$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/i3LvAG88ohflZOlUfHBRBQAvJtQ.roa File: i3LvAG88ohflZOlUfHBRBQAvJtQ.roa (raw, json) Hash identifier: sEk5tsTKgSKRMkMA8aY5GdBkhDzDqD7wLISNNbw9jYA= Subject key identifier: 8B:72:EF:00:6F:3C:A2:17:E5:64:E9:54:7C:70:51:05:00:2F:26:D4 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0E7E Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/i3LvAG88ohflZOlUfHBRBQAvJtQ.roa Signing time: Mon 10 Feb 2025 14:16:26 +0000 ROA not before: Mon 10 Feb 2025 14:16:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 192.83.166.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 22:26:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3710 (0xe7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Feb 10 14:16:26 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8B72EF006F3CA217E564E9547C705105002F26D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:77:e5:07:6e:48:d9:58:80:01:1b:17:86:ed: ca:97:9c:92:44:dd:45:e3:f5:74:b8:a5:39:cc:52: f5:75:b3:7c:51:14:46:d9:d6:1a:c6:13:20:d0:d6: fc:73:ce:d8:f3:5c:ac:04:b3:22:05:63:43:7a:5d: e5:79:17:1a:9b:4d:16:4b:08:db:aa:22:d6:11:5d: db:87:12:f0:69:e9:6c:f6:03:69:49:de:1d:33:09: 99:ec:a2:75:01:c4:c2:5d:2b:c4:04:4a:2b:0e:05: 1a:6a:0d:f6:52:ac:3f:07:de:6b:05:a5:43:ae:d9: 21:3a:4c:fd:4d:93:f3:12:e1:11:3b:84:dc:c6:e0: 14:f6:34:0e:e0:80:2d:5e:da:ca:27:22:de:a7:bc: af:16:84:c9:b9:14:45:13:98:fd:6a:4e:cc:1c:b9: b6:83:4c:c6:90:ab:d7:d8:5a:5b:95:c4:12:c1:d5: 92:c7:21:0e:65:60:20:6e:33:7a:30:f5:c4:78:11: 0d:00:ad:4e:dd:28:88:d2:c7:13:4c:12:26:21:a0: 89:8a:9b:40:fe:3d:eb:24:5b:e6:92:cc:98:b8:2b: f8:e8:57:21:4c:41:7c:40:da:1a:c7:c7:c9:2c:20: f3:b1:33:80:9f:dc:39:3f:92:ba:ca:bb:45:b8:03: 33:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:72:EF:00:6F:3C:A2:17:E5:64:E9:54:7C:70:51:05:00:2F:26:D4 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/i3LvAG88ohflZOlUfHBRBQAvJtQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.83.166.0/23 Signature Algorithm: sha256WithRSAEncryption 56:40:8e:2e:ec:eb:05:6c:aa:50:40:06:31:be:3a:5b:31:3b: e5:41:58:b0:f6:c2:39:a1:8c:09:8a:c1:7e:30:74:46:bf:c8: 8c:83:64:99:c3:f8:28:19:fc:33:53:c0:36:92:08:57:4b:a5: c4:76:ab:7f:29:2d:17:65:5a:ce:90:f2:0b:61:54:a9:c3:1e: ec:c0:52:0f:a1:5a:af:c2:82:23:f0:7d:9c:11:1e:69:ad:c6: 42:92:dd:6b:04:38:f0:23:d3:88:57:0f:da:84:4a:5b:7b:f4: 72:a8:9b:93:d8:8f:56:ab:78:16:14:d2:f2:53:9b:df:d1:6e: 33:23:ab:fe:65:f9:df:ef:d3:6a:5a:af:22:bb:42:07:03:1b: 9f:9f:4c:24:03:ea:04:48:8b:bd:0e:41:5a:4a:0a:70:5e:61: 3e:cc:79:de:b6:13:52:1c:8e:99:e1:34:d4:aa:1c:74:82:cd: 7b:dc:db:a9:70:e2:3f:83:86:e7:e8:17:2a:26:e7:b3:45:ef: af:39:08:a3:a3:71:1f:3e:9f:21:86:97:63:17:f5:8e:5c:71: e9:68:ae:3b:83:a7:a1:0d:c3:83:00:8f:88:27:ef:83:17:ad: 27:54:39:92:63:73:34:31:92:18:2f:ec:56:32:2c:78:6a:2b: 98:2b:a8:f2 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDn4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTAyMTAx NDE2MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhCNzJFRjAwNkYzQ0Ey MTdFNTY0RTk1NDdDNzA1MTA1MDAyRjI2RDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnd+UHbkjZWIABGxeG7cqXnJJE3UXj9XS4pTnMUvV1s3xRFEbZ 1hrGEyDQ1vxzztjzXKwEsyIFY0N6XeV5FxqbTRZLCNuqItYRXduHEvBp6Wz2A2lJ 3h0zCZnsonUBxMJdK8QESisOBRpqDfZSrD8H3msFpUOu2SE6TP1Nk/MS4RE7hNzG 4BT2NA7ggC1e2sonIt6nvK8WhMm5FEUTmP1qTswcubaDTMaQq9fYWluVxBLB1ZLH IQ5lYCBuM3ow9cR4EQ0ArU7dKIjSxxNMEiYhoImKm0D+PeskW+aSzJi4K/joVyFM QXxA2hrHx8ksIPOxM4Cf3Dk/krrKu0W4AzMxAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUi3LvAG88ohflZOlUfHBRBQAvJtQwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9pM0x2QUc4OG9oZmxaT2xVZkhC UkJRQXZKdFEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwFOm MA0GCSqGSIb3DQEBCwUAA4IBAQBWQI4u7OsFbKpQQAYxvjpbMTvlQViw9sI5oYwJ isF+MHRGv8iMg2SZw/goGfwzU8A2kghXS6XEdqt/KS0XZVrOkPILYVSpwx7swFIP oVqvwoIj8H2cER5prcZCkt1rBDjwI9OIVw/ahEpbe/RyqJuT2I9Wq3gWFNLyU5vf 0W4zI6v+Zfnf79NqWq8iu0IHAxufn0wkA+oESIu9DkFaSgpwXmE+zHnethNSHI6Z 4TTUqhx0gs173NupcOI/g4bn6BcqJuezRe+vOQijo3EfPp8hhpdjF/WOXHHpaK47 g6ehDcODAI+IJ++DF60nVDmSY3M0MZIYL+xWMix4aiuYK6jy -----END CERTIFICATE-----Generated at Wed Feb 19 22:08:26 2025 by rpki-client