$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LEYUN/6nxyrV7INaORYuMkSEY7NEVdmV4.roa File: 6nxyrV7INaORYuMkSEY7NEVdmV4.roa (raw, json) Hash identifier: diIdlDOuTbauppHoBCEb3yaUj/SMbUHAaWSAl7iyUSI= Subject key identifier: EA:7C:72:AD:5E:C8:35:A3:91:62:E3:24:48:46:3B:34:45:5D:99:5E Certificate issuer: /CN=AE0A7B3E88A24A81BE91A09695691D5D1845194D Certificate serial: 025B Authority key identifier: AE:0A:7B:3E:88:A2:4A:81:BE:91:A0:96:95:69:1D:5D:18:45:19:4D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/rgp7PoiiSoG-kaCWlWkdXRhFGU0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/6nxyrV7INaORYuMkSEY7NEVdmV4.roa Signing time: Mon 10 Feb 2025 14:05:40 +0000 ROA not before: Mon 10 Feb 2025 14:05:40 +0000 ROA not after: Tue 14 Oct 2025 15:30:32 +0000 asID: 18040 IP address blocks: 2401:cd20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/rgp7PoiiSoG-kaCWlWkdXRhFGU0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/rgp7PoiiSoG-kaCWlWkdXRhFGU0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/rgp7PoiiSoG-kaCWlWkdXRhFGU0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 13:36:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 603 (0x25b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE0A7B3E88A24A81BE91A09695691D5D1845194D Validity Not Before: Feb 10 14:05:40 2025 GMT Not After : Oct 14 15:30:32 2025 GMT Subject: CN=EA7C72AD5EC835A39162E32448463B34455D995E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a1:2e:41:67:20:76:d0:48:06:ee:d6:74:54: 6f:f9:bd:d4:4a:e6:2c:12:c5:27:ca:f5:a8:cb:ea: 5a:13:2d:fb:9b:71:f9:41:fa:9d:aa:a4:1c:7c:1e: 19:07:6b:a6:84:0a:2d:f8:96:e5:07:86:ca:f0:bc: 32:cf:cc:ff:a1:09:c8:09:8b:d4:b5:a5:d4:c8:41: 64:67:9d:8c:d7:10:03:2f:ea:9c:de:6a:a9:ae:d6: 6f:5e:74:aa:cb:4b:f2:dd:d2:04:60:be:15:de:47: 22:14:a0:df:a4:22:2d:d9:7f:b8:d9:5c:bc:bc:c7: 46:b4:27:fa:68:14:b1:3a:48:c5:77:c6:70:ba:58: 57:2e:57:cb:12:b5:a9:48:38:ac:31:57:b6:41:4a: 73:22:76:1d:2c:d3:a0:d7:8a:9f:74:f1:44:8f:ed: 85:cd:02:bb:a1:7a:70:68:1a:0e:f9:6e:c8:48:e7: 93:6f:50:5f:86:99:0c:14:33:f8:01:c2:c7:fa:1d: 72:a1:2b:80:8c:72:86:1e:91:41:b4:92:1c:18:d7: b1:99:d5:0f:e8:51:3a:64:fd:4b:9f:2e:a5:2f:a8: 59:2a:ec:c4:03:bf:52:8d:76:7e:f4:2a:7a:bf:07: 62:a4:b5:12:ba:c7:b1:b2:53:30:da:a0:94:61:a5: a9:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:7C:72:AD:5E:C8:35:A3:91:62:E3:24:48:46:3B:34:45:5D:99:5E X509v3 Authority Key Identifier: keyid:AE:0A:7B:3E:88:A2:4A:81:BE:91:A0:96:95:69:1D:5D:18:45:19:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/rgp7PoiiSoG-kaCWlWkdXRhFGU0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/rgp7PoiiSoG-kaCWlWkdXRhFGU0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/6nxyrV7INaORYuMkSEY7NEVdmV4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:cd20::/32 