$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/JoilanPNZ7ze1kQIzyzQ7f8gCcc.roa File: JoilanPNZ7ze1kQIzyzQ7f8gCcc.roa (raw, json) Hash identifier: lyUhuhjf6N7llhh7q2fQe+3hElLJrYXakcNED2X9nVU= Subject key identifier: 26:88:A5:6A:73:CD:67:BC:DE:D6:44:08:CF:2C:D0:ED:FF:20:09:C7 Certificate issuer: /CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Certificate serial: 0EDE Authority key identifier: A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/JoilanPNZ7ze1kQIzyzQ7f8gCcc.roa Signing time: Mon 10 Feb 2025 14:12:02 +0000 ROA not before: Mon 10 Feb 2025 14:12:02 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18464 IP address blocks: 2404:73c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 08:36:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3806 (0xede) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Validity Not Before: Feb 10 14:12:02 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2688A56A73CD67BCDED64408CF2CD0EDFF2009C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:40:6a:bd:32:3f:f6:9c:0a:c3:41:35:e8:0c: 54:91:cc:51:cb:62:e0:27:cb:29:c6:ba:1f:7e:3f: 0c:97:1e:09:3c:ec:2c:6d:b2:af:cb:ea:c4:06:51: eb:ba:72:38:82:6b:a9:ba:23:51:e9:63:e5:52:84: f6:19:2e:ce:1d:ef:7c:52:68:10:45:0f:94:5e:09: ed:0e:74:95:3b:26:e1:a2:2a:c5:2f:32:da:b7:b2: ad:d1:cb:04:70:77:fc:68:aa:70:fd:84:81:05:93: 53:a8:f8:d1:c5:d7:be:b7:a8:7b:c0:a5:9d:b4:5f: 43:eb:f1:29:5d:82:27:f7:d3:91:5e:05:f3:2a:eb: 7f:67:f0:54:6e:75:a3:9c:b2:a4:10:f2:1d:67:3e: ed:1e:04:7a:42:51:2a:ed:78:e2:0a:33:5c:7a:33: 62:40:fd:51:27:b5:32:4d:c0:77:a9:93:0c:7e:33: 82:ba:e9:ae:7c:40:bd:44:7d:76:c9:cc:0c:6c:44: e2:70:3f:49:54:22:b5:26:e9:5d:eb:50:0f:09:2c: d0:93:d1:ae:5f:02:df:4d:f2:42:95:d7:6a:4d:39: 42:9d:7d:81:01:1f:85:ab:e8:65:55:aa:37:83:0f: f3:4b:bd:6a:a4:cd:59:38:66:14:9b:da:1e:16:2a: 10:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:88:A5:6A:73:CD:67:BC:DE:D6:44:08:CF:2C:D0:ED:FF:20:09:C7 X509v3 Authority Key Identifier: keyid:A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/JoilanPNZ7ze1kQIzyzQ7f8gCcc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404:73c0::/32 Signature Algorithm: sha256WithRSAEncryption bb:1a:27:51:a0:31:e9:5b:d8:ff:f9:1c:22:ef:b4:55:ee:4f: 60:48:f2:10:18:9d:0f:ed:59:5e:7b:cf:d9:91:69:f7:09:e9: 9a:0b:65:cc:81:27:ab:03:c9:61:c9:ec:b9:a0:a5:a6:2c:8f: 53:ac:d6:5b:46:c4:24:3b:69:9d:1f:8e:c7:cf:2f:79:e7:7e: c5:32:0c:0e:05:27:ef:52:e7:29:91:05:63:f1:90:93:dc:09: eb:72:12:c8:01:e3:a3:e3:d1:93:25:aa:25:56:34:38:95:a4: 6a:c8:f4:54:20:a8:c5:f6:b5:29:c5:ce:55:c9:8a:22:5f:36: 93:93:f1:72:c0:37:49:29:ec:e9:f4:d4:69:d8:85:ee:41:66: d2:3a:84:aa:72:d3:ff:9f:7d:fd:f6:46:b2:83:82:db:9c:9b: 2d:6c:c9:13:8c:d8:67:6f:a2:07:ee:b2:2b:9f:f5:f8:88:db: f0:b6:60:20:f2:be:82:4f:03:a7:3a:bf:c5:77:74:90:64:cc: b7:cc:63:34:11:1b:03:d6:96:fb:a1:94:4f:50:7c:52:4b:20: 44:51:66:be:71:6d:3d:f7:24:32:a5:3b:6c:ec:e2:1e:3a:0d: eb:af:6e:ad:0b:4b:0f:5a:5d:92:c7:7c:a7:89:71:c6:a6:e2: 46:cd:ff:67 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICDt4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTE4 RUIzNzdERDAzMThBRTQ2NUQ4RjNGN0Q2RTBBRDBBNEU5RUQxRTAeFw0yNTAyMTAx NDEyMDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI2ODhBNTZBNzNDRDY3 QkNERUQ2NDQwOENGMkNEMEVERkYyMDA5QzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCWQGq9Mj/2nArDQTXoDFSRzFHLYuAnyynGuh9+PwyXHgk87Cxt sq/L6sQGUeu6cjiCa6m6I1HpY+VShPYZLs4d73xSaBBFD5ReCe0OdJU7JuGiKsUv Mtq3sq3RywRwd/xoqnD9hIEFk1Oo+NHF1763qHvApZ20X0Pr8Sldgif305FeBfMq 639n8FRudaOcsqQQ8h1nPu0eBHpCUSrteOIKM1x6M2JA/VEntTJNwHepkwx+M4K6 6a58QL1EfXbJzAxsROJwP0lUIrUm6V3rUA8JLNCT0a5fAt9N8kKV12pNOUKdfYEB H4Wr6GVVqjeDD/NLvWqkzVk4ZhSb2h4WKhCrAgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUJoilanPNZ7ze1kQIzyzQ7f8gCccwHwYDVR0jBBgwFoAUoY6zd90DGK5GXY8/ fW4K0KTp7R4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR0pJ TkdFTi9vWTZ6ZDkwREdLNUdYWThfZlc0SzBLVHA3UjQuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL29ZNnpkOTBER0s1R1hZOF9mVzRLMEtUcDdSNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL01JTkdKSU5HRU4vSm9pbGFuUE5a N3plMWtRSXp5elE3ZjhnQ2NjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQC AAIwBwMFACQEc8AwDQYJKoZIhvcNAQELBQADggEBALsaJ1GgMelb2P/5HCLvtFXu T2BI8hAYnQ/tWV57z9mRafcJ6ZoLZcyBJ6sDyWHJ7LmgpaYsj1Os1ltGxCQ7aZ0f jsfPL3nnfsUyDA4FJ+9S5ymRBWPxkJPcCetyEsgB46Pj0ZMlqiVWNDiVpGrI9FQg qMX2tSnFzlXJiiJfNpOT8XLAN0kp7On01GnYhe5BZtI6hKpy0/+fff32RrKDgtuc my1syROM2Gdvogfusiuf9fiI2/C2YCDyvoJPA6c6v8V3dJBkzLfMYzQRGwPWlvuh lE9QfFJLIERRZr5xbT33JDKlO2zs4h46Deuvbq0LSw9aXZLHfKeJccam4kbN/2c= -----END CERTIFICATE-----Generated at Sat Apr 5 08:29:39 2025 by rpki-client