$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/vq1ryElc1fbkOBipeF-5LmBqrTg.roa File: vq1ryElc1fbkOBipeF-5LmBqrTg.roa (raw, json) Hash identifier: PyPpEMz3//prnkA4XjOdmlOqLmba4Rq5A80rSCn3fKw= Subject key identifier: BE:AD:6B:C8:49:5C:D5:F6:E4:38:18:A9:78:5F:B9:2E:60:6A:AD:38 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0E75 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/vq1ryElc1fbkOBipeF-5LmBqrTg.roa Signing time: Mon 10 Feb 2025 14:16:22 +0000 ROA not before: Mon 10 Feb 2025 14:16:22 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9916 IP address blocks: 192.83.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 22:26:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3701 (0xe75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Feb 10 14:16:22 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BEAD6BC8495CD5F6E43818A9785FB92E606AAD38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:24:21:6b:8c:ad:82:b7:d0:b0:2d:7c:e4:d5: 00:fe:ee:56:af:82:c1:3f:fc:f0:aa:43:f6:00:98: 06:ac:cf:be:12:f1:ec:9f:83:84:8e:b7:77:3b:c8: f8:a7:5a:3e:d2:b8:68:83:3f:04:71:34:dd:fa:3a: fc:b3:be:ff:a2:f6:d9:2d:1c:f3:0a:e2:a3:c8:e8: d1:59:cb:f2:98:20:5a:0f:21:cd:51:dd:74:36:79: 33:cb:e9:16:e1:ee:6a:3f:1d:2b:7c:81:f5:4a:4e: 30:48:4c:53:a0:ff:55:82:ed:49:ef:fd:38:7d:6a: e1:4f:88:47:f4:08:0e:3c:d7:96:77:35:0a:f6:48: f6:3b:72:92:a9:1e:5d:f3:e0:fb:ab:f4:a7:0f:bb: 3c:1d:e0:b9:8b:22:71:2f:af:64:51:d6:12:30:77: 02:d7:ac:11:be:32:8d:e0:c2:16:00:c6:73:78:f9: d0:60:8c:a8:ac:b8:b9:90:42:ee:3d:e0:54:df:8d: 72:f9:de:30:7c:2b:99:d5:ff:c1:54:77:ab:7d:f7: 80:f5:dc:6c:8c:0c:a7:5b:eb:33:cf:ca:2a:cc:48: 88:39:d4:1e:e8:ca:e9:b6:65:e7:93:6c:33:45:e1: e4:4a:1d:47:99:fd:1f:fc:f1:68:5a:1e:71:bb:dd: 08:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:AD:6B:C8:49:5C:D5:F6:E4:38:18:A9:78:5F:B9:2E:60:6A:AD:38 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/vq1ryElc1fbkOBipeF-5LmBqrTg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.83.179.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:04:d6:63:47:7c:b1:12:60:28:c9:5e:fd:43:84:fa:37:4a: 63:df:06:9a:48:12:13:64:f9:de:2f:68:2c:b2:6d:9d:5a:fd: f9:f8:92:7f:20:63:0d:fa:ea:41:59:59:b7:50:28:2c:33:3b: 0a:09:db:ea:cf:45:cb:0b:e7:16:26:61:26:7c:56:83:55:6c: 0e:96:57:e1:8c:74:66:7f:4e:57:23:5c:f2:93:77:31:41:19: 5f:eb:f9:ba:09:9a:7d:c8:28:96:1f:0f:77:8f:38:e7:5c:61: 79:4a:d7:6c:a0:da:84:28:81:bf:cd:dc:21:b3:e1:04:0d:d6: b4:5e:4d:65:a9:00:8e:2f:db:06:70:9c:30:7a:7d:69:95:3a: d8:47:b4:f1:45:53:51:1e:f8:0d:75:9f:1b:52:83:81:6a:33: de:a8:27:8c:48:ed:35:38:dc:9f:38:81:c7:34:59:f6:00:d4: ad:30:68:ff:15:5e:ad:36:6a:ef:89:6c:f3:0b:2b:f8:57:0e: 2d:67:c4:e9:94:6a:9a:81:dd:1b:e7:a3:5e:c6:2f:20:74:69: 22:c2:ac:b4:8d:77:f3:bc:2d:e2:af:95:31:b2:0e:e8:61:53: f1:ad:32:bc:f0:ba:28:98:d3:ec:cd:96:51:f1:56:7f:f4:01: 1c:d2:1f:c6 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDnUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTAyMTAx NDE2MjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJFQUQ2QkM4NDk1Q0Q1 RjZFNDM4MThBOTc4NUZCOTJFNjA2QUFEMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9JCFrjK2Ct9CwLXzk1QD+7lavgsE//PCqQ/YAmAasz74S8eyf g4SOt3c7yPinWj7SuGiDPwRxNN36Ovyzvv+i9tktHPMK4qPI6NFZy/KYIFoPIc1R 3XQ2eTPL6Rbh7mo/HSt8gfVKTjBITFOg/1WC7Unv/Th9auFPiEf0CA4815Z3NQr2 SPY7cpKpHl3z4Pur9KcPuzwd4LmLInEvr2RR1hIwdwLXrBG+Mo3gwhYAxnN4+dBg jKisuLmQQu494FTfjXL53jB8K5nV/8FUd6t994D13GyMDKdb6zPPyirMSIg51B7o yum2ZeeTbDNF4eRKHUeZ/R/88WhaHnG73Qg1AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUvq1ryElc1fbkOBipeF+5LmBqrTgwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC92cTFyeUVsYzFmYmtPQmlwZUYt NUxtQnFyVGcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwFOz MA0GCSqGSIb3DQEBCwUAA4IBAQCbBNZjR3yxEmAoyV79Q4T6N0pj3waaSBITZPne L2gssm2dWv35+JJ/IGMN+upBWVm3UCgsMzsKCdvqz0XLC+cWJmEmfFaDVWwOllfh jHRmf05XI1zyk3cxQRlf6/m6CZp9yCiWHw93jzjnXGF5StdsoNqEKIG/zdwhs+EE Dda0Xk1lqQCOL9sGcJwwen1plTrYR7TxRVNRHvgNdZ8bUoOBajPeqCeMSO01ONyf OIHHNFn2ANStMGj/FV6tNmrviWzzCyv4Vw4tZ8TplGqagd0b56Nexi8gdGkiwqy0 jXfzvC3ir5Uxsg7oYVPxrTK88LoomNPszZZR8VZ/9AEc0h/G -----END CERTIFICATE-----Generated at Wed Feb 19 22:07:39 2025 by rpki-client