$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYSNET/t4Mei1IO6klCtkmMKE_mUYqVZb0.roa File: t4Mei1IO6klCtkmMKE_mUYqVZb0.roa (raw, json) Hash identifier: 4z8tsi0r+0tA0niMLpXXc/feR20F9ffRMKMhm13DXQk= Subject key identifier: B7:83:1E:8B:52:0E:EA:49:42:B6:49:8C:28:4F:E6:51:8A:95:65:BD Certificate issuer: /CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC Certificate serial: 0D94 Authority key identifier: 96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/t4Mei1IO6klCtkmMKE_mUYqVZb0.roa Signing time: Tue 27 May 2025 05:59:19 +0000 ROA not before: Tue 27 May 2025 05:59:19 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4783 IP address blocks: 210.67.128.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3476 (0xd94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC Validity Not Before: May 27 05:59:19 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B7831E8B520EEA4942B6498C284FE6518A9565BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e4:7b:36:0d:ab:e6:d1:37:3c:23:ee:30:0a: a1:34:ae:ae:8c:42:26:fa:3b:e1:f0:08:39:cf:a9: 8b:1c:a1:8f:67:c9:5b:07:2a:ff:e8:1b:2f:14:78: 5d:a5:5c:70:f0:e9:ee:1d:91:20:f1:40:3c:ec:c3: 63:b5:42:ac:b6:f6:dc:70:99:5f:c4:c9:97:45:68: ec:85:12:f7:fe:ff:af:3c:5b:df:43:d9:a0:22:55: 05:b8:c2:97:a0:28:5f:27:4c:94:77:39:79:70:45: 06:59:be:42:ba:c0:4e:03:a5:5b:4c:80:75:a6:b2: 65:92:90:61:5d:bc:ea:71:a8:5f:c4:b1:ed:dd:d4: c9:e2:84:c5:96:0e:f2:8e:94:d5:1d:74:59:25:c4: 6e:78:5f:85:de:25:f0:d3:05:9f:99:e9:f9:bb:cb: b3:36:37:60:a8:bc:37:69:26:99:fb:79:ce:58:86: 00:87:82:9d:94:39:d5:91:8b:02:dc:8a:5d:1c:6e: 11:27:bf:44:05:15:5d:30:61:e5:18:bd:eb:88:1d: 1d:fc:f7:98:91:0f:1c:ab:33:df:5b:16:61:89:19: d6:07:1e:3d:a2:e0:88:3b:de:bf:60:08:23:15:4a: 72:8c:81:07:1b:63:68:5e:f8:27:94:2a:96:55:e3: 2c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:83:1E:8B:52:0E:EA:49:42:B6:49:8C:28:4F:E6:51:8A:95:65:BD X509v3 Authority Key Identifier: keyid:96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/t4Mei1IO6klCtkmMKE_mUYqVZb0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.67.128.0/21 Signature Algorithm: sha256WithRSAEncryption 91:5a:f5:20:af:d9:6c:b6:40:f1:fe:82:90:9d:32:b0:7c:7e: 88:2a:2b:8c:5c:1a:24:55:ff:a3:cf:36:a8:97:17:be:74:45: 6c:b5:3a:75:74:8e:60:c7:df:8c:f4:08:42:2f:50:61:54:6c: 59:70:0c:0f:29:15:7a:d3:a2:17:cc:2d:85:08:ff:d6:13:a5: 91:46:52:45:fd:5d:46:1a:c2:c4:fd:9a:26:9b:9c:fc:86:da: a4:10:e0:c5:b3:45:a5:ca:48:ed:3b:5b:59:f8:7f:6b:c7:6d: 8e:91:81:91:4f:b9:cf:ee:30:9e:25:0e:8f:ba:2b:d9:fc:0f: 81:51:67:c9:5b:2d:de:d9:ec:e2:f6:8e:30:96:3c:22:7d:e3: 54:c7:26:41:f9:f0:8c:bf:3e:e3:bd:d9:6d:9d:eb:3a:71:42: 40:ce:db:ae:d3:2b:36:ea:d8:60:cc:cc:09:51:89:04:ef:ca: 82:5b:9f:a2:64:fc:ea:ad:d7:26:6a:12:aa:f3:b6:5f:94:1a: 38:0d:de:cc:75:46:0e:b9:62:a0:98:34:40:de:1e:96:51:58: f6:65:18:14:d5:59:a6:41:3f:0c:5c:f5:34:44:5a:04:d4:40: 92:b7:b5:0c:d7:84:a0:28:3c:38:b6:eb:b5:b4:45:a4:1d:73: d9:b6:08:42 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDZQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTZC Qjk0QjQ1N0Y5RDgyQTI5QjVCMkZEOUYzQTQ0MTg4OTlFNzFFQzAeFw0yNTA1Mjcw NTU5MTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI3ODMxRThCNTIwRUVB NDk0MkI2NDk4QzI4NEZFNjUxOEE5NTY1QkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDB5Hs2Davm0Tc8I+4wCqE0rq6MQib6O+HwCDnPqYscoY9nyVsH Kv/oGy8UeF2lXHDw6e4dkSDxQDzsw2O1Qqy29txwmV/EyZdFaOyFEvf+/688W99D 2aAiVQW4wpegKF8nTJR3OXlwRQZZvkK6wE4DpVtMgHWmsmWSkGFdvOpxqF/Ese3d 1MnihMWWDvKOlNUddFklxG54X4XeJfDTBZ+Z6fm7y7M2N2CovDdpJpn7ec5YhgCH gp2UOdWRiwLcil0cbhEnv0QFFV0wYeUYveuIHR3895iRDxyrM99bFmGJGdYHHj2i 4Ig73r9gCCMVSnKMgQcbY2he+CeUKpZV4yxrAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUt4Mei1IO6klCtkmMKE/mUYqVZb0wHwYDVR0jBBgwFoAUlruUtFf52CoptbL9 nzpEGImecewwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVU L2xydVV0RmY1MkNvcHRiTDluenBFR0ltZWNldy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbHJ1VXRGZjUyQ29wdGJMOW56cEVHSW1lY2V3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVUL3Q0TWVpMUlPNmtsQ3RrbU1L RV9tVVlxVlpiMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPS Q4AwDQYJKoZIhvcNAQELBQADggEBAJFa9SCv2Wy2QPH+gpCdMrB8fogqK4xcGiRV /6PPNqiXF750RWy1OnV0jmDH34z0CEIvUGFUbFlwDA8pFXrTohfMLYUI/9YTpZFG UkX9XUYawsT9miabnPyG2qQQ4MWzRaXKSO07W1n4f2vHbY6RgZFPuc/uMJ4lDo+6 K9n8D4FRZ8lbLd7Z7OL2jjCWPCJ941THJkH58Iy/PuO92W2d6zpxQkDO267TKzbq 2GDMzAlRiQTvyoJbn6Jk/Oqt1yZqEqrztl+UGjgN3sx1Rg65YqCYNEDeHpZRWPZl GBTVWaZBPwxc9TREWgTUQJK3tQzXhKAoPDi267W0RaQdc9m2CEI= -----END CERTIFICATE-----Generated at Tue Jun 3 23:57:52 2025 by rpki-client