$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/iQxvbObwXhnrCBbkCdiBDjZQE_0.roa File: iQxvbObwXhnrCBbkCdiBDjZQE_0.roa (raw, json) Hash identifier: mLwml0lj+IbDSeRGbp7ZoMNYWsuaYIhBQBuJ7JGw3dg= Subject key identifier: 89:0C:6F:6C:E6:F0:5E:19:EB:08:16:E4:09:D8:81:0E:36:50:13:FD Certificate issuer: /CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C Certificate serial: 0D5C Authority key identifier: 00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/iQxvbObwXhnrCBbkCdiBDjZQE_0.roa Signing time: Mon 10 Feb 2025 13:44:46 +0000 ROA not before: Mon 10 Feb 2025 13:44:46 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38047 IP address blocks: 2402:c340:cdef::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 22:07:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3420 (0xd5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C Validity Not Before: Feb 10 13:44:46 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=890C6F6CE6F05E19EB0816E409D8810E365013FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:30:a7:b3:ff:d3:51:80:11:e2:43:cc:80:14: a7:65:f8:08:e1:98:63:05:3d:15:cf:8d:3c:3f:57: 0e:dc:49:30:dd:c8:0f:1f:59:f1:e3:d5:19:80:5f: e3:89:8e:6d:80:0d:ec:40:81:c3:7e:a5:c5:51:6f: 53:77:28:a4:c9:a4:22:fb:98:11:4b:17:5a:35:24: be:f9:04:53:f1:cb:0b:25:89:27:54:98:80:95:68: 5e:e7:43:80:18:be:6b:cd:b8:00:f2:a9:25:57:72: 86:81:54:0c:52:6c:f3:05:d3:80:e9:22:4e:ad:ef: 93:80:d6:cf:e1:ef:52:ea:39:f9:fa:50:65:21:8f: d3:45:51:82:48:54:37:71:07:20:ac:d1:1c:12:91: dd:ec:f7:6a:0e:8a:a5:3b:12:0c:c4:c0:ad:7c:19: f4:5f:6f:b1:cf:89:2f:ab:6f:3a:2d:e5:af:a5:7b: fe:00:94:de:62:cb:4a:ca:7c:32:42:f9:36:db:7e: b7:f3:9d:8c:3c:2f:7a:a5:a9:cb:a3:75:d4:53:e0: 7e:d0:10:9d:94:ac:34:fb:c9:e9:2a:d9:bc:ea:0d: 17:2d:75:d4:40:61:40:92:f1:0d:63:8d:86:7a:dc: 1e:17:2b:a8:2e:f9:1b:60:f7:91:a3:6b:c6:f8:65: 74:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:0C:6F:6C:E6:F0:5E:19:EB:08:16:E4:09:D8:81:0E:36:50:13:FD X509v3 Authority Key Identifier: keyid:00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/iQxvbObwXhnrCBbkCdiBDjZQE_0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:c340:cdef::/48 Signature Algorithm: sha256WithRSAEncryption 2f:b7:23:5c:b0:e8:d6:55:cd:d0:e8:51:f8:44:05:b1:9b:87: e2:55:64:26:db:de:bb:59:15:0f:d6:1f:a6:8a:5e:b1:91:12: d8:d1:b8:e8:46:94:3c:1e:4b:11:d4:0b:0a:55:dd:d4:a4:4d: 84:83:fd:7a:de:c1:6d:8c:e2:8b:9f:e4:2f:de:01:f3:41:55: 31:26:82:d7:42:8f:56:2b:32:53:ca:05:0e:71:5b:95:7f:3f: 85:ba:31:5d:b6:cc:a3:51:ca:9b:af:2a:d9:b5:be:e0:ee:43: b1:d9:a5:b5:41:a6:64:c0:9f:b9:3e:65:d4:96:8b:27:43:f7: 16:a9:1d:0b:38:3b:db:b2:e2:d1:a9:49:3b:d1:80:11:d7:93: c7:c5:88:1f:29:5c:72:2a:b7:53:4a:f6:92:8c:e0:ce:a6:8b: 9f:8c:93:69:8e:25:8d:0a:07:2d:fd:61:09:f3:19:de:cc:b4: 3a:67:6c:15:15:b3:5d:05:c7:61:b4:1e:65:b6:a9:69:a7:f8: 02:38:04:fa:82:7c:ad:2c:f1:f9:a3:73:46:f8:9b:3c:90:33: 03:89:4c:9f:1c:9f:e1:14:e6:f8:98:ab:28:23:60:4b:0d:dd: df:1e:5d:cc:0f:02:2e:9b:87:13:b6:89:6e:a4:4c:be:0d:2a: 86:72:de:49 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICDVwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDA1 NzJFOTlDNjRFRDY1MkZBODFENTAxRUZBMTZDRjlENDRBRTk5QzAeFw0yNTAyMTAx MzQ0NDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg5MEM2RjZDRTZGMDVF MTlFQjA4MTZFNDA5RDg4MTBFMzY1MDEzRkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeMKez/9NRgBHiQ8yAFKdl+AjhmGMFPRXPjTw/Vw7cSTDdyA8f WfHj1RmAX+OJjm2ADexAgcN+pcVRb1N3KKTJpCL7mBFLF1o1JL75BFPxywsliSdU mICVaF7nQ4AYvmvNuADyqSVXcoaBVAxSbPMF04DpIk6t75OA1s/h71LqOfn6UGUh j9NFUYJIVDdxByCs0RwSkd3s92oOiqU7EgzEwK18GfRfb7HPiS+rbzot5a+le/4A lN5iy0rKfDJC+TbbfrfznYw8L3qlqcujddRT4H7QEJ2UrDT7yekq2bzqDRctddRA YUCS8Q1jjYZ63B4XK6gu+Rtg95Gja8b4ZXT9AgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUiQxvbObwXhnrCBbkCdiBDjZQE/0wHwYDVR0jBBgwFoAUAFcumcZO1lL6gdUB 76Fs+dRK6ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNI RU5HL0FGY3VtY1pPMWxMNmdkVUI3NkZzLWRSSzZady5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvQUZjdW1jWk8xbEw2Z2RVQjc2RnMtZFJLNlp3LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNIRU5HL2lReHZiT2J3WGhu ckNCYmtDZGlCRGpaUUVfMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAkAsNAze8wDQYJKoZIhvcNAQELBQADggEBAC+3I1yw6NZVzdDoUfhEBbGb h+JVZCbb3rtZFQ/WH6aKXrGREtjRuOhGlDweSxHUCwpV3dSkTYSD/XrewW2M4ouf 5C/eAfNBVTEmgtdCj1YrMlPKBQ5xW5V/P4W6MV22zKNRypuvKtm1vuDuQ7HZpbVB pmTAn7k+ZdSWiydD9xapHQs4O9uy4tGpSTvRgBHXk8fFiB8pXHIqt1NK9pKM4M6m i5+Mk2mOJY0KBy39YQnzGd7MtDpnbBUVs10Fx2G0HmW2qWmn+AI4BPqCfK0s8fmj c0b4mzyQMwOJTJ8cn+EU5viYqygjYEsN3d8eXcwPAi6bhxO2iW6kTL4NKoZy3kk= -----END CERTIFICATE-----Generated at Sat Apr 12 20:22:31 2025 by rpki-client