$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Y2ZZ77gH4sKh5tW0WFTUZjLccic.roa File: Y2ZZ77gH4sKh5tW0WFTUZjLccic.roa (raw, json) Hash identifier: nMLfLvmCk4DbTNMJVOrUdU77/VEnwBXoGzuv7NscrKk= Subject key identifier: 63:66:59:EF:B8:07:E2:C2:A1:E6:D5:B4:58:54:D4:66:32:DC:72:27 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 17BA Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Y2ZZ77gH4sKh5tW0WFTUZjLccic.roa Signing time: Wed 12 Feb 2025 01:37:00 +0000 ROA not before: Wed 12 Feb 2025 01:37:00 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 210.242.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 02:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6074 (0x17ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:37:00 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=636659EFB807E2C2A1E6D5B45854D46632DC7227 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:0a:fa:87:62:da:f6:d1:3b:43:a4:d8:2d:7e: 69:4c:1d:2f:22:30:a9:dd:c2:0c:6e:88:73:7f:0d: 12:84:dd:ed:35:6d:7f:aa:14:33:fb:7d:35:64:4c: 63:24:9e:9e:e1:83:28:09:8b:4f:39:6a:60:35:ba: c2:8a:80:3d:06:0e:51:01:57:6a:75:bb:08:fc:75: cb:cb:a1:08:01:75:93:82:ed:2e:7c:ba:ea:30:1f: 67:db:e9:35:a1:77:78:e8:95:ba:fb:e2:f3:1b:22: 2e:83:94:79:ba:1c:e6:56:08:22:ab:48:38:83:fe: cb:a5:44:06:f8:19:2a:22:23:f9:01:49:04:5d:b9: 62:8c:7d:fc:fc:9a:e7:ec:8b:4c:c7:62:e4:8f:74: fb:30:07:38:6e:19:18:3b:69:66:46:c2:30:64:44: da:bc:d0:90:3b:08:c0:86:6a:6d:d8:df:aa:bb:a8: ed:96:3d:b3:a8:e5:63:b4:55:08:a4:36:16:15:44: 10:a5:f1:bb:33:b3:a7:df:d0:73:32:07:0a:17:23: a2:60:d1:02:11:d8:83:83:cb:a9:e1:39:db:3d:df: 85:2a:14:df:00:8b:a2:cd:35:df:3e:e6:4e:58:00: e2:f2:49:b4:e9:7d:a9:00:d5:8f:3e:e0:de:a5:26: 3f:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:66:59:EF:B8:07:E2:C2:A1:E6:D5:B4:58:54:D4:66:32:DC:72:27 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Y2ZZ77gH4sKh5tW0WFTUZjLccic.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.242.0.0/16 Signature Algorithm: sha256WithRSAEncryption 90:eb:0e:3b:aa:be:e9:60:f0:2b:f2:15:cf:35:79:27:67:37: 36:88:72:33:1f:23:f8:68:78:f3:12:1c:48:04:29:94:3f:94: 7e:6a:96:8f:df:04:30:72:7d:64:a9:52:f5:b0:b9:cb:8a:74: 61:19:6d:23:87:d7:a7:a8:99:77:db:18:b7:df:2c:a4:7b:58: 4c:df:ee:2c:b0:5b:57:12:6c:42:33:7f:ef:26:7e:aa:68:9a: d3:3d:18:ac:b4:a9:d5:ec:04:c9:6f:6f:3c:74:3c:49:ec:4c: 55:36:4b:92:4d:64:d0:7a:73:6a:d4:00:b0:0c:f4:d3:35:6c: 25:69:47:1b:54:fb:e9:00:c1:33:ff:bd:b5:8c:81:1d:70:b5: 6d:a0:c3:e9:b3:f1:5a:db:0a:ab:fe:2c:65:68:47:3f:6c:2b: 05:5d:27:12:d5:c2:5b:a5:ab:d2:a2:03:52:e5:47:01:11:70: 0d:3e:1e:3c:02:f8:02:34:99:48:55:06:1d:e1:a4:8e:49:b5: 37:83:06:4a:e2:10:99:ae:3f:7b:47:10:00:40:f7:89:24:12: 86:4f:27:25:07:15:70:5c:aa:5c:85:93:1d:97:36:b6:01:c9: 74:17:2c:dc:eb:1d:ba:e7:e3:04:d1:bf:88:79:fe:f3:3a:ca: 2f:7f:6a:ef -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICF7owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM3MDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDYzNjY1OUVGQjgwN0Uy QzJBMUU2RDVCNDU4NTRENDY2MzJEQzcyMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDaCvqHYtr20TtDpNgtfmlMHS8iMKndwgxuiHN/DRKE3e01bX+q FDP7fTVkTGMknp7hgygJi085amA1usKKgD0GDlEBV2p1uwj8dcvLoQgBdZOC7S58 uuowH2fb6TWhd3jolbr74vMbIi6DlHm6HOZWCCKrSDiD/sulRAb4GSoiI/kBSQRd uWKMffz8mufsi0zHYuSPdPswBzhuGRg7aWZGwjBkRNq80JA7CMCGam3Y36q7qO2W PbOo5WO0VQikNhYVRBCl8bszs6ff0HMyBwoXI6Jg0QIR2IODy6nhOds934UqFN8A i6LNNd8+5k5YAOLySbTpfakA1Y8+4N6lJj8xAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUY2ZZ77gH4sKh5tW0WFTUZjLccicwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9ZMlpaNzdnSDRzS2g1dFcwV0ZU VVpqTGNjaWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA0vIw DQYJKoZIhvcNAQELBQADggEBAJDrDjuqvulg8CvyFc81eSdnNzaIcjMfI/hoePMS HEgEKZQ/lH5qlo/fBDByfWSpUvWwucuKdGEZbSOH16eomXfbGLffLKR7WEzf7iyw W1cSbEIzf+8mfqpomtM9GKy0qdXsBMlvbzx0PEnsTFU2S5JNZNB6c2rUALAM9NM1 bCVpRxtU++kAwTP/vbWMgR1wtW2gw+mz8VrbCqv+LGVoRz9sKwVdJxLVwlulq9Ki A1LlRwERcA0+HjwC+AI0mUhVBh3hpI5JtTeDBkriEJmuP3tHEABA94kkEoZPJyUH FXBcqlyFkx2XNrYByXQXLNzrHbrn4wTRv4h5/vM6yi9/au8= -----END CERTIFICATE-----Generated at Mon Apr 7 01:57:39 2025 by rpki-client