$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/0u36obiHSZ6yWMBltLYOSggfNrQ.roa File: 0u36obiHSZ6yWMBltLYOSggfNrQ.roa (raw, json) Hash identifier: 7gb11x7l2vO7/VxDoyZ3jqU6wLJGBWZ8R7+5lK0Vzsw= Subject key identifier: D2:ED:FA:A1:B8:87:49:9E:B2:58:C0:65:B4:B6:0E:4A:08:1F:36:B4 Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0D3D Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/0u36obiHSZ6yWMBltLYOSggfNrQ.roa Signing time: Mon 10 Feb 2025 14:05:22 +0000 ROA not before: Mon 10 Feb 2025 14:05:22 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18049 IP address blocks: 58.99.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 03:06:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3389 (0xd3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: Feb 10 14:05:22 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D2EDFAA1B887499EB258C065B4B60E4A081F36B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4f:e3:d8:a4:eb:44:50:17:ba:ed:1d:c7:03: 37:c9:ee:2c:46:a0:30:de:d9:c6:90:6e:ab:67:40: 5a:b4:2f:38:a7:75:d7:39:14:0e:3a:6c:21:ca:01: f6:34:14:4a:9b:c3:e8:93:ab:1d:a4:7f:06:bc:3c: 30:56:ea:ad:fd:11:55:ac:c2:69:d4:92:29:6d:13: 03:c0:b9:6e:b2:18:12:81:66:cc:1c:12:62:47:bf: 12:cc:89:20:9d:6f:f5:79:72:52:c2:ec:41:bf:d4: f6:81:ad:ca:ff:6d:15:68:e4:16:07:54:24:df:6e: b8:95:77:f1:05:03:a9:29:ff:6f:b2:03:5d:c0:fb: 71:c8:c1:7a:25:19:f2:35:b1:5e:28:10:25:5b:5c: 51:8e:9c:6f:a3:8f:dc:21:42:e5:d5:1d:9d:67:d7: 3b:99:0d:0d:b3:e8:d0:ed:ba:72:08:19:33:8a:47: d9:7e:cb:6d:03:cc:6c:4e:ae:61:94:b8:26:8a:7c: 19:90:7f:88:64:8b:54:28:9a:27:54:e0:db:51:f6: f7:9f:46:3b:49:8f:bf:98:a2:c3:c2:82:47:7d:20: 3d:8d:b6:80:6d:96:81:36:64:ad:3d:33:5d:82:1f: 4a:85:2d:6d:be:5f:70:36:b0:8e:67:85:2d:e4:50: 92:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:ED:FA:A1:B8:87:49:9E:B2:58:C0:65:B4:B6:0E:4A:08:1F:36:B4 X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/0u36obiHSZ6yWMBltLYOSggfNrQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 58.99.64.0/18 Signature Algorithm: sha256WithRSAEncryption 3e:ac:37:12:ec:83:f8:ad:a4:34:4b:52:28:b3:ac:4e:9e:bb: 1e:e8:8b:31:df:ce:7a:1b:eb:2f:fc:04:4c:61:a4:8f:94:85: 5d:b6:c4:33:62:38:6b:76:25:7b:d4:a1:42:61:74:7c:af:4c: 08:9a:e5:01:15:37:0e:35:55:3c:90:5c:86:0b:ea:5c:57:23: d7:b7:0b:79:18:be:02:22:bf:67:6b:3d:58:59:85:fa:72:cf: 71:a0:9c:4c:d9:44:ec:45:a1:d6:41:6f:2e:61:d9:f5:88:11: 91:d9:76:1f:1c:91:25:f9:49:b4:70:a1:04:7f:8e:7f:01:a9: 78:31:a5:50:9a:1a:3c:aa:6b:ec:c8:fc:bd:68:87:f9:71:63: b2:b1:f3:51:db:57:c6:d2:69:30:40:69:8a:5d:6d:30:e5:f0: 17:98:fe:2b:63:42:b4:52:fb:43:eb:64:f4:c4:ab:66:fa:c9: 67:56:8d:35:4d:11:b1:e5:6b:47:99:04:22:b3:50:44:49:d3: 81:8b:16:90:80:51:bd:29:63:03:f3:c9:dc:3b:06:b4:fb:82: 14:57:4d:01:ff:ef:78:0b:2e:ee:78:48:fe:9d:da:6f:fd:c4: 20:ff:bf:f6:63:61:44:3f:ef:b6:8d:3a:73:8c:5a:1d:70:60: 7b:2e:29:6d -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDT0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNTAyMTAx NDA1MjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQyRURGQUExQjg4NzQ5 OUVCMjU4QzA2NUI0QjYwRTRBMDgxRjM2QjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/T+PYpOtEUBe67R3HAzfJ7ixGoDDe2caQbqtnQFq0Lzinddc5 FA46bCHKAfY0FEqbw+iTqx2kfwa8PDBW6q39EVWswmnUkiltEwPAuW6yGBKBZswc EmJHvxLMiSCdb/V5clLC7EG/1PaBrcr/bRVo5BYHVCTfbriVd/EFA6kp/2+yA13A +3HIwXolGfI1sV4oECVbXFGOnG+jj9whQuXVHZ1n1zuZDQ2z6NDtunIIGTOKR9l+ y20DzGxOrmGUuCaKfBmQf4hki1QomidU4NtR9vefRjtJj7+YosPCgkd9ID2NtoBt loE2ZK09M12CH0qFLW2+X3A2sI5nhS3kUJJnAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU0u36obiHSZ6yWMBltLYOSggfNrQwHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvMHUzNm9iaUhTWjZ5V01CbHRMWU9T Z2dmTnJRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBjpjQDAN BgkqhkiG9w0BAQsFAAOCAQEAPqw3EuyD+K2kNEtSKLOsTp67HuiLMd/OehvrL/wE TGGkj5SFXbbEM2I4a3Yle9ShQmF0fK9MCJrlARU3DjVVPJBchgvqXFcj17cLeRi+ AiK/Z2s9WFmF+nLPcaCcTNlE7EWh1kFvLmHZ9YgRkdl2HxyRJflJtHChBH+OfwGp eDGlUJoaPKpr7Mj8vWiH+XFjsrHzUdtXxtJpMEBpil1tMOXwF5j+K2NCtFL7Q+tk 9MSrZvrJZ1aNNU0RseVrR5kEIrNQREnTgYsWkIBRvSljA/PJ3DsGtPuCFFdNAf/v eAsu7nhI/p3ab/3EIP+/9mNhRD/vto06c4xaHXBgey4pbQ== -----END CERTIFICATE-----Generated at Mon Apr 7 23:19:59 2025 by rpki-client