$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/9LzEr8FXKZ8BP29LZ8zRJekUB9A.roa File: 9LzEr8FXKZ8BP29LZ8zRJekUB9A.roa (raw, json) Hash identifier: JPEVM6uZjW+3tAh1tn4j/2x5xPs+m4AWP/PEOGdkqOI= Subject key identifier: F4:BC:C4:AF:C1:57:29:9F:01:3F:6F:4B:67:CC:D1:25:E9:14:07:D0 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0F02 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/9LzEr8FXKZ8BP29LZ8zRJekUB9A.roa Signing time: Tue 18 Feb 2025 08:23:20 +0000 ROA not before: Tue 18 Feb 2025 08:23:20 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 140.135.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 20:38:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3842 (0xf02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Feb 18 08:23:20 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F4BCC4AFC157299F013F6F4B67CCD125E91407D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6b:7b:cd:a7:05:39:6d:cb:bb:b1:58:d3:1d: b0:4c:6a:ab:a4:13:1b:02:6b:ba:27:bc:25:22:dc: 8f:73:59:0d:ae:b6:ec:ef:78:82:64:f6:79:40:3b: 74:78:ca:bc:fd:82:1b:7a:16:eb:41:cf:92:94:d6: eb:d1:40:04:01:6b:75:f7:c0:c1:69:81:dd:10:da: ca:a8:35:5e:29:24:d4:0a:54:e9:69:7b:da:e1:c9: c0:d8:05:d3:c1:79:ac:61:e8:b7:97:64:27:d7:a4: 51:90:e9:a8:58:de:09:52:e1:fc:ec:24:ad:61:53: 2c:50:8f:d6:8c:4d:15:74:8f:1b:3f:29:6c:66:48: f3:83:28:13:42:04:9e:bc:11:1e:b5:79:5e:86:a7: 1d:74:eb:d7:48:99:19:dc:e4:59:4b:70:74:b2:24: 01:13:41:a5:ba:7c:a6:14:51:d5:4e:42:39:1f:15: 59:c2:a1:7a:72:ad:61:ac:da:0d:c1:47:f2:48:0d: f0:0c:f3:57:28:d5:b7:24:1f:c3:3f:2f:f8:b9:97: ab:4c:b7:2b:69:fb:f3:eb:01:b9:07:62:c5:7f:fd: 4c:ca:66:2a:a0:95:b3:34:5a:5a:43:2a:da:26:e7: 56:51:3b:c6:d8:0d:af:c6:92:de:10:64:e3:4e:05: fa:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:BC:C4:AF:C1:57:29:9F:01:3F:6F:4B:67:CC:D1:25:E9:14:07:D0 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/9LzEr8FXKZ8BP29LZ8zRJekUB9A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.135.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8c:d8:9a:b8:49:b1:a1:8a:c1:59:fd:e2:27:32:5b:9a:e8:42: 38:bd:ea:40:c5:14:3a:17:0b:8a:2d:b6:b8:f9:25:9e:08:15: b8:ba:c5:a0:fb:18:c6:06:b4:18:56:7c:56:b1:9b:e6:3f:e2: 52:4c:18:07:a6:62:02:1d:5c:00:94:0f:33:00:55:bd:49:ea: e5:91:84:8f:8b:a4:59:91:2a:76:80:da:39:3a:66:32:cd:72: e3:51:bd:e5:84:b1:76:9e:15:3f:2e:9e:83:fc:cd:47:d8:4f: 0f:c7:45:36:fd:3e:3b:53:a4:c1:14:0a:f5:12:7c:9f:17:77: 55:41:88:ec:e4:16:52:59:46:9a:7b:af:5e:b1:4c:60:3c:3c: 40:a7:90:73:c4:9e:05:84:60:1c:00:76:c7:6d:12:b8:dd:ef: 35:21:f8:4f:5f:b7:f4:42:ec:5f:bd:d0:68:78:de:d4:00:11: 32:f3:b4:27:0c:bb:53:be:82:70:d3:d5:f1:65:90:85:f1:d3: 18:2b:b9:20:c9:87:81:fa:e7:03:89:3f:43:f7:12:c1:f9:10: f7:6c:76:b4:74:b5:02:2d:ee:57:3c:18:d5:88:36:92:0d:97: 2e:4c:e6:34:d5:4d:66:a0:33:05:2c:d3:bc:47:59:6a:39:5f: 92:e3:b0:a9 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDwIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTAyMTgw ODIzMjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY0QkNDNEFGQzE1NzI5 OUYwMTNGNkY0QjY3Q0NEMTI1RTkxNDA3RDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHa3vNpwU5bcu7sVjTHbBMaqukExsCa7onvCUi3I9zWQ2utuzv eIJk9nlAO3R4yrz9ght6FutBz5KU1uvRQAQBa3X3wMFpgd0Q2sqoNV4pJNQKVOlp e9rhycDYBdPBeaxh6LeXZCfXpFGQ6ahY3glS4fzsJK1hUyxQj9aMTRV0jxs/KWxm SPODKBNCBJ68ER61eV6Gpx1069dImRnc5FlLcHSyJAETQaW6fKYUUdVOQjkfFVnC oXpyrWGs2g3BR/JIDfAM81co1bckH8M/L/i5l6tMtytp+/PrAbkHYsV//UzKZiqg lbM0WlpDKtom51ZRO8bYDa/Gkt4QZONOBfq1AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU9LzEr8FXKZ8BP29LZ8zRJekUB9AwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC85THpFcjhGWEtaOEJQMjlMWjh6 Ukpla1VCOUEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjIcw DQYJKoZIhvcNAQELBQADggEBAIzYmrhJsaGKwVn94icyW5roQji96kDFFDoXC4ot trj5JZ4IFbi6xaD7GMYGtBhWfFaxm+Y/4lJMGAemYgIdXACUDzMAVb1J6uWRhI+L pFmRKnaA2jk6ZjLNcuNRveWEsXaeFT8unoP8zUfYTw/HRTb9PjtTpMEUCvUSfJ8X d1VBiOzkFlJZRpp7r16xTGA8PECnkHPEngWEYBwAdsdtErjd7zUh+E9ft/RC7F+9 0Gh43tQAETLztCcMu1O+gnDT1fFlkIXx0xgruSDJh4H65wOJP0P3EsH5EPdsdrR0 tQIt7lc8GNWINpINly5M5jTVTWagMwUs07xHWWo5X5LjsKk= -----END CERTIFICATE-----Generated at Mon Apr 14 17:38:07 2025 by rpki-client