$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/_j_4UDMuw3mnDt8VOgvgv5TA-OY.roa File: _j_4UDMuw3mnDt8VOgvgv5TA-OY.roa (raw, json) Hash identifier: dL0U0yQDdthow7JFXIcrDEbnXpyc7XNbri9AvoZiisA= Subject key identifier: FE:3F:F8:50:33:2E:C3:79:A7:0E:DF:15:3A:0B:E0:BF:94:C0:F8:E6 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 17B0 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/_j_4UDMuw3mnDt8VOgvgv5TA-OY.roa Signing time: Wed 12 Feb 2025 01:36:57 +0000 ROA not before: Wed 12 Feb 2025 01:36:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17714 IP address blocks: 114.30.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 18:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6064 (0x17b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:36:57 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FE3FF850332EC379A70EDF153A0BE0BF94C0F8E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:04:76:26:d0:5d:37:8f:c5:24:cd:13:5e:05: 1a:11:1e:2c:0a:a7:de:33:70:f3:db:6a:bc:70:06: 59:56:15:aa:f8:5c:c6:07:ce:24:25:d8:87:3a:cb: 5e:0b:ba:9b:4d:21:82:6b:a8:9e:64:29:2d:d2:d9: 2f:97:83:6a:72:67:d7:92:16:6c:20:c4:1d:bc:7f: d6:cb:eb:1c:3c:4a:ad:0e:59:9b:cc:a2:85:8c:6c: 7f:42:e7:54:29:1f:57:f8:5f:77:de:6f:96:6a:11: 1f:01:ed:2c:f1:5e:8b:94:2e:29:2b:be:8a:a8:0b: 56:9f:98:4d:b7:9c:35:70:ed:de:cb:1c:55:48:0d: ff:db:5c:04:94:24:16:1c:91:b1:a0:53:26:a0:49: 9f:5b:9e:72:34:cb:20:40:25:a0:7c:b5:ca:ac:2f: 75:91:92:e0:29:eb:6f:8b:7f:6a:a8:01:dc:63:23: 13:03:ed:fa:67:b4:61:a9:0c:10:cd:07:ad:f1:44: fc:0e:a2:43:00:71:31:73:74:b6:4e:78:3e:56:9f: 8c:a7:eb:50:25:a9:b8:4c:9b:c0:4a:d5:42:75:39: 48:84:5d:a2:aa:19:46:e4:be:53:b4:59:cb:ce:fe: fd:b9:36:df:5b:7b:f3:17:7d:79:bd:6a:bf:32:0d: c0:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:3F:F8:50:33:2E:C3:79:A7:0E:DF:15:3A:0B:E0:BF:94:C0:F8:E6 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/_j_4UDMuw3mnDt8VOgvgv5TA-OY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.30.35.0/24 Signature Algorithm: sha256WithRSAEncryption c4:bb:bd:39:b0:86:2c:7e:95:b3:dd:a1:aa:ef:a2:06:2f:1c: d4:49:55:5e:37:22:2b:8a:1f:81:69:0e:07:9b:8f:a4:06:97: 38:30:9e:ff:cb:d7:4c:30:2b:ea:32:50:3b:62:dd:6a:97:4b: 04:26:07:3f:db:b9:55:fd:ab:32:af:c2:92:a5:7b:b9:e5:08: a7:bd:a1:37:9d:b2:8f:68:29:97:f0:55:27:ea:47:72:de:c9: 9d:88:7a:64:20:8b:0f:df:ff:46:0a:cc:55:fa:55:01:ea:ac: 3e:0f:a4:6e:e6:c2:28:6d:ca:31:96:67:2e:09:bc:83:cb:10: 34:89:9b:70:de:c2:9e:25:7f:ac:15:7f:80:57:b4:18:61:f5: 79:06:8e:1a:c3:ed:d6:18:03:9c:49:26:66:9a:91:e6:0b:31: ae:b4:f6:72:19:9d:7d:ce:2f:84:f7:9d:30:d1:0f:3a:75:e6: 36:ec:4f:26:33:2f:a6:ad:09:dd:97:ab:15:0d:4a:30:ae:ca: c1:4c:f0:f4:6a:e5:29:8e:9f:60:0f:e2:a3:ea:82:73:e3:e6: 7f:1e:64:91:d9:67:cf:5b:b4:17:36:83:8f:d9:6a:05:a7:12: c7:44:2a:e0:77:09:a9:28:57:9b:d7:ed:07:e9:47:f7:91:74: 60:46:c4:7e -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICF7AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM2NTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZFM0ZGODUwMzMyRUMz NzlBNzBFREYxNTNBMEJFMEJGOTRDMEY4RTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5BHYm0F03j8UkzRNeBRoRHiwKp94zcPPbarxwBllWFar4XMYH ziQl2Ic6y14LuptNIYJrqJ5kKS3S2S+Xg2pyZ9eSFmwgxB28f9bL6xw8Sq0OWZvM ooWMbH9C51QpH1f4X3feb5ZqER8B7SzxXouULikrvoqoC1afmE23nDVw7d7LHFVI Df/bXASUJBYckbGgUyagSZ9bnnI0yyBAJaB8tcqsL3WRkuAp62+Lf2qoAdxjIxMD 7fpntGGpDBDNB63xRPwOokMAcTFzdLZOeD5Wn4yn61AlqbhMm8BK1UJ1OUiEXaKq GUbkvlO0WcvO/v25Nt9be/MXfXm9ar8yDcC1AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU/j/4UDMuw3mnDt8VOgvgv5TA+OYwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9fal80VURNdXczbW5EdDhWT2d2 Z3Y1VEEtT1kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAch4j MA0GCSqGSIb3DQEBCwUAA4IBAQDEu705sIYsfpWz3aGq76IGLxzUSVVeNyIrih+B aQ4Hm4+kBpc4MJ7/y9dMMCvqMlA7Yt1ql0sEJgc/27lV/asyr8KSpXu55QinvaE3 nbKPaCmX8FUn6kdy3smdiHpkIIsP3/9GCsxV+lUB6qw+D6Ru5sIobcoxlmcuCbyD yxA0iZtw3sKeJX+sFX+AV7QYYfV5Bo4aw+3WGAOcSSZmmpHmCzGutPZyGZ19zi+E 950w0Q86deY27E8mMy+mrQndl6sVDUowrsrBTPD0auUpjp9gD+Kj6oJz4+Z/HmSR 2WfPW7QXNoOP2WoFpxLHRCrgdwmpKFeb1+0H6Uf3kXRgRsR+ -----END CERTIFICATE-----Generated at Mon Apr 7 17:39:35 2025 by rpki-client