$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/-gEvWjXSQ3ZjxflEUd3C2gtzKw4.roa File: -gEvWjXSQ3ZjxflEUd3C2gtzKw4.roa (raw, json) Hash identifier: M3igiPPSE0PARR4Qyo6VmxUEorsuckzKXEuRzC3tCFc= Subject key identifier: FA:01:2F:5A:35:D2:43:76:63:C5:F9:44:51:DD:C2:DA:0B:73:2B:0E Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 11EC Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/-gEvWjXSQ3ZjxflEUd3C2gtzKw4.roa Signing time: Mon 10 Feb 2025 14:27:52 +0000 ROA not before: Mon 10 Feb 2025 14:27:52 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 210.58.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 18:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4588 (0x11ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:27:52 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FA012F5A35D2437663C5F94451DDC2DA0B732B0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:2a:9a:d1:4c:49:d9:88:e2:b8:ca:37:e3:ad: c9:de:67:38:d8:5b:77:01:9d:b3:f0:da:d7:d9:ab: 63:f3:50:f9:23:52:ce:a4:38:c8:a5:b5:eb:5a:d2: 46:46:ce:cc:f0:d3:41:94:88:b6:e8:08:cd:3c:d6: 4a:0c:fd:cd:f7:26:ff:40:15:cb:5c:a0:35:3c:80: 71:61:7e:e3:01:6d:6c:f0:90:70:01:28:7e:4d:8b: ee:a6:5d:0d:ea:86:d3:98:9f:5c:21:6d:60:fb:3a: ce:99:58:99:bf:84:3b:70:5b:3e:86:d1:eb:91:f7: 54:21:59:cb:41:64:aa:3a:02:80:32:29:71:4e:1d: 6f:23:4a:03:fc:67:65:94:28:bb:de:0f:3a:0f:a0: 96:33:dd:34:0f:31:6c:9a:d9:36:cc:96:34:ef:1e: ba:22:11:b7:5a:ad:e8:f5:11:8f:fd:d1:2a:84:f3: 1c:85:aa:6f:ba:49:b3:ae:10:40:6d:10:1c:b9:f2: 06:b9:da:dc:08:67:7a:08:98:d7:e5:3d:fb:6c:c8: a0:ed:11:b4:e4:e6:90:48:a0:1b:8d:79:b9:3e:87: b2:d7:ad:33:ce:7b:ba:c5:b9:76:ca:59:e6:74:8d: 0d:b5:56:8b:a1:9f:51:55:c6:92:3a:71:4f:40:91: e9:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:01:2F:5A:35:D2:43:76:63:C5:F9:44:51:DD:C2:DA:0B:73:2B:0E X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/-gEvWjXSQ3ZjxflEUd3C2gtzKw4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.58.128.0/19 Signature Algorithm: sha256WithRSAEncryption b5:af:f4:f9:a8:8f:5a:89:75:a2:30:29:14:ad:1f:4f:bc:25: ff:5b:d7:ea:f3:2d:26:bb:04:11:34:67:a6:98:b1:09:c8:ad: d4:0f:2a:71:5f:f5:d6:ee:51:5e:32:a2:e3:9e:8d:3f:34:4b: a4:6b:9a:ba:5e:7a:2e:37:86:0d:8f:62:d6:94:0f:ca:52:93: d7:a3:9a:54:5a:e3:d4:5c:01:46:c3:5f:4d:f2:14:6f:82:1f: 05:47:c9:0a:15:94:55:55:62:f6:3c:a9:04:43:1f:75:cb:e7: 5f:3f:ca:97:a9:f9:4a:aa:44:bc:1a:89:2d:9b:58:98:7f:44: 4b:4c:90:0b:fa:f9:9f:e3:0f:2a:fd:e8:65:08:08:3b:61:6c: e2:ad:52:3e:5c:00:bc:cd:58:43:3c:9c:13:8b:98:25:da:d4: 47:56:69:1a:03:31:4e:b0:03:39:8d:5b:02:2c:34:1e:c9:3b: d5:2c:dd:24:53:06:05:41:d2:a9:10:ba:8e:40:53:af:3c:20: db:32:df:8f:b8:c7:62:44:b5:22:7e:e3:22:5b:71:21:b3:d7: d9:35:15:01:15:ce:a9:d2:8a:16:a8:6e:b4:ab:f9:d4:14:e7: 3e:5c:d5:4a:02:7e:a8:40:3e:90:be:3a:83:ba:f1:71:ef:0b: d6:26:e9:38 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEewwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI3NTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZBMDEyRjVBMzVEMjQz NzY2M0M1Rjk0NDUxRERDMkRBMEI3MzJCMEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNKprRTEnZiOK4yjfjrcneZzjYW3cBnbPw2tfZq2PzUPkjUs6k OMilteta0kZGzszw00GUiLboCM081koM/c33Jv9AFctcoDU8gHFhfuMBbWzwkHAB KH5Ni+6mXQ3qhtOYn1whbWD7Os6ZWJm/hDtwWz6G0euR91QhWctBZKo6AoAyKXFO HW8jSgP8Z2WUKLveDzoPoJYz3TQPMWya2TbMljTvHroiEbdarej1EY/90SqE8xyF qm+6SbOuEEBtEBy58ga52twIZ3oImNflPftsyKDtEbTk5pBIoBuNebk+h7LXrTPO e7rFuXbKWeZ0jQ21Vouhn1FVxpI6cU9Akel7AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU+gEvWjXSQ3ZjxflEUd3C2gtzKw4wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULy1nRXZXalhTUTNaanhmbEVVZDNDMmd0 ekt3NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXSOoAwDQYJ KoZIhvcNAQELBQADggEBALWv9Pmoj1qJdaIwKRStH0+8Jf9b1+rzLSa7BBE0Z6aY sQnIrdQPKnFf9dbuUV4youOejT80S6Rrmrpeei43hg2PYtaUD8pSk9ejmlRa49Rc AUbDX03yFG+CHwVHyQoVlFVVYvY8qQRDH3XL518/ypep+UqqRLwaiS2bWJh/REtM kAv6+Z/jDyr96GUICDthbOKtUj5cALzNWEM8nBOLmCXa1EdWaRoDMU6wAzmNWwIs NB7JO9Us3SRTBgVB0qkQuo5AU688INsy34+4x2JEtSJ+4yJbcSGz19k1FQEVzqnS ihaobrSr+dQU5z5c1UoCfqhAPpC+OoO68XHvC9Ym6Tg= -----END CERTIFICATE-----Generated at Mon Apr 7 15:18:50 2025 by rpki-client