$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCSKY/wTfPiLCSAdkk3FDX2ayM5ViIXck.roa File: wTfPiLCSAdkk3FDX2ayM5ViIXck.roa (raw, json) Hash identifier: mrUGXWx+6DjRhJBHQi1oUIkBO2vJiX79l5sdzNEYhNg= Subject key identifier: C1:37:CF:88:B0:92:01:D9:24:DC:50:D7:D9:AC:8C:E5:58:88:5D:C9 Certificate issuer: /CN=C096A16C283D1600BF326BCFEBC1D11D0A063D9E Certificate serial: 011D Authority key identifier: C0:96:A1:6C:28:3D:16:00:BF:32:6B:CF:EB:C1:D1:1D:0A:06:3D:9E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wJahbCg9FgC_MmvP68HRHQoGPZ4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/wTfPiLCSAdkk3FDX2ayM5ViIXck.roa Signing time: Mon 10 Feb 2025 14:10:42 +0000 ROA not before: Mon 10 Feb 2025 14:10:42 +0000 ROA not after: Fri 07 Nov 2025 15:30:19 +0000 asID: 63908 IP address blocks: 2401:d620::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/wJahbCg9FgC_MmvP68HRHQoGPZ4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/wJahbCg9FgC_MmvP68HRHQoGPZ4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/wJahbCg9FgC_MmvP68HRHQoGPZ4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 06:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 285 (0x11d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C096A16C283D1600BF326BCFEBC1D11D0A063D9E Validity Not Before: Feb 10 14:10:42 2025 GMT Not After : Nov 7 15:30:19 2025 GMT Subject: CN=C137CF88B09201D924DC50D7D9AC8CE558885DC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f9:8a:93:a2:50:02:24:b3:2b:1c:60:bf:18: fb:71:38:31:8c:d6:e2:04:5b:24:e6:c6:3e:32:0a: 6a:da:91:a6:15:42:3a:16:4c:68:18:c9:dd:d2:8f: bb:de:cd:36:eb:95:1e:ab:27:c0:8a:7d:03:e0:2f: 83:f0:f9:7b:ed:55:6e:3c:8a:02:b7:9e:7c:d9:b7: 20:df:b2:55:e1:cb:4d:65:44:b3:7e:5e:f9:04:d1: 74:98:07:ef:8d:86:f2:7a:17:a5:7a:05:0a:8b:7a: 33:68:4d:30:72:c0:e4:26:12:08:b0:e8:86:5f:f0: b6:8a:20:af:44:f3:6b:93:1c:95:79:fb:47:2c:8f: 67:ad:43:fb:56:5b:82:90:4c:82:93:2c:42:e8:3a: f3:81:c3:4b:9e:1b:74:02:4c:07:dd:f9:f5:00:0f: a9:3e:96:c9:1a:29:02:c0:82:63:c9:46:9b:0c:59: 10:57:97:3c:fa:5e:6b:80:8b:18:f0:b6:f4:e7:53: 9f:62:da:96:69:15:d2:bc:2e:e8:39:6b:8b:ed:d4: 03:d3:33:d2:8d:ec:2b:de:65:e1:ee:c5:2b:50:b8: f4:e8:47:c9:cc:19:ee:c6:cd:5f:d3:6c:e8:ae:1b: 60:d4:b8:ec:8d:c1:b3:28:61:02:ed:8d:52:bd:09: d5:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:37:CF:88:B0:92:01:D9:24:DC:50:D7:D9:AC:8C:E5:58:88:5D:C9 X509v3 Authority Key Identifier: keyid:C0:96:A1:6C:28:3D:16:00:BF:32:6B:CF:EB:C1:D1:1D:0A:06:3D:9E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/wJahbCg9FgC_MmvP68HRHQoGPZ4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wJahbCg9FgC_MmvP68HRHQoGPZ4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/wTfPiLCSAdkk3FDX2ayM5ViIXck.