$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LEYUN/XSinBvP__2Vw-shGO1NmYohnSPA.roa File: XSinBvP__2Vw-shGO1NmYohnSPA.roa (raw, json) Hash identifier: kcv/4hRxqF396kO6AIk+G3l+DceEEYooNI/Yo8i3em8= Subject key identifier: 5D:28:A7:06:F3:FF:FF:65:70:FA:C8:46:3B:53:66:62:88:67:48:F0 Certificate issuer: /CN=AE0A7B3E88A24A81BE91A09695691D5D1845194D Certificate serial: 025C Authority key identifier: AE:0A:7B:3E:88:A2:4A:81:BE:91:A0:96:95:69:1D:5D:18:45:19:4D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/rgp7PoiiSoG-kaCWlWkdXRhFGU0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/XSinBvP__2Vw-shGO1NmYohnSPA.roa Signing time: Mon 10 Feb 2025 14:05:40 +0000 ROA not before: Mon 10 Feb 2025 14:05:40 +0000 ROA not after: Tue 14 Oct 2025 15:30:32 +0000 asID: 152616 IP address blocks: 2401:cd20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/rgp7PoiiSoG-kaCWlWkdXRhFGU0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/rgp7PoiiSoG-kaCWlWkdXRhFGU0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/rgp7PoiiSoG-kaCWlWkdXRhFGU0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 13:36:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 604 (0x25c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE0A7B3E88A24A81BE91A09695691D5D1845194D Validity Not Before: Feb 10 14:05:40 2025 GMT Not After : Oct 14 15:30:32 2025 GMT Subject: CN=5D28A706F3FFFF6570FAC8463B536662886748F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e0:d1:6a:24:a6:47:ae:a4:4d:2a:63:5b:43: e6:0e:13:1b:47:35:86:1b:74:99:19:f7:c1:59:ae: a8:89:5e:d2:9d:d8:8a:55:cd:2d:cf:c3:12:52:16: 2c:cf:d7:d2:a5:ac:44:1d:14:d9:a7:92:74:0a:65: 12:91:3b:1a:ef:b9:78:3d:0d:ac:80:8f:e2:17:16: 30:28:a7:14:a8:c3:41:44:19:37:9c:b8:2a:41:37: 3c:2e:3e:c2:9a:c8:bc:eb:4d:75:29:49:f9:ba:49: 99:26:4e:54:46:5e:66:e7:ca:bf:77:f5:59:11:5d: f4:52:8a:c2:52:61:96:3d:20:01:4f:30:86:d2:a4: c3:f1:dd:cd:67:65:6a:f1:a2:08:40:37:1d:f7:09: a1:d1:53:d2:a0:b8:34:e2:4c:05:fd:09:6e:5d:b5: 4e:fb:5d:a4:07:b4:37:78:e6:2d:40:24:27:67:21: 98:7c:de:7d:b6:f0:38:33:b4:05:9c:68:c3:8e:d3: d2:c6:db:84:98:59:c8:d4:99:e6:5f:c9:b5:3b:44: 26:d5:e0:a0:91:ea:f4:79:65:08:b9:64:46:dd:22: b9:a4:b9:ef:b9:f3:ea:a2:7b:97:53:87:83:65:ee: 9e:dd:a1:36:17:29:de:fa:48:3a:b7:59:2f:33:af: 25:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:28:A7:06:F3:FF:FF:65:70:FA:C8:46:3B:53:66:62:88:67:48:F0 X509v3 Authority Key Identifier: keyid:AE:0A:7B:3E:88:A2:4A:81:BE:91:A0:96:95:69:1D:5D:18:45:19:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/rgp7PoiiSoG-kaCWlWkdXRhFGU0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/rgp7PoiiSoG-kaCWlWkdXRhFGU0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/XSinBvP__2Vw-shGO1NmYohnSPA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:cd20::/32 