$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIMPLECLOU/vZFMBRVXGft1LatWP_81I4n0Y6s.roa File: vZFMBRVXGft1LatWP_81I4n0Y6s.roa (raw, json) Hash identifier: t+gxPWMvhM2f0Adv0FQXyW8w4pZFQLIwliANUNcES1o= Subject key identifier: BD:91:4C:05:15:57:19:FB:75:2D:AB:56:3F:FF:35:23:89:F4:63:AB Certificate issuer: /CN=454C2D00C72E2B53B427FDF45A93BC567E4040E2 Certificate serial: EE Authority key identifier: 45:4C:2D:00:C7:2E:2B:53:B4:27:FD:F4:5A:93:BC:56:7E:40:40:E2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RUwtAMcuK1O0J_30WpO8Vn5AQOI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLECLOU/vZFMBRVXGft1LatWP_81I4n0Y6s.roa Signing time: Mon 10 Feb 2025 13:45:49 +0000 ROA not before: Mon 10 Feb 2025 13:45:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9917 IP address blocks: 157.20.108.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLECLOU/RUwtAMcuK1O0J_30WpO8Vn5AQOI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLECLOU/RUwtAMcuK1O0J_30WpO8Vn5AQOI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RUwtAMcuK1O0J_30WpO8Vn5AQOI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 10:06:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=454C2D00C72E2B53B427FDF45A93BC567E4040E2 Validity Not Before: Feb 10 13:45:49 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BD914C05155719FB752DAB563FFF352389F463AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:fa:1a:7d:bd:7a:96:74:e6:aa:0c:39:b1:20: 19:47:3d:6c:cc:80:52:56:80:c6:d5:f4:90:16:50: 37:67:c8:24:77:b8:c1:00:79:55:c8:f9:57:3a:ea: 1b:d1:c4:b1:f5:61:8a:0c:90:ec:7b:f4:a6:5f:0c: f9:aa:db:c6:78:c0:7e:22:a4:60:4f:bf:75:b3:61: a9:4f:44:c9:dd:af:36:e5:54:ff:28:f3:39:c7:6c: a1:f3:eb:e7:b5:d1:f5:27:a5:90:7d:b8:52:ff:c0: 53:61:fe:0f:09:78:9a:14:70:11:93:d6:70:a8:b3: 12:9b:83:d8:b2:7a:62:ec:c7:64:9f:cd:e6:b2:a7: 43:37:56:52:79:c3:b7:28:8e:18:1c:2a:00:48:4a: 36:67:de:19:f4:01:5f:8a:d3:57:ad:98:01:14:d7: cf:1b:92:12:89:bf:f7:bf:85:93:17:af:f1:a2:9b: ad:da:01:05:d0:91:31:26:07:f2:41:30:d0:ed:41: 56:68:a6:98:ac:62:df:4a:39:2c:40:65:3d:c7:3d: 1a:bd:b8:fb:fb:b3:5f:13:d0:6a:c0:6e:06:07:63: 21:fb:c1:37:e2:db:4e:c6:57:ea:05:5b:f0:a0:7f: ba:3a:70:35:15:a0:b2:60:52:63:dc:1c:4b:92:74: cc:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:91:4C:05:15:57:19:FB:75:2D:AB:56:3F:FF:35:23:89:F4:63:AB X509v3 Authority Key Identifier: keyid:45:4C:2D:00:C7:2E:2B:53:B4:27:FD:F4:5A:93:BC:56:7E:40:40:E2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLECLOU/RUwtAMcuK1O0J_30WpO8Vn5AQOI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RUwtAMcuK1O0J_30WpO8Vn5AQOI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLECLOU/vZFMBRVXGft1LatWP_81I4n0Y6s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.108.0/23 