$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/D9VsMxstBnZ992VQmPJD5sd_bnQ.roa File: D9VsMxstBnZ992VQmPJD5sd_bnQ.roa (raw, json) Hash identifier: wsgVKYawekLE4+eu/wQMeA1fsplxEiVN9ykXuykO/2E= Subject key identifier: 0F:D5:6C:33:1B:2D:06:76:7D:F7:65:50:98:F2:43:E6:C7:7F:6E:74 Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0D49 Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/D9VsMxstBnZ992VQmPJD5sd_bnQ.roa Signing time: Mon 10 Feb 2025 14:05:24 +0000 ROA not before: Mon 10 Feb 2025 14:05:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18049 IP address blocks: 58.99.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 03:06:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3401 (0xd49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: Feb 10 14:05:24 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0FD56C331B2D06767DF7655098F243E6C77F6E74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:d2:9c:a4:fb:6a:fb:0e:ff:fe:37:10:92:0c: d6:b9:a3:73:da:a9:70:4d:eb:8e:6e:17:d3:e0:e4: 33:36:af:c0:76:5a:f9:5a:dd:27:c1:25:97:00:2d: 0d:48:32:71:f2:1e:9f:47:df:b3:e2:ea:61:2e:55: 4b:bb:a8:81:32:90:bf:b6:2b:a3:22:08:50:e8:96: e7:7a:ec:68:f9:be:07:c5:e9:a3:6b:c3:a6:c8:71: 07:ac:d0:70:fa:85:07:9a:9d:a0:14:96:4f:09:f5: 9a:1b:ee:30:39:40:1e:6f:d1:13:d7:e0:26:83:ed: 4c:7b:96:62:e8:ec:ab:76:7a:e1:cf:37:c9:dd:1f: c8:b1:87:5b:3f:20:17:31:32:d4:e9:70:8c:fb:94: 24:1e:9a:8c:ab:85:08:42:5b:4c:f2:60:3c:17:0b: 48:ec:6c:0a:54:d9:57:b4:d3:a0:44:89:63:9c:42: 2e:52:d8:f7:08:46:f1:1c:46:b5:63:21:bf:9d:88: ff:19:8d:08:fc:90:82:8a:e2:07:de:dd:5b:b8:cb: 8d:8c:2f:1c:26:81:fc:3e:c3:e5:83:ef:3b:8d:ce: d4:e2:18:e0:53:07:41:9c:16:87:a9:c8:b9:f1:a2: 9d:55:78:7a:5a:02:91:29:d5:fe:9a:c4:b2:92:90: 08:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:D5:6C:33:1B:2D:06:76:7D:F7:65:50:98:F2:43:E6:C7:7F:6E:74 X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/D9VsMxstBnZ992VQmPJD5sd_bnQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 58.99.0.0/18 Signature Algorithm: sha256WithRSAEncryption 80:9f:4c:df:d6:49:27:ca:52:95:4d:8b:ef:64:eb:39:df:c4: f8:85:cf:6c:b4:7c:f4:53:02:b0:a0:03:eb:b8:7e:2d:e3:02: 8c:b5:af:d8:cc:a7:fd:f0:50:15:af:e1:08:b1:de:d1:5e:af: 1f:c2:17:e8:49:60:be:c6:a1:bc:03:1b:28:b9:ba:cb:f3:4a: b2:9f:3e:5e:6d:a0:59:90:a1:2c:a6:05:65:3f:fc:cd:ef:42: a2:82:c9:ba:8d:08:21:64:69:d9:9a:d3:41:8b:c5:16:db:fa: 35:ab:e1:78:ae:64:f0:89:b5:3c:b0:d1:e0:54:65:26:40:66: 4f:68:e9:66:83:e9:e9:9b:d3:87:f8:50:e6:0e:74:53:33:c5: 22:4f:80:14:2f:ee:f1:e0:55:7e:61:2b:96:af:28:28:e2:d4: c2:bc:c2:06:af:a7:aa:0f:74:d6:b7:58:00:65:c7:70:ea:a2: 46:61:ba:50:e1:9c:95:cd:13:8a:32:15:0f:40:11:1f:36:06: 03:dc:4e:5e:8e:09:51:06:d9:52:44:d2:b4:2e:55:53:79:5b: eb:bf:d2:ef:4f:1b:26:a0:70:77:ca:24:66:66:3e:78:1e:d9: 3e:e9:fa:21:b7:f0:d9:a5:a2:18:90:d1:20:44:9b:6f:3c:29: db:61:31:e3 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDUkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNTAyMTAx NDA1MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBGRDU2QzMzMUIyRDA2 NzY3REY3NjU1MDk4RjI0M0U2Qzc3RjZFNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDq0pyk+2r7Dv/+NxCSDNa5o3PaqXBN645uF9Pg5DM2r8B2Wvla 3SfBJZcALQ1IMnHyHp9H37Pi6mEuVUu7qIEykL+2K6MiCFDolud67Gj5vgfF6aNr w6bIcQes0HD6hQeanaAUlk8J9Zob7jA5QB5v0RPX4CaD7Ux7lmLo7Kt2euHPN8nd H8ixh1s/IBcxMtTpcIz7lCQemoyrhQhCW0zyYDwXC0jsbApU2Ve006BEiWOcQi5S 2PcIRvEcRrVjIb+diP8ZjQj8kIKK4gfe3Vu4y42MLxwmgfw+w+WD7zuNztTiGOBT B0GcFoepyLnxop1VeHpaApEp1f6axLKSkAhtAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUD9VsMxstBnZ992VQmPJD5sd/bnQwHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvRDlWc014c3RCblo5OTJWUW1QSkQ1 c2RfYm5RLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBjpjADAN BgkqhkiG9w0BAQsFAAOCAQEAgJ9M39ZJJ8pSlU2L72TrOd/E+IXPbLR89FMCsKAD 67h+LeMCjLWv2Myn/fBQFa/hCLHe0V6vH8IX6ElgvsahvAMbKLm6y/NKsp8+Xm2g WZChLKYFZT/8ze9CooLJuo0IIWRp2ZrTQYvFFtv6NavheK5k8Im1PLDR4FRlJkBm T2jpZoPp6ZvTh/hQ5g50UzPFIk+AFC/u8eBVfmErlq8oKOLUwrzCBq+nqg901rdY AGXHcOqiRmG6UOGclc0TijIVD0ARHzYGA9xOXo4JUQbZUkTStC5VU3lb67/S708b JqBwd8okZmY+eB7ZPun6Ibfw2aWiGJDRIESbbzwp22Ex4w== -----END CERTIFICATE-----Generated at Mon Apr 7 23:24:49 2025 by rpki-client