$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/yxq-bwnGFJLrO9h2yey3vUh1VGc.roa File: yxq-bwnGFJLrO9h2yey3vUh1VGc.roa (raw, json) Hash identifier: i77ZXEMTf/jlyRXbKFVbiYBUh3130enjtiUK+DMDCKo= Subject key identifier: CB:1A:BE:6F:09:C6:14:92:EB:3B:D8:76:C9:EC:B7:BD:48:75:54:67 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0E83 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/yxq-bwnGFJLrO9h2yey3vUh1VGc.roa Signing time: Mon 10 Feb 2025 14:16:27 +0000 ROA not before: Mon 10 Feb 2025 14:16:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9916 IP address blocks: 140.113.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 05:08:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3715 (0xe83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Feb 10 14:16:27 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CB1ABE6F09C61492EB3BD876C9ECB7BD48755467 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ca:18:88:4b:0d:8d:20:cf:3b:f8:ab:19:06: 04:a1:51:ba:34:3c:52:2a:97:1d:c2:ee:72:73:1a: e8:bd:6a:9d:cc:78:aa:bd:e3:6c:74:fa:11:d0:dc: 07:6f:bd:4e:ce:4f:e9:7e:ba:0c:45:87:85:41:7a: 14:0d:83:7d:b7:dd:fa:0d:0c:01:1a:1c:3b:19:a9: 72:93:ee:c6:be:c8:78:14:a8:9d:63:9b:b4:91:a4: 1c:ff:a1:7d:f8:a3:53:bf:36:d0:dd:2b:98:cb:99: 8b:e5:71:26:ef:37:67:50:b2:61:20:17:9a:d3:07: 47:e1:a4:0e:4e:f0:58:55:18:b7:b4:d1:da:e2:62: b3:07:6e:6c:03:29:2f:20:c9:da:2e:ee:a5:2f:51: fc:3b:07:00:3f:04:3a:da:bf:64:83:a0:8c:f8:c6: 95:88:c2:4f:45:80:34:89:1d:64:9f:68:d9:e2:aa: 43:10:b9:16:74:78:0f:ab:f2:c3:49:9f:ca:6c:5f: 31:2f:21:a8:c0:59:43:99:0b:e6:33:9f:63:b5:50: 5f:72:4d:ef:c6:0c:be:ba:3d:cb:73:e9:04:00:af: 69:e7:a8:6e:2b:a7:3b:9b:d1:67:b4:d3:b7:56:3c: 4f:d1:69:f4:67:03:09:a4:25:ca:da:3e:51:c2:e0: 5c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:1A:BE:6F:09:C6:14:92:EB:3B:D8:76:C9:EC:B7:BD:48:75:54:67 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/yxq-bwnGFJLrO9h2yey3vUh1VGc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.113.0.0/16 Signature Algorithm: sha256WithRSAEncryption 44:83:3d:69:91:cb:57:4e:69:7d:2b:a1:38:c1:cc:04:dd:8b: 35:97:16:fb:a7:47:ff:c3:1f:ec:91:9f:c6:ea:6d:fd:c4:3e: d7:e9:f4:94:b2:23:4c:bc:b8:a6:da:02:d8:ea:df:33:ed:ed: 7f:5a:3a:86:99:68:14:d8:4c:e7:a0:bc:ff:50:6e:e0:df:1d: a6:08:9c:2c:92:ea:fc:8e:81:0e:93:96:94:97:de:ab:5d:94: 77:ac:aa:80:ca:11:84:37:f2:2c:76:f4:a5:01:a7:64:a2:26: 5c:92:c9:21:bc:55:e0:81:0c:7b:2e:4a:f7:b7:63:8e:2f:ae: 1f:9f:8b:01:36:71:7a:35:62:f0:e7:ae:17:3a:24:6c:b0:be: 18:74:1e:13:a7:c7:4b:a3:6c:10:0c:c6:b5:18:f0:57:06:2f: 4d:fd:19:a9:e2:7b:8c:d5:2e:ec:54:2c:0f:ac:15:ad:9b:83: 37:47:c4:33:a6:a7:43:6b:10:3e:e4:29:b2:5d:58:a6:7f:5e: cd:60:8c:c5:b2:43:c4:ea:c0:e0:04:28:ee:81:c7:dc:fd:98: 69:60:6a:ab:70:53:41:33:b7:04:bb:f6:7c:0e:80:68:e5:3f: bb:8c:95:e6:67:0b:52:68:de:fd:e7:4a:41:f3:57:61:e9:59: 96:82:a5:25 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDoMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTAyMTAx NDE2MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENCMUFCRTZGMDlDNjE0 OTJFQjNCRDg3NkM5RUNCN0JENDg3NTU0NjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvyhiISw2NIM87+KsZBgShUbo0PFIqlx3C7nJzGui9ap3MeKq9 42x0+hHQ3AdvvU7OT+l+ugxFh4VBehQNg3233foNDAEaHDsZqXKT7sa+yHgUqJ1j m7SRpBz/oX34o1O/NtDdK5jLmYvlcSbvN2dQsmEgF5rTB0fhpA5O8FhVGLe00dri YrMHbmwDKS8gydou7qUvUfw7BwA/BDrav2SDoIz4xpWIwk9FgDSJHWSfaNniqkMQ uRZ0eA+r8sNJn8psXzEvIajAWUOZC+Yzn2O1UF9yTe/GDL66Pctz6QQAr2nnqG4r pzub0We007dWPE/RafRnAwmkJcraPlHC4FwLAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUyxq+bwnGFJLrO9h2yey3vUh1VGcwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC95eHEtYnduR0ZKTHJPOWgyeWV5 M3ZVaDFWR2Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjHEw DQYJKoZIhvcNAQELBQADggEBAESDPWmRy1dOaX0roTjBzATdizWXFvunR//DH+yR n8bqbf3EPtfp9JSyI0y8uKbaAtjq3zPt7X9aOoaZaBTYTOegvP9QbuDfHaYInCyS 6vyOgQ6TlpSX3qtdlHesqoDKEYQ38ix29KUBp2SiJlySySG8VeCBDHsuSve3Y44v rh+fiwE2cXo1YvDnrhc6JGywvhh0HhOnx0ujbBAMxrUY8FcGL039Ganie4zVLuxU LA+sFa2bgzdHxDOmp0NrED7kKbJdWKZ/Xs1gjMWyQ8TqwOAEKO6Bx9z9mGlgaqtw U0EztwS79nwOgGjlP7uMleZnC1Jo3v3nSkHzV2HpWZaCpSU= -----END CERTIFICATE-----Generated at Wed Apr 16 04:40:08 2025 by rpki-client