Signature Algorithm: sha256WithRSAEncryption 27:ce:c6:6c:66:a4:59:5a:c9:cb:a7:09:f5:a5:2b:0c:1f:8b: 90:2e:65:33:45:48:f1:ec:26:7e:2d:96:06:99:4f:01:3f:e2: 39:1d:b4:12:8c:3d:3c:10:49:28:a4:b5:38:b8:98:e7:94:94: 2e:bb:1f:a4:c7:ca:bf:aa:95:76:66:08:e1:58:be:48:c0:f8: 0b:38:66:0d:fc:55:ef:bc:0f:e8:06:94:5b:17:81:18:72:d5: e5:d4:f7:95:53:18:bf:15:c2:e3:ae:d8:5f:97:32:41:d8:58: e4:54:64:c9:0e:f0:3b:fe:ae:e5:c8:1f:ee:01:6b:ca:b8:4b: 56:99:14:bf:7d:1c:84:fb:01:13:81:1d:d5:16:93:83:77:d9: 7e:33:2a:9e:fc:3b:3c:e1:a7:83:ad:c5:ae:04:98:6f:07:3e: d1:61:6d:59:11:90:f5:76:45:e5:a9:1f:30:f1:c0:7b:01:52: 4d:a7:fa:a2:22:92:f5:4b:ef:fd:bb:b8:3c:3a:76:6d:67:34: fb:56:43:cf:e6:e7:96:bd:90:16:9b:7c:6e:c2:ee:ef:22:bb: 82:64:3a:a9:e9:a7:79:50:83:62:34:f3:3c:44:e4:52:98:32: 4c:78:91:f1:5b:69:9e:c7:e8:5f:e5:c4:f8:63:cc:d8:f2:14: 0a:b6:31:ea -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU0 QzJEMDBDNzJFMkI1M0I0MjdGREY0NUE5M0JDNTY3RTQwNDBFMjAeFw0yNTAyMTAx MzQ1NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJEOTE0QzA1MTU1NzE5 RkI3NTJEQUI1NjNGRkYzNTIzODlGNDYzQUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDu+hp9vXqWdOaqDDmxIBlHPWzMgFJWgMbV9JAWUDdnyCR3uMEA eVXI+Vc66hvRxLH1YYoMkOx79KZfDPmq28Z4wH4ipGBPv3WzYalPRMndrzblVP8o 8znHbKHz6+e10fUnpZB9uFL/wFNh/g8JeJoUcBGT1nCosxKbg9iyemLsx2Sfzeay p0M3VlJ5w7cojhgcKgBISjZn3hn0AV+K01etmAEU188bkhKJv/e/hZMXr/Gim63a AQXQkTEmB/JBMNDtQVZoppisYt9KOSxAZT3HPRq9uPv7s18T0GrAbgYHYyH7wTfi 207GV+oFW/Cgf7o6cDUVoLJgUmPcHEuSdMzhAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUvZFMBRVXGft1LatWP/81I4n0Y6swHwYDVR0jBBgwFoAURUwtAMcuK1O0J/30 WpO8Vn5AQOIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lNUExF Q0xPVS9SVXd0QU1jdUsxTzBKXzMwV3BPOFZuNUFRT0kuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL1JVd3RBTWN1SzFPMEpfMzBXcE84Vm41QVFPSS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NJTVBMRUNMT1UvdlpGTUJSVlhH ZnQxTGF0V1BfODFJNG4wWTZzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAZ0UbDANBgkqhkiG9w0BAQsFAAOCAQEAJ87GbGakWVrJy6cJ9aUrDB+L kC5lM0VI8ewmfi2WBplPAT/iOR20Eow9PBBJKKS1OLiY55SULrsfpMfKv6qVdmYI 4Vi+SMD4CzhmDfxV77wP6AaUWxeBGHLV5dT3lVMYvxXC467YX5cyQdhY5FRkyQ7w O/6u5cgf7gFryrhLVpkUv30chPsBE4Ed1RaTg3fZfjMqnvw7POGng63FrgSYbwc+ 0WFtWRGQ9XZF5akfMPHAewFSTaf6oiKS9Uvv/bu4PDp2bWc0+1ZDz+bnlr2QFpt8 bsLu7yK7gmQ6qemneVCDYjTzPETkUpgyTHiR8VtpnsfoX+XE+GPM2PIUCrYx6g== -----END CERTIFICATE-----Generated at Mon Apr 7 07:56:44 2025 by rpki-client