Signature Algorithm: sha256WithRSAEncryption 8c:8c:1f:a8:8c:8a:1e:1e:ff:34:4c:8a:f8:e0:71:95:8e:c1: c2:b0:5a:07:9d:e7:86:90:8b:ff:c6:27:d2:c9:7d:e5:ab:46: 91:9d:ec:a8:4c:20:5d:12:17:98:3b:67:c2:94:b5:ba:dd:54: 83:c6:0f:91:83:dc:78:3a:4b:b9:9a:4f:c7:8e:cb:00:8c:5a: 0e:29:a7:5a:83:b9:8e:0c:be:d4:f5:ef:a4:7d:b5:1b:50:e0: a7:4e:52:3d:f8:39:d5:a6:03:73:8e:a4:b9:ea:5a:c2:55:7f: 0b:ae:a9:61:38:b9:75:52:9e:1b:f8:97:72:a2:2a:f0:f0:8f: 03:f2:22:d9:82:50:8c:e8:ce:53:76:13:92:a4:17:d1:cb:52: 21:9c:60:fa:ab:8b:c9:d0:a8:ec:9e:a7:e3:8c:6d:19:d4:37: 64:95:40:69:14:1b:99:4b:91:6c:1a:15:e2:d6:ed:b5:28:fe: 56:70:6c:e8:6f:44:61:98:40:d0:5c:82:62:69:d4:56:71:74: fd:52:08:a9:c2:9a:6b:f6:81:4f:a6:c8:be:ac:45:66:eb:5d: 95:ee:06:a3:e4:d9:ee:e4:5b:78:43:99:55:f2:32:0a:62:c1: 69:60:a0:9b:ae:f9:fd:fa:ea:2d:c2:a2:b4:66:90:23:8f:34: bb:9d:0f:57 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICAlwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUUw QTdCM0U4OEEyNEE4MUJFOTFBMDk2OTU2OTFENUQxODQ1MTk0RDAeFw0yNTAyMTAx NDA1NDBaFw0yNTEwMTQxNTMwMzJaMDMxMTAvBgNVBAMTKDVEMjhBNzA2RjNGRkZG NjU3MEZBQzg0NjNCNTM2NjYyODg2NzQ4RjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC24NFqJKZHrqRNKmNbQ+YOExtHNYYbdJkZ98FZrqiJXtKd2IpV zS3PwxJSFizP19KlrEQdFNmnknQKZRKROxrvuXg9DayAj+IXFjAopxSow0FEGTec uCpBNzwuPsKayLzrTXUpSfm6SZkmTlRGXmbnyr939VkRXfRSisJSYZY9IAFPMIbS pMPx3c1nZWrxoghANx33CaHRU9KguDTiTAX9CW5dtU77XaQHtDd45i1AJCdnIZh8 3n228DgztAWcaMOO09LG24SYWcjUmeZfybU7RCbV4KCR6vR5ZQi5ZEbdIrmkue+5 8+qie5dTh4Nl7p7doTYXKd76SDq3WS8zryUpAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUXSinBvP//2Vw+shGO1NmYohnSPAwHwYDVR0jBBgwFoAUrgp7PoiiSoG+kaCW lWkdXRhFGU0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTEVZVU4v cmdwN1BvaWlTb0cta2FDV2xXa2RYUmhGR1UwLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9yZ3A3UG9paVNvRy1rYUNXbFdrZFhSaEZHVTAuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MRVlVTi9YU2luQnZQX18yVnctc2hHTzFO bVlvaG5TUEEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAHN IDANBgkqhkiG9w0BAQsFAAOCAQEAjIwfqIyKHh7/NEyK+OBxlY7BwrBaB53nhpCL /8Yn0sl95atGkZ3sqEwgXRIXmDtnwpS1ut1Ug8YPkYPceDpLuZpPx47LAIxaDimn WoO5jgy+1PXvpH21G1Dgp05SPfg51aYDc46kuepawlV/C66pYTi5dVKeG/iXcqIq 8PCPA/Ii2YJQjOjOU3YTkqQX0ctSIZxg+quLydCo7J6n44xtGdQ3ZJVAaRQbmUuR bBoV4tbttSj+VnBs6G9EYZhA0FyCYmnUVnF0/VIIqcKaa/aBT6bIvqxFZutdle4G o+TZ7uRbeEOZVfIyCmLBaWCgm675/frqLcKitGaQI480u50PVw== -----END CERTIFICATE-----Generated at Mon Apr 7 12:56:53 2025 by rpki-client