$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/jeqe4g9pWXXipw1w3gvjBSY2RkQ.roa File: jeqe4g9pWXXipw1w3gvjBSY2RkQ.roa (raw, json) Hash identifier: IgnUwEPKp/1lTiiOsY6DA8VshsQxPOu9MumrlCM6+Bk= Subject key identifier: 8D:EA:9E:E2:0F:69:59:75:E2:A7:0D:70:DE:0B:E3:05:26:36:46:44 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 17B7 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/jeqe4g9pWXXipw1w3gvjBSY2RkQ.roa Signing time: Wed 12 Feb 2025 01:36:59 +0000 ROA not before: Wed 12 Feb 2025 01:36:59 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 59.124.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 06:36:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6071 (0x17b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:36:59 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8DEA9EE20F695975E2A70D70DE0BE30526364644 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:cf:17:08:17:8e:e2:b3:3c:e2:dd:76:d5:1c: 12:ee:0c:a5:8f:60:fe:16:18:77:cf:94:20:fa:18: 5d:3d:14:12:53:ff:9e:d3:b1:47:5f:46:26:47:0e: eb:93:8b:82:32:6f:bb:45:95:1c:8f:14:82:bb:6d: 51:e9:72:f7:a0:2a:25:b9:93:b9:bb:f3:14:e7:5d: b2:4f:65:2a:fe:dc:79:44:90:ba:b5:31:9d:eb:4b: 06:af:01:22:7a:b2:3a:e3:f2:a5:4d:bf:ca:1b:d7: cc:42:89:fe:48:54:d8:6d:6c:3e:e0:c5:ed:f5:34: e1:03:7b:53:dc:c7:6d:29:26:d1:95:fe:3e:5a:c7: 41:aa:b0:dd:7e:ae:37:54:8f:d6:64:ec:5b:75:bb: bd:4e:27:59:93:c7:e7:c7:d1:35:aa:61:d9:09:70: 98:d5:4f:e4:53:cc:00:9a:4d:f9:8f:03:96:67:8a: c3:5f:5f:c0:04:90:78:3a:d0:07:ba:06:0a:e4:f8: 01:72:33:c3:90:d5:31:7f:8b:01:b5:a9:60:3e:bd: 7d:ee:f2:b3:2b:52:3e:b2:59:ec:8f:e0:92:9c:3c: fc:c7:98:88:f3:69:18:1f:f9:ef:de:40:8e:47:68: 07:1d:42:df:a9:07:ef:77:fe:7b:5e:4c:07:39:4a: d1:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:EA:9E:E2:0F:69:59:75:E2:A7:0D:70:DE:0B:E3:05:26:36:46:44 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/jeqe4g9pWXXipw1w3gvjBSY2RkQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 59.124.0.0/14 Signature Algorithm: sha256WithRSAEncryption 7b:a5:bb:a2:96:0a:4c:cf:60:cb:f7:47:aa:08:fe:15:17:62: ea:9d:cf:48:ef:42:0e:4b:a3:73:88:a8:74:91:6f:da:5d:ae: d0:6b:37:9b:18:69:2d:2a:50:53:d9:5f:f3:6f:7c:2f:ec:aa: f7:ec:4f:50:b0:57:11:63:57:11:00:9e:28:81:82:31:ba:66: 67:af:af:d8:f9:17:98:3d:7a:e9:19:6c:00:24:97:41:92:fb: c9:1e:c8:6e:f5:38:47:0e:22:18:8a:f4:e8:5e:98:7d:2e:46: 73:41:ff:4b:82:e6:7d:4f:ea:07:31:e3:d5:49:10:ea:ec:8c: 33:f9:6a:55:d4:2e:fd:a1:e8:9c:6d:4f:93:b1:c0:0e:13:2a: 4e:84:39:8a:cc:44:d8:ea:55:8f:73:5d:d4:44:3d:c0:dd:eb: 12:a3:79:e7:f4:45:39:4d:6b:89:65:82:31:f7:4a:25:9f:f7: 3a:bf:40:fa:24:87:c9:f9:c2:12:d2:6d:58:13:56:e6:f6:e1: 23:e3:b6:73:86:cc:bc:12:12:95:bd:7f:d2:16:73:12:94:c7: 1a:12:63:4b:b0:aa:26:43:a5:30:cb:b8:86:bb:c6:79:4e:8b: 1e:f8:51:a0:80:d6:5a:0b:27:62:7f:71:ec:57:0a:cb:5e:3f: eb:6e:30:c3 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICF7cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM2NTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhERUE5RUUyMEY2OTU5 NzVFMkE3MEQ3MERFMEJFMzA1MjYzNjQ2NDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQzxcIF47iszzi3XbVHBLuDKWPYP4WGHfPlCD6GF09FBJT/57T sUdfRiZHDuuTi4Iyb7tFlRyPFIK7bVHpcvegKiW5k7m78xTnXbJPZSr+3HlEkLq1 MZ3rSwavASJ6sjrj8qVNv8ob18xCif5IVNhtbD7gxe31NOEDe1Pcx20pJtGV/j5a x0GqsN1+rjdUj9Zk7Ft1u71OJ1mTx+fH0TWqYdkJcJjVT+RTzACaTfmPA5ZnisNf X8AEkHg60Ae6Bgrk+AFyM8OQ1TF/iwG1qWA+vX3u8rMrUj6yWeyP4JKcPPzHmIjz aRgf+e/eQI5HaAcdQt+pB+93/nteTAc5StH7AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUjeqe4g9pWXXipw1w3gvjBSY2RkQwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9qZXFlNGc5cFdYWGlwdzF3M2d2 akJTWTJSa1Eucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMCO3ww DQYJKoZIhvcNAQELBQADggEBAHulu6KWCkzPYMv3R6oI/hUXYuqdz0jvQg5Lo3OI qHSRb9pdrtBrN5sYaS0qUFPZX/NvfC/sqvfsT1CwVxFjVxEAniiBgjG6Zmevr9j5 F5g9eukZbAAkl0GS+8keyG71OEcOIhiK9OhemH0uRnNB/0uC5n1P6gcx49VJEOrs jDP5alXULv2h6JxtT5OxwA4TKk6EOYrMRNjqVY9zXdREPcDd6xKjeef0RTlNa4ll gjH3SiWf9zq/QPokh8n5whLSbVgTVub24SPjtnOGzLwSEpW9f9IWcxKUxxoSY0uw qiZDpTDLuIa7xnlOix74UaCA1loLJ2J/cexXCsteP+tuMMM= -----END CERTIFICATE-----Generated at Mon Apr 7 02:07:59 2025 by rpki-client