$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/OCddZIEAz9W0-xmwDu3UXvMDvUQ.roa File: OCddZIEAz9W0-xmwDu3UXvMDvUQ.roa (raw, json) Hash identifier: TvSuEV/9esgoUgWn2N42+OsQd8vML6tPdgY6Seutg2c= Subject key identifier: 38:27:5D:64:81:00:CF:D5:B4:FB:19:B0:0E:ED:D4:5E:F3:03:BD:44 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 07B2 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/OCddZIEAz9W0-xmwDu3UXvMDvUQ.roa Signing time: Mon 10 Feb 2025 13:44:40 +0000 ROA not before: Mon 10 Feb 2025 13:44:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131657 IP address blocks: 2406:48c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 02:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1970 (0x7b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Feb 10 13:44:40 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=38275D648100CFD5B4FB19B00EEDD45EF303BD44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7e:29:a3:72:45:c2:a5:8c:f0:b8:59:6a:f5: ba:dc:13:23:6e:3a:46:b5:e3:66:64:41:78:96:ee: 32:c6:c0:25:c1:c9:81:5e:d7:62:0c:4b:57:61:bd: 61:d9:09:70:24:ec:6d:17:75:29:30:44:3f:3c:c8: b5:21:e5:91:6b:83:43:3e:92:94:54:d2:ee:12:67: 3b:3d:6b:50:08:21:ca:22:af:da:4f:7d:12:f7:aa: a5:db:b4:1e:b1:00:e7:27:5f:a3:e2:c9:a4:60:d6: ae:08:5f:c2:6c:ca:15:19:aa:3b:e5:35:23:29:1b: 66:5a:26:d4:32:07:af:87:56:16:87:fe:e5:b0:3e: 66:8c:53:3a:db:f2:2c:e3:e4:b9:45:84:d0:33:2c: e6:2f:4b:f4:8b:e9:4a:18:59:7a:0f:03:57:81:bd: a8:d3:24:55:d1:54:dc:d6:3b:e1:3f:91:10:4c:d7: fe:d2:07:6c:d6:45:1f:2b:ad:02:2e:1c:95:a3:d6: a3:74:5e:b0:78:47:23:a6:2f:d0:14:c2:f6:ff:27: ef:d3:03:71:db:dd:bf:90:91:a2:ed:00:4a:c1:ba: c7:8e:00:a4:52:01:93:04:eb:d1:1a:b0:00:d4:77: d1:76:b3:0f:42:f3:29:5e:af:38:ca:dc:d9:36:8d: fc:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:27:5D:64:81:00:CF:D5:B4:FB:19:B0:0E:ED:D4:5E:F3:03:BD:44 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/OCddZIEAz9W0-xmwDu3UXvMDvUQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:48c0::/32 Signature Algorithm: sha256WithRSAEncryption 1d:78:cc:a1:a8:8f:bc:22:07:2c:6a:93:a4:b1:2b:5f:39:a6: 67:ce:51:a9:9d:75:c7:6c:6c:11:80:ae:f6:65:cc:c5:a1:bd: e4:21:a5:99:37:67:ce:65:64:66:21:c2:a7:a5:65:38:d5:fe: f7:1f:37:a8:a6:ba:ff:09:12:10:cf:11:cd:b3:9b:d8:29:46: 31:64:0c:08:12:12:2d:94:8b:7c:52:ba:81:a4:a0:a1:fd:91: 31:cd:a3:c2:44:25:6a:85:c3:02:aa:38:0e:1f:b8:8a:d8:45: 95:be:56:62:f5:52:e6:76:b5:47:be:70:c0:56:9d:c4:42:c1: 8e:54:fd:21:d5:13:df:38:0f:c1:b8:a7:58:a7:ea:2f:e9:f5: ba:fc:57:34:14:33:97:58:2d:04:cf:d0:65:d7:93:26:ee:87: 81:ab:44:bf:5d:04:35:fd:94:24:c0:f3:e5:21:77:7e:60:e6: 56:78:4a:b1:39:22:8f:a7:05:f4:f0:89:7a:f5:59:79:23:ab: 30:a9:6d:4a:ab:72:0e:59:2b:39:31:54:f5:e1:50:40:b1:3b: e6:fa:4c:c7:79:4c:af:08:65:60:f6:7d:2f:65:ad:10:cb:ae: e7:78:9a:37:0f:b2:ad:d4:b3:05:6d:ef:39:bd:e2:4d:b7:14: 0f:a6:2b:05 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICB7IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTAyMTAx MzQ0NDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM4Mjc1RDY0ODEwMENG RDVCNEZCMTlCMDBFRURENDVFRjMwM0JENDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCufimjckXCpYzwuFlq9brcEyNuOka142ZkQXiW7jLGwCXByYFe 12IMS1dhvWHZCXAk7G0XdSkwRD88yLUh5ZFrg0M+kpRU0u4SZzs9a1AIIcoir9pP fRL3qqXbtB6xAOcnX6PiyaRg1q4IX8JsyhUZqjvlNSMpG2ZaJtQyB6+HVhaH/uWw PmaMUzrb8izj5LlFhNAzLOYvS/SL6UoYWXoPA1eBvajTJFXRVNzWO+E/kRBM1/7S B2zWRR8rrQIuHJWj1qN0XrB4RyOmL9AUwvb/J+/TA3Hb3b+QkaLtAErBuseOAKRS AZME69EasADUd9F2sw9C8ylerzjK3Nk2jfxRAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUOCddZIEAz9W0+xmwDu3UXvMDvUQwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL09DZGRaSUVBejlXMC14bXdE dTNVWHZNRHZVUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk BkjAMA0GCSqGSIb3DQEBCwUAA4IBAQAdeMyhqI+8IgcsapOksStfOaZnzlGpnXXH bGwRgK72ZczFob3kIaWZN2fOZWRmIcKnpWU41f73Hzeoprr/CRIQzxHNs5vYKUYx ZAwIEhItlIt8UrqBpKCh/ZExzaPCRCVqhcMCqjgOH7iK2EWVvlZi9VLmdrVHvnDA Vp3EQsGOVP0h1RPfOA/BuKdYp+ov6fW6/Fc0FDOXWC0Ez9Bl15Mm7oeBq0S/XQQ1 /ZQkwPPlIXd+YOZWeEqxOSKPpwX08Il69Vl5I6swqW1Kq3IOWSs5MVT14VBAsTvm +kzHeUyvCGVg9n0vZa0Qy67neJo3D7Kt1LMFbe85veJNtxQPpisF -----END CERTIFICATE-----Generated at Sat Apr 5 23:08:09 2025 by rpki-client