$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/STxpw49hOz74BV9feonu22WoDYc.roa File: STxpw49hOz74BV9feonu22WoDYc.roa (raw, json) Hash identifier: V3tvqgI4qdGt8q+YUytIhLRdvPDYePnxvYcltXvTTCQ= Subject key identifier: 49:3C:69:C3:8F:61:3B:3E:F8:05:5F:5F:7A:89:EE:DB:65:A8:0D:87 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0EF8 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/STxpw49hOz74BV9feonu22WoDYc.roa Signing time: Tue 18 Feb 2025 07:44:58 +0000 ROA not before: Tue 18 Feb 2025 07:44:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17716 IP address blocks: 140.131.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 10:06:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3832 (0xef8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Feb 18 07:44:58 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=493C69C38F613B3EF8055F5F7A89EEDB65A80D87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d3:85:d6:b4:31:3f:f4:2c:79:f9:8c:62:27: 79:d4:c4:21:07:83:31:c1:fb:3c:f4:cc:23:da:a3: f7:81:80:78:d0:ae:eb:4b:a9:9f:24:d0:50:63:c1: 56:34:1d:00:29:cc:5b:84:13:2e:54:a5:f4:7d:6e: 4c:ef:ec:e4:4b:4d:04:55:c5:28:3a:07:05:24:4b: 34:8e:7e:67:db:5b:ac:a4:31:0f:da:c1:e4:53:58: b7:b3:fe:06:9a:1c:e2:b1:af:95:3d:13:85:e0:ae: f5:54:76:cd:b3:75:64:31:49:6a:49:8c:03:c1:a3: 98:f2:7d:a9:19:2f:52:8d:52:0e:d3:8c:e9:b8:18: 16:bd:e7:e6:d5:3d:0e:82:4f:64:bf:61:a4:0f:1d: 7d:9b:b3:0d:08:b3:99:1f:d5:d5:d6:a6:de:02:82: 05:8c:79:5b:6a:9a:7d:44:ee:e1:14:19:bf:5c:dc: 0e:8e:f5:1d:bb:58:4b:d2:62:24:d2:49:83:cb:1e: dc:d0:1b:38:0d:99:74:e1:1b:9f:0c:1f:84:94:db: 75:72:34:ed:37:31:fd:7a:d7:5b:69:69:c0:7a:43: 63:c8:38:96:b8:a4:f9:44:72:f8:94:97:40:1a:8d: a6:53:74:85:fa:7a:7d:3e:c0:54:45:65:f8:e3:e6: 90:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:3C:69:C3:8F:61:3B:3E:F8:05:5F:5F:7A:89:EE:DB:65:A8:0D:87 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/STxpw49hOz74BV9feonu22WoDYc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.131.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6a:2f:1a:2e:08:15:6c:b3:ca:b6:1e:0f:6f:1f:0c:bd:a5:5d: b0:0c:a7:1f:17:41:1a:4a:7a:90:fb:e9:ce:03:2d:30:9e:ba: fc:7d:61:4b:08:e6:21:f0:e6:f1:41:30:09:d1:8d:e3:08:91: c6:89:40:14:c4:68:14:31:11:ae:78:70:1d:63:e1:2b:3f:b4: 48:56:18:8e:8f:8d:7c:6e:40:9a:ab:e2:c7:b4:5b:ef:35:f7: 87:06:9a:01:3f:33:83:c2:68:42:be:e1:20:43:a4:46:bd:05: de:0a:47:89:af:7e:35:af:24:dd:68:b8:3d:0e:da:97:69:64: 9a:1b:95:a1:cd:4e:ba:88:7c:f5:e5:3c:2d:1a:ba:a2:5b:6f: 06:50:ec:49:0c:50:d0:3c:6e:a1:55:39:d3:2d:3e:cb:b8:d9: 05:8f:db:46:8e:ea:4b:e2:b2:bb:63:ab:a3:f9:df:ca:a4:0c: ed:df:07:2c:e8:a1:92:84:d4:27:e1:64:4f:68:2d:79:b7:4c: f6:39:7a:86:28:5f:0a:8a:ab:e0:7e:31:0d:c0:3f:e6:02:ad: 72:3f:4b:4d:92:5e:d6:2b:40:25:b4:a4:03:d4:9f:ef:1e:fa: 24:cb:df:a9:28:a5:ed:e4:a2:08:2c:dd:14:c8:f2:ab:d8:65: 1e:7b:b7:df -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDvgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTAyMTgw NzQ0NThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ5M0M2OUMzOEY2MTNC M0VGODA1NUY1RjdBODlFRURCNjVBODBEODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC904XWtDE/9Cx5+YxiJ3nUxCEHgzHB+zz0zCPao/eBgHjQrutL qZ8k0FBjwVY0HQApzFuEEy5UpfR9bkzv7ORLTQRVxSg6BwUkSzSOfmfbW6ykMQ/a weRTWLez/gaaHOKxr5U9E4XgrvVUds2zdWQxSWpJjAPBo5jyfakZL1KNUg7TjOm4 GBa95+bVPQ6CT2S/YaQPHX2bsw0Is5kf1dXWpt4CggWMeVtqmn1E7uEUGb9c3A6O 9R27WEvSYiTSSYPLHtzQGzgNmXThG58MH4SU23VyNO03Mf1611tpacB6Q2PIOJa4 pPlEcviUl0AajaZTdIX6en0+wFRFZfjj5pDPAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUSTxpw49hOz74BV9feonu22WoDYcwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9TVHhwdzQ5aE96NzRCVjlmZW9u dTIyV29EWWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjIMw DQYJKoZIhvcNAQELBQADggEBAGovGi4IFWyzyrYeD28fDL2lXbAMpx8XQRpKepD7 6c4DLTCeuvx9YUsI5iHw5vFBMAnRjeMIkcaJQBTEaBQxEa54cB1j4Ss/tEhWGI6P jXxuQJqr4se0W+8194cGmgE/M4PCaEK+4SBDpEa9Bd4KR4mvfjWvJN1ouD0O2pdp ZJoblaHNTrqIfPXlPC0auqJbbwZQ7EkMUNA8bqFVOdMtPsu42QWP20aO6kvisrtj q6P538qkDO3fByzooZKE1CfhZE9oLXm3TPY5eoYoXwqKq+B+MQ3AP+YCrXI/S02S XtYrQCW0pAPUn+8e+iTL36kope3koggs3RTI8qvYZR57t98= -----END CERTIFICATE-----Generated at Mon Apr 7 09:09:53 2025 by rpki-client