$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/-6meSA_gYHH2GNus8etfLguxJGk.roa File: -6meSA_gYHH2GNus8etfLguxJGk.roa (raw, json) Hash identifier: +0huFbIe0wVe/+59cUq7MutVavOjDW2LXLUzXLo8Bp8= Subject key identifier: FB:A9:9E:48:0F:E0:60:71:F6:18:DB:AC:F1:EB:5F:2E:0B:B1:24:69 Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Certificate serial: 0F9A Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/-6meSA_gYHH2GNus8etfLguxJGk.roa Signing time: Mon 10 Feb 2025 14:30:54 +0000 ROA not before: Mon 10 Feb 2025 14:30:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18424 IP address blocks: 103.136.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3994 (0xf9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Validity Not Before: Feb 10 14:30:54 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FBA99E480FE06071F618DBACF1EB5F2E0BB12469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:42:28:02:12:75:2e:cc:90:fd:7e:fb:67:01: 09:20:6c:64:a8:6e:dd:cf:84:ca:11:ee:69:ff:46: ec:1a:52:10:7d:8d:1b:7c:17:ae:e6:fb:83:82:b4: 5d:e9:59:05:3c:cf:47:6b:86:e1:30:13:89:d8:9a: 8c:a1:51:04:60:44:8d:c2:91:f0:a1:22:94:90:89: d2:65:62:ce:48:a4:a9:fe:cd:b4:bf:60:0d:3b:8f: a7:ed:8e:82:31:97:e7:b8:e2:19:aa:f0:b2:45:d8: 56:18:86:61:5b:04:04:90:50:cd:eb:bd:f5:0b:f0: 1d:99:e9:a8:bf:02:3f:cd:d0:82:4f:da:07:be:be: a5:73:60:38:71:1e:f3:6e:04:3e:23:8c:00:13:74: bc:5e:4d:60:86:ab:79:02:ed:a5:49:bc:ca:74:ce: b0:5c:c5:42:95:00:88:c4:ab:4c:9f:09:31:29:b8: 39:37:27:cc:61:ea:12:69:f7:a7:cc:da:4d:8f:2f: 39:cf:49:cc:12:25:b5:91:6f:f0:21:7f:ff:57:85: e9:ea:db:44:36:0c:e4:f4:e8:76:bd:84:ff:af:98: b4:5b:d7:f3:8e:c8:11:eb:dc:25:64:c4:c8:48:d9: a8:3f:c6:85:60:4b:92:97:7d:61:fa:eb:45:58:7f: 1c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:A9:9E:48:0F:E0:60:71:F6:18:DB:AC:F1:EB:5F:2E:0B:B1:24:69 X509v3 Authority Key Identifier: keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/-6meSA_gYHH2GNus8etfLguxJGk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.136.61.0/24 Signature Algorithm: sha256WithRSAEncryption 27:17:5d:bf:df:57:c3:ba:62:3d:8e:3c:7d:7d:9f:39:09:39: f5:c3:f7:91:03:af:ef:e6:75:70:af:91:3e:a4:40:a5:28:03: b6:aa:03:b0:1a:9f:9e:fa:23:4a:9c:c0:9e:78:b5:a3:77:76: cb:7f:4b:ba:28:1a:b8:7a:c7:ad:36:26:06:31:7d:ed:a4:bf: 16:f9:79:0a:76:ae:84:1d:b0:84:07:b9:c9:e0:fe:0d:9b:d4: af:1c:1a:e0:79:8c:f2:5a:61:05:d4:e4:05:b8:6e:46:6a:46: f3:5e:14:5f:8c:c3:c0:d2:33:b4:94:52:86:d1:71:ce:64:ad: 6d:c2:ee:0c:8c:b9:94:d5:2c:f2:e7:54:9c:60:be:29:a2:31: 24:ca:e3:57:41:5d:a8:05:8a:26:14:f8:c7:08:29:75:d6:f4: 30:7c:05:6d:5d:c2:36:bd:f3:cd:56:25:ce:2d:46:b3:61:49: 4b:f4:f2:3f:20:97:e2:ab:65:67:be:58:0d:df:55:ca:be:3e: 61:ab:cd:66:cd:4c:3a:87:05:76:ef:62:1b:2b:58:7c:ec:df: 26:4d:f4:95:1e:4c:cd:22:65:c6:d5:4c:71:97:6b:23:c2:94: 2e:bc:62:63:40:36:6d:4c:63:23:96:b5:25:12:b3:83:76:aa: b0:f9:de:46 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICD5owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yNTAyMTAx NDMwNTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZCQTk5RTQ4MEZFMDYw NzFGNjE4REJBQ0YxRUI1RjJFMEJCMTI0NjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkQigCEnUuzJD9fvtnAQkgbGSobt3PhMoR7mn/RuwaUhB9jRt8 F67m+4OCtF3pWQU8z0drhuEwE4nYmoyhUQRgRI3CkfChIpSQidJlYs5IpKn+zbS/ YA07j6ftjoIxl+e44hmq8LJF2FYYhmFbBASQUM3rvfUL8B2Z6ai/Aj/N0IJP2ge+ vqVzYDhxHvNuBD4jjAATdLxeTWCGq3kC7aVJvMp0zrBcxUKVAIjEq0yfCTEpuDk3 J8xh6hJp96fM2k2PLznPScwSJbWRb/Ahf/9Xhenq20Q2DOT06Ha9hP+vmLRb1/OO yBHr3CVkxMhI2ag/xoVgS5KXfWH660VYfxzbAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU+6meSA/gYHH2GNus8etfLguxJGkwHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75 mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULy02bWVTQV9nWUhIMkdOdXM4ZXRmTGd1 eEpHay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABniD0wDQYJ KoZIhvcNAQELBQADggEBACcXXb/fV8O6Yj2OPH19nzkJOfXD95EDr+/mdXCvkT6k QKUoA7aqA7Aan576I0qcwJ54taN3dst/S7ooGrh6x602JgYxfe2kvxb5eQp2roQd sIQHucng/g2b1K8cGuB5jPJaYQXU5AW4bkZqRvNeFF+Mw8DSM7SUUobRcc5krW3C 7gyMuZTVLPLnVJxgvimiMSTK41dBXagFiiYU+McIKXXW9DB8BW1dwja9881WJc4t RrNhSUv08j8gl+KrZWe+WA3fVcq+PmGrzWbNTDqHBXbvYhsrWHzs3yZN9JUeTM0i ZcbVTHGXayPClC68YmNANm1MYyOWtSUSs4N2qrD53kY= -----END CERTIFICATE-----Generated at Wed Feb 19 22:10:18 2025 by rpki-client