$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JDA/4_5tOUmng9CN-3I4Lg96RUYKErk.roa File: 4_5tOUmng9CN-3I4Lg96RUYKErk.roa (raw, json) Hash identifier: 5WFaUH/qL9DN1XZ8JRpjzr55K8i7w27mIS4n2BKYjts= Subject key identifier: E3:FE:6D:39:49:A7:83:D0:8D:FB:72:38:2E:0F:7A:45:46:0A:12:B9 Certificate issuer: /CN=86F6D06B4049386A106E5ED22656A93D9F355274 Certificate serial: 0133 Authority key identifier: 86:F6:D0:6B:40:49:38:6A:10:6E:5E:D2:26:56:A9:3D:9F:35:52:74 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/hvbQa0BJOGoQbl7SJlapPZ81UnQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JDA/4_5tOUmng9CN-3I4Lg96RUYKErk.roa Signing time: Mon 10 Feb 2025 13:45:01 +0000 ROA not before: Mon 10 Feb 2025 13:45:01 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18041 IP address blocks: 210.79.154.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/JDA/hvbQa0BJOGoQbl7SJlapPZ81UnQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/JDA/hvbQa0BJOGoQbl7SJlapPZ81UnQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/hvbQa0BJOGoQbl7SJlapPZ81UnQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 01:48:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 307 (0x133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86F6D06B4049386A106E5ED22656A93D9F355274 Validity Not Before: Feb 10 13:45:01 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E3FE6D3949A783D08DFB72382E0F7A45460A12B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2a:67:1d:0d:43:35:b7:c8:46:a7:68:35:a4: 98:13:df:b7:a4:d5:1b:df:7f:24:ea:61:68:6b:45: 5d:79:60:73:61:9e:5f:cf:52:97:c0:9f:37:74:89: c5:e2:b5:3b:e2:51:04:b8:e0:f3:02:e4:19:fd:68: e5:1d:65:74:c4:e6:06:15:a3:e9:b5:0c:4f:66:09: e9:00:41:55:db:c9:dd:95:94:ff:43:64:9a:b1:ca: cd:bb:54:09:88:19:a9:c2:a8:17:b0:21:99:a2:b4: 87:42:5f:dd:06:0f:40:28:d5:8c:34:94:62:47:89: 08:30:24:43:67:fc:ed:6d:4b:d6:9d:a3:26:2b:41: 99:fb:46:09:9c:1e:03:b9:96:86:51:4c:52:a9:dd: 6b:7c:9b:29:79:db:ac:c0:9e:50:00:85:b2:d6:51: af:b3:12:b9:6a:72:3e:69:e1:8f:e4:6e:00:2b:31: 57:4d:45:a7:da:bd:c8:19:cc:23:0a:41:46:5f:90: 1c:40:83:12:62:e0:2f:02:74:3e:47:6f:c9:93:03: 69:19:d0:44:98:d2:96:84:51:ee:19:2e:a1:f2:d4: e3:18:ab:f5:90:7f:22:e0:f8:08:3b:b7:8c:e2:36: 82:f8:7d:29:f2:e7:d8:e5:79:0d:32:e9:84:7f:44: 64:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:FE:6D:39:49:A7:83:D0:8D:FB:72:38:2E:0F:7A:45:46:0A:12:B9 X509v3 Authority Key Identifier: keyid:86:F6:D0:6B:40:49:38:6A:10:6E:5E:D2:26:56:A9:3D:9F:35:52:74 