$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/3aYGOwVV-jEvogfUcpFQzZOUDeY.roa File: 3aYGOwVV-jEvogfUcpFQzZOUDeY.roa (raw, json) Hash identifier: 2vERzuhyIYL6HXlQuUgwwTcOUfLOD3t6oECKPr5iACY= Subject key identifier: DD:A6:06:3B:05:55:FA:31:2F:A2:07:D4:72:91:50:CD:93:94:0D:E6 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0E7A Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/3aYGOwVV-jEvogfUcpFQzZOUDeY.roa Signing time: Mon 10 Feb 2025 14:16:24 +0000 ROA not before: Mon 10 Feb 2025 14:16:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 140.112.0.0/12 maxlen: 12 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 05:08:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3706 (0xe7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Feb 10 14:16:24 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DDA6063B0555FA312FA207D4729150CD93940DE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ea:0b:ca:63:bd:2c:7c:e2:71:76:90:f0:6c: a5:af:f8:4b:31:9b:7e:e7:b4:bd:35:8c:d0:45:91: 0e:dd:ab:9f:80:5a:69:b4:1f:10:25:c0:7f:21:cd: 13:4d:89:59:99:09:90:63:6d:a6:59:aa:79:a6:9b: a1:e3:ce:d9:fe:f5:e9:c7:e1:8c:7a:29:c0:b8:0b: 75:4a:68:39:b2:fc:5e:7b:a3:20:c1:b6:53:4e:27: 83:4b:f1:42:52:71:fe:cd:d5:8e:2e:24:53:5c:3c: 16:5a:50:1f:a5:7d:e8:d9:8e:83:44:8a:6a:db:d4: 9d:dc:0f:45:fc:e8:e9:8a:f0:2d:bb:d5:a3:ea:99: f2:30:54:db:87:32:d4:af:79:70:05:d1:38:f9:93: 67:65:61:84:20:70:2d:fd:77:0c:b6:3c:01:66:c4: ea:96:8a:ee:8a:a9:18:a2:81:7b:42:53:94:f2:f4: 6d:06:4f:4a:dd:83:90:03:01:2b:65:ae:d9:2f:41: ff:f5:9d:05:7b:02:dc:01:25:c4:f6:f7:9e:03:dd: d7:18:eb:31:af:5e:21:fe:c3:eb:19:d7:7a:a7:da: 72:b3:9a:0e:34:9a:59:8b:28:83:42:c3:df:93:21: 12:d8:60:53:56:34:83:f3:94:25:a6:7d:b7:60:09: 7a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:A6:06:3B:05:55:FA:31:2F:A2:07:D4:72:91:50:CD:93:94:0D:E6 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/3aYGOwVV-jEvogfUcpFQzZOUDeY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.112.0.0/12 Signature Algorithm: sha256WithRSAEncryption 44:8c:8e:4b:75:ac:aa:cc:00:ea:56:25:51:72:da:0c:1e:08: 3c:c8:d4:cc:a4:57:7b:fa:5c:2c:59:8d:23:c3:a9:25:cd:4a: 69:24:43:2e:1d:06:d5:06:ca:f6:0f:12:e0:8d:51:a8:59:c6: 1b:56:09:29:26:00:13:67:33:92:a8:58:19:05:3a:1c:79:91: fd:73:9a:59:9f:08:a5:77:0e:17:8e:ae:d7:f1:f2:32:0b:2d: 2e:57:25:92:75:1c:0b:b8:b7:62:6d:ec:d8:dd:8c:3f:40:cf: 6a:73:9f:d3:56:c2:76:8d:b9:5d:86:4b:2e:68:b1:6b:16:02: 72:88:e9:9f:19:6c:4e:89:ee:6d:62:31:54:d3:b2:30:9a:50: 8d:da:65:aa:03:5b:a5:4f:02:91:ba:13:62:3a:81:38:d2:45: 09:27:cb:5e:41:b2:58:46:c3:39:07:b7:48:04:84:01:4d:2d: e7:4c:27:3e:06:9c:af:a9:1f:3a:32:07:79:3c:cb:3f:e9:c8: ed:20:0c:91:48:fa:f4:5d:e9:81:fe:95:27:40:0b:ff:fd:2d: 54:00:62:86:bf:4e:96:ce:27:27:58:f8:e2:d5:72:cc:6a:2f: af:b8:f6:ed:ff:93:29:25:2e:4b:4b:31:90:74:1d:ac:47:59: c9:a0:fb:68 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDnowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTAyMTAx NDE2MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEREQTYwNjNCMDU1NUZB MzEyRkEyMDdENDcyOTE1MENEOTM5NDBERTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC26gvKY70sfOJxdpDwbKWv+Esxm37ntL01jNBFkQ7dq5+AWmm0 HxAlwH8hzRNNiVmZCZBjbaZZqnmmm6Hjztn+9enH4Yx6KcC4C3VKaDmy/F57oyDB tlNOJ4NL8UJScf7N1Y4uJFNcPBZaUB+lfejZjoNEimrb1J3cD0X86OmK8C271aPq mfIwVNuHMtSveXAF0Tj5k2dlYYQgcC39dwy2PAFmxOqWiu6KqRiigXtCU5Ty9G0G T0rdg5ADAStlrtkvQf/1nQV7AtwBJcT2954D3dcY6zGvXiH+w+sZ13qn2nKzmg40 mlmLKINCw9+TIRLYYFNWNIPzlCWmfbdgCXoHAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU3aYGOwVV+jEvogfUcpFQzZOUDeYwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC8zYVlHT3dWVi1qRXZvZ2ZVY3BG UXpaT1VEZVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMEjHAw DQYJKoZIhvcNAQELBQADggEBAESMjkt1rKrMAOpWJVFy2gweCDzI1MykV3v6XCxZ jSPDqSXNSmkkQy4dBtUGyvYPEuCNUahZxhtWCSkmABNnM5KoWBkFOhx5kf1zmlmf CKV3DheOrtfx8jILLS5XJZJ1HAu4t2Jt7NjdjD9Az2pzn9NWwnaNuV2GSy5osWsW AnKI6Z8ZbE6J7m1iMVTTsjCaUI3aZaoDW6VPApG6E2I6gTjSRQkny15BslhGwzkH t0gEhAFNLedMJz4GnK+pHzoyB3k8yz/pyO0gDJFI+vRd6YH+lSdAC//9LVQAYoa/ TpbOJydY+OLVcsxqL6+49u3/kyklLktLMZB0HaxHWcmg+2g= -----END CERTIFICATE-----Generated at Wed Apr 16 04:39:13 2025 by rpki-client