$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/O73bj0y0QgYoSkDk2RF0FSELWLU.roa File: O73bj0y0QgYoSkDk2RF0FSELWLU.roa (raw, json) Hash identifier: N6suLUEXmef/5bxGJNJ8Zk4lTTTLCYBAOzzfWguz6e0= Subject key identifier: 3B:BD:DB:8F:4C:B4:42:06:28:4A:40:E4:D9:11:74:15:21:0B:58:B5 Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 0216 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/O73bj0y0QgYoSkDk2RF0FSELWLU.roa Signing time: Fri 23 May 2025 13:26:09 +0000 ROA not before: Fri 23 May 2025 13:26:09 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152609 IP address blocks: 157.20.248.24/30 maxlen: 30 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:27:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 534 (0x216) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: May 23 13:26:09 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3BBDDB8F4CB44206284A40E4D9117415210B58B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:ac:0d:1a:a6:16:be:04:60:44:0b:4c:9c:71: e0:34:88:ad:5f:4a:31:1d:31:52:fa:21:23:3e:1a: 30:88:90:69:fe:bc:84:75:a5:1b:22:a8:85:d4:51: cd:0b:ab:ef:5b:32:3d:bf:15:2c:a6:dc:83:93:79: 44:ee:a8:32:24:e6:59:27:b1:61:41:bb:c4:21:f6: 14:2a:22:d6:6a:c9:75:0e:ec:1f:6a:2a:22:88:18: 41:3a:1d:8e:d0:1d:b1:7a:c5:87:b9:57:3c:7c:b6: e7:c9:3f:00:21:a5:06:e3:a3:fa:b0:50:18:81:39: b6:85:9d:0f:e3:bc:49:7c:89:ef:d5:38:1c:ae:91: d1:7e:70:e7:1c:bf:bb:0b:11:ed:c0:dc:e4:28:d3: 33:9e:df:be:cc:68:64:41:55:b3:ef:b2:1a:0b:d1: 7d:0c:3b:36:a2:e9:ef:5f:5c:56:be:f5:a6:17:b6: 76:23:4e:91:b7:7b:72:8c:32:f5:79:19:38:9c:6a: 1c:b8:bb:9f:ec:71:00:5e:51:45:0a:d5:81:78:98: 61:6f:47:48:52:20:27:40:7d:17:db:37:e6:96:0f: 0b:cd:11:fc:16:51:6d:f8:fe:28:7b:d8:86:51:fc: 22:cb:58:03:cc:5f:a6:ea:0b:fd:9a:c6:47:ac:3e: c1:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:BD:DB:8F:4C:B4:42:06:28:4A:40:E4:D9:11:74:15:21:0B:58:B5 X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/O73bj0y0QgYoSkDk2RF0FSELWLU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.248.24/30 Signature Algorithm: sha256WithRSAEncryption 71:93:97:ac:eb:e2:1c:b9:69:9e:02:44:7f:9e:d1:b1:9c:e7: c3:25:92:c6:8d:7c:b8:73:97:74:7f:c4:a6:d7:34:97:c2:00: 81:22:9a:3e:27:9a:ee:89:70:16:c4:6f:a7:6e:25:1b:2d:68: 5e:7d:5e:83:a9:45:71:1b:d0:ca:82:39:9a:ab:bf:b9:48:c9: fc:90:d0:d4:7e:26:41:79:0c:71:d7:d5:26:31:ff:9d:f1:a9: e1:b2:5c:22:cb:02:17:b0:7d:51:62:c8:99:bf:b9:e7:e6:80: f3:8a:bd:44:be:56:3d:ac:45:68:60:90:50:7a:19:01:2c:76: 59:25:2a:10:ce:8b:b2:7c:6d:7a:5d:a4:d6:8b:27:31:c2:03: 8d:ff:9b:f3:67:4a:02:9f:ec:e8:30:c1:87:e2:d5:70:4d:02: e4:5b:7f:e4:7f:0e:12:d1:cb:0d:de:96:a9:69:4c:21:53:46: 77:94:89:b0:62:dc:a4:6f:f8:c2:eb:c1:c7:06:0b:ca:b2:3f: 95:2b:24:a2:f9:79:e9:24:11:37:32:30:a3:28:e8:83:ef:86: 1c:f6:0e:f3:33:b8:a7:fc:99:f8:80:90:51:8e:dd:b9:62:bc: 55:ea:02:0d:0b:7f:1f:ce:eb:b6:bd:89:ab:5c:d7:93:68:cf: a0:77:08:24 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAhYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA1MjMx MzI2MDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNCQkREQjhGNENCNDQy MDYyODRBNDBFNEQ5MTE3NDE1MjEwQjU4QjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD+rA0apha+BGBEC0ycceA0iK1fSjEdMVL6ISM+GjCIkGn+vIR1 pRsiqIXUUc0Lq+9bMj2/FSym3IOTeUTuqDIk5lknsWFBu8Qh9hQqItZqyXUO7B9q KiKIGEE6HY7QHbF6xYe5Vzx8tufJPwAhpQbjo/qwUBiBObaFnQ/jvEl8ie/VOByu kdF+cOccv7sLEe3A3OQo0zOe377MaGRBVbPvshoL0X0MOzai6e9fXFa+9aYXtnYj TpG3e3KMMvV5GTicahy4u5/scQBeUUUK1YF4mGFvR0hSICdAfRfbN+aWDwvNEfwW UW34/ih72IZR/CLLWAPMX6bqC/2axkesPsGNAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUO73bj0y0QgYoSkDk2RF0FSELWLUwHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvTzczYmoweTBRZ1lvU2tEazJSRjBG U0VMV0xVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAp0U+Bgw DQYJKoZIhvcNAQELBQADggEBAHGTl6zr4hy5aZ4CRH+e0bGc58MlksaNfLhzl3R/ xKbXNJfCAIEimj4nmu6JcBbEb6duJRstaF59XoOpRXEb0MqCOZqrv7lIyfyQ0NR+ JkF5DHHX1SYx/53xqeGyXCLLAhewfVFiyJm/uefmgPOKvUS+Vj2sRWhgkFB6GQEs dlklKhDOi7J8bXpdpNaLJzHCA43/m/NnSgKf7OgwwYfi1XBNAuRbf+R/DhLRyw3e lqlpTCFTRneUibBi3KRv+MLrwccGC8qyP5UrJKL5eekkETcyMKMo6IPvhhz2DvMz uKf8mfiAkFGO3blivFXqAg0Lfx/O67a9iatc15Noz6B3CCQ= -----END CERTIFICATE-----Generated at Wed Jun 4 01:00:39 2025 by rpki-client