$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/PdAiL87YMA8f5Tv6d708S3blQrg.roa File: PdAiL87YMA8f5Tv6d708S3blQrg.roa (raw, json) Hash identifier: hfTDYDVMOHLiCZEYd1bzoCZfRSmiu7LDx8HoZPdkj5Q= Subject key identifier: 3D:D0:22:2F:CE:D8:30:0F:1F:E5:3B:FA:77:BD:3C:4B:76:E5:42:B8 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 0F6B Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/PdAiL87YMA8f5Tv6d708S3blQrg.roa Signing time: Mon 10 Feb 2025 14:08:04 +0000 ROA not before: Mon 10 Feb 2025 14:08:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 192.72.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 10:06:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3947 (0xf6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Feb 10 14:08:04 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3DD0222FCED8300F1FE53BFA77BD3C4B76E542B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b0:29:1b:c7:ef:e1:bf:bd:5e:17:ac:3c:5b: 33:93:e8:b6:a1:7f:6e:8b:32:c6:99:3d:26:ec:99: 8e:05:f9:01:4f:fd:9c:49:59:da:bb:bb:3b:0c:57: 74:1e:2a:5a:ba:15:0b:2c:52:c8:9b:4c:45:8b:0e: bb:d9:d8:88:6b:08:76:00:0e:4a:fc:8c:b1:ed:d7: b9:c2:69:be:62:73:bd:64:cf:1d:3e:32:dd:f1:6f: 53:47:4d:4a:37:bd:3b:2d:81:41:6e:ce:72:4d:61: 68:18:70:5c:a3:fe:f6:66:54:bd:2d:6e:fb:11:c1: 60:bd:6a:f7:65:ed:d8:ae:b8:d2:6b:21:64:84:b4: 8e:0d:fb:01:73:18:11:ed:93:3f:56:9c:ea:ff:8c: 4b:7a:c4:94:92:8d:80:a5:ec:2a:b3:5b:ee:e0:20: 42:e7:61:9c:4c:f3:c5:53:34:e4:f7:0a:36:f7:97: 8f:5b:f6:15:55:ea:21:65:5c:29:a8:58:25:e6:04: 4e:1c:a5:55:ad:5c:01:34:4b:ba:37:e5:06:45:3a: ff:30:28:bc:8a:f0:2a:b1:14:82:23:86:10:60:6c: e8:d0:d8:ce:82:b8:0f:87:3d:d8:c7:58:f9:7b:1c: d2:02:0e:4c:d8:71:89:15:f2:9e:18:48:f4:38:57: 66:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:D0:22:2F:CE:D8:30:0F:1F:E5:3B:FA:77:BD:3C:4B:76:E5:42:B8 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/PdAiL87YMA8f5Tv6d708S3blQrg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.16.0/20 Signature Algorithm: sha256WithRSAEncryption 61:2d:8c:77:4b:dc:57:e6:c1:36:28:1b:07:be:62:e1:20:b3: ba:82:8a:81:96:53:ce:5d:95:16:09:ac:cc:9c:09:bb:ad:2c: ec:25:80:f9:72:59:2f:3c:cc:7a:47:06:2b:7e:22:c3:ed:e0: f9:35:40:20:53:af:b7:a7:ed:59:ed:6e:91:92:e2:cd:d5:d3: 39:64:1e:d2:7f:d6:2a:0e:ce:f1:c3:f0:46:57:54:71:78:8c: 2e:bd:9c:8c:9c:44:14:1c:24:2f:83:0a:ca:32:ab:f2:b1:cc: e8:8c:49:86:13:6d:8a:4a:3b:28:46:01:e5:e1:47:6a:06:ae: 66:27:16:b1:b1:f6:6e:c2:f8:92:a9:a0:b6:67:a2:86:df:25: 33:f7:d2:b5:5d:b4:39:28:05:ce:a6:2c:37:f2:97:1a:6d:b1: 8e:5c:d2:45:ef:c5:8b:81:3f:34:a6:c6:7e:a4:21:ef:3a:4e: 12:75:93:ba:a1:c1:1a:f7:2b:2f:7c:e7:e6:31:43:6d:0e:d5: 27:a6:39:13:92:c9:93:de:a3:c3:75:fc:3f:44:13:e4:e0:f4: f2:75:df:d5:f4:33:7c:48:b0:d2:8e:9a:11:b0:59:08:04:aa: 71:76:b1:17:89:74:18:c4:a6:91:44:85:ec:7d:de:1c:66:18: d9:6c:aa:0a -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICD2swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNTAyMTAx NDA4MDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNERDAyMjJGQ0VEODMw MEYxRkU1M0JGQTc3QkQzQzRCNzZFNTQyQjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBsCkbx+/hv71eF6w8WzOT6Lahf26LMsaZPSbsmY4F+QFP/ZxJ Wdq7uzsMV3QeKlq6FQssUsibTEWLDrvZ2IhrCHYADkr8jLHt17nCab5ic71kzx0+ Mt3xb1NHTUo3vTstgUFuznJNYWgYcFyj/vZmVL0tbvsRwWC9avdl7diuuNJrIWSE tI4N+wFzGBHtkz9WnOr/jEt6xJSSjYCl7CqzW+7gIELnYZxM88VTNOT3Cjb3l49b 9hVV6iFlXCmoWCXmBE4cpVWtXAE0S7o35QZFOv8wKLyK8CqxFIIjhhBgbOjQ2M6C uA+HPdjHWPl7HNICDkzYcYkV8p4YSPQ4V2YjAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUPdAiL87YMA8f5Tv6d708S3blQrgwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvUGRBaUw4N1lNQThmNVR2NmQ3MDhT M2JsUXJnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMBIEDAN BgkqhkiG9w0BAQsFAAOCAQEAYS2Md0vcV+bBNigbB75i4SCzuoKKgZZTzl2VFgms zJwJu60s7CWA+XJZLzzMekcGK34iw+3g+TVAIFOvt6ftWe1ukZLizdXTOWQe0n/W Kg7O8cPwRldUcXiMLr2cjJxEFBwkL4MKyjKr8rHM6IxJhhNtiko7KEYB5eFHagau ZicWsbH2bsL4kqmgtmeiht8lM/fStV20OSgFzqYsN/KXGm2xjlzSRe/Fi4E/NKbG fqQh7zpOEnWTuqHBGvcrL3zn5jFDbQ7VJ6Y5E5LJk96jw3X8P0QT5OD08nXf1fQz fEiw0o6aEbBZCASqcXaxF4l0GMSmkUSF7H3eHGYY2WyqCg== -----END CERTIFICATE-----Generated at Mon Apr 7 07:56:29 2025 by rpki-client