$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/bBWEdmUBw8dpoCe0O6U3OWN0MYg.roa File: bBWEdmUBw8dpoCe0O6U3OWN0MYg.roa (raw, json) Hash identifier: XV8pLOqLODnI6clR4bRaHvvsogx8lNbBzf9TCVPdlsc= Subject key identifier: 6C:15:84:76:65:01:C3:C7:69:A0:27:B4:3B:A5:37:39:63:74:31:88 Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0D4A Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/bBWEdmUBw8dpoCe0O6U3OWN0MYg.roa Signing time: Mon 10 Feb 2025 14:05:24 +0000 ROA not before: Mon 10 Feb 2025 14:05:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 61.58.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 18:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3402 (0xd4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: Feb 10 14:05:24 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6C1584766501C3C769A027B43BA5373963743188 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:7f:ba:00:72:e0:c4:db:13:43:49:68:e7:e6: 9f:a8:31:dd:c4:8d:2a:01:8f:5a:0f:45:36:ef:71: 16:46:09:71:77:87:8b:85:71:64:65:67:5e:42:8e: 26:1c:af:71:ba:9b:dc:49:81:9d:33:7d:fb:ea:45: a4:85:16:c8:0e:29:dc:4d:ea:8e:b7:6c:ca:c9:a6: 76:b9:8f:f6:57:1b:3a:64:20:5b:4b:61:58:64:81: 56:92:02:37:e2:5c:7f:20:5e:f3:e3:8c:c3:ed:61: ff:0c:59:7e:8d:7a:d5:91:a1:14:b1:07:d4:c6:8e: 59:d6:72:2d:96:9a:90:e6:76:f2:79:97:16:70:f5: 98:57:03:59:03:27:76:ac:ff:74:36:6b:43:9f:2a: 47:8b:97:ef:fe:c1:bc:ce:7d:9d:42:61:35:4f:8c: be:56:33:f6:86:ff:e3:f4:aa:b8:40:9b:4d:6f:17: a0:59:7f:3d:42:bf:61:a0:f1:a4:9c:6d:55:9a:06: f9:e7:4e:b6:ab:78:c3:96:78:81:fd:0c:d5:de:5d: c1:20:37:53:6d:51:cb:5f:77:a3:33:b9:cc:ce:fe: ff:5b:3c:83:4b:69:0f:45:1f:fc:34:85:3f:5b:2e: 35:e8:26:35:64:c0:7a:10:24:d0:b2:54:ec:6b:55: 08:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:15:84:76:65:01:C3:C7:69:A0:27:B4:3B:A5:37:39:63:74:31:88 X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/bBWEdmUBw8dpoCe0O6U3OWN0MYg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.156.0/24 Signature Algorithm: sha256WithRSAEncryption 93:de:0d:13:77:74:d3:f0:71:64:2c:fd:4c:57:eb:63:7e:ff: d9:c6:d9:13:26:09:bb:e0:d0:60:b8:17:ed:fc:f2:44:70:c8: 7c:99:2e:56:ab:d3:f6:a2:f3:d8:6f:e5:88:30:d0:15:0d:59: 5b:b8:3c:3e:bc:18:f5:81:61:c8:63:b3:8f:b0:0a:9f:b5:aa: aa:21:b8:d3:30:5a:54:d2:d2:8e:46:35:5d:98:32:ec:fe:b3: 6f:cc:21:66:2f:31:0a:5c:b8:76:02:e5:01:05:d8:c1:45:4f: ed:8b:9d:c5:72:ad:ab:0e:54:90:0d:31:b1:68:7a:1e:30:ba: ab:41:99:0c:5c:06:5c:d7:bb:83:7c:89:8d:7d:a1:c3:4b:09: 55:14:0e:3d:e6:53:3d:22:43:05:8f:cc:09:84:4f:1c:31:56: 4e:0f:08:4e:c7:ee:39:78:15:ad:1e:b5:d4:08:82:14:c8:92: ba:5c:ff:8b:57:79:75:79:ec:7a:27:72:a2:2d:68:26:7c:cf: e7:50:49:1b:d1:9b:d3:b0:6c:55:34:ec:88:cc:78:a0:26:eb: 67:13:ae:81:01:5a:c4:0a:c0:be:ef:24:7e:5c:ed:fb:20:5f: cf:01:a8:7e:00:09:ea:c7:56:04:56:e8:e3:c2:c0:3a:f4:5b: e9:f9:52:83 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDUowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNTAyMTAx NDA1MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZDMTU4NDc2NjUwMUMz Qzc2OUEwMjdCNDNCQTUzNzM5NjM3NDMxODgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVf7oAcuDE2xNDSWjn5p+oMd3EjSoBj1oPRTbvcRZGCXF3h4uF cWRlZ15CjiYcr3G6m9xJgZ0zffvqRaSFFsgOKdxN6o63bMrJpna5j/ZXGzpkIFtL YVhkgVaSAjfiXH8gXvPjjMPtYf8MWX6NetWRoRSxB9TGjlnWci2WmpDmdvJ5lxZw 9ZhXA1kDJ3as/3Q2a0OfKkeLl+/+wbzOfZ1CYTVPjL5WM/aG/+P0qrhAm01vF6BZ fz1Cv2Gg8aScbVWaBvnnTrareMOWeIH9DNXeXcEgN1NtUctfd6MzuczO/v9bPINL aQ9FH/w0hT9bLjXoJjVkwHoQJNCyVOxrVQhVAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUbBWEdmUBw8dpoCe0O6U3OWN0MYgwHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvYkJXRWRtVUJ3OGRwb0NlME82VTNP V04wTVlnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAD06nDAN BgkqhkiG9w0BAQsFAAOCAQEAk94NE3d00/BxZCz9TFfrY37/2cbZEyYJu+DQYLgX 7fzyRHDIfJkuVqvT9qLz2G/liDDQFQ1ZW7g8PrwY9YFhyGOzj7AKn7WqqiG40zBa VNLSjkY1XZgy7P6zb8whZi8xCly4dgLlAQXYwUVP7YudxXKtqw5UkA0xsWh6HjC6 q0GZDFwGXNe7g3yJjX2hw0sJVRQOPeZTPSJDBY/MCYRPHDFWTg8ITsfuOXgVrR61 1AiCFMiSulz/i1d5dXnseidyoi1oJnzP51BJG9Gb07BsVTTsiMx4oCbrZxOugQFa xArAvu8kflzt+yBfzwGofgAJ6sdWBFbo48LAOvRb6flSgw== -----END CERTIFICATE-----Generated at Mon Apr 7 15:11:42 2025 by rpki-client