:20:4c:d4:20: df:f7:81:63:1a:83:81:ad:e8:81:04:6c:ed:af:08: 03:1e:fd:7f:c2:ec:38:73:68:9f:ea:49:c0:9d:14: 3b:c8:7b:85:93:db:89:18:30:15:36:a7:24:97:d0: 87:85:10:dd:29:85:0a:86:70:bc:93:d9:1e:32:c5: 33:f8:df:8e:97:74:1a:82:cc:d1:93:c6:0a:d2:63: 35:6b:3b:9b:f2:62:6a:51:60:a3:01:f0:42:7c:e3: 5e:3b:a5:67:d8:d6:b5:23:5c:c0:05:d9:8c:9f:ad: 52:f2:10:1f:cc:b4:38:b9:df:08:89:ef:95:cd:ce: ac:2e:c5:14:79:46:46:d6:c0:c5:67:8f:6e:b7:ae: 46:aa:ba:3c:99:79:36:8f:71:88:73:39:22:bb:37: a5:26:42:56:03:01:2b:81:5a:ea:04:85:db:9c:cd: 56:02:be:2d:6f:f1:57:12:2b:52:d2:49:44:47:73: a4:3c:7f:c9:d4:11:fc:be:46:56:9b:6e:40:1e:51: 90:2f:db:bf:36:7b:3b:a4:de:e9:58:bb:14:ee:42: 2e:e2:33:dd:6d:c4:98:b5:65:f9:68:3b:26:fb:ec: 15:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:BA:DD:81:FD:CC:B2:DC:63:57:5D:F0:7E:2C:DE:B7:FD:78:EB:A8 X509v3 Authority Key Identifier: keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/_7rdgf3MstxjV13wfizet_1466g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.16.0/20 Signature Algorithm: sha256WithRSAEncryption 8c:26:4a:79:b7:8d:9b:c1:2d:ef:f0:8f:bc:44:8d:e4:48:dc: e2:f6:d9:c7:94:f9:d8:12:fb:46:ef:00:19:fd:e9:f5:1c:02: 85:17:57:a9:d8:d3:62:27:8c:89:84:8e:8f:46:7e:d7:0e:26: 14:7b:9f:75:71:11:5f:86:a1:db:50:b2:f5:9f:3d:4b:d1:dd: 3c:2c:d1:f1:48:b4:63:aa:89:6d:e1:b4:f8:89:f3:5a:00:a9: 82:0d:e6:b6:31:3d:9c:42:4d:3a:0f:38:7b:b0:17:9b:ff:62: 60:0f:f4:e5:33:8b:a5:1e:40:54:fc:6e:c9:6a:38:0c:de:a7: 9c:44:0b:5c:1d:85:b8:3a:75:b6:f2:b8:ac:06:79:ae:74:26: c9:04:eb:7a:0f:07:39:bd:6c:db:42:de:61:04:98:82:5b:09: cf:7a:52:ee:93:60:5c:e9:d7:56:7c:13:5f:71:b3:f1:66:6a: ae:35:7a:b3:31:3c:5f:be:0e:d7:6c:af:e2:db:92:ab:4d:89: 64:bb:1e:80:c8:3b:b2:a8:2d:9c:8a:01:3e:9c:e7:a5:ce:6f: a2:66:6d:85:5b:38:47:19:5a:7f:b2:4e:7d:1d:36:8d:85:5a: ab:c9:cc:2e:4b:04:45:0d:ed:45:12:a1:86:bd:f6:83:ca:62: a1:01:65:6f -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDNIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkZE RUEzNDcwNzE1MjI5MEMxRDI2MDZGRkJGQzY5QjkyN0Q0MEE1QjAeFw0yNTAyMTAx NDEyNThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZGQkFERDgxRkRDQ0Iy REM2MzU3NURGMDdFMkNERUI3RkQ3OEVCQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlzZbCKSx575Xuu6vISAsaVnzCxtOjag26IEzUIN/3gWMag4Gt 6IEEbO2vCAMe/X/C7DhzaJ/qScCdFDvIe4WT24kYMBU2pySX0IeFEN0phQqGcLyT 2R4yxTP4346XdBqCzNGTxgrSYzVrO5vyYmpRYKMB8EJ84147pWfY1rUjXMAF2Yyf rVLyEB/MtDi53wiJ75XNzqwuxRR5RkbWwMVnj263rkaqujyZeTaPcYhzOSK7N6Um QlYDASuBWuoEhduczVYCvi1v8VcSK1LSSURHc6Q8f8nUEfy+RlabbkAeUZAv2782 ezuk3ulYuxTuQi7iM91txJi1ZfloOyb77BXPAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU/7rdgf3MstxjV13wfizet/1466gwHwYDVR0jBBgwFoAUb96jRwcVIpDB0mBv +/xpuSfUClswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lDQ0FU Vi9iOTZqUndjVklwREIwbUJ2LV94cHVTZlVDbHMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2I5NmpSd2NWSXBEQjBtQnYtX3hwdVNmVUNscy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NZQ0NBVFYvXzdyZGdmM01zdHhqVjEz d2ZpemV0XzE0NjZnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BD06EDANBgkqhkiG9w0BAQsFAAOCAQEAjCZKebeNm8Et7/CPvESN5Ejc4vbZx5T5 2BL7Ru8AGf3p9RwChRdXqdjTYieMiYSOj0Z+1w4mFHufdXERX4ah21Cy9Z89S9Hd PCzR8Ui0Y6qJbeG0+InzWgCpgg3mtjE9nEJNOg84e7AXm/9iYA/05TOLpR5AVPxu yWo4DN6nnEQLXB2FuDp1tvK4rAZ5rnQmyQTreg8HOb1s20LeYQSYglsJz3pS7pNg XOnXVnwTX3Gz8WZqrjV6szE8X74O12yv4tuSq02JZLsegMg7sqgtnIoBPpznpc5v omZthVs4Rxlaf7JOfR02jYVaq8nMLksERQ3tRRKhhr32g8pioQFlbw== -----END CERTIFICATE-----Generated at Mon Apr 7 08:09:32 2025 by rpki-client