Signature Algorithm: sha256WithRSAEncryption 2f:a9:7f:b9:95:84:bc:7f:2d:9f:03:bf:e8:ed:62:87:ae:10: 26:3c:67:7a:52:75:73:82:b7:3d:8a:1c:53:fe:f5:2c:b8:7e: 7f:53:a5:1a:32:f6:78:48:30:05:67:c0:e6:05:bc:b6:63:65: 98:62:34:26:24:2d:c0:94:1d:0e:fe:d2:a4:3b:ff:73:db:5d: 10:b9:e3:04:47:c7:fa:93:0b:ed:35:b8:d5:a5:80:d2:d2:3c: 7e:6f:9c:79:f3:10:5a:50:7d:36:96:a6:f4:ae:2d:f3:0f:45: b0:7a:f8:07:75:23:17:5f:3d:08:b9:c9:ac:63:ac:9d:7a:12: f2:38:6a:a3:98:7f:ea:a6:e2:02:c9:ba:33:87:e5:6c:87:99: 86:a0:c6:38:60:f0:fd:4e:8b:f3:f3:db:89:88:1b:80:e1:80: f7:06:26:1d:62:0c:0f:7e:9f:1b:ee:21:a2:a7:82:75:d6:9c: e7:5f:03:ff:9b:e9:32:d3:ce:e4:a1:18:f1:cd:55:f3:77:47: a9:eb:bc:5a:a9:5d:98:52:c6:0d:06:15:3d:85:2b:06:b6:e2: 21:73:59:a9:5d:66:e7:a8:75:92:ae:ac:d1:9b:5f:01:c0:23: fd:1a:5f:5e:b1:79:7f:91:2e:76:43:cc:11:d8:77:df:bc:20: 32:19:d0:6b -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICAlswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUUw QTdCM0U4OEEyNEE4MUJFOTFBMDk2OTU2OTFENUQxODQ1MTk0RDAeFw0yNTAyMTAx NDA1NDBaFw0yNTEwMTQxNTMwMzJaMDMxMTAvBgNVBAMTKEVBN0M3MkFENUVDODM1 QTM5MTYyRTMyNDQ4NDYzQjM0NDU1RDk5NUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRoS5BZyB20EgG7tZ0VG/5vdRK5iwSxSfK9ajL6loTLfubcflB +p2qpBx8HhkHa6aECi34luUHhsrwvDLPzP+hCcgJi9S1pdTIQWRnnYzXEAMv6pze aqmu1m9edKrLS/Ld0gRgvhXeRyIUoN+kIi3Zf7jZXLy8x0a0J/poFLE6SMV3xnC6 WFcuV8sStalIOKwxV7ZBSnMidh0s06DXip908USP7YXNAruhenBoGg75bshI55Nv UF+GmQwUM/gBwsf6HXKhK4CMcoYekUG0khwY17GZ1Q/oUTpk/UufLqUvqFkq7MQD v1KNdn70Knq/B2KktRK6x7GyUzDaoJRhpam/AgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQU6nxyrV7INaORYuMkSEY7NEVdmV4wHwYDVR0jBBgwFoAUrgp7PoiiSoG+kaCW lWkdXRhFGU0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTEVZVU4v cmdwN1BvaWlTb0cta2FDV2xXa2RYUmhGR1UwLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9yZ3A3UG9paVNvRy1rYUNXbFdrZFhSaEZHVTAuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MRVlVTi82bnh5clY3SU5hT1JZdU1rU0VZ N05FVmRtVjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAHN IDANBgkqhkiG9w0BAQsFAAOCAQEAL6l/uZWEvH8tnwO/6O1ih64QJjxnelJ1c4K3 PYocU/71LLh+f1OlGjL2eEgwBWfA5gW8tmNlmGI0JiQtwJQdDv7SpDv/c9tdELnj BEfH+pML7TW41aWA0tI8fm+cefMQWlB9Npam9K4t8w9FsHr4B3UjF189CLnJrGOs nXoS8jhqo5h/6qbiAsm6M4flbIeZhqDGOGDw/U6L8/PbiYgbgOGA9wYmHWIMD36f G+4hoqeCddac518D/5vpMtPO5KEY8c1V83dHqeu8WqldmFLGDQYVPYUrBrbiIXNZ qV1m56h1kq6s0ZtfAcAj/RpfXrF5f5EudkPMEdh337wgMhnQaw== -----END CERTIFICATE-----Generated at Mon Apr 7 12:56:52 2025 by rpki-client