$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/tKewCWbZQZwgfpwq6WNqcJjjgJI.roa File: tKewCWbZQZwgfpwq6WNqcJjjgJI.roa (raw, json) Hash identifier: f86MJJahIVoqk7ESsSOvF6ucqdGr2LNQ5rjl9aPfLho= Subject key identifier: B4:A7:B0:09:66:D9:41:9C:20:7E:9C:2A:E9:63:6A:70:98:E3:80:92 Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0D47 Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/tKewCWbZQZwgfpwq6WNqcJjjgJI.roa Signing time: Mon 10 Feb 2025 14:05:23 +0000 ROA not before: Mon 10 Feb 2025 14:05:23 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18049 IP address blocks: 61.60.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 03:06:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3399 (0xd47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: Feb 10 14:05:23 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B4A7B00966D9419C207E9C2AE9636A7098E38092 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f0:ba:63:a4:ab:d5:2c:fc:a4:bc:97:05:e3: 04:97:24:e9:1d:36:3f:a0:9b:7d:9a:4f:26:07:43: 1d:12:3b:70:3d:7e:5f:91:dc:c8:3d:11:e6:f6:93: aa:c6:27:df:2e:be:da:cf:9e:4a:f9:db:19:36:70: 79:4f:4b:00:20:89:a3:5a:83:53:39:c2:45:fa:c5: 3c:45:97:c6:ba:10:46:07:fd:68:ec:8e:35:68:c4: 98:e7:d9:f7:32:46:a6:33:c5:22:52:89:dd:d3:07: 1d:0c:09:05:a0:5b:d9:e5:4f:56:c3:ef:4f:be:9b: 3e:75:24:e9:ea:75:c0:7e:23:cc:3a:e4:8c:91:0d: a3:e6:dc:b3:0d:01:c1:3f:9f:45:bc:72:15:ad:b2: e4:a9:0a:4b:57:53:5d:63:b7:ad:2a:06:d7:4f:0b: 4b:10:48:21:b1:b5:84:67:b5:74:cc:82:9d:64:42: f2:10:8f:d8:8e:32:ed:e0:ea:37:41:f4:35:68:24: 9a:f8:ae:34:95:bd:e8:71:25:3b:f2:45:3a:c9:50: c2:7f:3c:34:d4:31:a7:a8:36:f9:04:e2:36:23:a4: 78:66:8a:e4:5f:3c:24:f3:33:7f:63:ef:f9:3c:4c: 13:5b:81:db:f8:1d:9d:86:79:a3:c7:1a:10:a9:8c: eb:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:A7:B0:09:66:D9:41:9C:20:7E:9C:2A:E9:63:6A:70:98:E3:80:92 X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/tKewCWbZQZwgfpwq6WNqcJjjgJI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.60.224.0/20 Signature Algorithm: sha256WithRSAEncryption 0e:54:2f:c2:35:1b:25:38:32:d1:82:a1:06:f6:8f:73:52:28: 2c:63:9d:b4:9b:30:14:2a:8e:16:e7:1a:d1:f6:7c:36:47:7d: 8a:32:7c:20:2b:19:ac:49:f4:b6:0a:e5:4b:c6:c5:f9:58:5a: 9c:a1:51:08:1d:82:4d:dd:7f:19:00:6e:b1:1e:21:7d:a3:34: 82:06:4c:d2:57:e9:fe:7b:a2:64:4b:6d:18:50:b5:30:33:53: e8:53:7a:f9:4d:5e:5d:b1:52:76:99:59:63:82:07:f7:ea:ac: 8c:4e:44:38:f0:8b:27:a3:12:be:2c:24:e3:f4:d1:92:d7:24: 51:9c:42:ea:94:23:38:a1:ad:5f:e8:41:2f:ea:96:f6:f7:e0: 33:49:44:a8:fd:6b:93:68:45:6c:db:3d:41:54:9a:21:f7:65: 05:70:69:1b:e2:51:de:c5:02:af:19:cd:a8:fb:36:6d:85:38: 56:7b:2d:f8:4d:de:04:8f:bf:10:3f:45:a3:56:2a:86:35:23: 2d:43:e0:10:b9:59:6c:fd:e9:e9:c4:63:e0:69:8a:b5:c0:6a: f2:87:f1:f1:19:30:f5:d3:40:4c:57:ec:a1:49:78:74:de:96: 95:3d:09:04:ff:34:9a:9a:78:ae:fd:11:fe:7d:a2:a9:5c:0d: d7:0d:e6:0b -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDUcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNTAyMTAx NDA1MjNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI0QTdCMDA5NjZEOTQx OUMyMDdFOUMyQUU5NjM2QTcwOThFMzgwOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+8LpjpKvVLPykvJcF4wSXJOkdNj+gm32aTyYHQx0SO3A9fl+R 3Mg9Eeb2k6rGJ98uvtrPnkr52xk2cHlPSwAgiaNag1M5wkX6xTxFl8a6EEYH/Wjs jjVoxJjn2fcyRqYzxSJSid3TBx0MCQWgW9nlT1bD70++mz51JOnqdcB+I8w65IyR DaPm3LMNAcE/n0W8chWtsuSpCktXU11jt60qBtdPC0sQSCGxtYRntXTMgp1kQvIQ j9iOMu3g6jdB9DVoJJr4rjSVvehxJTvyRTrJUMJ/PDTUMaeoNvkE4jYjpHhmiuRf PCTzM39j7/k8TBNbgdv4HZ2GeaPHGhCpjOsPAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUtKewCWbZQZwgfpwq6WNqcJjjgJIwHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvdEtld0NXYlpRWndnZnB3cTZXTnFj SmpqZ0pJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBD084DAN BgkqhkiG9w0BAQsFAAOCAQEADlQvwjUbJTgy0YKhBvaPc1IoLGOdtJswFCqOFuca 0fZ8Nkd9ijJ8ICsZrEn0tgrlS8bF+VhanKFRCB2CTd1/GQBusR4hfaM0ggZM0lfp /nuiZEttGFC1MDNT6FN6+U1eXbFSdplZY4IH9+qsjE5EOPCLJ6MSviwk4/TRktck UZxC6pQjOKGtX+hBL+qW9vfgM0lEqP1rk2hFbNs9QVSaIfdlBXBpG+JR3sUCrxnN qPs2bYU4Vnst+E3eBI+/ED9Fo1YqhjUjLUPgELlZbP3p6cRj4GmKtcBq8ofx8Rkw 9dNATFfsoUl4dN6WlT0JBP80mpp4rv0R/n2iqVwN1w3mCw== -----END CERTIFICATE-----Generated at Mon Apr 7 23:24:45 2025 by rpki-client