$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/Z3c6DaZuXJmzBp1vp4481w4BN_o.roa File: Z3c6DaZuXJmzBp1vp4481w4BN_o.roa (raw, json) Hash identifier: KAwUc02UEizvpVhVFQRiT892YNTBh5dm1b5Qwbx03Z0= Subject key identifier: 67:77:3A:0D:A6:6E:5C:99:B3:06:9D:6F:A7:8E:3C:D7:0E:01:37:FA Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0E80 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Z3c6DaZuXJmzBp1vp4481w4BN_o.roa Signing time: Mon 10 Feb 2025 14:16:26 +0000 ROA not before: Mon 10 Feb 2025 14:16:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 140.138.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 05:08:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3712 (0xe80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Feb 10 14:16:26 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=67773A0DA66E5C99B3069D6FA78E3CD70E0137FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:3e:6b:fb:66:8e:11:9c:90:d8:68:28:49:3f: 60:8c:48:42:ea:cf:e9:9c:8c:1d:5e:a5:f3:a2:3b: 2d:82:14:09:7c:82:5b:c4:3d:f1:dc:f1:1f:d0:68: b8:61:d5:cd:5c:3d:ef:23:57:4e:b5:b6:b9:5a:c5: 8c:4b:ab:b5:ef:fe:86:a3:49:1b:1f:f6:3c:e4:db: 56:b8:6b:3a:e7:2c:46:fc:2c:1c:b5:77:f5:59:24: 69:c9:d6:2a:a5:4c:3a:e6:92:46:da:36:0c:49:80: 18:bc:38:b7:8e:a4:39:ea:37:cd:fe:c4:a3:af:2e: a0:0b:33:89:9f:d9:e7:33:ae:e4:78:c2:78:08:ec: 7a:6f:45:74:e2:5c:5e:ac:c4:b8:e9:7b:4d:d0:6c: af:d2:44:3a:28:d3:4d:9c:c3:58:ea:d6:a2:67:d4: 54:df:1e:71:78:36:76:18:d5:75:d1:04:0a:9c:04: f9:6a:fa:5a:02:70:29:e4:e9:46:05:da:8d:0a:ff: d1:61:2c:20:eb:bd:a9:3f:b9:8f:5f:27:5d:a7:1f: 35:b5:22:96:d9:8b:e8:26:00:b3:80:87:90:a0:88: 70:65:36:e5:80:9c:73:6e:eb:d0:fc:54:94:95:05: 81:94:41:c0:4f:7f:4a:df:eb:e8:69:4a:3d:4d:41: 32:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:77:3A:0D:A6:6E:5C:99:B3:06:9D:6F:A7:8E:3C:D7:0E:01:37:FA X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Z3c6DaZuXJmzBp1vp4481w4BN_o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.138.0.0/16 Signature Algorithm: sha256WithRSAEncryption 30:4a:98:91:e8:6e:d5:87:4e:44:48:42:93:80:19:ae:04:fb: 6a:0a:46:5a:65:e0:ae:bf:84:fb:17:21:11:f3:a1:2d:35:a4: 6e:ba:23:0e:3b:06:a4:a7:04:6a:c7:a6:d1:d6:6e:ea:cd:be: a8:d2:6d:72:a7:e7:47:92:dd:fc:31:b5:e9:71:07:ef:2b:07: b7:26:77:97:1a:88:09:d6:0a:b9:d0:4a:70:ba:47:a1:71:a2: 58:25:b6:c2:21:40:7c:2b:52:30:de:d4:7d:53:f8:12:46:64: b3:3a:8c:53:36:a6:16:df:16:ca:cb:2e:26:bd:b9:e2:92:2d: c5:ed:e0:0a:3d:87:3c:86:e4:0e:d8:6c:72:f8:fe:d5:f2:e2: 04:f0:a9:d8:f0:51:e5:de:69:21:ec:fb:6f:df:21:cf:d4:62: 70:bb:53:b7:af:d4:fb:68:65:e0:28:79:79:5f:cd:1f:b7:89: 4f:4b:83:60:55:21:de:37:a2:cc:34:3c:82:6e:5d:af:e5:5d: d1:a4:e7:5e:d0:b9:2c:12:af:3e:6d:bc:5c:36:43:cd:89:8f: ee:ca:bd:63:3b:09:9a:86:a4:76:cb:7d:7a:27:d2:d4:48:41: 7b:87:15:32:89:0e:63:70:3a:18:5a:46:f3:e9:39:8b:02:72: 0a:a5:6b:c8 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDoAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTAyMTAx NDE2MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY3NzczQTBEQTY2RTVD OTlCMzA2OUQ2RkE3OEUzQ0Q3MEUwMTM3RkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXPmv7Zo4RnJDYaChJP2CMSELqz+mcjB1epfOiOy2CFAl8glvE PfHc8R/QaLhh1c1cPe8jV061trlaxYxLq7Xv/oajSRsf9jzk21a4azrnLEb8LBy1 d/VZJGnJ1iqlTDrmkkbaNgxJgBi8OLeOpDnqN83+xKOvLqALM4mf2eczruR4wngI 7HpvRXTiXF6sxLjpe03QbK/SRDoo002cw1jq1qJn1FTfHnF4NnYY1XXRBAqcBPlq +loCcCnk6UYF2o0K/9FhLCDrvak/uY9fJ12nHzW1IpbZi+gmALOAh5CgiHBlNuWA nHNu69D8VJSVBYGUQcBPf0rf6+hpSj1NQTIhAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUZ3c6DaZuXJmzBp1vp4481w4BN/owHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9aM2M2RGFadVhKbXpCcDF2cDQ0 ODF3NEJOX28ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjIow DQYJKoZIhvcNAQELBQADggEBADBKmJHobtWHTkRIQpOAGa4E+2oKRlpl4K6/hPsX IRHzoS01pG66Iw47BqSnBGrHptHWburNvqjSbXKn50eS3fwxtelxB+8rB7cmd5ca iAnWCrnQSnC6R6FxolgltsIhQHwrUjDe1H1T+BJGZLM6jFM2phbfFsrLLia9ueKS LcXt4Ao9hzyG5A7YbHL4/tXy4gTwqdjwUeXeaSHs+2/fIc/UYnC7U7ev1PtoZeAo eXlfzR+3iU9Lg2BVId43osw0PIJuXa/lXdGk517QuSwSrz5tvFw2Q82Jj+7KvWM7 CZqGpHbLfXon0tRIQXuHFTKJDmNwOhhaRvPpOYsCcgqla8g= -----END CERTIFICATE-----Generated at Wed Apr 16 04:38:20 2025 by rpki-client