$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/brjsZN6hCK8AO46ue3U80V5iG5U.roa File: brjsZN6hCK8AO46ue3U80V5iG5U.roa (raw, json) Hash identifier: OzmSf/8HBGGs1jGYVyN2u1UI2KGN7+zmPha3MDjjn4s= Subject key identifier: 6E:B8:EC:64:DE:A1:08:AF:00:3B:8E:AE:7B:75:3C:D1:5E:62:1B:95 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0E8C Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/brjsZN6hCK8AO46ue3U80V5iG5U.roa Signing time: Mon 10 Feb 2025 14:16:29 +0000 ROA not before: Mon 10 Feb 2025 14:16:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 192.192.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 22:26:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3724 (0xe8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Feb 10 14:16:29 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6EB8EC64DEA108AF003B8EAE7B753CD15E621B95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:23:87:c3:91:13:ce:f2:3c:90:81:c1:8b:93: 6e:f0:45:02:dc:1e:d3:42:84:84:79:2a:2d:a5:06: 4e:7c:97:ee:26:33:16:1a:27:53:0f:b9:c6:a7:0a: ca:11:0d:20:ed:8a:d4:0c:06:32:1f:ea:e9:7c:fd: c1:fc:dc:af:f3:68:b6:c4:75:18:ab:7c:77:7f:5a: b6:f6:0b:a8:8f:ef:12:88:38:d6:a6:30:23:db:18: 62:6b:44:c9:32:e4:da:58:69:28:b0:03:c2:78:cc: d0:ed:0a:94:07:89:e1:12:99:36:81:92:cf:0a:62: 55:ad:89:fd:d2:d6:de:73:6d:c2:1c:33:20:1a:d8: df:35:16:5d:58:2b:e1:c2:82:d0:ee:62:67:d5:f7: fd:85:42:29:b1:0c:5d:9d:4d:fc:19:96:32:52:d5: 73:0b:85:20:77:c4:f3:5f:e7:09:e4:b0:e6:23:da: eb:53:b7:bd:a0:df:88:37:3e:4a:cd:a2:43:b1:de: ef:72:ea:1c:f3:13:bb:ab:90:57:26:96:c5:7a:55: 0e:82:a9:fb:17:a5:04:32:65:12:e8:31:de:bf:1e: 54:c6:5e:11:ce:8d:46:3b:3d:b9:52:2e:69:2b:06: 22:06:28:dc:72:bb:4b:43:2d:a0:1f:6a:0b:e6:6c: 79:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:B8:EC:64:DE:A1:08:AF:00:3B:8E:AE:7B:75:3C:D1:5E:62:1B:95 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/brjsZN6hCK8AO46ue3U80V5iG5U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.192.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4b:c0:41:c0:d6:c6:09:5c:e7:da:51:cd:50:50:53:68:70:38: 10:eb:ca:34:91:3a:6e:90:20:97:21:10:22:5c:67:84:37:0e: fb:da:86:f7:92:cd:b4:cc:d5:dd:e3:43:19:c3:35:e6:15:61: d4:1c:e7:4d:82:e1:1d:da:06:1b:47:5a:59:22:1f:1b:ae:50: 7d:20:05:0c:29:3d:e4:7d:43:85:e9:68:fc:a2:9e:5e:42:d0: 2d:d0:56:28:e3:9d:20:a2:c4:ff:8b:ae:2d:ae:95:de:f6:73: b7:77:10:0c:51:ee:67:82:0a:03:67:f9:af:72:5b:ff:63:40: 27:2d:e1:28:94:8e:7b:98:f1:89:75:9a:07:0f:f1:2f:d5:0d: c8:fb:5c:31:8f:ca:6f:8e:77:39:4b:91:54:de:bb:c7:ee:05: 9f:f1:ea:d6:e3:48:04:11:f0:02:15:89:95:72:66:46:a9:68: 39:f9:46:d4:34:a5:18:c7:c4:4b:60:1a:f1:dc:4a:c1:f1:18: 04:17:2e:a8:d9:03:58:49:c7:27:ea:da:e9:f4:30:53:9d:21: 86:26:ab:4f:5c:57:90:ae:dd:b4:11:5a:cd:3b:61:ad:15:af: 79:b4:d0:ee:94:3b:86:ae:10:fb:0c:2f:33:f4:e4:67:c2:93: af:e1:d7:46 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDowwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTAyMTAx NDE2MjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZFQjhFQzY0REVBMTA4 QUYwMDNCOEVBRTdCNzUzQ0QxNUU2MjFCOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCI4fDkRPO8jyQgcGLk27wRQLcHtNChIR5Ki2lBk58l+4mMxYa J1MPucanCsoRDSDtitQMBjIf6ul8/cH83K/zaLbEdRirfHd/Wrb2C6iP7xKIONam MCPbGGJrRMky5NpYaSiwA8J4zNDtCpQHieESmTaBks8KYlWtif3S1t5zbcIcMyAa 2N81Fl1YK+HCgtDuYmfV9/2FQimxDF2dTfwZljJS1XMLhSB3xPNf5wnksOYj2utT t72g34g3PkrNokOx3u9y6hzzE7urkFcmlsV6VQ6CqfsXpQQyZRLoMd6/HlTGXhHO jUY7PblSLmkrBiIGKNxyu0tDLaAfagvmbHkjAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUbrjsZN6hCK8AO46ue3U80V5iG5UwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9icmpzWk42aENLOEFPNDZ1ZTNV ODBWNWlHNVUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAwMAw DQYJKoZIhvcNAQELBQADggEBAEvAQcDWxglc59pRzVBQU2hwOBDryjSROm6QIJch ECJcZ4Q3DvvahveSzbTM1d3jQxnDNeYVYdQc502C4R3aBhtHWlkiHxuuUH0gBQwp PeR9Q4XpaPyinl5C0C3QVijjnSCixP+Lri2uld72c7d3EAxR7meCCgNn+a9yW/9j QCct4SiUjnuY8Yl1mgcP8S/VDcj7XDGPym+OdzlLkVTeu8fuBZ/x6tbjSAQR8AIV iZVyZkapaDn5RtQ0pRjHxEtgGvHcSsHxGAQXLqjZA1hJxyfq2un0MFOdIYYmq09c V5Cu3bQRWs07Ya0Vr3m00O6UO4auEPsMLzP05GfCk6/h10Y= -----END CERTIFICATE-----Generated at Wed Feb 19 22:06:09 2025 by rpki-client