$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCSKY/uRSqFV58E3nH1p3jiHvKc4lbTUI.roa File: uRSqFV58E3nH1p3jiHvKc4lbTUI.roa (raw, json) Hash identifier: CnbYGl41BRGfMBBfC9/Hho6CwbwlpDvFOtjleXqKaI8= Subject key identifier: B9:14:AA:15:5E:7C:13:79:C7:D6:9D:E3:88:7B:CA:73:89:5B:4D:42 Certificate issuer: /CN=4F000CB6DDD37487A6DE1F7EADBDA12708EB2C19 Certificate serial: 011E Authority key identifier: 4F:00:0C:B6:DD:D3:74:87:A6:DE:1F:7E:AD:BD:A1:27:08:EB:2C:19 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TwAMtt3TdIem3h9-rb2hJwjrLBk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/uRSqFV58E3nH1p3jiHvKc4lbTUI.roa Signing time: Mon 10 Feb 2025 14:10:42 +0000 ROA not before: Mon 10 Feb 2025 14:10:42 +0000 ROA not after: Fri 07 Nov 2025 15:30:19 +0000 asID: 63908 IP address blocks: 160.191.202.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/TwAMtt3TdIem3h9-rb2hJwjrLBk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 03:08:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 286 (0x11e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F000CB6DDD37487A6DE1F7EADBDA12708EB2C19 Validity Not Before: Feb 10 14:10:42 2025 GMT Not After : Nov 7 15:30:19 2025 GMT Subject: CN=B914AA155E7C1379C7D69DE3887BCA73895B4D42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:c0:e6:88:e0:e2:30:a1:4e:05:b5:fb:7d:45: a1:7b:1f:db:28:fd:03:b6:dc:c3:7c:59:56:96:c2: f0:28:ff:b0:19:ca:bc:02:fa:16:a5:56:2d:71:29: ca:02:54:7f:bf:7c:b9:85:71:3e:c2:ab:68:21:27: 14:e7:d3:45:5d:64:21:c5:64:d5:a1:ff:61:3f:7a: 95:46:7f:d5:42:29:cf:2c:05:89:69:09:87:ff:83: c5:62:53:0f:83:d0:ce:a2:e8:fe:b6:f2:70:ce:06: be:f6:cc:75:32:41:4c:69:d5:76:84:db:79:60:36: 0f:f1:31:0a:9a:16:b6:4c:1e:9b:fd:2d:41:a8:d2: 07:90:7a:4e:82:b4:62:de:f8:f1:3f:95:34:db:bf: e8:d2:2f:5d:f9:85:33:0b:bd:30:42:97:dc:29:ec: 4e:d4:c3:f8:f3:f6:85:38:33:dc:f8:bf:aa:64:42: 5b:ae:39:05:cb:89:fc:59:5e:7e:36:7c:c6:fb:c1: 78:80:66:9b:d7:c5:75:8e:59:24:1e:eb:d1:54:e9: 89:b8:fb:40:86:cc:6e:69:fb:8c:e1:81:e9:42:d4: 58:65:15:b5:fa:93:a0:ad:2f:05:20:1f:8d:bf:cf: 8d:cc:41:12:73:25:54:14:41:22:8a:f5:05:11:05: 87:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:14:AA:15:5E:7C:13:79:C7:D6:9D:E3:88:7B:CA:73:89:5B:4D:42 X509v3 Authority Key Identifier: keyid:4F:00:0C:B6:DD:D3:74:87:A6:DE:1F:7E:AD:BD:A1:27:08:EB:2C:19 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TwAMtt3TdIem3h9-rb2hJwjrLBk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/uRSqFV58E3nH1p3jiHvKc4lbTUI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.191.202.0/23 