$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/iLBaGjF9KA48RBq3WMTmX3_XOwM.roa File: iLBaGjF9KA48RBq3WMTmX3_XOwM.roa (raw, json) Hash identifier: DnDjzJDf6ekRY+LDS/S7HIvJI32HdXmXbvcB+7VOE5o= Subject key identifier: 88:B0:5A:1A:31:7D:28:0E:3C:44:1A:B7:58:C4:E6:5F:7F:D7:3B:03 Certificate issuer: /CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB Certificate serial: 013D Authority key identifier: 35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/iLBaGjF9KA48RBq3WMTmX3_XOwM.roa Signing time: Mon 10 Feb 2025 14:23:57 +0000 ROA not before: Mon 10 Feb 2025 14:23:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 150767 IP address blocks: 2401:5f20::/32 maxlen: 127 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 08:36:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 317 (0x13d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB Validity Not Before: Feb 10 14:23:57 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=88B05A1A317D280E3C441AB758C4E65F7FD73B03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:0c:d0:d7:07:78:35:7c:21:c0:35:c9:41:6c: 19:aa:09:48:ff:c8:d4:05:8a:51:20:b1:fd:53:76: 23:06:95:d5:76:b4:8e:5f:c0:d8:3e:ff:a8:b0:49: 8c:88:50:4c:01:4a:59:df:e2:4c:88:ac:5f:41:43: 94:2a:96:8c:6b:b8:7a:77:74:e4:31:f6:9a:21:85: 0d:2c:da:1b:77:19:5a:7b:18:08:03:81:03:eb:1f: 26:76:76:be:69:ba:da:96:74:99:08:9c:90:b8:a7: 2a:3c:1c:8c:89:0e:41:3f:be:bd:a2:62:23:91:65: 69:94:02:1b:80:b0:9d:b9:e8:10:a9:7e:08:61:67: fe:81:ab:b4:28:c5:70:9b:b3:a7:21:d4:9a:21:5e: 63:77:4f:43:3b:7e:21:42:4c:30:81:83:92:8a:db: 56:a7:60:5c:34:d9:90:20:3d:4a:4e:9c:5a:b5:1f: 72:22:98:a5:d4:d9:1c:ec:74:66:30:f5:4c:e9:17: c7:93:eb:d3:63:ec:af:87:31:da:5e:3f:23:f7:43: 39:09:d9:f0:6d:56:3b:dd:44:d0:41:67:10:01:b6: 31:c6:01:1b:20:cd:df:94:51:ff:fc:b5:d1:32:ac: 55:01:00:1d:6e:30:1e:75:c1:30:90:54:c3:83:52: 03:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:B0:5A:1A:31:7D:28:0E:3C:44:1A:B7:58:C4:E6:5F:7F:D7:3B:03 X509v3 Authority Key Identifier: keyid:35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/iLBaGjF9KA48RBq3WMTmX3_XOwM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:5f20::/32 Signature Algorithm: sha256WithRSAEncryption 57:dd:8f:fb:0e:c0:cf:c1:c6:5d:93:07:11:b4:30:48:72:5c: 11:bd:eb:22:74:1e:4d:5e:66:f2:95:a1:17:c6:14:c8:a4:9e: 31:9c:1c:f3:8b:b4:18:30:33:3e:e2:22:65:b2:8c:da:63:ab: 52:db:db:94:cf:d8:4a:f1:29:6b:cf:35:77:38:db:ac:4d:c9: 6a:1a:34:af:02:60:d6:f0:1c:da:1f:6d:38:14:a5:d1:9d:bb: f7:6c:bf:c6:77:f7:7a:61:11:77:bf:aa:e9:14:49:08:9a:7c: 43:24:64:ce:37:5f:65:fa:c1:77:5a:9a:20:60:85:89:e6:23: 86:62:28:01:5e:90:92:f4:55:23:25:a8:47:7d:c5:f5:4b:92: 0d:6c:54:8b:4e:6b:1c:af:95:76:69:1f:a1:72:34:25:7c:5a: 8f:19:3c:dc:b9:a1:52:84:79:b8:36:82:3f:da:69:c4:51:77: 46:0f:a7:98:a3:68:13:ad:b8:d5:19:d4:21:3f:54:36:de:38: dd:fb:3a:b0:46:7c:23:7b:ac:70:42:4c:91:76:1f:d4:46:0c: c9:98:2d:cf:df:af:30:7f:7b:b7:d8:f5:10:39:77:76:8b:3b: 14:9e:85:21:44:b9:bf:02:e9:40:e1:bf:58:1b:af:9f:91:d2: 61:af:25:e9 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICAT0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzVG RjkwMzA2QjQ3QTdERTAzMDdGMEUzMzVCNERDN0YyN0RFQTRGQjAeFw0yNTAyMTAx NDIzNTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg4QjA1QTFBMzE3RDI4 MEUzQzQ0MUFCNzU4QzRFNjVGN0ZENzNCMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkDNDXB3g1fCHANclBbBmqCUj/yNQFilEgsf1TdiMGldV2tI5f wNg+/6iwSYyIUEwBSlnf4kyIrF9BQ5QqloxruHp3dOQx9pohhQ0s2ht3GVp7GAgD gQPrHyZ2dr5putqWdJkInJC4pyo8HIyJDkE/vr2iYiORZWmUAhuAsJ256BCpfghh Z/6Bq7QoxXCbs6ch1JohXmN3T0M7fiFCTDCBg5KK21anYFw02ZAgPUpOnFq1H3Ii mKXU2RzsdGYw9UzpF8eT69Nj7K+HMdpePyP3QzkJ2fBtVjvdRNBBZxABtjHGARsg zd+UUf/8tdEyrFUBAB1uMB51wTCQVMODUgN5AgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUiLBaGjF9KA48RBq3WMTmX3/XOwMwHwYDVR0jBBgwFoAUNf+QMGtHp94DB/Dj NbTcfyfepPswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJSklD T0xURC9OZi1RTUd0SHA5NERCX0RqTmJUY2Z5ZmVwUHMuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL05mLVFNR3RIcDk0REJfRGpOYlRjZnlmZXBQcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NISUpJQ09MVEQvaUxCYUdqRjlL QTQ4UkJxM1dNVG1YM19YT3dNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQC AAIwBwMFACQBXyAwDQYJKoZIhvcNAQELBQADggEBAFfdj/sOwM/Bxl2TBxG0MEhy XBG96yJ0Hk1eZvKVoRfGFMiknjGcHPOLtBgwMz7iImWyjNpjq1Lb25TP2ErxKWvP NXc426xNyWoaNK8CYNbwHNofbTgUpdGdu/dsv8Z393phEXe/qukUSQiafEMkZM43 X2X6wXdamiBghYnmI4ZiKAFekJL0VSMlqEd9xfVLkg1sVItOaxyvlXZpH6FyNCV8 Wo8ZPNy5oVKEebg2gj/aacRRd0YPp5ijaBOtuNUZ1CE/VDbeON37OrBGfCN7rHBC TJF2H9RGDMmYLc/frzB/e7fY9RA5d3aLOxSehSFEub8C6UDhv1gbr5+R0mGvJek= -----END CERTIFICATE-----Generated at Sat Apr 5 08:29:41 2025 by rpki-client