$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/3a71Td1-RZ8ptRMRy-tEmcTmFPs.roa File: 3a71Td1-RZ8ptRMRy-tEmcTmFPs.roa (raw, json) Hash identifier: BiRSqHRe0z8Pcffdvt8d2W0BeuYa6oM5GT0WlymvIwE= Subject key identifier: DD:AE:F5:4D:DD:7E:45:9F:29:B5:13:11:CB:EB:44:99:C4:E6:14:FB Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 0EEA Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/3a71Td1-RZ8ptRMRy-tEmcTmFPs.roa Signing time: Mon 10 Feb 2025 14:16:12 +0000 ROA not before: Mon 10 Feb 2025 14:16:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 210.240.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 20:38:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3818 (0xeea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Feb 10 14:16:12 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DDAEF54DDD7E459F29B51311CBEB4499C4E614FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:cb:04:20:c6:e0:93:3e:fb:de:6a:42:ff:a9: 58:63:35:b0:15:1a:a0:46:2b:10:0f:60:cc:09:ec: 6b:b3:89:21:f0:79:76:f2:1b:8b:54:d9:f3:1e:7b: c0:06:33:c9:8e:f5:11:25:e0:1b:91:90:63:eb:1f: f6:d9:8b:12:e2:cd:1b:8e:ff:f4:6e:e6:da:b2:43: f2:c8:33:2c:18:1a:23:46:9c:a6:56:50:74:7b:9d: c0:7b:f2:53:cc:de:33:51:54:06:9c:c1:e9:aa:70: df:7f:8d:d1:72:65:87:1b:9a:ff:21:8f:ec:58:a6: a3:b2:fa:1d:8d:0a:6c:4a:41:32:08:45:df:a0:3f: cf:a5:26:f8:91:0e:86:17:60:c1:39:a1:b0:2f:ce: 9c:5b:a6:a5:0e:49:ea:02:d3:fd:7e:00:35:0f:4e: e3:04:a4:6a:ee:12:71:59:d8:d2:05:46:31:15:05: a1:a4:36:85:9a:bc:47:97:24:f7:ae:25:7b:24:b2: d2:74:cb:1d:89:42:dd:93:a2:16:57:ce:88:08:62: ee:25:4e:1c:53:82:9d:26:81:aa:f0:00:db:0a:c8: c0:b6:2a:d0:40:8b:72:1c:6f:ff:dd:b2:b3:3d:5d: a1:e0:fa:e0:9f:7b:de:50:d1:a7:28:c5:2e:18:e4: 3e:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:AE:F5:4D:DD:7E:45:9F:29:B5:13:11:CB:EB:44:99:C4:E6:14:FB X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/3a71Td1-RZ8ptRMRy-tEmcTmFPs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.240.0.0/16 Signature Algorithm: sha256WithRSAEncryption ac:41:1a:b2:54:15:0a:32:c7:4c:c0:db:e2:b5:91:bd:2e:d5: bb:c4:de:b0:3d:72:8b:51:f8:46:c6:8a:d6:be:18:14:93:55: 48:a4:25:ff:4b:31:dd:6a:92:69:c1:f8:07:30:03:fd:f3:ce: ed:66:39:19:80:97:cd:39:5a:85:59:a7:a8:e9:b3:03:93:6c: dd:ae:25:6b:d1:20:3b:c8:8e:a5:1d:09:1c:7e:1f:9f:28:a3: f4:ec:8f:c8:81:68:2d:2a:7f:eb:a0:d1:5c:0a:ac:ee:11:63: 6f:5d:8d:06:27:44:1b:54:af:26:16:ad:03:e0:b3:4f:37:1c: 4d:8e:54:92:80:0e:84:32:09:24:5c:c6:21:18:a4:c0:9a:13: 69:dd:70:05:36:6b:dc:8f:2d:c1:0c:95:47:5b:02:60:37:d6: 31:ca:10:7b:ef:b5:30:a2:94:29:b3:4a:cf:bf:fa:07:52:0d: b5:7d:3f:cb:18:c1:89:90:37:b5:e4:e6:c7:d3:af:39:fc:be: f5:9e:18:df:ff:5b:c2:cf:61:16:6e:ef:4d:ff:b4:01:b0:b5: 69:c1:38:5e:07:bf:39:3c:63:5a:20:71:b9:66:af:83:52:9d: 03:d8:27:78:51:3f:e4:e8:85:a6:86:d0:9e:84:d0:6c:41:d7: 07:2e:b3:9b -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDuowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNTAyMTAx NDE2MTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEREQUVGNTREREQ3RTQ1 OUYyOUI1MTMxMUNCRUI0NDk5QzRFNjE0RkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZywQgxuCTPvveakL/qVhjNbAVGqBGKxAPYMwJ7GuziSHweXby G4tU2fMee8AGM8mO9REl4BuRkGPrH/bZixLizRuO//Ru5tqyQ/LIMywYGiNGnKZW UHR7ncB78lPM3jNRVAacwemqcN9/jdFyZYcbmv8hj+xYpqOy+h2NCmxKQTIIRd+g P8+lJviRDoYXYME5obAvzpxbpqUOSeoC0/1+ADUPTuMEpGruEnFZ2NIFRjEVBaGk NoWavEeXJPeuJXskstJ0yx2JQt2TohZXzogIYu4lThxTgp0mgarwANsKyMC2KtBA i3Icb//dsrM9XaHg+uCfe95Q0acoxS4Y5D5jAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU3a71Td1+RZ8ptRMRy+tEmcTmFPswHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC8zYTcxVGQxLVJaOHB0Uk1SeS10 RW1jVG1GUHMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA0vAw DQYJKoZIhvcNAQELBQADggEBAKxBGrJUFQoyx0zA2+K1kb0u1bvE3rA9cotR+EbG ita+GBSTVUikJf9LMd1qkmnB+AcwA/3zzu1mORmAl805WoVZp6jpswOTbN2uJWvR IDvIjqUdCRx+H58oo/Tsj8iBaC0qf+ug0VwKrO4RY29djQYnRBtUryYWrQPgs083 HE2OVJKADoQyCSRcxiEYpMCaE2ndcAU2a9yPLcEMlUdbAmA31jHKEHvvtTCilCmz Ss+/+gdSDbV9P8sYwYmQN7Xk5sfTrzn8vvWeGN//W8LPYRZu703/tAGwtWnBOF4H vzk8Y1ogcblmr4NSnQPYJ3hRP+TohaaG0J6E0GxB1wcus5s= -----END CERTIFICATE-----Generated at Mon Apr 14 17:35:45 2025 by rpki-client