$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/pVPyuuIJIIe-Yhq7xIB4Vqelrl0.roa File: pVPyuuIJIIe-Yhq7xIB4Vqelrl0.roa (raw, json) Hash identifier: kb02YdBQgowu9WpB43GVAdWvphBWgRKiWmsK1DJcUTc= Subject key identifier: A5:53:F2:BA:E2:09:20:87:BE:62:1A:BB:C4:80:78:56:A7:A5:AE:5D Certificate issuer: /CN=3122A9292CC930152ADE5A25848C1BDC4044C902 Certificate serial: 0411 Authority key identifier: 31:22:A9:29:2C:C9:30:15:2A:DE:5A:25:84:8C:1B:DC:40:44:C9:02 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MSKpKSzJMBUq3lolhIwb3EBEyQI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/pVPyuuIJIIe-Yhq7xIB4Vqelrl0.roa Signing time: Mon 10 Feb 2025 14:05:10 +0000 ROA not before: Mon 10 Feb 2025 14:05:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 31972 IP address blocks: 2406:ce40::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/MSKpKSzJMBUq3lolhIwb3EBEyQI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/MSKpKSzJMBUq3lolhIwb3EBEyQI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/MSKpKSzJMBUq3lolhIwb3EBEyQI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 13:06:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1041 (0x411) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3122A9292CC930152ADE5A25848C1BDC4044C902 Validity Not Before: Feb 10 14:05:10 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A553F2BAE2092087BE621ABBC4807856A7A5AE5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c8:dc:79:83:80:6a:d0:49:8b:79:84:22:ed: 3c:ed:fe:bf:5a:a2:e4:36:b1:fe:38:d4:28:e5:20: 95:77:f4:3f:97:51:a0:95:b8:8b:02:63:4e:45:a8: b1:7b:3e:5b:54:2a:bb:56:0a:35:3f:48:9c:dd:bd: f7:e5:e0:fa:d1:a7:d3:44:19:80:a8:78:47:13:f6: 3e:1e:1c:00:89:2c:e8:d9:6b:0d:90:59:68:bc:48: 66:87:96:92:65:7d:8e:d8:ea:07:5e:4f:d4:47:fc: f0:d9:ef:49:b8:96:43:d4:03:7a:82:3e:b1:56:e4: b1:e7:23:8c:74:3a:d2:35:ae:13:83:dd:35:74:c7: f3:9a:79:be:b2:1b:ae:a8:a0:de:48:d6:37:9e:1f: 6f:a7:1d:3c:1b:94:d3:d5:77:28:da:a4:f1:3b:c5: 69:3e:68:c6:b8:a1:33:bc:32:8e:ea:f0:6a:94:e7: a6:65:d6:de:e6:73:57:01:18:6e:18:75:f7:22:a7: 7c:ba:b3:ae:e9:7a:1a:b9:c3:92:9a:d7:af:3b:0b: 1c:af:f8:7f:7f:92:e9:f9:d8:82:b6:c0:21:69:bb: 64:5a:ed:ac:cf:22:ad:7e:73:9f:68:f6:9f:6f:75: 5b:8a:66:b6:a5:5f:21:48:9a:6e:dc:64:be:52:66: 22:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:53:F2:BA:E2:09:20:87:BE:62:1A:BB:C4:80:78:56:A7:A5:AE:5D X509v3 Authority Key Identifier: keyid:31:22:A9:29:2C:C9:30:15:2A:DE:5A:25:84:8C:1B:DC:40:44:C9:02 