$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/O6VvY0wuqytgMzlHgkOITJ3kBXU.roa File: O6VvY0wuqytgMzlHgkOITJ3kBXU.roa (raw, json) Hash identifier: FhqRyRFSOfXjJ03c3VjYck3SYfz8WA0fiT+ZTvLnLEY= Subject key identifier: 3B:A5:6F:63:4C:2E:AB:2B:60:33:39:47:82:43:88:4C:9D:E4:05:75 Certificate issuer: /CN=422E7C95D87DE9AEEB212A0C4CCB0174E65CA5D0 Certificate serial: 0459 Authority key identifier: 42:2E:7C:95:D8:7D:E9:AE:EB:21:2A:0C:4C:CB:01:74:E6:5C:A5:D0 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Qi58ldh96a7rISoMTMsBdOZcpdA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/O6VvY0wuqytgMzlHgkOITJ3kBXU.roa Signing time: Mon 10 Feb 2025 13:57:40 +0000 ROA not before: Mon 10 Feb 2025 13:57:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 14618 IP address blocks: 160.25.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Qi58ldh96a7rISoMTMsBdOZcpdA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:06:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1113 (0x459) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=422E7C95D87DE9AEEB212A0C4CCB0174E65CA5D0 Validity Not Before: Feb 10 13:57:40 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3BA56F634C2EAB2B603339478243884C9DE40575 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:39:64:96:20:ba:1c:ec:27:09:96:f1:21:e2: b2:34:bb:4f:d4:f3:ac:56:8d:d5:61:38:f7:ff:67: 6e:9f:41:21:53:fa:53:61:1d:02:08:82:68:15:96: ee:89:81:9a:87:48:af:8e:67:fc:d8:3b:98:8f:66: 53:95:0c:e5:2c:94:37:0a:87:d9:88:96:54:91:3c: 54:54:43:f4:b0:c6:dc:d3:ba:f8:0a:f6:b8:52:f8: 48:6b:d1:cf:c8:27:c5:19:f3:e8:e9:2a:79:ab:ca: 03:fc:3f:f9:81:5a:cc:ee:ab:60:64:27:6f:7c:81: 91:54:07:4c:bc:8e:0d:0c:ed:b3:7a:30:20:60:5b: 82:c6:51:f0:1d:c0:c9:46:da:5b:00:b1:16:d2:6e: be:2b:82:2c:b4:91:8c:23:a4:9a:33:15:ce:40:ec: fa:19:8f:6c:2a:5b:92:68:ac:ea:9a:23:a2:42:cb: 1c:36:ec:d6:c6:56:ec:78:8c:b0:c1:07:2e:81:25: 67:4e:99:7d:fe:eb:a7:a9:ff:5c:ff:79:0e:21:bc: b7:09:dc:e9:0a:40:f4:e7:a1:0f:88:23:44:e9:db: ec:56:b6:45:07:35:4c:9e:a7:12:5f:db:ba:ff:b4: a6:29:ca:0f:3a:3f:69:44:f9:ba:18:d1:af:49:7d: a1:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:A5:6F:63:4C:2E:AB:2B:60:33:39:47:82:43:88:4C:9D:E4:05:75 X509v3 Authority Key Identifier: keyid:42:2E:7C:95:D8:7D:E9:AE:EB:21:2A:0C:4C:CB:01:74:E6:5C:A5:D0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Qi58ldh96a7rISoMTMsBdOZcpdA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/O6VvY0wuqytgMzlHgkOITJ3kBXU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.25.220.0/24 