$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DODOLTD/8UwJCVbT95ZdSlndB5RK-CE4Evs.roa File: 8UwJCVbT95ZdSlndB5RK-CE4Evs.roa (raw, json) Hash identifier: 1480c7igRaH54/bSgQXH49UQmaNoXG49qjRRvq4Dtoc= Subject key identifier: F1:4C:09:09:56:D3:F7:96:5D:4A:59:DD:07:94:4A:F8:21:38:12:FB Certificate issuer: /CN=F38A5E6BF643B818BE3CAE1432E632BB1D1763FA Certificate serial: 013E Authority key identifier: F3:8A:5E:6B:F6:43:B8:18:BE:3C:AE:14:32:E6:32:BB:1D:17:63:FA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/84pea_ZDuBi-PK4UMuYyux0XY_o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DODOLTD/8UwJCVbT95ZdSlndB5RK-CE4Evs.roa Signing time: Mon 10 Feb 2025 14:16:05 +0000 ROA not before: Mon 10 Feb 2025 14:16:05 +0000 ROA not after: Thu 27 Nov 2025 15:30:38 +0000 asID: 17413 IP address blocks: 2401:dae0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DODOLTD/84pea_ZDuBi-PK4UMuYyux0XY_o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DODOLTD/84pea_ZDuBi-PK4UMuYyux0XY_o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/84pea_ZDuBi-PK4UMuYyux0XY_o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 09:38:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 318 (0x13e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F38A5E6BF643B818BE3CAE1432E632BB1D1763FA Validity Not Before: Feb 10 14:16:05 2025 GMT Not After : Nov 27 15:30:38 2025 GMT Subject: CN=F14C090956D3F7965D4A59DD07944AF8213812FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7c:b2:93:49:c7:09:27:89:c4:1a:d7:0f:44: 99:27:0d:22:3f:1d:50:4b:42:df:6b:ee:d7:cd:2c: d4:f2:b9:04:64:9c:9c:5e:07:66:a8:c0:2c:85:a5: c7:85:4f:be:f6:8a:46:0c:9c:ed:92:7e:be:aa:db: 31:65:92:dc:0f:d4:1d:a3:d3:76:18:f2:6b:af:14: 4b:8e:41:48:7b:ed:09:c3:a9:9e:f4:be:f7:4f:90: 29:53:97:6b:73:5f:0f:bd:d9:dd:e0:18:c0:ad:c8: 72:04:ee:03:c7:f3:32:24:39:88:93:d2:9f:93:66: e3:cb:9a:ef:e5:00:dc:ac:98:95:f0:e2:db:61:dc: dd:c7:82:cf:14:ee:ed:68:e5:b1:4d:79:4d:37:ae: f4:36:d8:15:dd:58:88:88:02:03:9d:8e:c3:fc:09: 71:6f:ac:99:7d:0e:b2:db:d4:b7:d2:ae:d2:cc:c9: 9e:57:fe:f7:17:1a:ce:fd:46:3c:50:e7:a3:05:2a: be:18:44:9d:d0:c0:b6:57:93:de:03:35:b5:cc:7c: 5c:a6:e4:f0:5e:2e:5f:81:c0:8b:7d:f1:a1:48:de: 89:fd:b0:a5:a4:2a:f3:45:84:51:1f:92:f6:a1:ef: 27:27:2f:dc:b3:eb:97:3f:f4:be:ee:a4:24:20:e9: 26:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:4C:09:09:56:D3:F7:96:5D:4A:59:DD:07:94:4A:F8:21:38:12:FB X509v3 Authority Key Identifier: keyid:F3:8A:5E:6B:F6:43:B8:18:BE:3C:AE:14:32:E6:32:BB:1D:17:63:FA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DODOLTD/84pea_ZDuBi-PK4UMuYyux0XY_o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/84pea_ZDuBi-PK4UMuYyux0XY_o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DODOLTD/8UwJCVbT95ZdSlndB5RK-CE4Evs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:dae0::/32 