$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/K4LixCPQLs4S4efnKakubGFmGqE.roa File: K4LixCPQLs4S4efnKakubGFmGqE.roa (raw, json) Hash identifier: DwQLvzyQFZ2aw55iJrfXFTFNuRQeojVjDbra7Rq/r7U= Subject key identifier: 2B:82:E2:C4:23:D0:2E:CE:12:E1:E7:E7:29:A9:2E:6C:61:66:1A:A1 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 17E2 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/K4LixCPQLs4S4efnKakubGFmGqE.roa Signing time: Mon 10 Feb 2025 14:07:22 +0000 ROA not before: Mon 10 Feb 2025 14:07:22 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 203.73.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 18:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6114 (0x17e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Feb 10 14:07:22 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2B82E2C423D02ECE12E1E7E729A92E6C61661AA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f1:69:15:4a:58:dc:90:39:86:f7:98:df:9f: f0:08:c2:27:20:e3:2a:32:c6:a1:d0:7c:97:ad:d4: f8:46:de:5c:5b:dd:c1:66:e8:e6:32:e3:a1:e4:24: 94:82:72:32:f8:c4:92:a6:81:31:70:22:9a:f5:5a: 83:2f:b0:06:54:b5:a8:18:64:d2:85:ea:db:92:10: 52:6f:d0:a3:d0:59:46:0f:16:13:11:8d:e6:e6:4a: be:16:3a:b0:81:c1:3d:9d:c8:b6:3a:93:3a:16:5e: f6:b7:2c:8c:6e:f7:3e:29:6d:2f:19:26:de:fd:85: d5:5f:d7:b3:4c:94:1b:2c:2a:83:e2:91:60:ae:49: 8c:6a:5c:46:64:42:d3:14:d0:fa:6d:25:4a:b2:03: 1b:88:f4:d2:de:5e:16:6d:f2:c4:86:1b:53:dd:ac: 7e:d6:bb:03:06:e7:07:d0:c9:f9:01:4f:e8:d6:41: 14:23:51:b7:f6:db:2a:11:f0:40:75:13:2a:3e:1c: 5b:b5:ab:a1:ea:48:55:6c:8c:73:f7:5b:a6:5c:6c: 0e:f6:d9:32:19:f0:52:2f:e3:ba:9b:48:4f:fd:bf: 78:66:84:25:55:ae:20:b3:93:e7:6a:91:3b:05:2c: 6f:d0:26:d0:12:ef:92:38:a5:a4:b1:57:0d:b9:4c: fa:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:82:E2:C4:23:D0:2E:CE:12:E1:E7:E7:29:A9:2E:6C:61:66:1A:A1 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/K4LixCPQLs4S4efnKakubGFmGqE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.73.0.0/16 Signature Algorithm: sha256WithRSAEncryption 64:94:63:c7:42:0f:0e:cb:46:8f:73:3d:df:fc:1a:77:5f:fd: 37:30:7b:36:48:bd:da:ee:64:98:4c:13:42:b9:84:9a:66:80: 40:e0:4f:42:f2:22:f0:e5:a8:54:e4:74:fe:3b:ce:e5:15:15: f6:77:f0:06:68:7f:78:c9:a2:f4:6e:58:05:da:1d:60:8e:17: c3:7a:2a:b6:15:ef:70:37:21:00:69:83:0d:76:8d:35:b2:40: ff:44:2f:30:f8:56:13:a6:a0:fa:0e:f6:0d:57:06:53:8c:24: 52:02:8f:37:c0:28:0d:4b:a1:0b:f8:97:ba:a8:d5:25:e7:31: 90:18:4a:95:e6:64:d0:58:b3:f6:8f:94:97:c6:ef:62:94:e6: e6:27:ae:76:f0:30:97:cc:9a:a9:80:a2:4e:52:8f:6e:10:ca: db:be:c4:bc:80:19:73:05:d9:6f:6f:0f:1c:06:19:ac:cf:71: e7:33:36:21:0e:f3:2b:7a:dc:1c:26:6b:04:94:b8:dd:e7:cc: 3e:c0:cc:91:cf:e8:24:ac:98:25:65:50:d6:ee:6a:fa:9f:4f: 99:01:2a:6e:de:a4:65:f9:44:9d:42:58:14:df:51:1b:78:e4: 15:36:67:d3:c4:c1:33:0c:40:b4:bb:77:b3:a4:82:87:0e:e4: 0e:a9:5b:9d -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICF+IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx NDA3MjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJCODJFMkM0MjNEMDJF Q0UxMkUxRTdFNzI5QTkyRTZDNjE2NjFBQTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC78WkVSljckDmG95jfn/AIwicg4yoyxqHQfJet1PhG3lxb3cFm 6OYy46HkJJSCcjL4xJKmgTFwIpr1WoMvsAZUtagYZNKF6tuSEFJv0KPQWUYPFhMR jebmSr4WOrCBwT2dyLY6kzoWXva3LIxu9z4pbS8ZJt79hdVf17NMlBssKoPikWCu SYxqXEZkQtMU0PptJUqyAxuI9NLeXhZt8sSGG1PdrH7WuwMG5wfQyfkBT+jWQRQj Ubf22yoR8EB1Eyo+HFu1q6HqSFVsjHP3W6ZcbA722TIZ8FIv47qbSE/9v3hmhCVV riCzk+dqkTsFLG/QJtAS75I4paSxVw25TPrxAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUK4LixCPQLs4S4efnKakubGFmGqEwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvSzRMaXhDUFFMczRTNGVmbktha3Vi R0ZtR3FFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAMtJMA0G CSqGSIb3DQEBCwUAA4IBAQBklGPHQg8Oy0aPcz3f/Bp3X/03MHs2SL3a7mSYTBNC uYSaZoBA4E9C8iLw5ahU5HT+O87lFRX2d/AGaH94yaL0blgF2h1gjhfDeiq2Fe9w NyEAaYMNdo01skD/RC8w+FYTpqD6DvYNVwZTjCRSAo83wCgNS6EL+Je6qNUl5zGQ GEqV5mTQWLP2j5SXxu9ilObmJ6528DCXzJqpgKJOUo9uEMrbvsS8gBlzBdlvbw8c Bhmsz3HnMzYhDvMretwcJmsElLjd58w+wMyRz+gkrJglZVDW7mr6n0+ZASpu3qRl +USdQlgU31EbeOQVNmfTxMEzDEC0u3ezpIKHDuQOqVud -----END CERTIFICATE-----Generated at Mon Apr 7 15:06:26 2025 by rpki-client