$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/hhNWcDPQkJDfzlF6cCTumslKuh4.roa File: hhNWcDPQkJDfzlF6cCTumslKuh4.roa (raw, json) Hash identifier: 8k+h3x3u7qMvLRA2cYHE92WhBaL4XhFt00IbFPqKyOQ= Subject key identifier: 86:13:56:70:33:D0:90:90:DF:CE:51:7A:70:24:EE:9A:C9:4A:BA:1E Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Certificate serial: 0CCC Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/hhNWcDPQkJDfzlF6cCTumslKuh4.roa Signing time: Mon 10 Feb 2025 14:12:56 +0000 ROA not before: Mon 10 Feb 2025 14:12:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 61.57.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 01:08:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3276 (0xccc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Validity Not Before: Feb 10 14:12:56 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8613567033D09090DFCE517A7024EE9AC94ABA1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:8d:51:02:37:ef:ec:78:51:e7:ed:77:d1:9d: e5:58:fd:7b:3e:4e:64:04:39:bd:a3:61:62:63:48: e3:cd:05:85:ee:83:1d:7d:ff:d1:cf:00:89:0b:4b: 45:3d:5a:54:e8:50:87:47:44:ed:b5:fc:75:cc:0a: 43:c1:67:00:78:76:25:b6:1a:11:63:03:8d:7f:58: 26:83:8c:f1:29:ec:10:27:7a:71:df:56:e4:d7:58: 97:2d:8b:f0:7a:6b:42:dc:7d:4e:b9:e6:d6:96:dc: 26:10:91:3b:5f:d1:6f:70:e0:05:89:cd:0d:4f:86: 0e:ff:b4:00:d7:5c:08:ca:3e:c4:ce:b7:23:d6:2e: 56:c2:a9:ab:66:e4:9e:1c:c8:b1:a4:e4:30:45:46: aa:7b:a8:c3:bb:06:86:18:d0:47:44:41:29:61:f0: d6:14:20:0d:ce:24:cd:d5:b5:aa:e9:d2:5e:4d:ac: 49:2c:27:62:da:09:77:87:0e:bb:e8:04:de:61:a9: 10:dd:e7:8d:49:a8:7c:64:3a:82:50:4a:f7:f4:67: 59:b3:d8:ec:e0:ce:b8:b2:b6:92:36:01:a3:44:26: 09:b5:4a:8a:b4:de:07:2a:85:44:8b:f1:ce:60:30: b3:79:d6:f8:bc:a2:e5:07:0f:6b:4e:35:19:54:51: bc:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:13:56:70:33:D0:90:90:DF:CE:51:7A:70:24:EE:9A:C9:4A:BA:1E X509v3 Authority Key Identifier: keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/hhNWcDPQkJDfzlF6cCTumslKuh4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.57.208.0/20 Signature Algorithm: sha256WithRSAEncryption 3c:42:c9:3b:2e:51:b1:c9:2c:0f:46:d4:9f:dc:6f:93:db:e1: 54:21:c5:6d:cb:c4:df:f2:43:51:1d:c1:10:af:f9:bb:c2:5e: 0a:75:a4:de:fa:06:0c:ca:6a:4f:e0:16:10:86:d1:16:9a:44: b6:ae:7b:47:70:f6:9d:33:f9:ad:7d:40:74:38:8c:4b:d2:71: a0:c8:58:01:f8:6d:50:4f:eb:6f:27:ff:09:79:d5:f1:b1:35: b7:0d:24:99:19:58:78:a8:d3:d8:46:4b:ab:dd:83:b0:21:e6: 63:e2:80:3f:3d:9f:cd:6c:31:20:9b:c3:04:e7:bb:32:68:78: 76:5f:cc:1a:58:0e:e8:18:4e:4d:cd:2d:4b:76:b6:01:43:ac: c3:38:bb:7e:6f:ba:c1:3f:c3:d8:38:de:4b:80:a6:78:1c:d4: 3f:50:9e:2b:6c:d7:c1:5a:3d:92:3d:87:fe:7b:7c:2b:e0:f3: 48:22:32:42:14:ad:11:4a:75:04:cd:00:01:04:d3:c7:04:fd: 30:bf:6c:30:05:7e:47:d9:0d:c1:a2:48:28:e9:44:0a:e9:f2: 30:1e:07:ee:42:8e:40:38:75:e6:e9:99:96:22:40:04:14:90: 7e:95:f1:eb:81:8f:17:74:72:cf:52:19:41:db:06:bc:ac:d5: 34:ec:8b:f8 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDMwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkZE RUEzNDcwNzE1MjI5MEMxRDI2MDZGRkJGQzY5QjkyN0Q0MEE1QjAeFw0yNTAyMTAx NDEyNTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg2MTM1NjcwMzNEMDkw OTBERkNFNTE3QTcwMjRFRTlBQzk0QUJBMUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqjVECN+/seFHn7XfRneVY/Xs+TmQEOb2jYWJjSOPNBYXugx19 /9HPAIkLS0U9WlToUIdHRO21/HXMCkPBZwB4diW2GhFjA41/WCaDjPEp7BAnenHf VuTXWJcti/B6a0LcfU655taW3CYQkTtf0W9w4AWJzQ1Phg7/tADXXAjKPsTOtyPW LlbCqatm5J4cyLGk5DBFRqp7qMO7BoYY0EdEQSlh8NYUIA3OJM3Vtarp0l5NrEks J2LaCXeHDrvoBN5hqRDd541JqHxkOoJQSvf0Z1mz2OzgzriytpI2AaNEJgm1Soq0 3gcqhUSL8c5gMLN51vi8ouUHD2tONRlUUbwjAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUhhNWcDPQkJDfzlF6cCTumslKuh4wHwYDVR0jBBgwFoAUb96jRwcVIpDB0mBv +/xpuSfUClswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lDQ0FU Vi9iOTZqUndjVklwREIwbUJ2LV94cHVTZlVDbHMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2I5NmpSd2NWSXBEQjBtQnYtX3hwdVNmVUNscy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NZQ0NBVFYvaGhOV2NEUFFrSkRmemxG NmNDVHVtc2xLdWg0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BD050DANBgkqhkiG9w0BAQsFAAOCAQEAPELJOy5RscksD0bUn9xvk9vhVCHFbcvE 3/JDUR3BEK/5u8JeCnWk3voGDMpqT+AWEIbRFppEtq57R3D2nTP5rX1AdDiMS9Jx oMhYAfhtUE/rbyf/CXnV8bE1tw0kmRlYeKjT2EZLq92DsCHmY+KAPz2fzWwxIJvD BOe7Mmh4dl/MGlgO6BhOTc0tS3a2AUOswzi7fm+6wT/D2DjeS4CmeBzUP1CeK2zX wVo9kj2H/nt8K+DzSCIyQhStEUp1BM0AAQTTxwT9ML9sMAV+R9kNwaJIKOlECuny MB4H7kKOQDh15umZliJABBSQfpXx64GPF3Ryz1IZQdsGvKzVNOyL+A== -----END CERTIFICATE-----Generated at Tue Apr 15 00:49:37 2025 by rpki-client