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JDA/hvbQa0BJOGoQbl7SJlapPZ81UnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/hvbQa0BJOGoQbl7SJlapPZ81UnQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JDA/4_5tOUmng9CN-3I4Lg96RUYKErk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.79.154.0/23 Signature Algorithm: sha256WithRSAEncryption 34:fc:75:32:5e:f0:47:b6:bc:49:49:af:e6:6f:d1:ef:5a:ad: 33:56:48:0e:8b:f8:8f:72:ce:0b:02:54:68:17:a4:0b:17:52: 36:92:66:65:89:3d:62:e1:1e:2f:e3:27:2e:f1:eb:c6:82:39: b7:58:ff:16:0f:46:f4:45:f0:89:59:13:f6:87:d8:5b:06:f0: b7:ab:d5:f3:65:9b:b3:9f:16:d9:db:eb:e0:8f:42:6d:42:db: f7:b9:a6:e1:bb:95:0d:8e:82:73:ce:70:0a:57:7b:91:e6:d7: 34:c5:2f:cc:28:83:39:e6:e3:47:75:30:dc:f9:8e:0a:c3:17: e9:62:67:24:13:54:d2:ff:aa:31:ba:09:ee:ca:fc:0a:75:9f: 4d:cf:e2:3f:9d:bd:eb:22:80:fd:66:0a:9e:c2:66:d2:94:39: 4f:05:d8:ec:10:af:2b:00:10:dc:f6:7b:ff:eb:a9:ee:7e:a7: 0d:0a:f2:d4:52:23:15:42:16:9e:19:2b:8d:21:c1:1f:47:00: a4:11:92:99:3a:6b:dd:50:67:42:f9:93:21:8f:b8:12:a4:47: fb:e1:af:d6:5e:e0:8e:76:a7:71:08:ee:bc:54:89:6d:66:ae: 61:d2:8b:18:c9:db:d2:be:fc:9e:68:3f:15:ab:f0:7d:1b:c3: 4a:0f:14:2c -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICATMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODZG NkQwNkI0MDQ5Mzg2QTEwNkU1RUQyMjY1NkE5M0Q5RjM1NTI3NDAeFw0yNTAyMTAx MzQ1MDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEUzRkU2RDM5NDlBNzgz RDA4REZCNzIzODJFMEY3QTQ1NDYwQTEyQjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5KmcdDUM1t8hGp2g1pJgT37ek1RvffyTqYWhrRV15YHNhnl/P UpfAnzd0icXitTviUQS44PMC5Bn9aOUdZXTE5gYVo+m1DE9mCekAQVXbyd2VlP9D ZJqxys27VAmIGanCqBewIZmitIdCX90GD0Ao1Yw0lGJHiQgwJENn/O1tS9adoyYr QZn7RgmcHgO5loZRTFKp3Wt8myl526zAnlAAhbLWUa+zErlqcj5p4Y/kbgArMVdN RafavcgZzCMKQUZfkBxAgxJi4C8CdD5Hb8mTA2kZ0ESY0paEUe4ZLqHy1OMYq/WQ fyLg+Ag7t4ziNoL4fSny59jleQ0y6YR/RGRjAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU4/5tOUmng9CN+3I4Lg96RUYKErkwHwYDVR0jBBgwFoAUhvbQa0BJOGoQbl7S JlapPZ81UnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSkRBL2h2 YlFhMEJKT0dvUWJsN1NKbGFwUFo4MVVuUS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev aHZiUWEwQkpPR29RYmw3U0psYXBQWjgxVW5RLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSkRBLzRfNXRPVW1uZzlDTi0zSTRMZzk2UlVZ S0Vyay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHST5owDQYJ KoZIhvcNAQELBQADggEBADT8dTJe8Ee2vElJr+Zv0e9arTNWSA6L+I9yzgsCVGgX pAsXUjaSZmWJPWLhHi/jJy7x68aCObdY/xYPRvRF8IlZE/aH2FsG8Ler1fNlm7Of Ftnb6+CPQm1C2/e5puG7lQ2OgnPOcApXe5Hm1zTFL8wogznm40d1MNz5jgrDF+li ZyQTVNL/qjG6Ce7K/Ap1n03P4j+dvesigP1mCp7CZtKUOU8F2OwQrysAENz2e//r qe5+pw0K8tRSIxVCFp4ZK40hwR9HAKQRkpk6a91QZ0L5kyGPuBKkR/vhr9Ze4I52 p3EI7rxUiW1mrmHSixjJ29K+/J5oPxWr8H0bw0oPFCw= -----END CERTIFICATE-----Generated at Tue Apr 22 21:43:24 2025 by rpki-client