$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISHISH/eeR-mAu1VZVCqx0Do0kWOfN1PGY.roa File: eeR-mAu1VZVCqx0Do0kWOfN1PGY.roa (raw, json) Hash identifier: u9QfT1pYfOnpnVGdwzeDUB/6vx8Me97dZIKPWbDuGjI= Subject key identifier: 79:E4:7E:98:0B:B5:55:95:42:AB:1D:03:A3:49:16:39:F3:75:3C:66 Certificate issuer: /CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF Certificate serial: 02F7 Authority key identifier: 7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/eeR-mAu1VZVCqx0Do0kWOfN1PGY.roa Signing time: Mon 10 Feb 2025 13:57:59 +0000 ROA not before: Mon 10 Feb 2025 13:57:59 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38047 IP address blocks: 2400:5ea0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 22:07:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 759 (0x2f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF Validity Not Before: Feb 10 13:57:59 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=79E47E980BB5559542AB1D03A3491639F3753C66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:be:8f:d7:57:34:c5:b9:ea:43:0e:65:51:70: 9a:f5:11:65:30:98:c8:04:c4:95:25:a4:d1:1e:01: 78:44:bb:38:fc:cb:39:06:b0:fe:9c:a2:ed:18:be: 8f:13:5a:94:f0:2d:a6:09:f0:0c:fd:d1:da:e5:06: 21:8e:47:1a:ed:57:6d:40:8a:48:05:26:08:55:84: ad:e7:f6:ea:3c:8a:37:cd:a9:18:27:cb:87:1a:91: a1:ea:9b:c4:29:cd:d1:a1:8b:f6:59:8e:c4:f5:ad: 7b:a8:27:08:68:fc:fe:87:76:5d:1a:9f:1d:1c:0c: 73:44:4b:e6:c9:5f:12:d7:1c:a3:32:97:f1:4e:f7: de:57:4e:d7:6f:2f:ab:d0:52:49:1e:42:74:43:3d: d2:8b:a9:fe:18:a7:33:89:fb:88:58:5b:03:35:a6: 2c:5c:7d:23:d2:ea:07:66:57:77:8d:7c:36:3d:83: 7f:98:ce:6e:63:c0:d5:c9:ff:3d:94:72:de:b2:1d: bb:b0:63:ab:f0:08:87:de:0e:35:b6:90:83:ba:eb: da:d9:76:c6:48:4b:59:d5:1f:12:00:5d:8e:c5:65: 70:88:e4:1a:6f:67:71:10:3a:6c:e8:c9:37:31:ba: f6:a2:5b:95:20:7f:3d:24:90:c1:63:60:fa:fc:88: ad:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:E4:7E:98:0B:B5:55:95:42:AB:1D:03:A3:49:16:39:F3:75:3C:66 X509v3 Authority Key Identifier: keyid:7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/eeR-mAu1VZVCqx0Do0kWOfN1PGY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:5ea0::/32 Signature Algorithm: sha256WithRSAEncryption 83:24:6e:87:78:99:6e:7d:ef:42:73:48:60:f2:75:28:08:43: 6f:ed:c3:9c:64:c4:a2:5e:2d:49:ab:8f:20:fe:24:46:d4:73: db:8f:65:bc:8d:84:f1:20:74:40:b6:8b:65:4e:bb:c8:ac:d7: 64:e4:4b:d6:90:1d:d7:27:21:ea:56:44:4d:c7:8f:ca:61:fd: 06:e2:96:28:c7:3e:63:0d:bf:33:9f:94:10:a1:2d:4d:19:ac: 3a:a8:3e:55:83:0f:90:cb:0b:2f:50:d8:1f:3d:ff:bb:b2:f5: e4:20:2f:0e:4b:5f:31:b4:2d:b9:3f:41:fe:fb:47:3f:86:9b: c8:24:ff:5c:02:a1:af:91:f6:a1:9a:81:bd:d5:03:4e:97:da: 1e:02:84:c9:ca:8e:f3:48:cd:82:6a:ce:2d:ac:a4:34:f2:bf: 04:ff:13:c4:37:dd:22:93:a7:e2:cf:3a:64:15:c4:a4:03:cd: 2f:ba:c8:1f:91:db:74:a2:5a:28:88:5c:29:a3:51:ca:c0:a1: d0:21:52:b4:f6:4b:04:5c:6c:5f:ea:3c:72:80:45:af:19:49: 5d:b8:f5:93:ec:e1:44:e6:14:eb:9d:8d:62:d4:d5:20:a7:9f: cc:63:bc:7c:79:01:26:83:c5:94:fb:a7:a2:b8:a5:df:08:5f: 6c:62:9b:6f -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICAvcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0Ux N0Q5MjNBQTBCQzZCMEEwOEI1QTE4N0JFRTlDQURFOEQ1MEVBRjAeFw0yNTAyMTAx MzU3NTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc5RTQ3RTk4MEJCNTU1 OTU0MkFCMUQwM0EzNDkxNjM5RjM3NTNDNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxvo/XVzTFuepDDmVRcJr1EWUwmMgExJUlpNEeAXhEuzj8yzkG sP6cou0Yvo8TWpTwLaYJ8Az90drlBiGORxrtV21AikgFJghVhK3n9uo8ijfNqRgn y4cakaHqm8QpzdGhi/ZZjsT1rXuoJwho/P6Hdl0anx0cDHNES+bJXxLXHKMyl/FO 995XTtdvL6vQUkkeQnRDPdKLqf4YpzOJ+4hYWwM1pixcfSPS6gdmV3eNfDY9g3+Y zm5jwNXJ/z2Uct6yHbuwY6vwCIfeDjW2kIO669rZdsZIS1nVHxIAXY7FZXCI5Bpv Z3EQOmzoyTcxuvaiW5Ugfz0kkMFjYPr8iK1PAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUeeR+mAu1VZVCqx0Do0kWOfN1PGYwHwYDVR0jBBgwFoAUfhfZI6oLxrCgi1oY e+6crejVDq8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNISVNI L2ZoZlpJNm9MeHJDZ2kxb1llLTZjcmVqVkRxOC5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvZmhmWkk2b0x4ckNnaTFvWWUtNmNyZWpWRHE4LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNISVNIL2VlUi1tQXUxVlpWQ3F4MERv MGtXT2ZOMVBHWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk AF6gMA0GCSqGSIb3DQEBCwUAA4IBAQCDJG6HeJlufe9Cc0hg8nUoCENv7cOcZMSi Xi1Jq48g/iRG1HPbj2W8jYTxIHRAtotlTrvIrNdk5EvWkB3XJyHqVkRNx4/KYf0G 4pYoxz5jDb8zn5QQoS1NGaw6qD5Vgw+QywsvUNgfPf+7svXkIC8OS18xtC25P0H+ +0c/hpvIJP9cAqGvkfahmoG91QNOl9oeAoTJyo7zSM2Cas4trKQ08r8E/xPEN90i k6fizzpkFcSkA80vusgfkdt0olooiFwpo1HKwKHQIVK09ksEXGxf6jxygEWvGUld uPWT7OFE5hTrnY1i1NUgp5/MY7x8eQEmg8WU+6eiuKXfCF9sYptv -----END CERTIFICATE-----Generated at Sat Apr 12 20:22:32 2025 by rpki-client