Signature Algorithm: sha256WithRSAEncryption 47:f6:eb:ef:68:ff:4c:31:c7:f8:b5:99:ba:90:3b:fe:2e:d4: cd:0c:1a:27:57:90:c8:9b:d7:2b:5e:cc:6c:01:cf:ae:0c:54: 04:59:0b:ed:86:4a:a8:f5:98:31:55:a8:34:ad:6a:3c:5c:a4: 72:82:e8:c0:9b:5e:30:65:8a:69:1c:dc:5e:51:88:cc:fd:4b: ee:84:54:65:d7:0a:d9:18:d4:a7:57:20:9a:8f:31:18:69:26: a8:87:9a:a1:ba:d6:2c:45:83:fd:21:fa:f8:84:d7:d7:30:b5: 0f:61:9b:2f:cd:76:b6:9c:48:ce:a5:d6:ac:df:ee:a8:c4:40: 61:81:a8:42:2d:bd:35:e9:32:3a:a6:bb:e7:78:85:90:98:57: 91:e9:cb:29:dc:71:86:69:51:fe:59:51:d3:5e:02:ae:ff:17: 74:dc:3b:04:ae:a1:05:5d:c6:66:6a:b3:f9:9f:da:a7:bb:c6: f9:01:82:fa:18:ad:1e:66:7a:fc:18:92:59:15:9f:b6:7c:df: e0:4e:b7:23:cd:4f:0d:cb:a8:11:fa:15:10:c8:5c:b8:fb:84: 58:77:b9:d8:69:d0:46:7d:23:3b:6b:19:19:1a:fd:9b:54:4e: db:9b:2e:0a:03:bf:1d:ab:29:1e:b5:ab:49:92:70:d0:7f:29: c9:c9:d0:d0 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAR4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEYw MDBDQjZEREQzNzQ4N0E2REUxRjdFQURCREExMjcwOEVCMkMxOTAeFw0yNTAyMTAx NDEwNDJaFw0yNTExMDcxNTMwMTlaMDMxMTAvBgNVBAMTKEI5MTRBQTE1NUU3QzEz NzlDN0Q2OURFMzg4N0JDQTczODk1QjRENDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLwOaI4OIwoU4Ftft9RaF7H9so/QO23MN8WVaWwvAo/7AZyrwC +halVi1xKcoCVH+/fLmFcT7Cq2ghJxTn00VdZCHFZNWh/2E/epVGf9VCKc8sBYlp CYf/g8ViUw+D0M6i6P628nDOBr72zHUyQUxp1XaE23lgNg/xMQqaFrZMHpv9LUGo 0geQek6CtGLe+PE/lTTbv+jSL135hTMLvTBCl9wp7E7Uw/jz9oU4M9z4v6pkQluu OQXLifxZXn42fMb7wXiAZpvXxXWOWSQe69FU6Ym4+0CGzG5p+4zhgelC1FhlFbX6 k6CtLwUgH42/z43MQRJzJVQUQSKK9QURBYcBAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUuRSqFV58E3nH1p3jiHvKc4lbTUIwHwYDVR0jBBgwFoAUTwAMtt3TdIem3h9+ rb2hJwjrLBkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVENTS1kv VHdBTXR0M1RkSWVtM2g5LXJiMmhKd2pyTEJrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9Ud0FNdHQzVGRJZW0zaDktcmIyaEp3anJMQmsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQ1NLWS91UlNxRlY1OEUzbkgxcDNqaUh2 S2M0bGJUVUkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoL/K MA0GCSqGSIb3DQEBCwUAA4IBAQBH9uvvaP9MMcf4tZm6kDv+LtTNDBonV5DIm9cr XsxsAc+uDFQEWQvthkqo9ZgxVag0rWo8XKRygujAm14wZYppHNxeUYjM/UvuhFRl 1wrZGNSnVyCajzEYaSaoh5qhutYsRYP9Ifr4hNfXMLUPYZsvzXa2nEjOpdas3+6o xEBhgahCLb016TI6prvneIWQmFeR6csp3HGGaVH+WVHTXgKu/xd03DsErqEFXcZm arP5n9qnu8b5AYL6GK0eZnr8GJJZFZ+2fN/gTrcjzU8Ny6gR+hUQyFy4+4RYd7nY adBGfSM7axkZGv2bVE7bmy4KA78dqyketatJknDQfynJydDQ -----END CERTIFICATE-----Generated at Wed Apr 9 01:38:01 2025 by rpki-client