$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/SLXjoHIoPpjHVzELwjm6sRRR9nc.roa File: SLXjoHIoPpjHVzELwjm6sRRR9nc.roa (raw, json) Hash identifier: CBvyB2jl4CcJF1bS1+Trd/79reUelbNwdvhs6ejURzo= Subject key identifier: 48:B5:E3:A0:72:28:3E:98:C7:57:31:0B:C2:39:BA:B1:14:51:F6:77 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 171C Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/SLXjoHIoPpjHVzELwjm6sRRR9nc.roa Signing time: Wed 12 Feb 2025 01:36:25 +0000 ROA not before: Wed 12 Feb 2025 01:36:25 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9505 IP address blocks: 175.41.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 18:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5916 (0x171c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:36:25 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=48B5E3A072283E98C757310BC239BAB11451F677 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:da:a5:e4:8d:96:9a:33:38:20:39:4e:04:10: 3b:0e:a0:67:57:65:b1:31:a0:f1:1d:66:7e:39:4d: 07:8b:92:8f:f7:d5:86:28:17:5a:f6:37:0e:ce:b6: 42:14:d7:d6:16:43:a7:cb:e7:6d:72:e1:da:19:e1: de:ce:e0:b0:b6:31:c0:03:9b:9b:0b:55:30:02:4e: 01:bc:1e:1c:82:8c:60:3c:16:02:3d:4d:36:01:21: 22:8b:ad:d6:44:ee:da:3b:7a:a6:95:a1:d8:a2:9d: 0e:40:53:b2:87:97:21:fd:2b:ba:a7:e4:6e:c9:6f: 51:61:aa:c6:d8:3c:38:5c:b9:f7:9f:c5:64:25:10: a9:e4:50:b6:32:7b:cc:11:76:90:c1:27:71:be:a9: 2d:72:52:6f:cd:46:62:c8:e2:54:a3:cc:9d:a3:dd: ff:a0:3e:8f:7f:83:65:9e:1a:97:79:bb:06:4a:32: a5:62:df:f8:39:30:42:b7:c3:d1:c3:95:68:af:93: f2:ef:f7:ac:e1:62:d5:4f:02:e3:36:be:ff:8a:c0: 96:a6:49:d2:45:40:1f:31:0a:e8:e5:82:3b:03:b7: ca:41:77:cd:47:69:d6:fb:e7:bb:f8:0a:04:22:5c: 55:aa:aa:5a:24:a2:0f:ce:c0:d0:41:5c:ca:5c:39: 0e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:B5:E3:A0:72:28:3E:98:C7:57:31:0B:C2:39:BA:B1:14:51:F6:77 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/SLXjoHIoPpjHVzELwjm6sRRR9nc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.41.48.0/20 Signature Algorithm: sha256WithRSAEncryption 01:f3:fc:76:b9:e7:bb:a6:c0:f6:58:cf:b5:da:44:85:ed:cd: b7:ab:ff:1d:4c:12:4a:ad:90:d3:c2:8b:08:9d:34:7f:e3:73: 8a:86:36:0c:e1:1b:4c:a4:e1:1f:d8:a4:b2:3f:9f:42:be:59: 87:2a:cf:f7:4a:e3:a2:88:70:94:c6:72:e4:f6:64:4a:b2:ff: 92:41:c1:dc:e9:c1:6f:bc:64:d8:1a:cc:c1:05:10:48:20:19: b7:31:4e:1e:fd:f9:c6:1d:91:94:b3:58:1f:c6:48:06:79:02: 78:55:76:26:67:d1:74:e0:f7:51:fa:77:8a:6f:0b:5e:d3:96: 1e:67:0d:7d:b6:e7:d4:f8:6a:37:14:45:19:d3:22:92:5e:db: 24:f0:61:f7:b3:91:76:bf:7d:1d:33:22:84:c2:2d:bf:6d:38: da:b8:45:48:d0:16:a2:59:aa:5c:b1:7c:4a:62:7c:a6:bf:34: e2:bc:82:16:72:24:b1:ef:04:d3:4e:08:40:16:61:75:4c:e4: 88:bc:0b:58:c4:62:c7:37:9f:cd:6d:df:17:b7:15:26:a8:c4: cd:70:a7:b3:6e:ad:2f:bc:7f:b3:f8:0f:be:f9:73:16:dd:b1: 74:e9:a0:e5:7a:53:4d:fb:2b:b0:ca:60:7b:b5:9c:15:f2:a9: e7:7c:46:88 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICFxwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM2MjVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ4QjVFM0EwNzIyODNF OThDNzU3MzEwQkMyMzlCQUIxMTQ1MUY2NzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDC2qXkjZaaMzggOU4EEDsOoGdXZbExoPEdZn45TQeLko/31YYo F1r2Nw7OtkIU19YWQ6fL521y4doZ4d7O4LC2McADm5sLVTACTgG8HhyCjGA8FgI9 TTYBISKLrdZE7to7eqaVodiinQ5AU7KHlyH9K7qn5G7Jb1FhqsbYPDhcufefxWQl EKnkULYye8wRdpDBJ3G+qS1yUm/NRmLI4lSjzJ2j3f+gPo9/g2WeGpd5uwZKMqVi 3/g5MEK3w9HDlWivk/Lv96zhYtVPAuM2vv+KwJamSdJFQB8xCujlgjsDt8pBd81H adb757v4CgQiXFWqqlokog/OwNBBXMpcOQ6HAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUSLXjoHIoPpjHVzELwjm6sRRR9ncwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9TTFhqb0hJb1BwakhWekVMd2pt NnNSUlI5bmMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQErykw MA0GCSqGSIb3DQEBCwUAA4IBAQAB8/x2uee7psD2WM+12kSF7c23q/8dTBJKrZDT wosInTR/43OKhjYM4RtMpOEf2KSyP59CvlmHKs/3SuOiiHCUxnLk9mRKsv+SQcHc 6cFvvGTYGszBBRBIIBm3MU4e/fnGHZGUs1gfxkgGeQJ4VXYmZ9F04PdR+neKbwte 05YeZw19tufU+Go3FEUZ0yKSXtsk8GH3s5F2v30dMyKEwi2/bTjauEVI0BaiWapc sXxKYnymvzTivIIWciSx7wTTTghAFmF1TOSIvAtYxGLHN5/Nbd8XtxUmqMTNcKez bq0vvH+z+A+++XMW3bF06aDlelNN+yuwymB7tZwV8qnnfEaI -----END CERTIFICATE-----Generated at Mon Apr 7 17:47:59 2025 by rpki-client