$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/cD1kIflUNymx7DOrFmqrTycESAU.roa File: cD1kIflUNymx7DOrFmqrTycESAU.roa (raw, json) Hash identifier: Mb85K/N4LobSVZKbHMaAeYVAbHiPsbztUbhncsnEDdw= Subject key identifier: 70:3D:64:21:F9:54:37:29:B1:EC:33:AB:16:6A:AB:4F:27:04:48:05 Certificate issuer: /CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C Certificate serial: 0D57 Authority key identifier: 00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/cD1kIflUNymx7DOrFmqrTycESAU.roa Signing time: Mon 10 Feb 2025 13:44:45 +0000 ROA not before: Mon 10 Feb 2025 13:44:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38047 IP address blocks: 2402:c340:55::/48 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 22:07:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3415 (0xd57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C Validity Not Before: Feb 10 13:44:45 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=703D6421F9543729B1EC33AB166AAB4F27044805 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:1b:75:45:e5:3f:21:d7:19:d4:38:73:4e:36: e6:8b:db:89:24:9c:9e:1e:76:b9:1b:92:f7:e1:bf: 36:90:64:70:58:3c:fc:a7:5f:de:d0:ee:fa:80:1e: e3:01:15:4f:6e:15:1c:b1:65:be:8a:db:be:e7:96: 8d:70:09:b1:49:26:9a:9e:b8:9d:54:26:2f:d2:88: cf:18:5e:15:f7:02:f2:f2:dc:dc:01:8f:d8:40:a0: 18:56:ea:c4:b6:ee:48:7c:b1:45:7d:12:c3:65:23: e5:81:91:63:33:be:28:f8:ff:b8:49:40:9a:d9:33: 0c:6b:7f:89:e0:d0:a1:ee:c6:bf:fd:5d:53:83:d8: a2:43:5f:26:79:fa:38:5f:c8:ed:a5:1d:b1:a9:d7: 62:11:85:72:06:99:fb:e3:dd:c5:0f:af:b4:20:b6: 3d:5e:37:de:83:70:a3:2e:42:db:83:f2:ca:86:ca: 57:54:fe:a1:09:0b:e8:36:2e:90:2d:53:82:5b:a2: 6b:7a:01:8c:b2:c2:e5:c2:96:d4:02:35:a8:6f:98: 74:73:e0:cc:41:c0:eb:bd:09:e7:37:c6:ce:97:d9: 5f:ad:7c:79:25:07:7e:2c:25:0a:7c:cc:64:21:1d: 69:83:c3:2b:e7:77:1c:bf:35:9b:38:af:e2:42:45: e9:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:3D:64:21:F9:54:37:29:B1:EC:33:AB:16:6A:AB:4F:27:04:48:05 X509v3 Authority Key Identifier: keyid:00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/cD1kIflUNymx7DOrFmqrTycESAU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:c340:55::/48 Signature Algorithm: sha256WithRSAEncryption 8f:b5:e7:e4:80:01:2f:47:96:b2:12:be:f9:5c:71:38:da:92: 91:48:34:dc:88:8c:b2:f7:20:5f:6a:28:19:a2:14:d9:66:17: 3e:89:7f:a3:de:77:f5:c2:5b:cb:45:9a:d5:37:33:3a:c1:01: 27:47:0a:e6:b9:58:52:74:29:f0:6d:ad:68:f4:fe:ef:f9:de: 00:68:69:9a:0a:02:ad:26:d1:e3:41:bc:79:5f:75:e3:38:ea: 19:4f:2b:c2:3e:06:e5:ea:d0:a8:15:68:9c:5a:74:f9:06:34: 48:02:dc:3f:90:90:8a:e2:bf:de:ff:ad:3c:27:56:d7:14:01: 4e:f6:19:9b:d0:c8:d1:8d:23:ab:82:c9:e3:23:c3:56:33:2d: 90:09:97:b0:67:61:52:06:b6:a7:e0:03:4a:30:e0:08:01:8e: 37:9c:83:20:2a:15:8a:ea:28:a4:26:63:1b:81:19:c0:e6:5b: 6f:12:81:1e:75:71:62:23:62:08:56:4b:b6:ea:3a:21:02:dd: 9c:4d:2c:d5:ee:cf:6a:8b:de:c4:bb:d2:a2:b3:93:c1:d6:48: 56:58:74:d7:94:5f:3b:ad:71:18:ba:ec:13:fe:f3:17:9f:a1: 02:73:32:60:f5:e4:59:44:b5:0c:dd:9b:56:bf:a8:ed:fa:08: 51:55:2b:73 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICDVcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDA1 NzJFOTlDNjRFRDY1MkZBODFENTAxRUZBMTZDRjlENDRBRTk5QzAeFw0yNTAyMTAx MzQ0NDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDcwM0Q2NDIxRjk1NDM3 MjlCMUVDMzNBQjE2NkFBQjRGMjcwNDQ4MDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXG3VF5T8h1xnUOHNONuaL24kknJ4edrkbkvfhvzaQZHBYPPyn X97Q7vqAHuMBFU9uFRyxZb6K277nlo1wCbFJJpqeuJ1UJi/SiM8YXhX3AvLy3NwB j9hAoBhW6sS27kh8sUV9EsNlI+WBkWMzvij4/7hJQJrZMwxrf4ng0KHuxr/9XVOD 2KJDXyZ5+jhfyO2lHbGp12IRhXIGmfvj3cUPr7Qgtj1eN96DcKMuQtuD8sqGyldU /qEJC+g2LpAtU4Jbomt6AYyywuXCltQCNahvmHRz4MxBwOu9Cec3xs6X2V+tfHkl B34sJQp8zGQhHWmDwyvndxy/NZs4r+JCRekfAgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUcD1kIflUNymx7DOrFmqrTycESAUwHwYDVR0jBBgwFoAUAFcumcZO1lL6gdUB 76Fs+dRK6ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNI RU5HL0FGY3VtY1pPMWxMNmdkVUI3NkZzLWRSSzZady5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvQUZjdW1jWk8xbEw2Z2RVQjc2RnMtZFJLNlp3LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNIRU5HL2NEMWtJZmxVTnlt eDdET3JGbXFyVHljRVNBVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAkAsNAAFUwDQYJKoZIhvcNAQELBQADggEBAI+15+SAAS9HlrISvvlccTja kpFINNyIjLL3IF9qKBmiFNlmFz6Jf6Ped/XCW8tFmtU3MzrBASdHCua5WFJ0KfBt rWj0/u/53gBoaZoKAq0m0eNBvHlfdeM46hlPK8I+BuXq0KgVaJxadPkGNEgC3D+Q kIriv97/rTwnVtcUAU72GZvQyNGNI6uCyeMjw1YzLZAJl7BnYVIGtqfgA0ow4AgB jjecgyAqFYrqKKQmYxuBGcDmW28SgR51cWIjYghWS7bqOiEC3ZxNLNXuz2qL3sS7 0qKzk8HWSFZYdNeUXzutcRi67BP+8xefoQJzMmD15FlEtQzdm1a/qO36CFFVK3M= -----END CERTIFICATE-----Generated at Sat Apr 12 20:22:32 2025 by rpki-client