$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/_r6Y5PJVy6T9n1jtG3RcMEnf5do.roa File: _r6Y5PJVy6T9n1jtG3RcMEnf5do.roa (raw, json) Hash identifier: 2K1HSI8QLHG3zPU/+1CWTgFHYYMDnS/2a9HHz4w+WRE= Subject key identifier: FE:BE:98:E4:F2:55:CB:A4:FD:9F:58:ED:1B:74:5C:30:49:DF:E5:DA Certificate issuer: /CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB Certificate serial: 0141 Authority key identifier: 35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/_r6Y5PJVy6T9n1jtG3RcMEnf5do.roa Signing time: Mon 10 Feb 2025 14:23:58 +0000 ROA not before: Mon 10 Feb 2025 14:23:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 32595 IP address blocks: 36.50.249.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 321 (0x141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB Validity Not Before: Feb 10 14:23:58 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FEBE98E4F255CBA4FD9F58ED1B745C3049DFE5DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:10:83:a4:f6:4d:69:38:38:c7:06:1b:5e:bb: 81:57:f9:d7:0b:35:d1:08:b8:62:8d:5e:4b:64:34: b4:e3:fe:9f:e0:a0:8d:21:9b:a5:0f:27:45:45:09: 93:95:a4:db:f5:af:be:5e:67:68:d6:d2:8f:c5:71: b0:94:27:6f:af:fe:a6:0c:51:5d:20:fb:cd:88:16: 55:96:fc:a9:74:a9:ed:6e:a8:98:a1:42:c7:34:b6: 90:6d:0f:43:94:6e:d4:d9:e7:51:70:00:92:74:29: 31:7c:9d:5a:75:7b:98:cc:c6:ea:54:c4:44:f4:16: 7d:74:ae:f9:ab:c1:c5:d5:91:3c:3f:2b:8d:a1:a1: d1:f5:e0:73:99:0d:48:ef:18:a4:64:f2:80:9b:e6: 06:29:15:d2:00:0a:65:53:41:dd:d4:ff:9b:73:14: 21:f3:03:a5:28:d7:df:3b:dc:6a:9e:00:5b:35:b2: 97:83:94:a0:ee:e4:4d:16:00:22:3c:1b:e2:58:21: db:25:0c:07:ad:c6:83:72:41:af:92:bf:aa:8e:cf: 80:3d:3c:dd:2f:ed:f2:90:7b:3a:2a:2a:47:cb:c6: dd:b4:14:b7:7f:09:bf:9c:86:3f:3a:3f:16:26:3f: 31:44:ae:19:b6:0b:8d:82:4b:ab:5b:c3:cf:c1:d1: 68:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:BE:98:E4:F2:55:CB:A4:FD:9F:58:ED:1B:74:5C:30:49:DF:E5:DA X509v3 Authority Key Identifier: keyid:35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/_r6Y5PJVy6T9n1jtG3RcMEnf5do.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 36.50.249.0/24 Signature Algorithm: sha256WithRSAEncryption 86:f4:e5:7e:d0:35:85:06:4f:c2:84:2c:f5:33:a8:8b:de:c4: b2:0c:05:5d:5d:0b:1e:a4:23:98:cc:bd:13:56:e1:08:20:fb: e0:30:b9:b1:4e:94:c2:64:cd:da:ec:c5:14:23:3e:c6:e1:4b: cf:d6:3b:2d:06:0f:16:77:5f:ec:8a:75:9b:26:77:69:3f:d0: 66:16:1d:7a:63:d1:97:b1:29:ab:47:fc:76:84:49:bf:b1:f3: 36:4d:d3:d1:de:b3:f3:d9:6a:ab:c5:e2:a2:d5:b5:43:c8:08: dc:ab:d7:44:43:31:be:dd:b2:b1:b3:75:5c:9e:57:c1:89:68: e3:eb:ae:ed:19:b6:bc:f0:92:a6:4f:43:dd:7b:60:fd:77:9f: d2:37:16:f6:67:90:77:53:52:1d:66:0e:c4:30:cf:ce:60:03: 61:fe:f6:17:eb:e3:d2:4d:34:8c:86:e8:fe:9e:ef:62:22:1a: ad:ce:e4:18:30:81:4d:7c:ba:81:c6:4b:a2:59:e6:7e:d1:1c: 19:71:24:47:d6:90:5a:8d:02:86:a5:e8:98:f0:74:af:fa:56: ec:a7:42:f3:8e:d8:4c:8d:04:98:e2:b6:10:a2:56:c1:b2:fe: 08:3b:be:fc:db:4b:10:9d:ea:4d:eb:6d:5d:e5:09:5d:35:69: 3f:25:fd:40 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICAUEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzVG RjkwMzA2QjQ3QTdERTAzMDdGMEUzMzVCNERDN0YyN0RFQTRGQjAeFw0yNTAyMTAx NDIzNThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZFQkU5OEU0RjI1NUNC QTRGRDlGNThFRDFCNzQ1QzMwNDlERkU1REEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDzEIOk9k1pODjHBhteu4FX+dcLNdEIuGKNXktkNLTj/p/goI0h m6UPJ0VFCZOVpNv1r75eZ2jW0o/FcbCUJ2+v/qYMUV0g+82IFlWW/Kl0qe1uqJih Qsc0tpBtD0OUbtTZ51FwAJJ0KTF8nVp1e5jMxupUxET0Fn10rvmrwcXVkTw/K42h odH14HOZDUjvGKRk8oCb5gYpFdIACmVTQd3U/5tzFCHzA6Uo19873GqeAFs1speD lKDu5E0WACI8G+JYIdslDAetxoNyQa+Sv6qOz4A9PN0v7fKQezoqKkfLxt20FLd/ Cb+chj86PxYmPzFErhm2C42CS6tbw8/B0WhxAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU/r6Y5PJVy6T9n1jtG3RcMEnf5dowHwYDVR0jBBgwFoAUNf+QMGtHp94DB/Dj NbTcfyfepPswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJSklD T0xURC9OZi1RTUd0SHA5NERCX0RqTmJUY2Z5ZmVwUHMuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL05mLVFNR3RIcDk0REJfRGpOYlRjZnlmZXBQcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NISUpJQ09MVEQvX3I2WTVQSlZ5 NlQ5bjFqdEczUmNNRW5mNWRvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACQy+TANBgkqhkiG9w0BAQsFAAOCAQEAhvTlftA1hQZPwoQs9TOoi97E sgwFXV0LHqQjmMy9E1bhCCD74DC5sU6UwmTN2uzFFCM+xuFLz9Y7LQYPFndf7Ip1 myZ3aT/QZhYdemPRl7Epq0f8doRJv7HzNk3T0d6z89lqq8XiotW1Q8gI3KvXREMx vt2ysbN1XJ5XwYlo4+uu7Rm2vPCSpk9D3Xtg/Xef0jcW9meQd1NSHWYOxDDPzmAD Yf72F+vj0k00jIbo/p7vYiIarc7kGDCBTXy6gcZLolnmftEcGXEkR9aQWo0ChqXo mPB0r/pW7KdC847YTI0EmOK2EKJWwbL+CDu+/NtLEJ3qTettXeUJXTVpPyX9QA== -----END CERTIFICATE-----Generated at Wed Feb 19 22:21:33 2025 by rpki-client