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/MSKpKSzJMBUq3lolhIwb3EBEyQI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MSKpKSzJMBUq3lolhIwb3EBEyQI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/pVPyuuIJIIe-Yhq7xIB4Vqelrl0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:ce40::/32 Signature Algorithm: sha256WithRSAEncryption 60:f5:53:a7:16:d9:e1:9d:07:a3:67:60:ce:f6:96:05:a4:07: 5a:ce:14:ea:68:63:9e:a6:48:49:9f:84:9d:06:6c:62:03:46: 9d:a9:e1:84:e6:04:64:68:60:2d:ad:3e:e5:18:9f:0f:9a:27: 2f:69:e3:ff:16:ef:dd:ec:91:83:7d:39:80:ad:f7:d2:a0:9e: 04:d4:ad:59:bd:e7:fa:41:3c:6d:7b:4b:77:f5:88:75:aa:95: 06:d9:82:c5:8c:30:71:02:65:31:ac:5c:3c:16:11:f2:82:e8: 67:c6:85:65:07:78:db:8a:c9:9d:da:17:e7:47:5a:1f:ee:92: 9e:f4:ae:c8:7f:61:00:47:1a:2b:1e:c6:6b:85:a1:cc:00:41: 7f:d1:3b:e9:82:73:af:bf:c1:1e:74:bb:bf:e8:27:1f:38:4e: 69:c2:eb:a6:de:bd:f6:e8:13:ff:48:af:38:9c:6d:a7:42:4d: d9:a5:3c:07:1f:da:ab:a0:2f:aa:4a:23:02:99:13:dd:49:28: f6:cf:a4:e4:04:ce:62:e9:1e:76:da:53:16:02:bb:18:32:33: b7:98:f4:31:8d:c2:30:be:0d:5b:b1:d8:69:c4:4a:60:dc:50: 5e:53:a9:84:1b:8f:cd:41:22:55:09:5c:9d:db:8c:ae:40:8f: 53:88:77:98 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgICBBEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzEy MkE5MjkyQ0M5MzAxNTJBREU1QTI1ODQ4QzFCREM0MDQ0QzkwMjAeFw0yNTAyMTAx NDA1MTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE1NTNGMkJBRTIwOTIw ODdCRTYyMUFCQkM0ODA3ODU2QTdBNUFFNUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpyNx5g4Bq0EmLeYQi7Tzt/r9aouQ2sf441CjlIJV39D+XUaCV uIsCY05FqLF7PltUKrtWCjU/SJzdvffl4PrRp9NEGYCoeEcT9j4eHACJLOjZaw2Q WWi8SGaHlpJlfY7Y6gdeT9RH/PDZ70m4lkPUA3qCPrFW5LHnI4x0OtI1rhOD3TV0 x/Oaeb6yG66ooN5I1jeeH2+nHTwblNPVdyjapPE7xWk+aMa4oTO8Mo7q8GqU56Zl 1t7mc1cBGG4Ydfcip3y6s67pehq5w5Ka1687Cxyv+H9/kun52IK2wCFpu2Ra7azP Iq1+c59o9p9vdVuKZralXyFImm7cZL5SZiJ5AgMBAAGjggH1MIIB8TAdBgNVHQ4E FgQUpVPyuuIJIIe+Yhq7xIB4Vqelrl0wHwYDVR0jBBgwFoAUMSKpKSzJMBUq3lol hIwb3EBEyQIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTklNQlVT Q09NL01TS3BLU3pKTUJVcTNsb2xoSXdiM0VCRXlRSS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvTVNLcEtTekpNQlVxM2xvbGhJd2IzRUJFeVFJLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTklNQlVTQ09NL3BWUHl1dUlKSUll LVlocTd4SUI0VnFlbHJsMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAkBs5AMA0GCSqGSIb3DQEBCwUAA4IBAQBg9VOnFtnhnQejZ2DO9pYFpAda zhTqaGOepkhJn4SdBmxiA0adqeGE5gRkaGAtrT7lGJ8PmicvaeP/Fu/d7JGDfTmA rffSoJ4E1K1Zvef6QTxte0t39Yh1qpUG2YLFjDBxAmUxrFw8FhHyguhnxoVlB3jb ismd2hfnR1of7pKe9K7If2EARxorHsZrhaHMAEF/0TvpgnOvv8EedLu/6CcfOE5p wuum3r326BP/SK84nG2nQk3ZpTwHH9qroC+qSiMCmRPdSSj2z6TkBM5i6R522lMW ArsYMjO3mPQxjcIwvg1bsdhpxEpg3FBeU6mEG4/NQSJVCVyd24yuQI9TiHeY -----END CERTIFICATE-----Generated at Sat Apr 5 09:27:20 2025 by rpki-client