$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/J040_XXkY3EcGOhgfWIgCzbV3bk.roa File: J040_XXkY3EcGOhgfWIgCzbV3bk.roa (raw, json) Hash identifier: J+3Uhha//3EKucM/Me0FC889CC9uPNu0hf1xc47boIM= Subject key identifier: 27:4E:34:FD:75:E4:63:71:1C:18:E8:60:7D:62:20:0B:36:D5:DD:B9 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0F00 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/J040_XXkY3EcGOhgfWIgCzbV3bk.roa Signing time: Tue 18 Feb 2025 08:22:33 +0000 ROA not before: Tue 18 Feb 2025 08:22:33 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 140.134.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 20:36:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3840 (0xf00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Feb 18 08:22:33 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=274E34FD75E463711C18E8607D62200B36D5DDB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c1:86:1b:c9:d4:c7:9b:64:3e:02:79:22:cf: ec:f5:5e:18:0a:ec:03:cc:d1:db:0e:7c:0a:fd:d3: 23:71:40:1f:c1:8f:bc:be:4c:e3:52:fe:e9:06:4e: 19:4b:e5:25:58:84:1f:63:0c:87:ba:5f:f8:eb:ba: 0a:c5:c7:41:12:f9:67:6b:a3:3c:ab:c8:36:a5:55: 04:89:93:c1:e9:6a:e8:19:92:2e:3f:eb:7f:da:e4: 24:5f:bc:d6:f5:43:b5:6f:fc:46:41:d0:03:55:15: bd:a5:3e:9e:42:52:57:aa:46:4a:aa:33:56:35:c6: 62:a5:1f:e9:aa:3a:3a:51:e3:a0:94:e1:3a:e0:99: d2:08:b1:d7:be:7c:ec:58:b1:c5:83:59:dd:77:b9: 84:c9:59:f1:3d:8a:c5:37:6d:10:cd:e6:60:fa:47: 5e:c9:eb:71:1c:bd:4f:ba:e9:14:70:6b:b4:41:04: 74:c3:5e:fd:fb:8c:83:11:ae:28:c8:66:8b:ae:1c: 27:a9:95:e4:e2:9e:d5:3d:84:b3:00:b6:12:45:33: 3d:f6:e4:72:54:8c:98:de:74:60:4e:59:d6:f5:96: cf:82:6b:83:5d:26:b5:6d:1d:e5:65:57:37:b0:d4: b9:5a:ae:08:88:6b:b1:46:e7:8d:a0:a9:79:89:55: 94:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:4E:34:FD:75:E4:63:71:1C:18:E8:60:7D:62:20:0B:36:D5:DD:B9 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/J040_XXkY3EcGOhgfWIgCzbV3bk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.134.0.0/16 Signature Algorithm: sha256WithRSAEncryption 04:50:97:ca:00:6d:e5:62:02:b1:cb:79:e1:76:15:e1:c0:07: 12:10:db:54:93:53:3a:77:53:39:0e:34:7f:d4:1f:f4:e9:e2: a4:a5:ad:03:95:4c:a5:13:fd:7b:ac:ac:a0:14:ec:e6:24:a0: a1:f7:52:77:65:b6:e4:8a:00:58:8b:26:a5:59:1a:ae:21:b1: 0f:d9:87:0d:9b:a0:2a:6a:8e:df:5d:27:fd:0f:5b:31:63:c5: 60:14:11:da:c7:8e:d0:2a:c7:8c:7c:bd:62:c5:75:65:09:a2: 95:4e:5d:07:8a:fa:72:59:4d:14:54:2a:71:42:51:75:58:a9: 4b:db:3c:fd:c7:95:3f:54:13:bf:a3:fc:8d:b8:14:7d:2f:c4: 6f:bd:4d:ca:55:e7:58:8d:72:f4:42:38:5e:ba:95:e7:b9:88: 2b:8c:73:73:8b:fc:68:d6:61:f2:28:6c:52:45:a6:f4:98:a2: ae:d7:fd:9b:80:0d:c6:39:94:5a:4d:6a:3e:f9:99:8b:30:58: f3:95:53:96:b3:71:cf:88:ea:bb:05:5f:f1:1d:0e:f8:0d:81: 51:de:07:7d:90:20:38:6f:00:be:32:e6:95:9d:ca:94:fc:2c: 11:bf:c3:31:18:62:a9:be:ce:aa:84:04:88:38:8e:39:67:39: 73:a3:f8:4b -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDwAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTAyMTgw ODIyMzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI3NEUzNEZENzVFNDYz NzExQzE4RTg2MDdENjIyMDBCMzZENUREQjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxwYYbydTHm2Q+Ankiz+z1XhgK7APM0dsOfAr90yNxQB/Bj7y+ TONS/ukGThlL5SVYhB9jDIe6X/jrugrFx0ES+WdrozyryDalVQSJk8HpaugZki4/ 63/a5CRfvNb1Q7Vv/EZB0ANVFb2lPp5CUleqRkqqM1Y1xmKlH+mqOjpR46CU4Trg mdIIsde+fOxYscWDWd13uYTJWfE9isU3bRDN5mD6R17J63EcvU+66RRwa7RBBHTD Xv37jIMRrijIZouuHCepleTintU9hLMAthJFMz325HJUjJjedGBOWdb1ls+Ca4Nd JrVtHeVlVzew1LlargiIa7FG542gqXmJVZQnAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUJ040/XXkY3EcGOhgfWIgCzbV3bkwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9KMDQwX1hYa1kzRWNHT2hnZldJ Z0N6YlYzYmsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjIYw DQYJKoZIhvcNAQELBQADggEBAARQl8oAbeViArHLeeF2FeHABxIQ21STUzp3UzkO NH/UH/Tp4qSlrQOVTKUT/XusrKAU7OYkoKH3UndltuSKAFiLJqVZGq4hsQ/Zhw2b oCpqjt9dJ/0PWzFjxWAUEdrHjtAqx4x8vWLFdWUJopVOXQeK+nJZTRRUKnFCUXVY qUvbPP3HlT9UE7+j/I24FH0vxG+9TcpV51iNcvRCOF66lee5iCuMc3OL/GjWYfIo bFJFpvSYoq7X/ZuADcY5lFpNaj75mYswWPOVU5azcc+I6rsFX/EdDvgNgVHeB32Q IDhvAL4y5pWdypT8LBG/wzEYYqm+zqqEBIg4jjlnOXOj+Es= -----END CERTIFICATE-----Generated at Sun Apr 6 18:48:02 2025 by rpki-client