$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/WPCDryNAk5NkAWpGy7MQmm_WC1I.roa File: WPCDryNAk5NkAWpGy7MQmm_WC1I.roa (raw, json) Hash identifier: hXfnFDjGFgvVMa/VXwbJuZzPNTjNGozvF2aXMOz7Msk= Subject key identifier: 58:F0:83:AF:23:40:93:93:64:01:6A:46:CB:B3:10:9A:6F:D6:0B:52 Certificate issuer: /CN=6A2B1396C142DA6711518875E90C4AEC90B0F5C4 Certificate serial: 02EB Authority key identifier: 6A:2B:13:96:C1:42:DA:67:11:51:88:75:E9:0C:4A:EC:90:B0:F5:C4 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aisTlsFC2mcRUYh16QxK7JCw9cQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/WPCDryNAk5NkAWpGy7MQmm_WC1I.roa Signing time: Mon 10 Feb 2025 14:01:45 +0000 ROA not before: Mon 10 Feb 2025 14:01:45 +0000 ROA not after: Tue 23 Sep 2025 15:30:20 +0000 asID: 152618 IP address blocks: 160.187.100.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/aisTlsFC2mcRUYh16QxK7JCw9cQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 00:38:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 747 (0x2eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A2B1396C142DA6711518875E90C4AEC90B0F5C4 Validity Not Before: Feb 10 14:01:45 2025 GMT Not After : Sep 23 15:30:20 2025 GMT Subject: CN=58F083AF2340939364016A46CBB3109A6FD60B52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ce:6f:9b:f0:30:8b:5d:3e:ba:07:40:fd:b3: 93:ae:89:c7:af:50:41:08:22:c7:65:0f:e1:24:cd: 4b:84:20:f4:82:3c:15:8e:a9:31:e3:21:b9:ab:e5: 91:67:b4:14:6a:74:83:48:6b:26:9e:da:a6:17:bb: 1b:f1:ff:3e:85:99:7f:98:a7:23:c4:f3:95:dd:9d: cc:cb:ed:6e:f6:22:e9:49:ca:9c:68:7f:3b:06:80: aa:eb:9f:b4:f9:39:b7:93:88:50:6b:32:66:ab:31: d0:8a:ff:d2:e9:ca:0f:61:01:aa:9b:a5:26:2d:65: 08:0e:5d:4c:fb:00:ab:8d:a9:18:cd:4b:aa:90:a8: a3:19:f7:b1:27:52:05:d7:42:85:8d:87:2f:a2:13: 02:82:f6:88:5d:d4:44:31:1d:ee:33:dc:ac:ba:45: ae:38:0f:c6:2f:1a:4f:7b:c1:77:b1:e7:5f:c9:60: 1c:03:0b:ec:6b:7c:e0:89:38:69:54:9a:f7:09:69: 8a:99:a6:4f:a2:ef:f7:1a:23:b5:5d:ff:01:42:6c: 78:94:53:5a:ef:68:58:e4:48:97:48:6b:24:f3:13: 78:c0:69:17:36:6b:e0:bc:70:8d:b7:ef:bb:d7:ae: b8:de:ce:af:a5:9d:a6:42:91:a0:e3:f4:e7:60:93: cf:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:F0:83:AF:23:40:93:93:64:01:6A:46:CB:B3:10:9A:6F:D6:0B:52 X509v3 Authority Key Identifier: keyid:6A:2B:13:96:C1:42:DA:67:11:51:88:75:E9:0C:4A:EC:90:B0:F5:C4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aisTlsFC2mcRUYh16QxK7JCw9cQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/WPCDryNAk5NkAWpGy7MQmm_WC1I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.187.100.0/23 