$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/26BiL3LP3ASDc59lO6Eqpdhn1n4.roa File: 26BiL3LP3ASDc59lO6Eqpdhn1n4.roa (raw, json) Hash identifier: jEk6D+CzqVNL/zRfl+gLtEddRO2uvJDGR7TkACF7WN8= Subject key identifier: DB:A0:62:2F:72:CF:DC:04:83:73:9F:65:3B:A1:2A:A5:D8:67:D6:7E Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0E7D Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/26BiL3LP3ASDc59lO6Eqpdhn1n4.roa Signing time: Mon 10 Feb 2025 14:16:25 +0000 ROA not before: Mon 10 Feb 2025 14:16:25 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9916 IP address blocks: 192.83.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 22:26:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3709 (0xe7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Feb 10 14:16:25 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DBA0622F72CFDC0483739F653BA12AA5D867D67E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7c:5a:06:46:2f:7b:4d:18:51:53:f7:26:45: 6b:8f:b7:8e:08:a3:f0:31:cb:05:b1:c5:3b:c6:60: 32:b1:71:12:14:e3:40:e7:a6:dd:9c:8c:61:5d:ef: 0a:d6:f5:e7:62:63:94:21:93:35:86:23:22:4a:5e: f4:9b:a2:04:44:32:bf:90:db:03:ad:b4:09:c9:07: 42:31:8e:5b:81:22:99:79:b6:e1:31:15:37:78:22: 94:f5:90:57:c3:32:47:26:5d:4f:a4:e7:30:1a:41: ac:14:8b:bb:36:11:f1:f7:d1:6d:bc:15:8f:19:a9: 71:69:0f:c1:15:16:18:21:26:19:1e:c4:a1:00:18: 31:88:e4:45:e6:73:4c:d2:89:de:ae:82:97:33:c2: 0a:54:08:bb:a5:37:eb:af:64:e7:92:fe:da:ca:78: 4a:c8:df:85:30:5a:f0:59:18:1d:af:13:bd:b3:c4: fe:ce:4d:fb:e0:ce:67:77:6e:72:fb:65:39:74:18: d3:76:2d:6e:78:10:cc:ea:de:ca:47:5c:01:b7:f6: f5:9c:85:5d:92:3a:73:3f:79:c6:20:8b:00:70:c6: fb:8d:36:fd:a3:ce:99:58:ed:70:74:13:99:30:8a: db:39:bd:f2:ba:75:9e:5b:56:08:3d:e6:d2:89:7a: 40:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:A0:62:2F:72:CF:DC:04:83:73:9F:65:3B:A1:2A:A5:D8:67:D6:7E X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/26BiL3LP3ASDc59lO6Eqpdhn1n4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.83.180.0/24 Signature Algorithm: sha256WithRSAEncryption a2:62:34:4a:3e:d0:33:93:21:ec:b3:bb:0f:c7:ec:26:e8:14: a6:ec:c8:34:dc:cc:f7:e1:e5:84:56:75:27:b8:01:2f:13:f8: f1:39:4f:34:f6:72:1d:db:88:f9:31:8e:b3:57:be:0c:ba:58: f8:1d:c5:53:3a:e8:6e:2d:9c:60:0e:e4:2a:ed:f3:25:72:e8: bf:a8:25:86:b8:2d:b7:5e:56:2e:22:07:d4:7b:75:bd:39:92: 0b:9b:3d:95:c9:9a:72:a3:0d:81:31:77:ea:57:f2:31:5b:9f: a1:e1:df:4e:89:52:56:62:ce:ce:c9:e6:c0:6d:b5:d9:e2:7b: 34:a1:77:9c:5c:29:e4:47:df:7b:98:26:12:e5:68:d8:41:dc: 5d:8e:c9:cf:c5:7b:da:13:0b:59:aa:34:2f:c3:58:b3:e5:4a: d0:de:be:21:62:ce:25:16:5a:e3:d3:d2:5e:d7:92:ba:09:1d: f3:49:ea:d2:5f:7d:2b:90:86:e5:85:aa:4c:f9:22:b9:d1:ec: 1a:9f:2a:c3:82:29:d2:a4:a8:31:c5:18:3d:ae:e1:6c:b2:c9: 3e:4e:ac:8a:c2:00:f5:e2:8b:13:d4:36:67:51:df:c5:7c:65: 4c:93:84:78:99:9c:ad:7a:b5:72:0c:c7:d1:5d:bf:17:ca:e3: 1f:12:83:ad -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDn0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTAyMTAx NDE2MjVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERCQTA2MjJGNzJDRkRD MDQ4MzczOUY2NTNCQTEyQUE1RDg2N0Q2N0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2fFoGRi97TRhRU/cmRWuPt44Io/AxywWxxTvGYDKxcRIU40Dn pt2cjGFd7wrW9ediY5QhkzWGIyJKXvSbogREMr+Q2wOttAnJB0IxjluBIpl5tuEx FTd4IpT1kFfDMkcmXU+k5zAaQawUi7s2EfH30W28FY8ZqXFpD8EVFhghJhkexKEA GDGI5EXmc0zSid6ugpczwgpUCLulN+uvZOeS/trKeErI34UwWvBZGB2vE72zxP7O Tfvgzmd3bnL7ZTl0GNN2LW54EMzq3spHXAG39vWchV2SOnM/ecYgiwBwxvuNNv2j zplY7XB0E5kwits5vfK6dZ5bVgg95tKJekCxAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU26BiL3LP3ASDc59lO6Eqpdhn1n4wHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC8yNkJpTDNMUDNBU0RjNTlsTzZF cXBkaG4xbjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwFO0 MA0GCSqGSIb3DQEBCwUAA4IBAQCiYjRKPtAzkyHss7sPx+wm6BSm7Mg03Mz34eWE VnUnuAEvE/jxOU809nId24j5MY6zV74Mulj4HcVTOuhuLZxgDuQq7fMlcui/qCWG uC23XlYuIgfUe3W9OZILmz2VyZpyow2BMXfqV/IxW5+h4d9OiVJWYs7OyebAbbXZ 4ns0oXecXCnkR997mCYS5WjYQdxdjsnPxXvaEwtZqjQvw1iz5UrQ3r4hYs4lFlrj 09Je15K6CR3zSerSX30rkIblhapM+SK50ewanyrDginSpKgxxRg9ruFsssk+TqyK wgD14osT1DZnUd/FfGVMk4R4mZyterVyDMfRXb8XyuMfEoOt -----END CERTIFICATE-----Generated at Wed Feb 19 21:57:19 2025 by rpki-client