$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/Br8HB0xT0-VLhFcd9AYGwgDykps.roa File: Br8HB0xT0-VLhFcd9AYGwgDykps.roa (raw, json) Hash identifier: ybjZJA0AsCqGBH0XkY+LOSL0YeTBQAaqffcE2Nu6vTQ= Subject key identifier: 06:BF:07:07:4C:53:D3:E5:4B:84:57:1D:F4:06:06:C2:00:F2:92:9B Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0D43 Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/Br8HB0xT0-VLhFcd9AYGwgDykps.roa Signing time: Mon 10 Feb 2025 14:05:23 +0000 ROA not before: Mon 10 Feb 2025 14:05:23 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 58.99.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 18:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3395 (0xd43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: Feb 10 14:05:23 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=06BF07074C53D3E54B84571DF40606C200F2929B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e1:b7:3e:ee:72:35:a3:25:dc:17:02:4b:71: 45:4c:af:c6:18:8a:97:ed:b7:21:6a:a7:ce:c2:53: 8e:b8:50:e4:44:8e:0a:e1:6a:ee:14:70:ca:d9:6f: 34:7b:3c:43:52:71:c2:85:c5:cf:27:f7:db:fb:ad: 87:e5:31:25:87:20:d3:07:4b:4c:34:51:62:93:2f: 3f:d7:5f:11:64:77:51:37:cd:06:1b:7b:bb:ef:43: 4b:48:c6:85:91:1f:06:a6:7e:75:78:c3:f7:2e:c2: 59:57:db:95:27:9e:50:34:61:b8:5d:43:a4:12:89: 84:21:d3:39:da:07:b6:5b:91:64:b9:3a:c5:b0:65: 8b:fa:2f:37:f5:05:e2:3f:bd:67:8d:50:38:6b:17: 77:88:d3:ab:dd:31:ad:85:04:9e:07:01:0e:d7:3b: 7e:a8:59:f1:7e:92:6e:0d:35:eb:85:03:6d:7d:a4: 75:62:50:7a:54:ad:64:84:dc:2a:6b:e7:d5:0e:0b: f7:c1:77:6f:22:1d:06:b5:47:01:c6:d8:43:f6:fa: a2:bb:b3:a0:f6:52:aa:1e:27:1f:ed:f4:65:01:a4: 4a:db:1c:68:e0:10:a5:73:97:f4:22:59:ea:0a:cf: ac:1a:c9:70:3b:07:3d:01:c3:35:e7:b9:f8:62:18: 65:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:BF:07:07:4C:53:D3:E5:4B:84:57:1D:F4:06:06:C2:00:F2:92:9B X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/Br8HB0xT0-VLhFcd9AYGwgDykps.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 58.99.64.0/18 Signature Algorithm: sha256WithRSAEncryption 8e:70:ef:a4:76:ae:4e:63:89:46:2a:e1:48:78:21:bd:44:71: 4e:02:64:e3:35:65:53:27:2f:bc:47:21:62:b5:1c:b3:fd:65: c7:cb:13:d2:72:21:4e:98:a2:71:63:0d:4d:38:aa:4c:b8:4b: 76:7c:8c:17:46:e9:24:26:2a:af:38:f5:81:64:e2:27:c7:84: c6:0e:f4:2e:3f:24:83:f2:dd:c5:a4:ee:0c:79:f0:f8:64:dc: a3:09:e3:66:7f:c5:73:d3:c3:e6:73:6c:ef:5f:58:26:e5:c1: ef:81:87:75:26:d1:f1:42:cb:93:43:a8:fb:c6:14:34:9c:9b: cb:0e:64:fe:7c:bc:f4:01:18:7d:e3:93:4d:c3:a4:24:ed:2e: 1e:0b:09:2f:e3:5e:b6:d3:af:89:d7:96:7b:5d:f5:23:75:15: 12:fb:49:b2:c8:5a:22:6f:c6:b3:26:7f:81:3a:83:aa:09:40: 75:27:59:1d:16:f7:48:ba:0a:51:04:ce:c2:e9:16:6d:fb:4e: 2f:31:63:7e:02:c3:46:1b:61:7a:2b:c8:03:4a:41:9e:5b:68: 9c:83:9d:dc:fe:08:c5:47:3a:ce:08:58:04:9f:7d:8d:1a:cb: 86:d1:01:3e:25:7d:18:9b:55:f8:a4:95:2b:59:95:e0:f9:d6: d7:ba:f7:65 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDUMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNTAyMTAx NDA1MjNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA2QkYwNzA3NEM1M0Qz RTU0Qjg0NTcxREY0MDYwNkMyMDBGMjkyOUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCg4bc+7nI1oyXcFwJLcUVMr8YYipfttyFqp87CU464UOREjgrh au4UcMrZbzR7PENSccKFxc8n99v7rYflMSWHINMHS0w0UWKTLz/XXxFkd1E3zQYb e7vvQ0tIxoWRHwamfnV4w/cuwllX25UnnlA0YbhdQ6QSiYQh0znaB7ZbkWS5OsWw ZYv6Lzf1BeI/vWeNUDhrF3eI06vdMa2FBJ4HAQ7XO36oWfF+km4NNeuFA219pHVi UHpUrWSE3Cpr59UOC/fBd28iHQa1RwHG2EP2+qK7s6D2UqoeJx/t9GUBpErbHGjg EKVzl/QiWeoKz6wayXA7Bz0BwzXnufhiGGXZAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUBr8HB0xT0+VLhFcd9AYGwgDykpswHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvQnI4SEIweFQwLVZMaEZjZDlBWUd3 Z0R5a3BzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBjpjQDAN BgkqhkiG9w0BAQsFAAOCAQEAjnDvpHauTmOJRirhSHghvURxTgJk4zVlUycvvEch YrUcs/1lx8sT0nIhTpiicWMNTTiqTLhLdnyMF0bpJCYqrzj1gWTiJ8eExg70Lj8k g/LdxaTuDHnw+GTcownjZn/Fc9PD5nNs719YJuXB74GHdSbR8ULLk0Oo+8YUNJyb yw5k/ny89AEYfeOTTcOkJO0uHgsJL+NettOvideWe131I3UVEvtJsshaIm/GsyZ/ gTqDqglAdSdZHRb3SLoKUQTOwukWbftOLzFjfgLDRhtheivIA0pBnltonIOd3P4I xUc6zghYBJ99jRrLhtEBPiV9GJtV+KSVK1mV4PnW17r3ZQ== -----END CERTIFICATE-----Generated at Mon Apr 7 15:08:59 2025 by rpki-client