$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/QBkQHA1GU_Nl4HYsQg1jsVwD95Y.roa File: QBkQHA1GU_Nl4HYsQg1jsVwD95Y.roa (raw, json) Hash identifier: A8B4cTaK8KjCOWLYQ6QErRIBv2wsN8xr9X0M0/hC1Yo= Subject key identifier: 40:19:10:1C:0D:46:53:F3:65:E0:76:2C:42:0D:63:B1:5C:03:F7:96 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0E90 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/QBkQHA1GU_Nl4HYsQg1jsVwD95Y.roa Signing time: Mon 10 Feb 2025 14:16:30 +0000 ROA not before: Mon 10 Feb 2025 14:16:30 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 140.128.0.0/13 maxlen: 13 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 22:26:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3728 (0xe90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Feb 10 14:16:30 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4019101C0D4653F365E0762C420D63B15C03F796 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c0:8a:8c:59:a0:20:69:66:3f:43:d5:20:2e: cf:d4:6e:6b:db:ee:64:ba:94:d4:f3:24:2c:7b:aa: 0b:aa:43:56:8a:48:4c:0c:55:24:d4:a2:90:a0:4e: 42:ce:71:91:76:47:61:5d:56:d5:dc:df:8d:25:db: 12:ee:43:97:a3:48:fe:78:53:59:5e:bb:a6:ca:cb: 22:29:33:50:bb:1c:b0:ed:ea:2d:9a:b3:f6:a3:68: 32:63:55:09:e6:6f:0a:4d:ac:44:49:63:74:20:cc: 8a:64:6c:d4:2f:ce:b2:7b:a5:d0:ac:ba:9a:f2:6d: 72:c1:d8:a5:16:02:4b:e1:c7:71:40:63:d2:0b:ac: e5:5f:67:8f:67:1c:73:e4:69:90:84:85:13:28:a3: 8b:f1:eb:4b:96:a0:4a:7d:fe:e7:5e:b5:13:dc:60: 7c:e8:1e:4b:f6:56:f6:27:ae:96:32:b4:80:f1:eb: 0c:c6:f8:b9:2e:ac:9e:32:c9:79:cb:7c:e9:3f:7d: 59:5b:b0:f0:7d:1c:50:03:71:a1:46:74:ee:e8:f1: 31:eb:f9:c9:8d:80:69:95:a9:e9:00:47:eb:7f:4d: 2c:66:b4:ff:f0:5e:8b:ac:e7:57:74:25:cf:14:64: 78:50:9b:1e:d2:1f:c4:a1:a7:9f:21:3c:8d:4a:9e: 15:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:19:10:1C:0D:46:53:F3:65:E0:76:2C:42:0D:63:B1:5C:03:F7:96 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/QBkQHA1GU_Nl4HYsQg1jsVwD95Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.128.0.0/13 Signature Algorithm: sha256WithRSAEncryption 23:34:64:f6:60:64:db:ee:64:f5:5b:4c:c1:11:3a:6c:f0:1a: 7c:d3:79:07:ae:34:c1:b2:b4:8f:5e:79:73:18:31:30:31:c6: b3:54:36:ac:2d:21:61:78:95:f6:cf:30:6a:0a:22:7b:3d:51: c4:8f:a3:b7:2b:2d:85:ac:34:c8:01:12:e1:fb:d6:e7:74:6a: bb:99:5e:23:f4:c2:73:f0:d2:02:9c:2a:c2:a4:14:09:e5:52: 7f:95:33:f7:e1:af:c7:cc:d1:47:82:6f:7e:a1:bd:2a:60:c8: 1a:b3:3e:24:72:dc:89:c1:02:57:a0:d2:61:1f:00:fb:fe:1f: a9:c1:f4:4c:e3:b9:c8:49:bb:2b:8e:f6:7d:a5:28:6f:5a:d5: 4d:56:12:b4:9b:57:2c:f4:c5:05:59:93:49:34:cb:8a:22:81: 09:40:69:0b:fd:24:8e:a9:8d:4e:49:27:ba:86:d5:58:04:af: 06:4f:05:ea:17:11:a5:15:1d:6b:c5:49:31:71:2a:42:22:11: 34:b2:47:ca:db:49:c0:e6:28:bb:6f:39:59:99:2c:13:1b:7f: 3b:41:f9:60:f5:38:c8:d1:c5:ca:23:0c:a4:c1:4b:b8:24:bc: ee:86:e3:f6:2f:bc:67:a8:fa:8d:95:07:56:fe:a9:4a:f5:cb: c8:5d:f1:25 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDpAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTAyMTAx NDE2MzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQwMTkxMDFDMEQ0NjUz RjM2NUUwNzYyQzQyMEQ2M0IxNUMwM0Y3OTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJwIqMWaAgaWY/Q9UgLs/Ubmvb7mS6lNTzJCx7qguqQ1aKSEwM VSTUopCgTkLOcZF2R2FdVtXc340l2xLuQ5ejSP54U1leu6bKyyIpM1C7HLDt6i2a s/ajaDJjVQnmbwpNrERJY3QgzIpkbNQvzrJ7pdCsuprybXLB2KUWAkvhx3FAY9IL rOVfZ49nHHPkaZCEhRMoo4vx60uWoEp9/udetRPcYHzoHkv2VvYnrpYytIDx6wzG +LkurJ4yyXnLfOk/fVlbsPB9HFADcaFGdO7o8THr+cmNgGmVqekAR+t/TSxmtP/w Xous51d0Jc8UZHhQmx7SH8Shp58hPI1KnhWJAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUQBkQHA1GU/Nl4HYsQg1jsVwD95YwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9RQmtRSEExR1VfTmw0SFlzUWcx anNWd0Q5NVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMDjIAw DQYJKoZIhvcNAQELBQADggEBACM0ZPZgZNvuZPVbTMEROmzwGnzTeQeuNMGytI9e eXMYMTAxxrNUNqwtIWF4lfbPMGoKIns9UcSPo7crLYWsNMgBEuH71ud0aruZXiP0 wnPw0gKcKsKkFAnlUn+VM/fhr8fM0UeCb36hvSpgyBqzPiRy3InBAleg0mEfAPv+ H6nB9EzjuchJuyuO9n2lKG9a1U1WErSbVyz0xQVZk0k0y4oigQlAaQv9JI6pjU5J J7qG1VgErwZPBeoXEaUVHWvFSTFxKkIiETSyR8rbScDmKLtvOVmZLBMbfztB+WD1 OMjRxcojDKTBS7gkvO6G4/YvvGeo+o2VB1b+qUr1y8hd8SU= -----END CERTIFICATE-----Generated at Wed Feb 19 22:08:01 2025 by rpki-client