$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/ftomGWWLQSbd3A1zAzmEBmhomv4.roa File: ftomGWWLQSbd3A1zAzmEBmhomv4.roa (raw, json) Hash identifier: PbIpDkGUxK9UNcAI+kI3/umB3gHoHtln1PmQQiuf/Kw= Subject key identifier: 7E:DA:26:19:65:8B:41:26:DD:DC:0D:73:03:39:84:06:68:68:9A:FE Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0D4C Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/ftomGWWLQSbd3A1zAzmEBmhomv4.roa Signing time: Mon 10 Feb 2025 14:05:24 +0000 ROA not before: Mon 10 Feb 2025 14:05:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18049 IP address blocks: 49.213.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 03:06:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3404 (0xd4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: Feb 10 14:05:24 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7EDA2619658B4126DDDC0D730339840668689AFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:89:7b:59:57:54:32:25:04:80:c5:48:46:ab: ce:32:91:e5:6a:d0:dd:a3:70:92:2e:ee:8b:1b:39: 42:01:de:3a:51:ca:08:6c:5c:10:bd:af:4b:0b:99: f3:3f:c2:50:35:c5:ef:70:bb:c1:c0:1d:86:f5:47: 9d:5a:2c:a0:31:08:61:8b:1e:e7:08:19:2b:38:be: f0:0e:6f:68:01:d1:b9:7c:01:d8:96:26:23:39:25: 9f:86:0e:68:ef:66:8d:71:48:3e:d4:b7:3a:01:5d: ad:bc:7a:41:c9:5d:01:db:d5:54:ae:7a:33:cd:a7: cc:35:aa:11:26:7a:b5:1b:57:27:e8:01:cf:b3:4a: e6:f9:09:ed:5c:98:47:64:34:ca:ae:3c:7e:84:14: 9a:07:46:be:8d:58:0d:07:1f:08:9f:09:c4:d7:c8: 83:31:15:6d:f8:28:74:4f:ab:67:aa:70:ae:ca:cb: 93:c9:4b:51:44:c8:43:9c:0c:2b:8e:a1:22:48:4f: 9c:8e:81:30:e5:15:eb:8d:64:1d:6d:b9:e5:ac:e1: 0d:e1:77:01:9d:ea:03:7f:74:80:30:7e:41:02:ef: 5c:a3:05:67:44:ec:d8:77:55:38:87:86:8a:2c:37: c2:20:3b:24:6a:af:0c:86:a9:9d:ae:eb:c0:d7:e2: ad:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:DA:26:19:65:8B:41:26:DD:DC:0D:73:03:39:84:06:68:68:9A:FE X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/ftomGWWLQSbd3A1zAzmEBmhomv4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.213.128.0/17 Signature Algorithm: sha256WithRSAEncryption 97:96:ac:e1:54:77:3d:b8:5e:19:61:c3:5a:5d:6d:d1:a5:df: 22:ff:bf:64:88:4d:57:b8:81:0c:7f:c0:20:8e:0f:4c:44:d3: 9c:b6:45:fc:5b:22:e4:ce:c5:ca:12:b7:a9:7c:48:c5:95:17: b4:2a:a3:b9:ec:61:7c:b9:0c:db:d6:9c:ee:d9:c4:76:89:46: c0:f2:69:16:0e:09:e1:6d:ba:f8:90:2f:cb:c3:15:8d:3a:53: 99:88:66:27:f9:da:95:19:9c:28:8e:65:8b:e4:84:2f:78:8f: db:42:b0:ce:18:04:91:f0:66:53:17:01:9b:9d:ca:92:94:47: 68:29:12:fe:03:0d:42:80:3c:6f:db:05:4d:e8:82:45:8e:2e: 63:72:7f:e5:21:a8:aa:55:86:9b:93:c5:06:f4:3f:60:e9:a5: d5:79:2f:9b:f9:22:c5:a4:4e:94:2b:51:15:9c:f8:03:95:1e: 5a:db:34:3e:bd:a3:a3:c7:a0:ed:b1:90:62:5b:3b:80:ad:3f: 01:1f:99:69:ff:f0:9e:89:c7:9a:52:3d:fa:90:5b:0e:83:83: c7:59:8a:a5:65:89:74:a5:b7:09:b9:22:7c:aa:02:12:6d:1f: ce:d3:0f:ea:55:ed:72:2c:c8:92:be:26:41:68:64:62:e9:7a: 76:ab:87:a6 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDUwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNTAyMTAx NDA1MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdFREEyNjE5NjU4QjQx MjZERERDMEQ3MzAzMzk4NDA2Njg2ODlBRkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5iXtZV1QyJQSAxUhGq84ykeVq0N2jcJIu7osbOUIB3jpRyghs XBC9r0sLmfM/wlA1xe9wu8HAHYb1R51aLKAxCGGLHucIGSs4vvAOb2gB0bl8AdiW JiM5JZ+GDmjvZo1xSD7UtzoBXa28ekHJXQHb1VSuejPNp8w1qhEmerUbVyfoAc+z Sub5Ce1cmEdkNMquPH6EFJoHRr6NWA0HHwifCcTXyIMxFW34KHRPq2eqcK7Ky5PJ S1FEyEOcDCuOoSJIT5yOgTDlFeuNZB1tueWs4Q3hdwGd6gN/dIAwfkEC71yjBWdE 7Nh3VTiHhoosN8IgOyRqrwyGqZ2u68DX4q0BAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUftomGWWLQSbd3A1zAzmEBmhomv4wHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvZnRvbUdXV0xRU2JkM0ExekF6bUVC bWhvbXY0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBzHVgDAN BgkqhkiG9w0BAQsFAAOCAQEAl5as4VR3PbheGWHDWl1t0aXfIv+/ZIhNV7iBDH/A II4PTETTnLZF/Fsi5M7FyhK3qXxIxZUXtCqjuexhfLkM29ac7tnEdolGwPJpFg4J 4W26+JAvy8MVjTpTmYhmJ/nalRmcKI5li+SEL3iP20KwzhgEkfBmUxcBm53KkpRH aCkS/gMNQoA8b9sFTeiCRY4uY3J/5SGoqlWGm5PFBvQ/YOml1Xkvm/kixaROlCtR FZz4A5UeWts0Pr2jo8eg7bGQYls7gK0/AR+Zaf/wnonHmlI9+pBbDoODx1mKpWWJ dKW3CbkifKoCEm0fztMP6lXtcizIkr4mQWhkYul6dquHpg== -----END CERTIFICATE-----Generated at Mon Apr 7 23:03:03 2025 by rpki-client