$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/ExpQGmoy41mz8HcVe08a4EiyggQ.roa File: ExpQGmoy41mz8HcVe08a4EiyggQ.roa (raw, json) Hash identifier: 11NsnHthJjFPtDtFAO7Z3psvgtzGK5ZfhNI9tJzQpSI= Subject key identifier: 13:1A:50:1A:6A:32:E3:59:B3:F0:77:15:7B:4F:1A:E0:48:B2:82:04 Certificate issuer: /CN=6CA5B8B7E0A281C467262246DF0C859DF5F87F1F Certificate serial: E9 Authority key identifier: 6C:A5:B8:B7:E0:A2:81:C4:67:26:22:46:DF:0C:85:9D:F5:F8:7F:1F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bKW4t-CigcRnJiJG3wyFnfX4fx8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/ExpQGmoy41mz8HcVe08a4EiyggQ.roa Signing time: Mon 10 Feb 2025 13:45:21 +0000 ROA not before: Mon 10 Feb 2025 13:45:21 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152609 IP address blocks: 2401:8c20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/bKW4t-CigcRnJiJG3wyFnfX4fx8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/bKW4t-CigcRnJiJG3wyFnfX4fx8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/bKW4t-CigcRnJiJG3wyFnfX4fx8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 233 (0xe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6CA5B8B7E0A281C467262246DF0C859DF5F87F1F Validity Not Before: Feb 10 13:45:21 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=131A501A6A32E359B3F077157B4F1AE048B28204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7c:53:a2:f3:4d:cd:f0:6f:d0:01:17:f8:22: 1a:c8:db:6b:2a:36:e9:27:f6:fb:fa:6f:61:53:9d: cd:93:0e:98:8e:ae:1d:c0:ff:3d:1d:bf:58:b0:06: 62:f5:e5:f3:7c:9d:3d:cd:85:46:b9:5c:4f:45:92: a7:d2:a7:e7:a4:d9:15:af:4b:34:05:cc:61:17:5c: 35:fb:b3:ce:4c:94:b0:cf:6c:97:3c:dc:07:3c:ac: 96:2f:2a:07:fa:4d:36:76:3d:f3:73:29:c0:a9:a5: d3:e7:ad:60:67:97:e1:32:5f:6d:69:05:a8:c5:96: d6:63:97:7c:01:a6:7a:ff:fb:21:ab:6c:c0:4e:0f: 8d:b0:e6:24:9e:82:41:77:8a:ec:69:25:99:ad:ad: d5:f6:b2:a5:6f:98:c9:c4:89:bd:c7:4a:8e:2b:02: c1:10:09:b8:37:12:0d:70:50:59:9c:7a:70:d4:6a: 2e:93:ef:78:ec:5b:88:3a:e1:d2:4b:29:4b:dd:e8: 19:0f:05:bb:68:e3:03:25:15:1c:8a:38:dd:09:ca: e9:c4:6b:c0:ed:31:4d:ba:73:f3:1e:74:ff:4e:c7: 6f:24:fb:c3:d9:19:75:ca:ee:fe:d6:df:bc:06:63: ca:32:81:27:31:8e:bc:ce:6b:00:7e:9c:66:ff:49: 8e:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:1A:50:1A:6A:32:E3:59:B3:F0:77:15:7B:4F:1A:E0:48:B2:82:04 X509v3 Authority Key Identifier: keyid:6C:A5:B8:B7:E0:A2:81:C4:67:26:22:46:DF:0C:85:9D:F5:F8:7F:1F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/bKW4t-CigcRnJiJG3wyFnfX4fx8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bKW4t-CigcRnJiJG3wyFnfX4fx8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/ExpQGmoy41mz8HcVe08a4EiyggQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:8c20::/32 