$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/_xnpT_rj4Rs3Tc4LRpp3_saknII.roa File: _xnpT_rj4Rs3Tc4LRpp3_saknII.roa (raw, json) Hash identifier: yo6nN7c4zNHUflSSPqD6wZX2Biq8LJ1rGW8jkBaSTbs= Subject key identifier: FF:19:E9:4F:FA:E3:E1:1B:37:4D:CE:0B:46:9A:77:FE:C6:A4:9C:82 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0E87 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/_xnpT_rj4Rs3Tc4LRpp3_saknII.roa Signing time: Mon 10 Feb 2025 14:16:27 +0000 ROA not before: Mon 10 Feb 2025 14:16:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17716 IP address blocks: 140.112.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 05:08:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3719 (0xe87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Feb 10 14:16:27 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FF19E94FFAE3E11B374DCE0B469A77FEC6A49C82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c0:7b:f4:f0:da:89:ca:99:dc:6e:b9:b5:27: 8d:14:bd:75:1e:9e:bc:6e:fe:a2:e1:a9:45:5e:9d: 95:87:03:23:74:be:f4:ef:8a:e3:5e:c5:05:3f:b9: d4:27:d2:43:25:72:a1:44:09:5d:d2:ef:8e:30:85: 8c:25:cc:31:da:c3:7e:1c:8c:85:e1:94:4c:21:82: ba:69:82:79:e1:2c:32:01:06:fe:49:82:aa:13:40: 01:3c:57:9e:b3:02:ca:e4:8b:21:e6:1c:fd:d9:f9: cd:29:6b:29:14:bb:7b:f1:07:4f:e8:e1:08:b9:32: f7:24:a7:4e:33:a7:6b:d2:c2:57:2f:c0:75:48:8a: 86:b2:d1:37:0b:41:4b:2f:de:49:7c:40:ca:0a:c9: 8f:a3:99:b6:cc:13:86:c7:83:a7:57:be:72:6c:21: b7:be:3b:de:15:39:06:10:01:cc:ba:1f:0a:3c:90: ec:86:47:c6:14:21:d1:14:ca:93:b5:e6:2f:1e:83: 59:e2:fd:06:3b:ab:ee:82:0a:7a:e5:49:2c:99:24: b0:7f:54:a1:91:2e:eb:a7:21:a8:ed:e8:6e:7e:3b: 53:49:5a:94:ba:de:76:e5:6c:87:07:39:3e:2f:5c: 45:c4:61:74:19:83:c5:cb:55:41:66:83:c4:62:26: 43:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:19:E9:4F:FA:E3:E1:1B:37:4D:CE:0B:46:9A:77:FE:C6:A4:9C:82 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/_xnpT_rj4Rs3Tc4LRpp3_saknII.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.112.0.0/16 Signature Algorithm: sha256WithRSAEncryption 41:a6:60:5b:2e:ba:9a:aa:31:6a:27:bb:03:a3:94:58:da:ca: d0:f1:8a:6a:ce:0e:f0:ca:4b:c5:c9:80:e4:62:36:8b:43:ef: 9b:77:37:47:c1:37:2e:6c:e2:ce:d8:0a:62:ab:1a:b6:21:d5: 6a:38:de:ff:b0:fe:ba:ce:cd:b9:e6:75:99:4d:25:c8:25:01: 2c:90:dc:c4:f3:f9:ec:97:31:66:9c:fa:d8:ab:54:0f:f8:9b: e4:07:77:2e:e8:2a:b9:c1:a4:e1:17:2e:1b:31:c5:01:fa:e6: e3:75:d3:57:c3:37:ee:9b:fe:25:84:ef:0c:6b:18:83:d0:3d: 31:d4:27:b0:ae:58:4f:d7:73:84:f4:e1:3f:3a:0e:96:fc:fa: 9d:0e:9e:80:6d:ce:fe:0b:4f:d7:6d:40:91:2e:02:1b:22:ce: fa:30:69:60:76:ed:73:cc:b5:1d:b0:c8:0c:dd:2e:50:91:2f: 13:76:15:e0:ee:e1:9e:3b:3b:a0:93:a4:df:d2:b8:ca:88:c0: d8:07:3f:17:0f:e7:17:f5:6e:96:e1:40:ef:f7:5a:9b:99:35: 44:60:ff:9f:7c:0b:1e:0d:47:f4:e6:27:36:c2:41:26:ee:a0: b7:2b:e5:fc:5a:13:8c:23:a5:2f:cb:1e:d3:6a:1e:32:8e:a6: cf:fa:e9:06 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDocwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTAyMTAx NDE2MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZGMTlFOTRGRkFFM0Ux MUIzNzREQ0UwQjQ2OUE3N0ZFQzZBNDlDODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgwHv08NqJypncbrm1J40UvXUenrxu/qLhqUVenZWHAyN0vvTv iuNexQU/udQn0kMlcqFECV3S744whYwlzDHaw34cjIXhlEwhgrppgnnhLDIBBv5J gqoTQAE8V56zAsrkiyHmHP3Z+c0paykUu3vxB0/o4Qi5Mvckp04zp2vSwlcvwHVI ioay0TcLQUsv3kl8QMoKyY+jmbbME4bHg6dXvnJsIbe+O94VOQYQAcy6Hwo8kOyG R8YUIdEUypO15i8eg1ni/QY7q+6CCnrlSSyZJLB/VKGRLuunIajt6G5+O1NJWpS6 3nblbIcHOT4vXEXEYXQZg8XLVUFmg8RiJkNFAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU/xnpT/rj4Rs3Tc4LRpp3/saknIIwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9feG5wVF9yajRSczNUYzRMUnBw M19zYWtuSUkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjHAw DQYJKoZIhvcNAQELBQADggEBAEGmYFsuupqqMWonuwOjlFjaytDximrODvDKS8XJ gORiNotD75t3N0fBNy5s4s7YCmKrGrYh1Wo43v+w/rrOzbnmdZlNJcglASyQ3MTz +eyXMWac+tirVA/4m+QHdy7oKrnBpOEXLhsxxQH65uN101fDN+6b/iWE7wxrGIPQ PTHUJ7CuWE/Xc4T04T86Dpb8+p0OnoBtzv4LT9dtQJEuAhsizvowaWB27XPMtR2w yAzdLlCRLxN2FeDu4Z47O6CTpN/SuMqIwNgHPxcP5xf1bpbhQO/3WpuZNURg/598 Cx4NR/TmJzbCQSbuoLcr5fxaE4wjpS/LHtNqHjKOps/66QY= -----END CERTIFICATE-----Generated at Wed Apr 16 04:36:24 2025 by rpki-client