$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/zv_kmbkOVSjZIWJAbaekUraaaao.roa File: zv_kmbkOVSjZIWJAbaekUraaaao.roa (raw, json) Hash identifier: 7d1RqClmWDpqxP2dKWDWp/SjNRq7LubKZ6seMxfvMdM= Subject key identifier: CE:FF:E4:99:B9:0E:55:28:D9:21:62:40:6D:A7:A4:52:B6:9A:69:AA Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1798 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/zv_kmbkOVSjZIWJAbaekUraaaao.roa Signing time: Wed 12 Feb 2025 01:36:52 +0000 ROA not before: Wed 12 Feb 2025 01:36:52 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 122.120.0.0/13 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 06:36:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6040 (0x1798) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:36:52 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CEFFE499B90E5528D92162406DA7A452B69A69AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:a4:6f:ab:d1:6f:b0:9c:8a:8d:87:69:d6:4d: f2:0d:98:0e:0b:39:60:a4:af:7d:a3:32:c4:f6:fb: ba:ca:c7:25:10:7d:48:fc:bf:3f:11:bb:22:b4:fb: c8:b4:45:39:03:2a:51:dc:5f:13:83:4f:4b:67:b2: c8:15:ab:74:c1:01:7e:29:13:9f:b2:09:8b:2f:73: f8:b8:7b:24:12:6b:d3:8b:1f:b6:dd:3d:02:49:2e: b6:79:fc:86:04:a4:a4:79:86:bf:f2:c4:4d:a3:1f: b9:ef:ff:79:0c:f6:91:88:10:c0:63:61:57:ed:e8: be:66:78:18:e6:65:1d:c2:d2:95:a2:8b:9e:69:51: 99:4b:17:ba:70:82:53:54:53:a4:c2:4d:39:c8:79: c6:45:e1:99:b9:44:92:a2:17:0e:16:67:14:b5:4d: 54:54:64:af:69:46:95:83:80:bc:b6:6d:60:c2:1c: 41:14:cf:59:99:f4:56:35:c8:34:84:91:0a:99:0a: 79:f5:73:4e:89:8a:cb:7d:75:04:9f:64:b0:09:b0: 94:a0:e5:88:0e:6f:0d:7e:74:00:c0:60:15:54:d1: 2f:b1:1b:56:8e:80:37:64:71:e4:3b:9f:51:fe:59: 77:46:18:86:97:c1:db:0b:30:3f:a6:37:1b:6e:bc: 95:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:FF:E4:99:B9:0E:55:28:D9:21:62:40:6D:A7:A4:52:B6:9A:69:AA X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/zv_kmbkOVSjZIWJAbaekUraaaao.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.120.0.0/13 Signature Algorithm: sha256WithRSAEncryption 00:01:d3:d7:0c:5d:47:39:ae:c2:a9:f5:83:85:b8:65:64:b8: 5d:91:aa:cb:79:15:c0:5e:54:01:2d:a0:8f:f4:f9:5c:ec:e3: 8f:05:8e:9e:f2:8c:9f:54:33:75:f7:e8:35:25:c2:4a:42:16: 80:e2:7a:72:29:84:d4:e1:aa:8e:5d:ca:ae:37:72:62:22:fe: 81:48:7f:44:fa:ee:68:60:2e:2d:1c:f2:6e:e2:ad:6b:1b:4f: 9a:34:a4:68:68:4c:2b:bc:86:82:18:51:7c:a8:36:87:ae:95: 03:60:e6:9e:40:e7:fd:0f:f3:b5:7f:51:95:f2:e3:13:f1:61: ce:d5:18:d1:6b:4d:ce:aa:95:dc:da:9e:22:6d:88:dd:01:16: 50:dc:c8:33:44:03:5e:84:ab:d7:38:6c:36:4c:6f:d0:e8:40: 5c:c0:75:13:2d:df:ea:2e:cd:e3:10:0d:f3:09:a9:eb:49:8c: ae:d7:66:d2:28:a0:93:f0:0f:13:74:69:9a:de:7e:18:24:44: 2e:35:57:1a:1b:bc:0e:35:79:49:2a:00:b2:7c:9e:04:a2:09: 56:3d:63:3c:6e:66:68:1e:ce:07:15:c3:54:a3:c2:b8:3b:96: 61:b7:ea:ff:14:75:91:51:7f:65:a6:31:c4:1d:ed:23:b5:8b: e2:ad:87:6e -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICF5gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM2NTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENFRkZFNDk5QjkwRTU1 MjhEOTIxNjI0MDZEQTdBNDUyQjY5QTY5QUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCbpG+r0W+wnIqNh2nWTfINmA4LOWCkr32jMsT2+7rKxyUQfUj8 vz8RuyK0+8i0RTkDKlHcXxODT0tnssgVq3TBAX4pE5+yCYsvc/i4eyQSa9OLH7bd PQJJLrZ5/IYEpKR5hr/yxE2jH7nv/3kM9pGIEMBjYVft6L5meBjmZR3C0pWii55p UZlLF7pwglNUU6TCTTnIecZF4Zm5RJKiFw4WZxS1TVRUZK9pRpWDgLy2bWDCHEEU z1mZ9FY1yDSEkQqZCnn1c06Jist9dQSfZLAJsJSg5YgObw1+dADAYBVU0S+xG1aO gDdkceQ7n1H+WXdGGIaXwdsLMD+mNxtuvJV7AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUzv/kmbkOVSjZIWJAbaekUraaaaowHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC96dl9rbWJrT1ZTalpJV0pBYmFl a1VyYWFhYW8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMDengw DQYJKoZIhvcNAQELBQADggEBAAAB09cMXUc5rsKp9YOFuGVkuF2Rqst5FcBeVAEt oI/0+Vzs448Fjp7yjJ9UM3X36DUlwkpCFoDienIphNThqo5dyq43cmIi/oFIf0T6 7mhgLi0c8m7irWsbT5o0pGhoTCu8hoIYUXyoNoeulQNg5p5A5/0P87V/UZXy4xPx Yc7VGNFrTc6qldzaniJtiN0BFlDcyDNEA16Eq9c4bDZMb9DoQFzAdRMt3+ouzeMQ DfMJqetJjK7XZtIooJPwDxN0aZrefhgkRC41VxobvA41eUkqALJ8ngSiCVY9Yzxu ZmgezgcVw1Sjwrg7lmG36v8UdZFRf2WmMcQd7SO1i+Kth24= -----END CERTIFICATE-----Generated at Mon Apr 7 02:07:57 2025 by rpki-client