$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/loCtoeZABwiy1G9MTfHiqDJWSfA.roa File: loCtoeZABwiy1G9MTfHiqDJWSfA.roa (raw, json) Hash identifier: 8G7m8McWjPyYUNV0ByWRZ7Nm+FmTd1IF/5pv5mH6tV4= Subject key identifier: 96:80:AD:A1:E6:40:07:08:B2:D4:6F:4C:4D:F1:E2:A8:32:56:49:F0 Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Certificate serial: 0D56 Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/loCtoeZABwiy1G9MTfHiqDJWSfA.roa Signing time: Mon 10 Feb 2025 14:12:16 +0000 ROA not before: Mon 10 Feb 2025 14:12:16 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 150.129.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 08:37:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3414 (0xd56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Validity Not Before: Feb 10 14:12:16 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9680ADA1E6400708B2D46F4C4DF1E2A8325649F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:d9:f0:12:e4:1a:f5:47:18:b1:ae:af:d7:ce: 5e:c2:74:15:a2:b3:89:fa:81:9b:11:95:4c:2f:f9: 1a:5d:8a:b2:85:8d:a4:c5:81:a5:2a:b8:c0:e5:ec: c0:33:f4:20:4d:d2:cf:63:dd:ee:c3:98:1b:93:cb: 82:11:10:ce:6d:de:9e:89:d1:e4:8c:97:5e:ac:f6: 1e:2e:44:da:3e:15:ee:a0:0b:b6:01:de:70:0b:4f: 5a:bf:67:58:f1:50:f1:4f:3d:d6:64:a1:32:74:79: 53:3e:fe:7c:15:74:70:f4:57:dc:9f:3a:d4:38:19: 2e:93:93:45:fa:a3:8c:a3:2e:03:c4:f7:ec:db:57: c6:84:80:ff:76:57:d7:d8:68:37:b6:7e:88:0f:52: 50:25:59:2c:15:17:4b:78:90:54:2d:b9:5d:e7:c3: 72:55:bd:ea:c5:0f:4d:c9:12:a8:de:30:d2:23:14: 5d:53:d8:6b:c7:27:ef:e6:d8:c4:aa:16:95:6c:bb: 0c:0a:63:a8:77:2c:dc:a3:24:9d:74:46:67:01:19: b5:95:fe:63:ed:c0:6a:ea:93:bc:b8:44:8e:1a:ce: d2:df:f4:e9:b3:da:01:b3:94:80:ef:a2:48:a7:8c: c8:a2:85:7e:5a:34:bb:89:7c:46:61:0b:97:72:88: 87:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:80:AD:A1:E6:40:07:08:B2:D4:6F:4C:4D:F1:E2:A8:32:56:49:F0 X509v3 Authority Key Identifier: keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/loCtoeZABwiy1G9MTfHiqDJWSfA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.129.228.0/22 Signature Algorithm: sha256WithRSAEncryption 32:fe:e2:36:ab:ef:3c:3e:fb:27:87:92:26:87:d4:1e:19:21: 56:3f:6a:80:40:12:0f:fe:80:d2:d7:80:14:42:2a:b7:65:c2: 1e:ab:fc:28:fe:f0:f2:65:ab:7a:9a:53:89:f4:04:35:f9:07: 51:06:93:ed:7e:8b:25:4c:79:0e:64:51:44:93:dc:98:93:d3: 8b:52:4d:4f:81:90:26:9c:20:73:37:24:63:0a:84:3f:e3:c8: f2:10:7d:dc:f9:6a:8c:64:b4:1d:a3:e4:24:af:b7:be:36:79: 35:c5:25:02:3e:a2:70:90:2e:80:6d:94:fa:f3:f2:c6:0b:b4: 3a:41:70:18:f6:8f:74:a2:29:21:ab:9b:90:d7:86:15:7b:ad: 09:cb:c4:0f:2f:d7:20:72:f3:80:63:05:37:9b:ca:5a:bb:74: fd:c9:31:7d:78:ae:5c:91:17:d9:96:9e:6d:35:c0:8a:f1:8e: f4:4e:56:01:02:81:44:fa:6b:3f:79:11:2d:a6:de:e0:2b:c2: fc:5c:7c:a4:2e:71:03:cc:5f:74:d0:5f:56:6f:3d:3f:63:e7: 92:d6:d6:2c:c8:50:f9:d2:ec:73:99:92:38:30:ef:b1:26:ee: 7d:75:1c:d7:78:56:e3:63:a7:ec:87:ca:4a:8a:d1:2b:26:ad: b4:af:f2:7e -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDVYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yNTAyMTAx NDEyMTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk2ODBBREExRTY0MDA3 MDhCMkQ0NkY0QzRERjFFMkE4MzI1NjQ5RjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDf2fAS5Br1Rxixrq/Xzl7CdBWis4n6gZsRlUwv+RpdirKFjaTF gaUquMDl7MAz9CBN0s9j3e7DmBuTy4IREM5t3p6J0eSMl16s9h4uRNo+Fe6gC7YB 3nALT1q/Z1jxUPFPPdZkoTJ0eVM+/nwVdHD0V9yfOtQ4GS6Tk0X6o4yjLgPE9+zb V8aEgP92V9fYaDe2fogPUlAlWSwVF0t4kFQtuV3nw3JVverFD03JEqjeMNIjFF1T 2GvHJ+/m2MSqFpVsuwwKY6h3LNyjJJ10RmcBGbWV/mPtwGrqk7y4RI4aztLf9Omz 2gGzlIDvokinjMiihX5aNLuJfEZhC5dyiIejAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUloCtoeZABwiy1G9MTfHiqDJWSfAwHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+ q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS9sb0N0b2VaQUJ3aXkxRzlNVGZI aXFESldTZkEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCloHk MA0GCSqGSIb3DQEBCwUAA4IBAQAy/uI2q+88Pvsnh5Imh9QeGSFWP2qAQBIP/oDS 14AUQiq3ZcIeq/wo/vDyZat6mlOJ9AQ1+QdRBpPtfoslTHkOZFFEk9yYk9OLUk1P gZAmnCBzNyRjCoQ/48jyEH3c+WqMZLQdo+Qkr7e+Nnk1xSUCPqJwkC6AbZT68/LG C7Q6QXAY9o90oikhq5uQ14YVe60Jy8QPL9cgcvOAYwU3m8pau3T9yTF9eK5ckRfZ lp5tNcCK8Y70TlYBAoFE+ms/eREtpt7gK8L8XHykLnEDzF900F9Wbz0/Y+eS1tYs yFD50uxzmZI4MO+xJu59dRzXeFbjY6fsh8pKitErJq20r/J+ -----END CERTIFICATE-----Generated at Mon Apr 7 07:56:54 2025 by rpki-client