$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/pXxxVcmyrQqDgppyRgblfDd1Lrk.roa File: pXxxVcmyrQqDgppyRgblfDd1Lrk.roa (raw, json) Hash identifier: 01kXCKHJ5NKSOt0P+DdZmjitrno03Uiub77vlgn/rsU= Subject key identifier: A5:7C:71:55:C9:B2:AD:0A:83:82:9A:72:46:06:E5:7C:37:75:2E:B9 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 177C Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/pXxxVcmyrQqDgppyRgblfDd1Lrk.roa Signing time: Wed 12 Feb 2025 01:36:45 +0000 ROA not before: Wed 12 Feb 2025 01:36:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 198949 IP address blocks: 203.74.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 01:08:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6012 (0x177c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:36:45 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A57C7155C9B2AD0A83829A724606E57C37752EB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:bb:2c:e1:e4:be:00:b5:c9:0a:be:3f:b6:ed: 59:e7:18:6c:21:97:4f:8c:b2:67:a0:f7:a5:a2:45: 25:03:a2:e6:2e:e3:57:bc:8e:e8:0d:ab:8b:b3:0b: 4e:21:78:16:a5:ac:0e:55:4f:c1:09:0b:58:d2:cf: d8:c5:fc:83:bc:2c:d5:4a:8e:db:b7:c7:e6:34:ef: 9f:39:4d:cc:ae:f4:a9:be:34:f0:9d:55:33:c8:c8: b9:3b:da:ec:29:22:c5:9a:37:90:4a:89:0a:7a:86: 4a:c1:20:47:7c:01:37:32:7b:56:69:30:25:05:37: 53:90:24:72:50:47:b8:1f:26:7b:49:6f:b6:d7:0e: a1:46:42:e6:4d:40:5d:6a:13:28:3b:e0:31:25:2a: b3:c9:fe:24:80:c8:9c:e1:97:bd:9d:28:10:98:ed: 0a:e2:1b:ce:64:a6:97:f8:a7:db:3b:3a:d7:fd:69: e1:07:14:4d:2d:f3:cf:11:db:2d:bc:8d:c0:57:93: 3b:4e:f9:a4:68:44:3d:02:59:33:7c:cf:8c:e9:a4: 2e:74:60:b8:c7:ad:a5:61:de:39:47:02:f8:2e:f1: 2f:43:68:db:48:1b:04:8b:e0:42:06:4a:6a:3e:2e: 3d:1d:d9:b5:68:31:87:19:0c:96:9c:1f:7c:1f:8b: e7:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:7C:71:55:C9:B2:AD:0A:83:82:9A:72:46:06:E5:7C:37:75:2E:B9 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/pXxxVcmyrQqDgppyRgblfDd1Lrk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.74.177.0/24 Signature Algorithm: sha256WithRSAEncryption 45:5f:42:1d:6e:0d:2c:19:b9:6b:73:c9:cb:77:5c:ff:63:d5: 05:96:5a:a5:04:20:63:7e:85:07:f0:22:d6:5f:44:17:91:b7: 0b:74:ad:86:9a:d8:22:a7:ce:e4:68:32:2d:0c:1b:19:03:08: b5:c0:5a:ca:5f:02:a6:bb:4e:a6:36:32:14:da:1e:51:cc:f0: 49:aa:ee:9f:55:3e:e6:bb:19:5f:66:b2:9f:6b:34:1b:9a:1e: 6d:98:c7:27:b0:ad:e3:af:26:e2:58:bb:ce:71:ec:25:f0:b8: e2:4d:7b:4e:4a:dd:1f:0d:9c:5d:dc:a4:ff:e0:f6:4a:39:29: 72:6b:c5:1f:a0:c6:2c:ee:92:34:12:f4:28:17:69:bd:d2:25: 31:aa:e9:b5:98:26:09:b2:a1:12:24:11:9f:9c:c8:cb:d9:c7: 9c:0f:10:42:4e:92:5c:cf:01:79:33:21:67:3a:e2:45:07:60: af:98:c0:17:aa:05:b2:83:71:30:f5:b9:a2:e1:07:89:d7:50: 4d:8f:68:28:41:c1:4c:6a:83:bf:82:5a:67:dc:67:e9:9f:d1: a0:a3:5e:f7:d8:01:b5:9a:e0:4f:f8:42:28:d4:69:c5:8c:3e: 19:5a:69:d6:c0:25:88:77:59:c0:6c:46:51:03:12:3d:18:f2: 60:c5:25:96 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICF3wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM2NDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE1N0M3MTU1QzlCMkFE MEE4MzgyOUE3MjQ2MDZFNTdDMzc3NTJFQjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1uyzh5L4AtckKvj+27VnnGGwhl0+Msmeg96WiRSUDouYu41e8 jugNq4uzC04heBalrA5VT8EJC1jSz9jF/IO8LNVKjtu3x+Y07585Tcyu9Km+NPCd VTPIyLk72uwpIsWaN5BKiQp6hkrBIEd8ATcye1ZpMCUFN1OQJHJQR7gfJntJb7bX DqFGQuZNQF1qEyg74DElKrPJ/iSAyJzhl72dKBCY7QriG85kppf4p9s7Otf9aeEH FE0t888R2y28jcBXkztO+aRoRD0CWTN8z4zppC50YLjHraVh3jlHAvgu8S9DaNtI GwSL4EIGSmo+Lj0d2bVoMYcZDJacH3wfi+eLAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUpXxxVcmyrQqDgppyRgblfDd1LrkwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9wWHh4VmNteXJRcURncHB5Umdi bGZEZDFMcmsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0qx MA0GCSqGSIb3DQEBCwUAA4IBAQBFX0Idbg0sGblrc8nLd1z/Y9UFllqlBCBjfoUH 8CLWX0QXkbcLdK2Gmtgip87kaDItDBsZAwi1wFrKXwKmu06mNjIU2h5RzPBJqu6f VT7muxlfZrKfazQbmh5tmMcnsK3jrybiWLvOcewl8LjiTXtOSt0fDZxd3KT/4PZK OSlya8UfoMYs7pI0EvQoF2m90iUxqum1mCYJsqESJBGfnMjL2cecDxBCTpJczwF5 MyFnOuJFB2CvmMAXqgWyg3Ew9bmi4QeJ11BNj2goQcFMaoO/glpn3Gfpn9Ggo173 2AG1muBP+EIo1GnFjD4ZWmnWwCWId1nAbEZRAxI9GPJgxSWW -----END CERTIFICATE-----Generated at Mon Apr 14 22:39:37 2025 by rpki-client