$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/vK6lZVwwFrrGosRR3Cb0QmYGMe8.roa File: vK6lZVwwFrrGosRR3Cb0QmYGMe8.roa (raw, json) Hash identifier: cv2XkTceg5X5AwGrrfbtgS4K4/3cYC/kUDi7E+IBH3c= Subject key identifier: BC:AE:A5:65:5C:30:16:BA:C6:A2:C4:51:DC:26:F4:42:66:06:31:EF Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 0EED Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/vK6lZVwwFrrGosRR3Cb0QmYGMe8.roa Signing time: Mon 10 Feb 2025 14:16:13 +0000 ROA not before: Mon 10 Feb 2025 14:16:13 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 210.62.240.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 02:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3821 (0xeed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Feb 10 14:16:13 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BCAEA5655C3016BAC6A2C451DC26F442660631EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:2d:6c:59:10:81:c3:9e:48:38:63:2f:56:07: 56:46:5a:62:19:81:27:ec:42:68:3c:3a:e1:fb:f6: 13:d3:f7:d0:0a:5e:cc:f9:e8:2a:bc:23:47:9a:09: 68:72:5e:28:a6:f0:24:26:24:ec:00:86:f8:12:bb: 41:c2:c1:34:2e:37:58:05:cf:cc:79:77:28:96:52: b7:03:c3:fd:71:6c:26:78:b1:7c:dd:6b:3c:df:17: 17:df:c1:1f:90:05:eb:41:e6:00:3e:7e:c3:0a:3f: c8:13:8a:52:6c:ec:4f:01:d0:92:fa:2d:ea:61:cb: e1:1f:7a:e8:70:3f:a9:31:dc:29:1a:57:28:69:db: db:48:75:fb:b5:d6:a3:07:a0:9c:2e:d5:3e:f9:5f: db:ed:f7:3c:5d:ab:39:47:08:46:b0:b4:8c:0b:e8: 4e:af:26:df:b2:b8:ef:e9:7e:9c:b8:c4:2b:56:45: a0:97:ba:8c:5a:7e:d5:3a:a7:c4:43:3e:63:ca:56: f7:30:8d:14:f8:2b:ff:86:7e:a5:bd:97:89:a9:c5: fe:d6:15:56:6e:6e:9b:53:f9:3a:40:af:ed:f5:f9: 09:38:b3:3d:cb:60:22:3a:1d:e2:4b:d2:19:cc:6b: 04:a1:10:66:ca:5f:e5:76:58:9d:7a:53:71:cd:25: 8f:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:AE:A5:65:5C:30:16:BA:C6:A2:C4:51:DC:26:F4:42:66:06:31:EF X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/vK6lZVwwFrrGosRR3Cb0QmYGMe8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.62.240.0/21 Signature Algorithm: sha256WithRSAEncryption 40:0b:4b:ae:e6:3e:46:58:8a:7f:f3:f3:4f:3e:6f:79:de:d9: c7:8e:2b:0c:f2:79:2e:9b:3a:86:59:bb:06:8e:95:73:90:e5: e5:b3:80:22:94:c2:c9:15:3e:5c:42:66:21:92:97:9b:5f:ad: 6a:3c:6a:96:23:fe:49:c6:e1:ce:ba:9e:c1:73:e8:16:71:7f: 0c:b4:19:1b:54:27:f2:35:6c:a2:2a:c5:25:a4:c1:fa:9c:6f: e5:1a:ac:d2:15:66:10:5e:9a:54:02:5a:a6:6e:c7:4b:30:4e: be:6c:a4:d5:7e:08:8e:a7:78:13:d5:f4:b7:8f:5f:1c:0a:01: bd:2c:bc:a7:b7:13:00:c9:41:9c:13:e1:0b:5d:4f:78:16:6d: 17:fd:ee:73:dd:45:2a:65:e9:d4:19:12:82:93:87:9c:19:c8: 19:f2:35:a7:ef:d1:00:7c:46:3e:57:3e:49:a4:c9:13:19:54: 8d:e6:e4:82:37:45:f4:0c:1b:56:6d:67:16:32:d6:4e:32:02: de:d6:2b:4e:74:49:1c:46:25:38:d9:0e:d7:dc:c1:6d:87:63: c0:1a:2b:4e:c0:95:1d:6d:75:9a:ea:fc:4a:06:20:8f:55:e4: 84:65:39:61:d0:9a:db:63:8d:b0:e5:59:9b:ac:36:97:9f:ad: 51:11:bf:fc -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDu0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNTAyMTAx NDE2MTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJDQUVBNTY1NUMzMDE2 QkFDNkEyQzQ1MURDMjZGNDQyNjYwNjMxRUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuLWxZEIHDnkg4Yy9WB1ZGWmIZgSfsQmg8OuH79hPT99AKXsz5 6Cq8I0eaCWhyXiim8CQmJOwAhvgSu0HCwTQuN1gFz8x5dyiWUrcDw/1xbCZ4sXzd azzfFxffwR+QBetB5gA+fsMKP8gTilJs7E8B0JL6Lephy+EfeuhwP6kx3CkaVyhp 29tIdfu11qMHoJwu1T75X9vt9zxdqzlHCEawtIwL6E6vJt+yuO/pfpy4xCtWRaCX uoxaftU6p8RDPmPKVvcwjRT4K/+GfqW9l4mpxf7WFVZubptT+TpAr+31+Qk4sz3L YCI6HeJL0hnMawShEGbKX+V2WJ16U3HNJY+xAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUvK6lZVwwFrrGosRR3Cb0QmYGMe8wHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC92SzZsWlZ3d0Zyckdvc1JSM0Ni MFFtWUdNZTgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD0j7w MA0GCSqGSIb3DQEBCwUAA4IBAQBAC0uu5j5GWIp/8/NPPm953tnHjisM8nkumzqG WbsGjpVzkOXls4AilMLJFT5cQmYhkpebX61qPGqWI/5JxuHOup7Bc+gWcX8MtBkb VCfyNWyiKsUlpMH6nG/lGqzSFWYQXppUAlqmbsdLME6+bKTVfgiOp3gT1fS3j18c CgG9LLyntxMAyUGcE+ELXU94Fm0X/e5z3UUqZenUGRKCk4ecGcgZ8jWn79EAfEY+ Vz5JpMkTGVSN5uSCN0X0DBtWbWcWMtZOMgLe1itOdEkcRiU42Q7X3MFth2PAGitO wJUdbXWa6vxKBiCPVeSEZTlh0JrbY42w5VmbrDaXn61REb/8 -----END CERTIFICATE-----Generated at Sun Apr 6 22:22:35 2025 by rpki-client