Signature Algorithm: sha256WithRSAEncryption 71:c7:4b:04:bd:f6:80:bb:99:6b:b6:35:26:e9:c9:5f:d6:8f: 65:89:0f:8d:13:85:e8:0b:05:91:21:9d:db:1d:b5:0f:31:15: e7:b2:bd:c7:7b:d4:e9:e0:48:96:58:14:ad:88:ed:7a:d1:14: ca:d3:fe:1e:96:3b:1d:35:74:f3:ae:9a:9c:7d:5e:4e:be:57: 66:29:dd:76:f6:2e:75:e7:45:be:f3:0e:8d:b2:da:75:89:51: 86:9e:48:9c:b1:1d:de:35:cb:fa:5d:74:2b:d0:93:d0:29:6d: 0a:b4:68:2a:d8:8b:4b:ad:68:ec:57:46:2d:d4:01:e5:dd:90: ff:d4:45:cd:1e:38:8e:f1:c4:a5:2b:26:92:55:a0:f2:f7:a3: 25:7b:17:8c:50:c0:20:68:5d:9e:b8:ac:18:ab:59:ce:cd:4b: 96:20:eb:67:9e:56:ac:26:1c:58:d6:b9:2b:49:cf:0e:fe:a8: 72:ee:b8:3a:c3:0d:e1:c6:99:70:6d:10:47:d3:6f:b1:8a:83: 20:5e:57:93:6a:13:5e:4d:74:eb:f3:d7:7a:e1:cd:dc:4c:7a: 20:42:f4:48:36:1b:6c:2d:8c:a8:17:6a:22:79:1a:e4:4b:24: 93:11:b2:38:c2:29:f5:d8:78:e5:fc:c0:b4:be:dd:97:d1:c9: 6a:78:21:49 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICAuswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkEy QjEzOTZDMTQyREE2NzExNTE4ODc1RTkwQzRBRUM5MEIwRjVDNDAeFw0yNTAyMTAx NDAxNDVaFw0yNTA5MjMxNTMwMjBaMDMxMTAvBgNVBAMTKDU4RjA4M0FGMjM0MDkz OTM2NDAxNkE0NkNCQjMxMDlBNkZENjBCNTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5zm+b8DCLXT66B0D9s5OuicevUEEIIsdlD+EkzUuEIPSCPBWO qTHjIbmr5ZFntBRqdINIayae2qYXuxvx/z6FmX+YpyPE85XdnczL7W72IulJypxo fzsGgKrrn7T5ObeTiFBrMmarMdCK/9Lpyg9hAaqbpSYtZQgOXUz7AKuNqRjNS6qQ qKMZ97EnUgXXQoWNhy+iEwKC9ohd1EQxHe4z3Ky6Ra44D8YvGk97wXex51/JYBwD C+xrfOCJOGlUmvcJaYqZpk+i7/caI7Vd/wFCbHiUU1rvaFjkSJdIayTzE3jAaRc2 a+C8cI2377vXrrjezq+lnaZCkaDj9Odgk8+bAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUWPCDryNAk5NkAWpGy7MQmm/WC1IwHwYDVR0jBBgwFoAUaisTlsFC2mcRUYh1 6QxK7JCw9cQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTk9UX1RG Tl9DTy9haXNUbHNGQzJtY1JVWWgxNlF4SzdKQ3c5Y1EuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL2Fpc1Rsc0ZDMm1jUlVZaDE2UXhLN0pDdzljUS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL05PVF9URk5fQ08vV1BDRHJ5TkFr NU5rQVdwR3k3TVFtbV9XQzFJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAaC7ZDANBgkqhkiG9w0BAQsFAAOCAQEAccdLBL32gLuZa7Y1JunJX9aP ZYkPjROF6AsFkSGd2x21DzEV57K9x3vU6eBIllgUrYjtetEUytP+HpY7HTV0866a nH1eTr5XZinddvYudedFvvMOjbLadYlRhp5InLEd3jXL+l10K9CT0CltCrRoKtiL S61o7FdGLdQB5d2Q/9RFzR44jvHEpSsmklWg8vejJXsXjFDAIGhdnrisGKtZzs1L liDrZ55WrCYcWNa5K0nPDv6ocu64OsMN4caZcG0QR9NvsYqDIF5Xk2oTXk106/PX euHN3Ex6IEL0SDYbbC2MqBdqInka5EskkxGyOMIp9dh45fzAtL7dl9HJanghSQ== -----END CERTIFICATE-----Generated at Wed Apr 16 00:07:02 2025 by rpki-client