$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/t8lahAwp4Nk5b9dfzURZESBeGB4.roa File: t8lahAwp4Nk5b9dfzURZESBeGB4.roa (raw, json) Hash identifier: vMVeq6Sv2yEV3WWrgSlVpx6fCwBxEZzDTkByVVPoivk= Subject key identifier: B7:C9:5A:84:0C:29:E0:D9:39:6F:D7:5F:CD:44:59:11:20:5E:18:1E Certificate issuer: /CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C Certificate serial: 0D55 Authority key identifier: 00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/t8lahAwp4Nk5b9dfzURZESBeGB4.roa Signing time: Mon 10 Feb 2025 13:44:45 +0000 ROA not before: Mon 10 Feb 2025 13:44:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38047 IP address blocks: 2402:c340:cacb::/48 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 22:07:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3413 (0xd55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C Validity Not Before: Feb 10 13:44:45 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B7C95A840C29E0D9396FD75FCD445911205E181E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:af:c3:7d:95:47:bc:c3:68:5d:c3:71:9e:8c: 12:25:e9:9e:14:08:d8:f5:f5:a9:c9:41:ef:c1:a1: cf:dc:6f:e1:dd:22:73:a3:23:3f:17:2b:a1:40:23: 2f:df:16:52:31:e5:0e:62:8f:d3:9a:89:66:65:84: 84:3e:17:2e:5d:b1:b2:39:06:69:b8:e4:de:60:c6: dd:2c:d4:e9:9b:a9:6d:20:ba:1d:7f:36:e3:4d:fb: f8:06:1f:05:14:a5:1a:d8:87:af:2a:01:e5:f8:e1: dd:33:83:1d:ca:61:0b:ae:83:2c:c5:fd:4c:31:7e: 58:ce:9b:b5:b6:f1:d3:1c:c2:d2:bb:9a:b0:d5:d8: 51:96:2d:2b:a5:d8:c3:8b:9d:9a:98:a8:2c:b3:2c: 64:28:8c:24:be:2c:ee:e2:4a:b4:a2:9b:8f:5b:73: 52:92:c9:27:2c:e2:b3:ea:b0:e2:8f:a8:d2:50:b7: a3:60:a7:47:d4:12:cc:24:5f:0a:a6:f4:37:76:0d: ec:6a:4c:04:12:50:48:f4:08:8f:b9:0b:27:05:ae: 1c:38:37:0e:d9:6e:e2:e4:13:4d:36:56:24:05:cc: 9c:16:77:50:16:40:b0:2b:2e:cf:3a:60:02:e3:e2: f7:ea:59:4d:d8:1e:dd:cf:b3:77:68:c5:f0:d7:b6: 26:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:C9:5A:84:0C:29:E0:D9:39:6F:D7:5F:CD:44:59:11:20:5E:18:1E X509v3 Authority Key Identifier: keyid:00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/t8lahAwp4Nk5b9dfzURZESBeGB4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:c340:cacb::/48 Signature Algorithm: sha256WithRSAEncryption 05:8f:a6:1e:3f:e2:93:70:09:91:fa:df:88:4d:de:a8:6f:60: 46:2f:e4:64:57:dd:84:f5:6c:c9:60:24:51:0c:dd:73:f0:aa: 43:44:c6:79:b0:76:5b:8c:b8:b5:2f:0f:41:bf:58:fb:91:63: cd:c5:4c:65:99:38:70:bb:06:cc:e3:f2:e0:79:6d:7f:74:de: 59:56:13:76:0b:50:01:4f:c5:34:a7:4c:85:e1:f8:95:51:a5: 0d:32:99:64:6c:56:9a:34:15:20:09:16:4b:76:ff:93:68:1b: f6:6b:14:fd:40:6b:da:7a:11:bf:d3:e3:18:46:7e:11:c3:f2: e9:10:1b:e9:cf:5c:c1:49:96:7b:c7:c4:e7:be:c1:a4:d6:b1: dd:63:e0:b8:98:7e:76:f1:e8:ac:89:29:fa:30:62:ef:9a:04: 94:62:d3:a6:9a:cc:b9:88:28:88:7a:c7:bd:26:a1:8f:1e:8a: 2f:42:92:b6:0a:6f:8c:e6:54:30:4d:33:3d:ca:50:5b:df:1a: 6a:61:d1:27:11:94:53:93:0f:3f:7d:a3:ad:f5:c4:2e:8d:8c: 65:5b:cc:7d:9e:05:4c:f9:f1:14:b5:7e:72:4d:ff:cd:c0:ea: c3:2e:52:18:fa:32:52:d6:c2:15:b5:76:ce:10:70:28:fd:c2: ca:e8:c8:ee -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICDVUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDA1 NzJFOTlDNjRFRDY1MkZBODFENTAxRUZBMTZDRjlENDRBRTk5QzAeFw0yNTAyMTAx MzQ0NDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI3Qzk1QTg0MEMyOUUw RDkzOTZGRDc1RkNENDQ1OTExMjA1RTE4MUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDr8N9lUe8w2hdw3GejBIl6Z4UCNj19anJQe/Boc/cb+HdInOj Iz8XK6FAIy/fFlIx5Q5ij9OaiWZlhIQ+Fy5dsbI5Bmm45N5gxt0s1OmbqW0guh1/ NuNN+/gGHwUUpRrYh68qAeX44d0zgx3KYQuugyzF/UwxfljOm7W28dMcwtK7mrDV 2FGWLSul2MOLnZqYqCyzLGQojCS+LO7iSrSim49bc1KSyScs4rPqsOKPqNJQt6Ng p0fUEswkXwqm9Dd2DexqTAQSUEj0CI+5CycFrhw4Nw7ZbuLkE002ViQFzJwWd1AW QLArLs86YALj4vfqWU3YHt3Ps3doxfDXtibNAgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUt8lahAwp4Nk5b9dfzURZESBeGB4wHwYDVR0jBBgwFoAUAFcumcZO1lL6gdUB 76Fs+dRK6ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNI RU5HL0FGY3VtY1pPMWxMNmdkVUI3NkZzLWRSSzZady5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvQUZjdW1jWk8xbEw2Z2RVQjc2RnMtZFJLNlp3LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNIRU5HL3Q4bGFoQXdwNE5r NWI5ZGZ6VVJaRVNCZUdCNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAkAsNAysswDQYJKoZIhvcNAQELBQADggEBAAWPph4/4pNwCZH634hN3qhv YEYv5GRX3YT1bMlgJFEM3XPwqkNExnmwdluMuLUvD0G/WPuRY83FTGWZOHC7Bszj 8uB5bX903llWE3YLUAFPxTSnTIXh+JVRpQ0ymWRsVpo0FSAJFkt2/5NoG/ZrFP1A a9p6Eb/T4xhGfhHD8ukQG+nPXMFJlnvHxOe+waTWsd1j4LiYfnbx6KyJKfowYu+a BJRi06aazLmIKIh6x70moY8eii9CkrYKb4zmVDBNMz3KUFvfGmph0ScRlFOTDz99 o631xC6NjGVbzH2eBUz58RS1fnJN/83A6sMuUhj6MlLWwhW1ds4QcCj9wsroyO4= -----END CERTIFICATE-----Generated at Sat Apr 12 20:22:32 2025 by rpki-client