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:d620::/32 Signature Algorithm: sha256WithRSAEncryption 9d:5d:e4:d4:d4:65:a4:b4:e9:6c:04:d8:78:7c:d5:b3:e4:bf: 84:f0:ba:06:07:4f:11:20:e0:00:2d:be:cd:5f:0e:a7:2f:bb: 82:c0:03:6a:9b:c5:da:14:97:e7:6c:0b:c9:33:2f:94:f3:d9: ca:ff:d4:67:45:c8:36:6c:32:d6:65:ab:35:a4:99:b8:b2:f5: 75:09:84:89:b9:0b:d1:b7:c7:6b:0b:31:88:46:3d:e2:b2:e5: bb:ec:cb:a2:81:e2:88:b6:eb:3f:e0:fc:5e:9c:5f:a0:17:c6: cc:2b:aa:04:6b:7a:dc:2b:b0:e1:43:22:c5:d2:51:08:25:08: 58:7c:da:20:d5:d0:8b:af:1d:6c:9f:e2:ec:36:00:32:3a:35: de:20:4f:67:f9:f7:8e:70:75:ab:78:3d:61:0a:b3:6e:52:e3: f6:9c:88:b2:63:5b:4f:d6:c0:a3:1d:5f:1f:b9:cb:d1:57:b0: aa:19:35:17:3d:66:19:df:ac:50:fa:e5:da:cc:21:af:50:dc: bb:d6:6c:21:74:5c:ff:55:7c:01:19:99:cb:1d:f4:55:cf:86: b3:31:67:e4:83:2c:a3:d3:07:5c:32:89:86:c2:74:c8:56:d1: 12:e0:ee:7d:0a:09:fd:a4:b5:84:74:87:70:4a:ed:23:00:05: 36:79:18:d7 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICAR0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzA5 NkExNkMyODNEMTYwMEJGMzI2QkNGRUJDMUQxMUQwQTA2M0Q5RTAeFw0yNTAyMTAx NDEwNDJaFw0yNTExMDcxNTMwMTlaMDMxMTAvBgNVBAMTKEMxMzdDRjg4QjA5MjAx RDkyNERDNTBEN0Q5QUM4Q0U1NTg4ODVEQzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7+YqTolACJLMrHGC/GPtxODGM1uIEWyTmxj4yCmrakaYVQjoW TGgYyd3Sj7vezTbrlR6rJ8CKfQPgL4Pw+XvtVW48igK3nnzZtyDfslXhy01lRLN+ XvkE0XSYB++NhvJ6F6V6BQqLejNoTTBywOQmEgiw6IZf8LaKIK9E82uTHJV5+0cs j2etQ/tWW4KQTIKTLELoOvOBw0ueG3QCTAfd+fUAD6k+lskaKQLAgmPJRpsMWRBX lzz6XmuAixjwtvTnU59i2pZpFdK8Lug5a4vt1APTM9KN7CveZeHuxStQuPToR8nM Ge7GzV/TbOiuG2DUuOyNwbMoYQLtjVK9CdXxAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUwTfPiLCSAdkk3FDX2ayM5ViIXckwHwYDVR0jBBgwFoAUwJahbCg9FgC/MmvP 68HRHQoGPZ4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVENTS1kv d0phaGJDZzlGZ0NfTW12UDY4SFJIUW9HUFo0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS93SmFoYkNnOUZnQ19NbXZQNjhIUkhRb0dQWjQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQ1NLWS93VGZQaUxDU0Fka2szRkRYMmF5 TTVWaUlYY2sucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAHW IDANBgkqhkiG9w0BAQsFAAOCAQEAnV3k1NRlpLTpbATYeHzVs+S/hPC6BgdPESDg AC2+zV8Opy+7gsADapvF2hSX52wLyTMvlPPZyv/UZ0XINmwy1mWrNaSZuLL1dQmE ibkL0bfHawsxiEY94rLlu+zLooHiiLbrP+D8XpxfoBfGzCuqBGt63Cuw4UMixdJR CCUIWHzaINXQi68dbJ/i7DYAMjo13iBPZ/n3jnB1q3g9YQqzblLj9pyIsmNbT9bA ox1fH7nL0Vewqhk1Fz1mGd+sUPrl2swhr1Dcu9ZsIXRc/1V8ARmZyx30Vc+GszFn 5IMso9MHXDKJhsJ0yFbREuDufQoJ/aS1hHSHcErtIwAFNnkY1w== -----END CERTIFICATE-----Generated at Wed Apr 9 05:51:50 2025 by rpki-client