Signature Algorithm: sha256WithRSAEncryption ab:0a:44:58:ff:6d:bf:40:0a:44:0f:34:27:d3:b4:9c:be:a5: 02:da:18:c9:7f:70:28:7c:e7:ba:67:1c:3e:bc:b5:18:15:db: 24:e9:0a:4f:5a:3a:1f:c6:54:d2:ee:3a:8f:36:77:c0:ea:bb: b1:e8:02:f9:e2:af:3e:15:78:d9:68:61:f7:bc:8a:0e:1f:a9: 05:61:0f:b9:5b:24:c9:a9:2b:5e:5e:3d:bf:dd:c6:31:d6:2c: ec:57:1a:a9:f7:71:9a:cb:88:75:a7:ef:50:17:ca:22:b3:c2: 40:b8:c6:d7:d3:2a:a3:16:55:ea:9c:8d:b4:92:93:64:b8:11: df:e3:75:da:27:09:77:19:0d:92:d8:47:c1:6c:48:e5:16:4a: 6b:d9:1f:93:0c:24:c4:7b:ff:6b:a6:5c:b6:d6:5f:27:68:d3: 73:5f:0e:e2:2a:21:57:79:f4:69:45:3b:0c:56:1a:50:91:c7: 89:5d:12:e1:96:d5:70:42:39:0e:0d:1a:43:d2:d3:33:99:09: 73:fe:d7:20:3f:65:bd:5b:c8:de:c8:62:d0:0d:7d:b6:17:52: f6:66:1c:de:d9:56:d1:ef:8e:58:52:a0:58:c8:1d:7b:50:16: 38:a1:52:f9:f3:fc:c8:f4:e1:64:7f:29:15:27:d2:a6:4b:85: 66:03:93:f4 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAOkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkNB NUI4QjdFMEEyODFDNDY3MjYyMjQ2REYwQzg1OURGNUY4N0YxRjAeFw0yNTAyMTAx MzQ1MjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDEzMUE1MDFBNkEzMkUz NTlCM0YwNzcxNTdCNEYxQUUwNDhCMjgyMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDfFOi803N8G/QARf4IhrI22sqNukn9vv6b2FTnc2TDpiOrh3A /z0dv1iwBmL15fN8nT3NhUa5XE9FkqfSp+ek2RWvSzQFzGEXXDX7s85MlLDPbJc8 3Ac8rJYvKgf6TTZ2PfNzKcCppdPnrWBnl+EyX21pBajFltZjl3wBpnr/+yGrbMBO D42w5iSegkF3iuxpJZmtrdX2sqVvmMnEib3HSo4rAsEQCbg3Eg1wUFmcenDUai6T 73jsW4g64dJLKUvd6BkPBbto4wMlFRyKON0JyunEa8DtMU26c/MedP9Ox28k+8PZ GXXK7v7W37wGY8oygScxjrzOawB+nGb/SY5vAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUExpQGmoy41mz8HcVe08a4EiyggQwHwYDVR0jBBgwFoAUbKW4t+CigcRnJiJG 3wyFnfX4fx8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC9i S1c0dC1DaWdjUm5KaUpHM3d5Rm5mWDRmeDguY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2JLVzR0LUNpZ2NSbkppSkczd3lGbmZYNGZ4OC5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvRXhwUUdtb3k0MW16OEhjVmUwOGE0 RWl5Z2dRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBjCAw DQYJKoZIhvcNAQELBQADggEBAKsKRFj/bb9ACkQPNCfTtJy+pQLaGMl/cCh857pn HD68tRgV2yTpCk9aOh/GVNLuOo82d8Dqu7HoAvnirz4VeNloYfe8ig4fqQVhD7lb JMmpK15ePb/dxjHWLOxXGqn3cZrLiHWn71AXyiKzwkC4xtfTKqMWVeqcjbSSk2S4 Ed/jddonCXcZDZLYR8FsSOUWSmvZH5MMJMR7/2umXLbWXydo03NfDuIqIVd59GlF OwxWGlCRx4ldEuGW1XBCOQ4NGkPS0zOZCXP+1yA/Zb1byN7IYtANfbYXUvZmHN7Z VtHvjlhSoFjIHXtQFjihUvnz/Mj04WR/KRUn0qZLhWYDk/Q= -----END CERTIFICATE-----Generated at Tue Apr 8 19:22:03 2025 by rpki-client