$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/O2uLVi7TTfAHeKOoebcAiMfFCLI.roa File: O2uLVi7TTfAHeKOoebcAiMfFCLI.roa (raw, json) Hash identifier: hXDaCFR0K+2iilLOdFOIK4mtWvAyGnhmbHqQ0i8hJH4= Subject key identifier: 3B:6B:8B:56:2E:D3:4D:F0:07:78:A3:A8:79:B7:00:88:C7:C5:08:B2 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 175E Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/O2uLVi7TTfAHeKOoebcAiMfFCLI.roa Signing time: Wed 12 Feb 2025 01:36:38 +0000 ROA not before: Wed 12 Feb 2025 01:36:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9680 IP address blocks: 2001:b000:91::/48 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 18:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5982 (0x175e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:36:38 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3B6B8B562ED34DF00778A3A879B70088C7C508B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8d:c0:d8:f3:e6:f7:f6:ad:12:85:70:a6:24: 0d:7f:4f:36:aa:b8:3e:3c:8a:5a:7b:26:c8:1e:2d: 0d:51:3a:b7:5b:51:45:d4:85:58:13:ec:db:96:a8: e7:42:7a:53:71:99:d0:46:97:ff:e0:5c:78:ad:3e: 73:ba:d1:11:cc:ab:7d:09:54:7b:23:6d:18:db:dd: af:12:f3:a1:c2:fc:30:a9:dc:e9:43:a7:53:a2:a7: b4:e0:cb:40:b9:86:9d:9c:97:81:ce:35:46:81:d8: 8a:12:d0:36:22:0b:a1:4e:af:36:65:4a:b4:e2:12: 0f:98:c9:77:d3:d6:04:c8:2c:50:14:44:db:88:bd: 1d:d4:41:31:d1:12:9a:9b:14:40:ce:c5:00:2d:1a: 6b:45:ff:a7:cd:66:10:67:03:f6:ac:67:dd:35:c6: 15:c3:d2:0f:57:d2:ce:73:1c:3a:c7:12:cb:14:10: ba:f3:bb:49:ea:fd:1c:ad:2d:cd:fc:c1:c7:0a:32: 36:9e:ce:49:62:03:6a:42:fe:01:cb:38:fd:b2:bd: 2d:17:fb:a8:6c:fa:14:12:92:e6:ed:00:6f:20:86: 90:5f:4f:ee:4c:51:7d:d4:9f:ee:2b:8a:24:b8:af: 5f:15:0d:55:7b:c3:ad:dc:0f:98:cf:78:3c:37:b5: 75:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:6B:8B:56:2E:D3:4D:F0:07:78:A3:A8:79:B7:00:88:C7:C5:08:B2 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/O2uLVi7TTfAHeKOoebcAiMfFCLI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:b000:91::/48 Signature Algorithm: sha256WithRSAEncryption ce:d1:a2:4f:00:3f:e1:06:c6:b6:56:27:a6:e6:de:b8:5e:43: 3a:b5:f0:1e:ad:a3:ff:0c:ba:87:34:ca:2d:c3:fb:fe:03:cc: 8b:fd:1b:9b:3d:a4:89:8f:8f:0b:6e:6e:93:e2:31:4a:db:14: ed:84:19:d9:0b:b4:e9:7a:31:5f:b1:e8:4d:20:67:05:fd:94: a2:10:c0:7d:4f:fd:83:7f:9e:71:74:85:33:e0:bb:6e:72:58: 02:22:8a:a2:5b:7b:e0:87:4a:ac:ac:d2:5c:6c:cd:70:92:ed: 84:12:a2:a6:51:e5:c7:9b:a1:50:28:df:3c:23:e2:44:da:90: 9f:4f:8e:51:36:f3:71:59:c6:0e:d0:0d:f5:1f:6f:09:f2:c7: 07:2b:3d:7f:c8:f5:4b:9e:cc:c1:17:5a:fd:6a:75:05:bc:9d: 4d:33:ea:d5:6c:1f:d5:6d:4f:b9:63:ea:49:03:5a:71:69:1d: 5a:cf:71:23:da:1f:f0:ba:56:32:c8:af:4b:bc:c1:98:dc:7f: 8d:b3:b3:ef:09:88:fa:7f:fc:18:09:89:1f:c4:e3:5c:81:f5: 3d:9f:1e:51:bf:74:1c:29:b7:06:97:44:2e:00:d8:94:84:cc: bf:03:bc:44:fd:1f:a7:aa:81:99:56:41:81:dd:50:9e:fc:6a: 52:96:f3:e1 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICF14wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM2MzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNCNkI4QjU2MkVEMzRE RjAwNzc4QTNBODc5QjcwMDg4QzdDNTA4QjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7jcDY8+b39q0ShXCmJA1/TzaquD48ilp7JsgeLQ1ROrdbUUXU hVgT7NuWqOdCelNxmdBGl//gXHitPnO60RHMq30JVHsjbRjb3a8S86HC/DCp3OlD p1Oip7Tgy0C5hp2cl4HONUaB2IoS0DYiC6FOrzZlSrTiEg+YyXfT1gTILFAURNuI vR3UQTHREpqbFEDOxQAtGmtF/6fNZhBnA/asZ901xhXD0g9X0s5zHDrHEssUELrz u0nq/RytLc38wccKMjaezkliA2pC/gHLOP2yvS0X+6hs+hQSkubtAG8ghpBfT+5M UX3Un+4riiS4r18VDVV7w63cD5jPeDw3tXVLAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUO2uLVi7TTfAHeKOoebcAiMfFCLIwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9PMnVMVmk3VFRmQUhlS09vZWJj QWlNZkZDTEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAGw AACRMA0GCSqGSIb3DQEBCwUAA4IBAQDO0aJPAD/hBsa2Viem5t64XkM6tfAeraP/ DLqHNMotw/v+A8yL/RubPaSJj48Lbm6T4jFK2xTthBnZC7TpejFfsehNIGcF/ZSi EMB9T/2Df55xdIUz4LtuclgCIoqiW3vgh0qsrNJcbM1wku2EEqKmUeXHm6FQKN88 I+JE2pCfT45RNvNxWcYO0A31H28J8scHKz1/yPVLnszBF1r9anUFvJ1NM+rVbB/V bU+5Y+pJA1pxaR1az3Ej2h/wulYyyK9LvMGY3H+Ns7PvCYj6f/wYCYkfxONcgfU9 nx5Rv3QcKbcGl0QuANiUhMy/A7xE/R+nqoGZVkGB3VCe/GpSlvPh -----END CERTIFICATE-----Generated at Mon Apr 7 17:47:50 2025 by rpki-client