$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JFT/wpX6wsavNL7YONNZwWtAT8-rF-o.roa File: wpX6wsavNL7YONNZwWtAT8-rF-o.roa (raw, json) Hash identifier: 1TUgAazdDTIvfIn9ZyxuxyOSZgD0MUQEFLj1S7+g9QY= Subject key identifier: C2:95:FA:C2:C6:AF:34:BE:D8:38:D3:59:C1:6B:40:4F:CF:AB:17:EA Certificate issuer: /CN=627D675FF5E2C8BA90F4B655B108B6925DAF1595 Certificate serial: 0188 Authority key identifier: 62:7D:67:5F:F5:E2:C8:BA:90:F4:B6:55:B1:08:B6:92:5D:AF:15:95 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/wpX6wsavNL7YONNZwWtAT8-rF-o.roa Signing time: Mon 10 Feb 2025 13:42:19 +0000 ROA not before: Mon 10 Feb 2025 13:42:19 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18041 IP address blocks: 2401:16a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 392 (0x188) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=627D675FF5E2C8BA90F4B655B108B6925DAF1595 Validity Not Before: Feb 10 13:42:19 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C295FAC2C6AF34BED838D359C16B404FCFAB17EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e1:38:85:c5:b6:b7:bb:cc:37:eb:f0:f1:82: 4c:e8:ea:3c:e4:1d:b8:1a:88:f6:ba:4c:b8:27:d6: 3e:25:41:0d:49:96:d2:d6:34:10:25:3d:10:fa:ae: d8:ae:0d:0a:ed:c7:43:c3:d0:18:11:46:2e:84:40: 75:2e:84:9a:b2:1b:0c:94:0c:47:ad:71:8d:68:13: ba:92:9a:b1:16:6b:55:02:ed:fb:e1:b9:5d:f0:79: 24:06:aa:68:cf:bd:a1:64:e3:ec:02:86:28:6f:17: 81:4f:3c:68:8b:f6:e0:79:bb:ef:d4:60:5f:a6:4d: 20:24:2e:c6:5f:a3:70:f0:79:d9:8c:32:19:65:5a: ed:5e:18:96:7d:a0:a0:39:9c:85:02:da:ce:5c:6a: c5:20:5f:c7:1b:bd:d2:1e:a1:a3:3b:31:9a:95:01: 03:fd:b2:79:2f:71:77:8d:81:69:dd:7b:a0:54:f0: 36:c1:4a:ee:6c:b3:ea:08:1f:4e:bc:b2:b0:0f:07: 19:12:b2:0d:be:2b:3d:4a:fc:7d:3c:8b:f7:b2:bf: 58:0a:e9:82:d2:69:aa:2a:fd:f9:26:93:e9:1d:bb: 2a:78:a4:f1:92:6b:f4:1a:6f:8e:db:57:2c:cf:1d: 48:c2:b3:fc:1e:e2:0c:a8:c1:ce:14:75:48:a7:19: 18:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:95:FA:C2:C6:AF:34:BE:D8:38:D3:59:C1:6B:40:4F:CF:AB:17:EA X509v3 Authority Key Identifier: keyid:62:7D:67:5F:F5:E2:C8:BA:90:F4:B6:55:B1:08:B6:92:5D:AF:15:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/wpX6wsavNL7YONNZwWtAT8-rF-o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:16a0::/32 Signature Algorithm: sha256WithRSAEncryption 3c:fb:c8:89:8c:5f:a1:24:6f:d1:a8:23:9e:80:78:3b:9f:51: 9e:11:b7:ce:3d:30:91:13:86:68:28:59:b0:0b:26:54:8d:b8: c6:84:dd:b0:8f:7d:30:f5:ce:d3:77:e2:01:57:8c:e8:10:3d: 6b:3e:38:90:67:08:d7:f8:9f:31:87:26:a7:b3:ab:b0:71:0e: e8:a3:be:3f:f0:87:d2:e9:50:f2:fa:a1:a0:56:21:d4:24:a2: 66:1c:6f:89:cb:e2:68:22:25:bb:5d:5b:a0:ad:fe:65:74:18: 2c:93:7f:f4:38:25:ad:53:9b:3c:35:64:55:48:65:2e:0b:ce: 7f:85:39:84:98:6b:1c:71:ba:e1:e7:74:90:75:5e:fd:b7:35: f7:64:5e:02:bf:25:53:a3:52:e2:5a:fe:a4:22:1e:05:c9:cb: 1c:cd:10:3c:0f:ea:b8:12:18:79:4f:59:77:8d:b0:64:75:d2: 95:58:17:ff:df:5f:0a:d0:86:3c:6b:34:aa:c2:78:84:06:f9: 6a:c6:4a:00:94:f1:cc:0e:11:bf:b5:c6:45:f6:d2:39:24:67: eb:67:cc:a6:31:e0:21:1d:ec:c2:12:08:4f:6d:00:0e:74:f6: 1c:9a:cf:3b:86:b4:d6:aa:e8:19:64:8d:8c:46:08:12:4e:84: a5:01:be:30 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICAYgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjI3 RDY3NUZGNUUyQzhCQTkwRjRCNjU1QjEwOEI2OTI1REFGMTU5NTAeFw0yNTAyMTAx MzQyMTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMyOTVGQUMyQzZBRjM0 QkVEODM4RDM1OUMxNkI0MDRGQ0ZBQjE3RUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/4TiFxba3u8w36/Dxgkzo6jzkHbgaiPa6TLgn1j4lQQ1JltLW NBAlPRD6rtiuDQrtx0PD0BgRRi6EQHUuhJqyGwyUDEetcY1oE7qSmrEWa1UC7fvh uV3weSQGqmjPvaFk4+wChihvF4FPPGiL9uB5u+/UYF+mTSAkLsZfo3DwedmMMhll Wu1eGJZ9oKA5nIUC2s5casUgX8cbvdIeoaM7MZqVAQP9snkvcXeNgWnde6BU8DbB Su5ss+oIH068srAPBxkSsg2+Kz1K/H08i/eyv1gK6YLSaaoq/fkmk+kduyp4pPGS a/Qab47bVyzPHUjCs/we4gyowc4UdUinGRgJAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUwpX6wsavNL7YONNZwWtAT8+rF+owHwYDVR0jBBgwFoAUYn1nX/XiyLqQ9LZV sQi2kl2vFZUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSkZUL1lu MW5YX1hpeUxxUTlMWlZzUWkya2wydkZaVS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev WW4xblhfWGl5THFROUxaVnNRaTJrbDJ2RlpVLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSkZUL3dwWDZ3c2F2Tkw3WU9OTlp3V3RBVDgt ckYtby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkARagMA0G CSqGSIb3DQEBCwUAA4IBAQA8+8iJjF+hJG/RqCOegHg7n1GeEbfOPTCRE4ZoKFmw CyZUjbjGhN2wj30w9c7Td+IBV4zoED1rPjiQZwjX+J8xhyans6uwcQ7oo74/8IfS 6VDy+qGgViHUJKJmHG+Jy+JoIiW7XVugrf5ldBgsk3/0OCWtU5s8NWRVSGUuC85/ hTmEmGsccbrh53SQdV79tzX3ZF4CvyVTo1LiWv6kIh4FycsczRA8D+q4Ehh5T1l3 jbBkddKVWBf/318K0IY8azSqwniEBvlqxkoAlPHMDhG/tcZF9tI5JGfrZ8ymMeAh HezCEghPbQAOdPYcms87hrTWqugZZI2MRggSToSlAb4w -----END CERTIFICATE-----Generated at Wed Feb 19 20:43:38 2025 by rpki-client