$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYSNET/V-is197nDojaQCIA3yM61kqSGns.roa File: V-is197nDojaQCIA3yM61kqSGns.roa (raw, json) Hash identifier: Ku3J4d/ZijNUi+wQrr2Yo2BSxVFRdGIBcw5D/nTE33s= Subject key identifier: 57:E8:AC:D7:DE:E7:0E:88:DA:40:22:00:DF:23:3A:D6:4A:92:1A:7B Certificate issuer: /CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC Certificate serial: 0CCB Authority key identifier: 96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/V-is197nDojaQCIA3yM61kqSGns.roa Signing time: Mon 10 Feb 2025 14:08:32 +0000 ROA not before: Mon 10 Feb 2025 14:08:32 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4783 IP address blocks: 2405:a00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3275 (0xccb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC Validity Not Before: Feb 10 14:08:32 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=57E8ACD7DEE70E88DA402200DF233AD64A921A7B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:48:68:68:75:05:87:d5:fe:19:a1:bd:b8:95: 74:76:64:6b:94:11:37:a8:75:35:13:4d:2d:b6:a2: 51:5a:37:cd:2f:85:e6:75:ab:5d:b8:1d:74:72:da: 23:e7:b4:18:99:f0:b6:69:a4:57:1f:d2:72:30:5d: 30:1b:ca:09:a0:cf:bc:51:49:d2:f9:9d:98:6e:a5: d7:5c:ef:ac:84:d2:62:cb:d4:30:01:72:18:82:f4: 68:9c:6b:5d:11:2c:99:35:9a:63:27:9d:5b:95:13: 6c:18:65:81:ea:6c:32:3d:8b:72:79:ae:2b:00:7a: 28:16:22:0f:83:0c:97:5a:fd:13:f4:a5:6f:74:17: 47:34:e2:f1:ed:d7:46:44:6e:bc:dd:87:ab:2f:2a: 4d:2e:91:b0:af:30:40:43:b9:bc:96:4d:d5:c4:ac: 15:4f:db:df:66:79:f4:dd:08:1e:32:ca:d9:92:b5: 1b:a2:29:bb:60:df:56:d0:5e:45:54:37:b1:7d:55: 97:52:f8:ca:d1:e7:e0:ea:cf:a5:5f:cd:b6:bb:0b: 53:bb:4e:ca:5b:59:70:90:dc:bf:f7:f7:97:ea:c2: 62:57:91:69:4a:66:27:11:db:c6:a4:5e:cc:ba:4f: b6:44:e4:65:70:36:cb:37:a8:3e:65:33:5d:7b:70: 37:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:E8:AC:D7:DE:E7:0E:88:DA:40:22:00:DF:23:3A:D6:4A:92:1A:7B X509v3 Authority Key Identifier: keyid:96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/V-is197nDojaQCIA3yM61kqSGns.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:a00::/32 Signature Algorithm: sha256WithRSAEncryption 37:a9:ee:ab:6e:42:69:f4:5f:b0:a4:71:6b:cf:e9:fb:1f:6c: 72:11:f5:e2:70:9a:b9:f6:15:e0:09:e4:90:95:a6:f3:8d:d7: a6:4c:0a:d4:03:5c:da:30:ee:48:0f:b1:4f:b6:b3:a2:1b:3a: ca:ce:83:4e:2b:ee:6f:07:8c:b6:02:ac:3a:5b:90:4d:5b:a3: 6f:58:28:c8:0d:a3:98:5a:48:c8:71:0d:ba:04:1d:a2:f5:fd: 62:4c:2f:00:6f:46:72:be:f3:79:fb:07:ff:52:df:d2:76:93: 69:d7:bd:19:a8:31:7c:24:3c:cf:1b:98:fe:ee:28:0c:91:ea: d8:5c:da:0f:79:5b:8b:4e:29:76:d2:5f:42:c3:b1:bd:4b:3e: 58:a1:36:89:f0:86:75:02:56:54:09:43:b3:6b:34:b6:b1:d7: 5c:09:b8:12:41:09:ac:52:b0:d2:19:11:d2:a2:0e:a8:3e:5d: 5d:ca:50:53:73:c7:03:3e:9b:7d:64:34:81:74:2a:da:11:5d: 82:2c:21:25:09:c8:b7:09:76:3b:a1:5a:3e:09:7d:f0:9c:f8: fe:bb:50:37:07:ce:4b:2c:c6:19:bc:c5:f2:a1:4d:dc:91:33: 4f:bd:5e:3c:cf:ff:b5:7f:3c:7b:82:3e:4c:d0:30:3c:c7:da: f6:6e:71:0d -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICDMswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTZC Qjk0QjQ1N0Y5RDgyQTI5QjVCMkZEOUYzQTQ0MTg4OTlFNzFFQzAeFw0yNTAyMTAx NDA4MzJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU3RThBQ0Q3REVFNzBF ODhEQTQwMjIwMERGMjMzQUQ2NEE5MjFBN0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfSGhodQWH1f4Zob24lXR2ZGuUETeodTUTTS22olFaN80vheZ1 q124HXRy2iPntBiZ8LZppFcf0nIwXTAbygmgz7xRSdL5nZhupddc76yE0mLL1DAB chiC9Gica10RLJk1mmMnnVuVE2wYZYHqbDI9i3J5risAeigWIg+DDJda/RP0pW90 F0c04vHt10ZEbrzdh6svKk0ukbCvMEBDubyWTdXErBVP299mefTdCB4yytmStRui Kbtg31bQXkVUN7F9VZdS+MrR5+Dqz6Vfzba7C1O7TspbWXCQ3L/395fqwmJXkWlK ZicR28akXsy6T7ZE5GVwNss3qD5lM117cDcFAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUV+is197nDojaQCIA3yM61kqSGnswHwYDVR0jBBgwFoAUlruUtFf52CoptbL9 nzpEGImecewwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVU L2xydVV0RmY1MkNvcHRiTDluenBFR0ltZWNldy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbHJ1VXRGZjUyQ29wdGJMOW56cEVHSW1lY2V3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVUL1YtaXMxOTduRG9qYVFDSUEz eU02MWtxU0ducy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk BQoAMA0GCSqGSIb3DQEBCwUAA4IBAQA3qe6rbkJp9F+wpHFrz+n7H2xyEfXicJq5 9hXgCeSQlabzjdemTArUA1zaMO5ID7FPtrOiGzrKzoNOK+5vB4y2Aqw6W5BNW6Nv WCjIDaOYWkjIcQ26BB2i9f1iTC8Ab0ZyvvN5+wf/Ut/SdpNp170ZqDF8JDzPG5j+ 7igMkerYXNoPeVuLTil20l9Cw7G9Sz5YoTaJ8IZ1AlZUCUOzazS2sddcCbgSQQms UrDSGRHSog6oPl1dylBTc8cDPpt9ZDSBdCraEV2CLCElCci3CXY7oVo+CX3wnPj+ u1A3B85LLMYZvMXyoU3ckTNPvV48z/+1fzx7gj5M0DA8x9r2bnEN -----END CERTIFICATE-----Generated at Wed Feb 19 22:10:46 2025 by rpki-client