$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/wJSE7aBk5x4r8N95KBFgcyRFujg.roa File: wJSE7aBk5x4r8N95KBFgcyRFujg.roa (raw, json) Hash identifier: vyNR9Q2Z5lcK5ddvUcQ9fXCG63Lwr8eqdwTKg4rbZnw= Subject key identifier: C0:94:84:ED:A0:64:E7:1E:2B:F0:DF:79:28:11:60:73:24:45:BA:38 Certificate issuer: /CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C Certificate serial: 0D5B Authority key identifier: 00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/wJSE7aBk5x4r8N95KBFgcyRFujg.roa Signing time: Mon 10 Feb 2025 13:44:46 +0000 ROA not before: Mon 10 Feb 2025 13:44:46 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38047 IP address blocks: 2402:c340:54::/48 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 22:07:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3419 (0xd5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C Validity Not Before: Feb 10 13:44:46 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C09484EDA064E71E2BF0DF79281160732445BA38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:11:5f:9e:e3:34:17:0f:19:04:d4:f7:34:82: ad:ce:17:a2:2f:ec:17:12:19:42:24:fd:6f:fa:4c: 61:80:bc:4d:d6:f7:08:90:1e:a3:ec:cf:5f:54:94: a1:a8:1c:84:20:76:46:e3:60:98:ac:52:53:36:e2: 70:71:75:83:f2:bc:ed:5c:54:3e:c8:93:11:e5:20: 7f:db:9e:a8:08:ea:54:b7:11:91:e2:55:24:4f:bc: 8c:cf:37:9a:71:4e:8b:48:76:06:cb:c0:2b:ac:7e: c0:31:de:1c:a2:f0:cf:57:61:b8:69:4d:1c:35:35: 53:8c:e6:81:b7:69:8c:1a:a4:82:c6:15:a9:f4:4c: 81:b2:e5:35:b4:c4:b7:12:22:a0:4e:a9:45:af:ae: 84:94:61:9e:ed:e4:09:b1:66:c3:81:31:9b:00:3a: 24:ed:8c:2a:84:1c:c5:6f:05:83:51:d3:50:5e:29: db:14:05:11:f2:6b:33:11:74:cc:15:31:5f:8c:92: 73:0a:38:7d:2c:42:63:fe:b8:0d:36:f3:ed:09:86: cc:43:8f:dd:21:cb:cf:5e:f5:cd:a3:50:e4:41:c2: c8:13:2c:4e:43:ee:75:2a:ab:28:67:f7:26:cb:f1: 79:ab:95:9c:6f:ca:b8:75:62:62:d1:10:7b:75:69: 6c:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:94:84:ED:A0:64:E7:1E:2B:F0:DF:79:28:11:60:73:24:45:BA:38 X509v3 Authority Key Identifier: keyid:00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/wJSE7aBk5x4r8N95KBFgcyRFujg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:c340:54::/48 Signature Algorithm: sha256WithRSAEncryption 1a:2f:10:b9:5e:50:00:11:14:d0:f5:07:d9:f2:50:e4:02:de: af:52:e3:73:7d:9b:3e:5e:9c:12:4d:57:3d:d4:e4:87:71:d5: 10:36:3a:f6:7b:81:20:18:1e:10:b0:27:c7:52:3a:8e:d3:26: eb:79:78:6b:af:09:ac:9f:60:74:47:18:a1:dc:8e:0f:2b:3f: 41:b6:d1:16:37:63:8f:91:f9:31:9b:59:28:ea:00:e5:72:d7: ce:4a:c9:6a:f7:14:6d:b8:19:f0:c6:35:1c:1f:a7:3a:77:ce: c6:4e:ea:da:3e:9a:65:24:8a:33:5c:cd:36:3e:bc:27:77:32: 6b:ec:6f:a2:bb:8b:de:7b:c1:f8:e3:17:b0:19:4d:68:5b:de: 9b:8b:38:3d:2b:f6:09:e7:21:76:c1:f3:be:0d:28:c7:02:1c: 9a:d2:fd:4c:5e:74:5d:83:4a:c8:bb:98:6f:97:d7:65:7c:b9: 70:65:84:3a:c7:91:4f:36:19:1a:6a:02:34:38:86:32:86:8b: ee:a3:a3:41:51:85:e7:8a:f6:05:6a:41:00:06:1d:82:b1:f3: 61:f6:7d:80:06:06:e5:5c:0f:74:ee:83:83:73:0c:c8:f6:bb: fb:98:af:ac:6a:c6:6d:4c:d3:74:7c:c0:cc:93:a9:82:2a:f3: 0b:ca:c8:a8 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICDVswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDA1 NzJFOTlDNjRFRDY1MkZBODFENTAxRUZBMTZDRjlENDRBRTk5QzAeFw0yNTAyMTAx MzQ0NDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMwOTQ4NEVEQTA2NEU3 MUUyQkYwREY3OTI4MTE2MDczMjQ0NUJBMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVEV+e4zQXDxkE1Pc0gq3OF6Iv7BcSGUIk/W/6TGGAvE3W9wiQ HqPsz19UlKGoHIQgdkbjYJisUlM24nBxdYPyvO1cVD7IkxHlIH/bnqgI6lS3EZHi VSRPvIzPN5pxTotIdgbLwCusfsAx3hyi8M9XYbhpTRw1NVOM5oG3aYwapILGFan0 TIGy5TW0xLcSIqBOqUWvroSUYZ7t5AmxZsOBMZsAOiTtjCqEHMVvBYNR01BeKdsU BRHyazMRdMwVMV+MknMKOH0sQmP+uA028+0JhsxDj90hy89e9c2jUORBwsgTLE5D 7nUqqyhn9ybL8XmrlZxvyrh1YmLREHt1aWxTAgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUwJSE7aBk5x4r8N95KBFgcyRFujgwHwYDVR0jBBgwFoAUAFcumcZO1lL6gdUB 76Fs+dRK6ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNI RU5HL0FGY3VtY1pPMWxMNmdkVUI3NkZzLWRSSzZady5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvQUZjdW1jWk8xbEw2Z2RVQjc2RnMtZFJLNlp3LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNIRU5HL3dKU0U3YUJrNXg0 cjhOOTVLQkZnY3lSRnVqZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAkAsNAAFQwDQYJKoZIhvcNAQELBQADggEBABovELleUAARFND1B9nyUOQC 3q9S43N9mz5enBJNVz3U5Idx1RA2OvZ7gSAYHhCwJ8dSOo7TJut5eGuvCayfYHRH GKHcjg8rP0G20RY3Y4+R+TGbWSjqAOVy185KyWr3FG24GfDGNRwfpzp3zsZO6to+ mmUkijNczTY+vCd3Mmvsb6K7i957wfjjF7AZTWhb3puLOD0r9gnnIXbB874NKMcC HJrS/UxedF2DSsi7mG+X12V8uXBlhDrHkU82GRpqAjQ4hjKGi+6jo0FRheeK9gVq QQAGHYKx82H2fYAGBuVcD3Tug4NzDMj2u/uYr6xqxm1M03R8wMyTqYIq8wvKyKg= -----END CERTIFICATE-----Generated at Sat Apr 12 20:22:31 2025 by rpki-client