$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/lVoyOX_GabGjxGp8oSrtoZdzDwY.roa File: lVoyOX_GabGjxGp8oSrtoZdzDwY.roa (raw, json) Hash identifier: Um1/xezN6vlN8IDLXEeFYTiPozTHyQBtIsFHXYN7a+0= Subject key identifier: 95:5A:32:39:7F:C6:69:B1:A3:C4:6A:7C:A1:2A:ED:A1:97:73:0F:06 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0EC3 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/lVoyOX_GabGjxGp8oSrtoZdzDwY.roa Signing time: Mon 17 Feb 2025 09:17:50 +0000 ROA not before: Mon 17 Feb 2025 09:17:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17716 IP address blocks: 140.122.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 10:06:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3779 (0xec3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Feb 17 09:17:50 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=955A32397FC669B1A3C46A7CA12AEDA197730F06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:fa:81:7d:3f:d0:19:03:23:ba:37:07:77:7e: c2:63:a6:db:b3:13:47:b0:df:10:17:9e:39:09:fa: fa:a8:54:c6:ef:3b:13:1a:a2:ee:9e:d7:09:e7:85: 3b:97:e5:2c:39:23:dc:9b:e2:5e:84:42:4d:08:71: 1d:08:08:92:c3:17:f6:0c:36:87:3f:11:c9:91:6f: 4d:15:c3:cf:85:ef:c7:3a:5c:0a:5e:07:e8:4f:14: a7:a7:c1:d3:aa:74:8d:96:c0:bb:d0:48:7c:d5:f5: da:57:9b:9d:dc:65:35:e5:1a:b6:51:c1:33:d9:9a: 0a:bc:cf:3f:b7:a1:14:d6:c3:87:e0:66:74:21:19: 87:4c:ee:0c:1d:db:0e:3a:b3:9f:dd:7e:09:05:cf: 42:95:03:cf:da:f6:df:7f:66:bc:cc:66:7b:fd:89: 91:38:24:56:ce:99:f5:34:c8:26:41:46:e1:41:13: 58:77:74:bf:9f:de:ee:2f:62:a6:3a:56:19:e6:04: 94:83:71:0f:ac:f3:e2:66:98:49:fc:0c:c4:c5:97: 77:d9:a8:cc:6c:e4:fd:de:c0:cd:d4:d8:09:ad:ba: 81:01:aa:c6:6f:31:83:38:e3:d1:1d:d7:e8:17:e0: a2:2b:93:56:c9:d6:86:43:1c:e5:a0:b7:7a:bc:0a: 7f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:5A:32:39:7F:C6:69:B1:A3:C4:6A:7C:A1:2A:ED:A1:97:73:0F:06 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/lVoyOX_GabGjxGp8oSrtoZdzDwY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.122.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4b:63:9c:d2:37:a7:80:fb:2e:6e:9c:33:9c:30:88:4c:15:e3: e4:cc:2f:69:6e:8a:4d:8b:68:15:9e:76:5f:2f:ed:05:77:c4: 2b:aa:f7:bc:75:51:9b:6d:84:c7:13:95:5f:ce:4c:a3:4b:34: 79:f3:53:02:8e:f9:e8:ff:ac:1f:60:59:04:73:3c:f4:3d:a5: ea:f0:98:0c:76:38:f8:89:79:86:ff:2d:dc:dd:c4:3f:73:f3: 01:35:1e:36:71:7e:9a:c1:2f:0b:4c:ec:b7:4a:ca:5c:02:62: 1b:a4:42:a5:e3:a3:ac:67:8c:f2:67:52:0e:2f:07:de:6f:6b: db:f4:97:7f:8e:a8:46:ac:14:44:0a:54:3d:87:f6:ca:cf:7f: cd:72:0a:20:c4:16:02:e4:17:56:b0:fc:07:2e:8e:4b:6e:7a: 19:62:66:8d:2b:59:8b:0f:22:0d:5e:7f:7c:f1:1e:39:34:87: e7:b5:2b:d8:8f:40:22:95:bc:1a:24:78:3e:79:0c:9b:d1:ce: bd:3d:75:dd:fd:5b:c2:d2:38:b7:72:5b:e5:f7:48:e8:c0:68: 8a:b1:50:90:12:d8:61:97:7f:78:99:06:ae:e8:d3:3b:8f:8d: c3:ec:79:0a:14:fe:6b:f3:01:61:82:73:d2:4a:a0:18:cd:b3: 9d:e4:c0:00 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDsMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTAyMTcw OTE3NTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk1NUEzMjM5N0ZDNjY5 QjFBM0M0NkE3Q0ExMkFFREExOTc3MzBGMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8+oF9P9AZAyO6Nwd3fsJjptuzE0ew3xAXnjkJ+vqoVMbvOxMa ou6e1wnnhTuX5Sw5I9yb4l6EQk0IcR0ICJLDF/YMNoc/EcmRb00Vw8+F78c6XApe B+hPFKenwdOqdI2WwLvQSHzV9dpXm53cZTXlGrZRwTPZmgq8zz+3oRTWw4fgZnQh GYdM7gwd2w46s5/dfgkFz0KVA8/a9t9/ZrzMZnv9iZE4JFbOmfU0yCZBRuFBE1h3 dL+f3u4vYqY6VhnmBJSDcQ+s8+JmmEn8DMTFl3fZqMxs5P3ewM3U2AmtuoEBqsZv MYM449Ed1+gX4KIrk1bJ1oZDHOWgt3q8Cn8hAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUlVoyOX/GabGjxGp8oSrtoZdzDwYwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9sVm95T1hfR2FiR2p4R3A4b1Ny dG9aZHpEd1kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjHow DQYJKoZIhvcNAQELBQADggEBAEtjnNI3p4D7Lm6cM5wwiEwV4+TML2luik2LaBWe dl8v7QV3xCuq97x1UZtthMcTlV/OTKNLNHnzUwKO+ej/rB9gWQRzPPQ9perwmAx2 OPiJeYb/LdzdxD9z8wE1HjZxfprBLwtM7LdKylwCYhukQqXjo6xnjPJnUg4vB95v a9v0l3+OqEasFEQKVD2H9srPf81yCiDEFgLkF1aw/AcujktuehliZo0rWYsPIg1e f3zxHjk0h+e1K9iPQCKVvBokeD55DJvRzr09dd39W8LSOLdyW+X3SOjAaIqxUJAS 2GGXf3iZBq7o0zuPjcPseQoU/mvzAWGCc9JKoBjNs53kwAA= -----END CERTIFICATE-----Generated at Mon Apr 7 09:20:28 2025 by rpki-client