$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/CRxC0G1VGn7EftWGtSrd3QPTYis.roa File: CRxC0G1VGn7EftWGtSrd3QPTYis.roa (raw, json) Hash identifier: Z1Presnj+wPmw1fyWYOxIdzcTtAgs5hASYdhsMENvwU= Subject key identifier: 09:1C:42:D0:6D:55:1A:7E:C4:7E:D5:86:B5:2A:DD:DD:03:D3:62:2B Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1754 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/CRxC0G1VGn7EftWGtSrd3QPTYis.roa Signing time: Wed 12 Feb 2025 01:36:35 +0000 ROA not before: Wed 12 Feb 2025 01:36:35 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17421 IP address blocks: 2001:b401::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5972 (0x1754) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:36:35 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=091C42D06D551A7EC47ED586B52ADDDD03D3622B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f4:f6:e3:60:1a:b7:a2:44:00:7e:8b:4d:a3: 71:ec:ea:0d:ce:12:29:9c:98:dc:40:01:1e:ec:5d: 59:20:41:68:09:45:a4:bc:40:d0:9b:c6:67:48:e3: 56:d5:c3:bd:d7:60:20:21:46:95:4f:a2:cf:4e:d3: 57:b7:80:63:65:58:91:9b:41:55:56:a9:14:41:61: a2:05:e3:a7:19:be:d2:a8:07:04:04:99:db:f7:9e: d4:a2:ce:cd:80:93:6f:bf:29:2b:e4:9c:74:e9:3c: 8a:31:83:40:fe:0c:c6:32:61:31:65:7c:f0:2e:8d: 82:83:57:df:23:f5:4d:a8:1f:a8:4b:f0:6b:51:1c: 42:0a:d4:72:73:9d:20:a1:65:22:67:d1:33:56:d1: 92:5b:42:3a:6d:f9:28:46:63:34:c7:a8:4b:c4:13: ff:25:91:b6:1d:44:48:00:38:8f:00:8f:74:fe:73: 0c:85:32:15:28:3c:c7:72:40:45:fa:2c:a7:e0:64: b9:4b:ad:1e:83:1c:2b:33:f6:30:a4:c8:2d:71:fc: cb:9c:c6:03:54:81:64:58:e3:6b:e8:bb:95:2b:fd: 99:7b:34:29:2b:a1:b6:7b:f8:7f:6c:b4:44:52:10: 52:b3:d2:21:ac:6c:15:e7:d0:3d:32:ba:b4:04:25: 2f:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:1C:42:D0:6D:55:1A:7E:C4:7E:D5:86:B5:2A:DD:DD:03:D3:62:2B X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/CRxC0G1VGn7EftWGtSrd3QPTYis.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:b401::/32 Signature Algorithm: sha256WithRSAEncryption 56:55:0a:42:6d:71:c7:a2:f0:a8:08:48:d2:7e:b7:a1:9f:b1: f9:31:39:9a:04:ef:07:11:1f:c0:d5:a2:52:ea:0e:ca:dd:51: 23:16:c0:c7:b8:7e:42:fa:1a:9d:8c:4a:02:7f:57:41:53:c4: 39:fd:58:c3:04:2e:bb:7b:33:a5:28:39:1c:c3:44:8e:63:1a: 54:47:b1:f6:3c:53:e4:49:2e:20:7f:bf:1a:97:10:8f:cc:e5: 49:e3:ce:61:00:35:33:3d:99:e5:6c:c6:c9:7c:95:ac:c0:b2: 01:a1:aa:50:64:32:b8:55:66:b9:2d:91:c0:3f:7a:57:47:66: 78:bb:af:9a:19:f1:26:89:79:23:28:84:cf:3f:ed:f1:1d:e4: 73:0a:45:41:25:c0:1a:9c:62:ed:05:0a:5a:b5:25:72:e3:f8: 75:58:fb:7d:22:dc:c6:74:27:eb:35:97:fd:6b:2a:af:ea:2b: 8a:4e:90:97:e7:8a:f6:be:75:19:99:7b:d2:77:c9:e2:06:5e: 34:5a:53:dd:2b:a4:5d:01:1b:52:f4:3d:3b:4b:06:76:f8:4b: d1:52:25:f7:25:22:aa:2b:df:de:8a:ac:d8:6b:89:74:bf:e1: 5f:f9:bc:3a:60:8f:05:3c:be:b0:bc:f2:1a:90:8a:96:e0:c2: 55:82:6a:0c -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICF1QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM2MzVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA5MUM0MkQwNkQ1NTFB N0VDNDdFRDU4NkI1MkFEREREMDNEMzYyMkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDc9PbjYBq3okQAfotNo3Hs6g3OEimcmNxAAR7sXVkgQWgJRaS8 QNCbxmdI41bVw73XYCAhRpVPos9O01e3gGNlWJGbQVVWqRRBYaIF46cZvtKoBwQE mdv3ntSizs2Ak2+/KSvknHTpPIoxg0D+DMYyYTFlfPAujYKDV98j9U2oH6hL8GtR HEIK1HJznSChZSJn0TNW0ZJbQjpt+ShGYzTHqEvEE/8lkbYdREgAOI8Aj3T+cwyF MhUoPMdyQEX6LKfgZLlLrR6DHCsz9jCkyC1x/MucxgNUgWRY42vou5Ur/Zl7NCkr obZ7+H9stERSEFKz0iGsbBXn0D0yurQEJS/DAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUCRxC0G1VGn7EftWGtSrd3QPTYiswHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9DUnhDMEcxVkduN0VmdFdHdFNy ZDNRUFRZaXMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAIAG0 ATANBgkqhkiG9w0BAQsFAAOCAQEAVlUKQm1xx6LwqAhI0n63oZ+x+TE5mgTvBxEf wNWiUuoOyt1RIxbAx7h+QvoanYxKAn9XQVPEOf1YwwQuu3szpSg5HMNEjmMaVEex 9jxT5EkuIH+/GpcQj8zlSePOYQA1Mz2Z5WzGyXyVrMCyAaGqUGQyuFVmuS2RwD96 V0dmeLuvmhnxJol5IyiEzz/t8R3kcwpFQSXAGpxi7QUKWrUlcuP4dVj7fSLcxnQn 6zWX/Wsqr+orik6Ql+eK9r51GZl70nfJ4gZeNFpT3SukXQEbUvQ9O0sGdvhL0VIl 9yUiqivf3oqs2GuJdL/hX/m8OmCPBTy+sLzyGpCKluDCVYJqDA== -----END CERTIFICATE-----Generated at Mon Apr 7 20:34:44 2025 by rpki-client