Signature Algorithm: sha256WithRSAEncryption 96:1d:42:1c:b1:e8:c5:ec:7a:8f:a6:6b:67:21:2c:74:07:ce: ca:b3:40:aa:25:c6:58:9d:bc:6c:95:6b:0e:4c:c7:17:4f:59: 97:a4:28:8b:82:2c:d1:52:bf:d6:01:79:6d:39:30:ac:b0:0d: ed:aa:31:89:b2:51:38:cc:93:b2:aa:3d:f6:2e:0a:13:79:2a: b1:e3:99:f5:63:58:9d:90:52:93:ef:42:b2:37:83:5c:c0:6c: bc:09:07:01:ff:12:2b:bd:c1:e8:76:48:a9:ae:f3:b9:a9:de: a0:5e:79:ed:29:2a:4f:9f:6a:e0:56:7f:86:2c:9d:44:f0:bc: 4c:3a:5e:74:82:c1:b1:44:e7:3e:48:74:71:51:3e:e3:61:b9: 32:cd:5a:82:1f:7a:ed:be:2b:e9:5d:f2:17:7b:86:90:de:02: 5d:ef:b4:90:9a:56:ad:35:a9:e6:dc:1a:3b:79:0b:f3:58:5c: 0c:8c:33:3a:03:09:50:a9:81:ef:90:b6:a1:61:70:24:f0:27: cd:08:0c:86:c2:1b:23:fb:7d:f5:45:af:f3:89:a4:aa:8e:92: 7f:db:b9:d6:0e:41:7a:5d:d6:ec:ee:a0:c9:e0:0c:4b:00:5a: f2:40:e5:9d:c8:e8:19:b8:0f:9e:3f:f2:96:16:9a:0a:92:ca: 60:a3:ff:ae -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICBFkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDIy RTdDOTVEODdERTlBRUVCMjEyQTBDNENDQjAxNzRFNjVDQTVEMDAeFw0yNTAyMTAx MzU3NDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNCQTU2RjYzNEMyRUFC MkI2MDMzMzk0NzgyNDM4ODRDOURFNDA1NzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyOWSWILoc7CcJlvEh4rI0u0/U86xWjdVhOPf/Z26fQSFT+lNh HQIIgmgVlu6JgZqHSK+OZ/zYO5iPZlOVDOUslDcKh9mIllSRPFRUQ/SwxtzTuvgK 9rhS+Ehr0c/IJ8UZ8+jpKnmrygP8P/mBWszuq2BkJ298gZFUB0y8jg0M7bN6MCBg W4LGUfAdwMlG2lsAsRbSbr4rgiy0kYwjpJozFc5A7PoZj2wqW5JorOqaI6JCyxw2 7NbGVux4jLDBBy6BJWdOmX3+66ep/1z/eQ4hvLcJ3OkKQPTnoQ+II0Tp2+xWtkUH NUyepxJf27r/tKYpyg86P2lE+boY0a9JfaEFAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUO6VvY0wuqytgMzlHgkOITJ3kBXUwHwYDVR0jBBgwFoAUQi58ldh96a7rISoM TMsBdOZcpdAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0tJUFRF Q0gvUWk1OGxkaDk2YTdySVNvTVRNc0JkT1pjcGRBLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9RaTU4bGRoOTZhN3JJU29NVE1zQmRPWmNwZEEuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TS0lQVEVDSC9PNlZ2WTB3dXF5dGdN emxIZ2tPSVRKM2tCWFUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAoBncMA0GCSqGSIb3DQEBCwUAA4IBAQCWHUIcsejF7HqPpmtnISx0B87Ks0Cq JcZYnbxslWsOTMcXT1mXpCiLgizRUr/WAXltOTCssA3tqjGJslE4zJOyqj32LgoT eSqx45n1Y1idkFKT70KyN4NcwGy8CQcB/xIrvcHodkiprvO5qd6gXnntKSpPn2rg Vn+GLJ1E8LxMOl50gsGxROc+SHRxUT7jYbkyzVqCH3rtvivpXfIXe4aQ3gJd77SQ mlatNanm3Bo7eQvzWFwMjDM6AwlQqYHvkLahYXAk8CfNCAyGwhsj+331Ra/ziaSq jpJ/27nWDkF6Xdbs7qDJ4AxLAFryQOWdyOgZuA+eP/KWFpoKkspgo/+u -----END CERTIFICATE-----Generated at Sat Apr 5 00:02:10 2025 by rpki-client