Signature Algorithm: sha256WithRSAEncryption 58:f5:1f:2a:a2:8c:92:e4:89:70:f6:0d:9f:19:ad:44:52:6e: 17:42:eb:6d:94:c1:9d:74:00:a5:c8:3d:c4:eb:fb:18:cb:89: ac:72:ee:71:6d:23:32:db:2a:46:e9:9b:8a:68:f1:2e:f4:d5: 57:4e:ec:a5:f3:85:d7:89:8f:90:8b:e6:32:90:bf:ad:8b:03: 52:34:6e:12:c7:f1:f2:f6:be:e5:40:be:1c:d6:6e:41:c2:65: d5:7f:39:9d:95:bc:68:6a:0b:62:98:51:00:60:26:fd:19:af: e2:f1:b6:ff:37:1e:df:3a:49:f9:50:84:85:10:71:7c:86:26: 03:07:43:d4:c1:17:93:43:a0:3d:74:e1:51:f5:63:06:e8:03: ad:45:34:13:cb:a5:52:29:e9:23:78:8c:40:f0:5d:ab:36:25: 7b:cf:b6:14:5a:1a:90:49:c3:75:c8:70:9c:f4:8e:61:11:10: e9:c4:3e:ce:d6:c3:83:ca:68:2f:41:6b:18:1d:b1:c5:78:0a: 32:bd:78:0b:3f:68:77:bf:96:50:39:8d:d4:64:3f:19:71:b0: 31:d5:0d:2a:d8:16:20:e6:a7:3b:20:0e:46:65:9e:e8:8b:cd: 0e:ea:26:b1:fc:58:51:18:d0:a4:df:46:12:46:a9:b6:d0:9d: a1:7f:22:5c -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICAT4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjM4 QTVFNkJGNjQzQjgxOEJFM0NBRTE0MzJFNjMyQkIxRDE3NjNGQTAeFw0yNTAyMTAx NDE2MDVaFw0yNTExMjcxNTMwMzhaMDMxMTAvBgNVBAMTKEYxNEMwOTA5NTZEM0Y3 OTY1RDRBNTlERDA3OTQ0QUY4MjEzODEyRkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCufLKTSccJJ4nEGtcPRJknDSI/HVBLQt9r7tfNLNTyuQRknJxe B2aowCyFpceFT772ikYMnO2Sfr6q2zFlktwP1B2j03YY8muvFEuOQUh77QnDqZ70 vvdPkClTl2tzXw+92d3gGMCtyHIE7gPH8zIkOYiT0p+TZuPLmu/lANysmJXw4tth 3N3Hgs8U7u1o5bFNeU03rvQ22BXdWIiIAgOdjsP8CXFvrJl9DrLb1LfSrtLMyZ5X /vcXGs79RjxQ56MFKr4YRJ3QwLZXk94DNbXMfFym5PBeLl+BwIt98aFI3on9sKWk KvNFhFEfkvah7ycnL9yz65c/9L7upCQg6SY1AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU8UwJCVbT95ZdSlndB5RK+CE4EvswHwYDVR0jBBgwFoAU84pea/ZDuBi+PK4U MuYyux0XY/owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9ET0xU RC84NHBlYV9aRHVCaS1QSzRVTXVZeXV4MFhZX28uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBLzg0cGVhX1pEdUJpLVBLNFVNdVl5dXgwWFlfby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RPRE9MVEQvOFV3SkNWYlQ5NVpkU2xu ZEI1UkstQ0U0RXZzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF ACQB2uAwDQYJKoZIhvcNAQELBQADggEBAFj1HyqijJLkiXD2DZ8ZrURSbhdC622U wZ10AKXIPcTr+xjLiaxy7nFtIzLbKkbpm4po8S701VdO7KXzhdeJj5CL5jKQv62L A1I0bhLH8fL2vuVAvhzWbkHCZdV/OZ2VvGhqC2KYUQBgJv0Zr+Lxtv83Ht86SflQ hIUQcXyGJgMHQ9TBF5NDoD104VH1YwboA61FNBPLpVIp6SN4jEDwXas2JXvPthRa GpBJw3XIcJz0jmEREOnEPs7Ww4PKaC9BaxgdscV4CjK9eAs/aHe/llA5jdRkPxlx sDHVDSrYFiDmpzsgDkZlnuiLzQ7qJrH8WFEY0KTfRhJGqbbQnaF/Ilw= -----END CERTIFICATE-----Generated at Wed Apr 16 06:54:57 2025 by rpki-client