$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/V-pGSYIOdbwrXvjeQR9lPbHBFOU.roa File: V-pGSYIOdbwrXvjeQR9lPbHBFOU.roa (raw, json) Hash identifier: ZSffJj4ZVRHFXbkfa6JhF7vELc5AA3DLagAmByjz4kY= Subject key identifier: 57:EA:46:49:82:0E:75:BC:2B:5E:F8:DE:41:1F:65:3D:B1:C1:14:E5 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0E86 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/V-pGSYIOdbwrXvjeQR9lPbHBFOU.roa Signing time: Mon 10 Feb 2025 14:16:27 +0000 ROA not before: Mon 10 Feb 2025 14:16:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 140.136.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 22:26:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3718 (0xe86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Feb 10 14:16:27 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=57EA4649820E75BC2B5EF8DE411F653DB1C114E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:25:81:51:1f:7d:23:6f:f7:b4:77:8f:72:bd: ef:38:7f:cd:1c:43:fc:25:50:7c:79:34:f0:6a:94: 67:1a:ab:a3:8c:53:ac:e8:5c:98:2c:f2:f9:9a:4b: 11:a5:92:b8:fd:79:c2:dc:88:3e:85:62:62:9a:2f: 07:55:9e:4d:b7:c7:57:06:d1:eb:60:32:a2:09:17: 9e:97:fc:30:5f:ba:7e:dc:ea:e3:ca:51:90:6f:ae: 5e:3e:41:45:81:47:eb:33:51:ee:48:8c:19:5a:87: b0:bc:0e:af:9f:60:bd:32:97:e0:eb:96:2d:ab:06: a9:2f:05:5b:fd:36:0d:57:12:91:1d:9b:b8:3c:88: d6:18:8f:f7:4b:22:6b:5f:6a:4b:f6:42:4e:22:b2: ce:41:8d:51:f7:ae:e7:78:07:e5:16:8f:d4:65:26: 39:5c:d3:f7:19:52:b8:a6:f0:38:b6:aa:08:04:81: b5:fa:ae:cb:8a:94:96:9b:28:ef:14:47:07:2e:20: 29:46:3c:1d:ed:70:ae:7f:33:b1:b2:77:dd:48:3b: 73:9e:0e:2a:f5:f4:82:a1:90:9d:08:34:9a:e1:d8: 68:66:cf:6c:61:e9:fc:e3:2e:cb:20:0d:b4:cd:84: 4e:ae:0b:a2:e6:c5:4f:eb:51:1a:60:df:d8:a1:0a: cb:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:EA:46:49:82:0E:75:BC:2B:5E:F8:DE:41:1F:65:3D:B1:C1:14:E5 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/V-pGSYIOdbwrXvjeQR9lPbHBFOU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.136.0.0/15 Signature Algorithm: sha256WithRSAEncryption 53:17:ce:85:dc:ed:18:c3:04:d3:11:b4:5c:d6:7f:6b:5e:fc: 79:9c:0f:ba:81:45:4c:f6:98:2f:a5:c9:c5:50:d5:3a:75:13: f9:f5:e6:81:83:f8:b5:8e:5f:1f:63:be:89:19:fe:66:51:c4: 9f:fa:e0:7f:e1:91:69:97:be:02:79:ed:de:18:e0:85:22:68: 2d:b2:a8:3a:b8:22:97:54:a7:76:5a:94:ca:06:e7:7b:5a:8f: 65:ec:1d:a7:46:92:e9:8c:be:2d:0b:c6:d2:b8:a0:de:c6:a4: 03:db:43:45:72:d6:8d:fa:9c:fb:e9:d0:e6:c2:92:93:d5:7b: 3f:33:38:41:ff:8c:15:70:f2:75:8e:af:58:5b:35:76:31:a9: 06:9e:be:bc:c6:1d:3b:00:6b:1c:d9:c9:09:de:10:3a:02:b8: 79:1e:db:0e:cd:53:6c:7c:ed:d7:7c:8c:a0:5b:1b:e0:f8:20: 39:91:14:70:5b:87:7a:34:84:9c:e8:13:bc:6f:8f:67:94:d3: 2f:a7:b1:b1:51:02:c1:40:55:bc:da:71:79:a7:7b:63:83:5a: 99:fb:a3:0a:0d:48:b0:fc:83:47:77:2a:12:ad:7f:72:cc:7b: 3c:30:55:ce:fb:bf:23:fd:50:61:0c:d5:f4:a7:53:6a:9a:a7: 1c:2f:74:29 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDoYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTAyMTAx NDE2MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU3RUE0NjQ5ODIwRTc1 QkMyQjVFRjhERTQxMUY2NTNEQjFDMTE0RTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4JYFRH30jb/e0d49yve84f80cQ/wlUHx5NPBqlGcaq6OMU6zo XJgs8vmaSxGlkrj9ecLciD6FYmKaLwdVnk23x1cG0etgMqIJF56X/DBfun7c6uPK UZBvrl4+QUWBR+szUe5IjBlah7C8Dq+fYL0yl+Drli2rBqkvBVv9Ng1XEpEdm7g8 iNYYj/dLImtfakv2Qk4iss5BjVH3rud4B+UWj9RlJjlc0/cZUrim8Di2qggEgbX6 rsuKlJabKO8URwcuIClGPB3tcK5/M7Gyd91IO3OeDir19IKhkJ0INJrh2Ghmz2xh 6fzjLssgDbTNhE6uC6LmxU/rURpg39ihCstBAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUV+pGSYIOdbwrXvjeQR9lPbHBFOUwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9WLXBHU1lJT2Rid3JYdmplUVI5 bFBiSEJGT1Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMBjIgw DQYJKoZIhvcNAQELBQADggEBAFMXzoXc7RjDBNMRtFzWf2te/HmcD7qBRUz2mC+l ycVQ1Tp1E/n15oGD+LWOXx9jvokZ/mZRxJ/64H/hkWmXvgJ57d4Y4IUiaC2yqDq4 IpdUp3ZalMoG53taj2XsHadGkumMvi0LxtK4oN7GpAPbQ0Vy1o36nPvp0ObCkpPV ez8zOEH/jBVw8nWOr1hbNXYxqQaevrzGHTsAaxzZyQneEDoCuHke2w7NU2x87dd8 jKBbG+D4IDmRFHBbh3o0hJzoE7xvj2eU0y+nsbFRAsFAVbzacXmne2ODWpn7owoN SLD8g0d3KhKtf3LMezwwVc77vyP9UGEM1fSnU2qapxwvdCk= -----END CERTIFICATE-----Generated at Wed Feb 19 21:56:44 2025 by rpki-client