$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/0E26x_uTKOWH3frTe_Y-07-JDMg.roa File: 0E26x_uTKOWH3frTe_Y-07-JDMg.roa (raw, json) Hash identifier: WYwXR3sCucAtU65WjCwJpKc8bAsbwSXV2jUrb19ndAc= Subject key identifier: D0:4D:BA:C7:FB:93:28:E5:87:DD:FA:D3:7B:F6:3E:D3:BF:89:0C:C8 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1834 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0E26x_uTKOWH3frTe_Y-07-JDMg.roa Signing time: Mon 10 Feb 2025 14:07:40 +0000 ROA not before: Mon 10 Feb 2025 14:07:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 211.74.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 18:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6196 (0x1834) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Feb 10 14:07:40 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D04DBAC7FB9328E587DDFAD37BF63ED3BF890CC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ee:33:4c:56:0e:61:b5:53:72:88:81:a1:8f: 91:d5:51:40:ad:af:c9:d1:06:a9:1a:5e:63:70:b7: c6:c7:3a:e5:3e:b0:e3:bf:6f:b8:bd:c6:a5:7a:fc: 75:0c:ad:d6:bf:58:11:c7:c1:b5:59:73:11:a9:a2: da:1e:fe:02:b0:6b:df:8f:42:f7:b2:97:f2:1d:d3: 41:d5:80:51:22:8c:dd:eb:a3:35:c7:aa:99:30:71: 3a:dc:00:11:03:1d:06:b7:8c:c1:ee:0e:29:c7:fe: 14:13:48:37:26:19:58:2a:2f:b2:20:75:20:14:8f: e5:9b:52:7c:cf:53:80:d7:4f:7b:c9:01:e0:f8:09: 56:bd:c9:38:12:a2:e2:c8:52:c0:b4:e5:c0:c8:a5: 0a:0d:06:57:b1:1f:f6:04:44:4a:df:19:c5:a8:65: 7b:47:f6:0b:54:22:0e:aa:6a:c4:62:c1:51:a0:b5: db:c4:65:ef:9d:4c:ab:02:df:08:09:53:1a:0a:09: 35:03:f0:a9:af:4c:b7:07:74:6f:0f:47:82:7e:cd: 11:b3:fb:48:e7:de:db:52:1c:73:a0:0f:ff:9e:d9: 32:1e:c6:36:97:cc:35:41:e8:e2:c5:6c:7c:f3:2d: 9d:db:5f:81:5e:5e:59:60:c7:37:96:8c:26:7d:81: 7c:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:4D:BA:C7:FB:93:28:E5:87:DD:FA:D3:7B:F6:3E:D3:BF:89:0C:C8 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0E26x_uTKOWH3frTe_Y-07-JDMg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.74.0.0/17 Signature Algorithm: sha256WithRSAEncryption a8:6a:61:0c:45:ac:0f:a5:8f:b9:72:9d:ad:75:8d:5a:0f:01: 2a:6c:45:18:98:b8:c8:e4:a7:ab:7e:60:ed:8b:5d:b4:ef:22: 7b:09:9f:3f:e4:e8:69:93:bc:9d:f4:73:71:8c:ea:9a:e5:7f: 65:7b:c8:35:8a:57:53:90:14:aa:7a:df:2a:09:26:cc:cb:dc: 0c:d5:63:9f:e7:ad:b1:4d:98:db:27:db:b1:3d:c8:65:25:ea: 80:c5:8c:aa:ee:16:9a:42:34:85:52:83:83:e3:44:1f:77:a9: f7:33:fa:84:f9:71:69:9e:57:6d:1c:d6:a7:91:0f:99:88:b1: 1d:cb:cf:a4:4b:3c:2e:97:39:a4:b3:fe:0d:ef:cc:5e:65:59: 6a:88:b2:22:fd:66:3b:b5:21:bd:71:ec:d9:cf:a8:91:ab:2a: c1:5f:cf:8e:e9:ba:51:1c:45:a9:c3:c0:27:e6:73:2a:10:ad: 05:bd:55:fa:7d:2c:cb:d2:68:db:52:e3:e1:c5:eb:a1:55:86: cb:b8:d7:6e:bb:06:0d:d1:5b:b9:e7:34:2c:76:a9:ec:17:96: bd:51:8f:52:c0:99:dd:9e:4a:71:71:11:97:77:4d:35:be:1f: d3:fc:cf:63:36:25:fa:c5:d6:34:c9:24:87:44:47:da:a1:79: 17:bb:ba:bb -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGDQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx NDA3NDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQwNERCQUM3RkI5MzI4 RTU4N0RERkFEMzdCRjYzRUQzQkY4OTBDQzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDY7jNMVg5htVNyiIGhj5HVUUCtr8nRBqkaXmNwt8bHOuU+sOO/ b7i9xqV6/HUMrda/WBHHwbVZcxGpotoe/gKwa9+PQveyl/Id00HVgFEijN3rozXH qpkwcTrcABEDHQa3jMHuDinH/hQTSDcmGVgqL7IgdSAUj+WbUnzPU4DXT3vJAeD4 CVa9yTgSouLIUsC05cDIpQoNBlexH/YERErfGcWoZXtH9gtUIg6qasRiwVGgtdvE Ze+dTKsC3wgJUxoKCTUD8KmvTLcHdG8PR4J+zRGz+0jn3ttSHHOgD/+e2TIexjaX zDVB6OLFbHzzLZ3bX4FeXllgxzeWjCZ9gXyXAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU0E26x/uTKOWH3frTe/Y+07+JDMgwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvMEUyNnhfdVRLT1dIM2ZyVGVfWS0w Ny1KRE1nLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB9NKADAN BgkqhkiG9w0BAQsFAAOCAQEAqGphDEWsD6WPuXKdrXWNWg8BKmxFGJi4yOSnq35g 7YtdtO8iewmfP+ToaZO8nfRzcYzqmuV/ZXvINYpXU5AUqnrfKgkmzMvcDNVjn+et sU2Y2yfbsT3IZSXqgMWMqu4WmkI0hVKDg+NEH3ep9zP6hPlxaZ5XbRzWp5EPmYix HcvPpEs8Lpc5pLP+De/MXmVZaoiyIv1mO7UhvXHs2c+okasqwV/Pjum6URxFqcPA J+ZzKhCtBb1V+n0sy9Jo21Lj4cXroVWGy7jXbrsGDdFbuec0LHap7BeWvVGPUsCZ 3Z5KcXERl3dNNb4f0/zPYzYl+sXWNMkkh0RH2qF5F7u6uw== -----END CERTIFICATE-----Generated at Mon Apr 7 14:50:52 2025 by rpki-client