$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/mMIZE7t4PI97kptrkKu33WTF8a8.roa File: mMIZE7t4PI97kptrkKu33WTF8a8.roa (raw, json) Hash identifier: hiUvJ6hpOe7re4K3SXGMUuARaMWhLAghmGxgmas14ds= Subject key identifier: 98:C2:19:13:BB:78:3C:8F:7B:92:9B:6B:90:AB:B7:DD:64:C5:F1:AF Certificate issuer: /CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A Certificate serial: 018D Authority key identifier: EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/mMIZE7t4PI97kptrkKu33WTF8a8.roa Signing time: Mon 10 Feb 2025 13:44:14 +0000 ROA not before: Mon 10 Feb 2025 13:44:14 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 2914 IP address blocks: 202.160.80.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 03:06:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 397 (0x18d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A Validity Not Before: Feb 10 13:44:14 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=98C21913BB783C8F7B929B6B90ABB7DD64C5F1AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:70:be:06:45:62:a0:5a:de:b3:c8:5a:7c:54: aa:9f:38:9e:2e:07:8d:2b:ac:b5:c0:12:96:e2:fc: 04:68:8c:33:0b:56:9e:be:a7:ea:86:12:4c:2d:b9: 8d:b9:73:55:a1:4f:8b:07:e1:47:19:e4:41:8e:c0: 3a:a2:c3:0d:1a:7a:3d:d9:71:88:32:a3:71:e8:d6: df:61:f3:76:b5:3f:72:e7:08:78:0b:ed:6f:9a:c6: a1:2a:ec:e0:1e:6e:75:82:b3:24:6e:6b:4f:84:75: 9c:32:b0:d0:41:e2:c8:af:d5:0f:01:08:a6:9d:61: 93:88:80:eb:76:27:3f:a3:72:f7:13:e8:87:b7:b6: ec:0b:d6:8b:94:2d:34:ef:02:2e:97:fe:bb:e7:ee: fa:b7:2b:62:93:46:cd:3d:0b:3a:50:fa:dc:7e:60: 8d:e4:c9:12:16:60:13:3f:f9:d1:f5:b0:ff:82:9f: e8:cb:97:de:33:55:26:3c:4d:8b:fa:64:e5:5a:4d: 20:8f:e3:ac:00:88:02:d5:93:14:b5:04:e5:2e:45: 81:e5:19:79:28:50:fa:eb:13:d1:63:a0:3f:7d:a1: ef:36:2a:30:75:67:48:4f:30:8b:90:f3:b2:45:0a: 27:76:cf:54:1d:15:2c:64:50:de:43:3e:09:e5:8b: fa:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:C2:19:13:BB:78:3C:8F:7B:92:9B:6B:90:AB:B7:DD:64:C5:F1:AF X509v3 Authority Key Identifier: keyid:EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/mMIZE7t4PI97kptrkKu33WTF8a8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.160.80.0/21 Signature Algorithm: sha256WithRSAEncryption a1:aa:92:22:b9:66:26:23:c7:c7:87:59:af:8f:fe:02:ed:b6: 9b:9e:45:9c:9d:87:a7:5a:85:d3:e0:57:57:27:4e:92:4d:d2: 50:b7:da:a5:6a:11:55:c7:cd:bf:21:ac:fb:95:0f:f7:63:2b: 1e:54:16:9e:83:d9:9b:d3:8b:2c:05:16:97:77:2f:a4:1a:bf: 82:bf:69:9c:52:58:ad:a2:45:93:b1:76:03:4d:3e:c2:3f:c0: 53:e0:e0:32:bc:f7:e1:2a:17:0f:4e:2c:90:fb:0b:2f:cd:ee: 7a:37:a1:5f:d2:54:ed:bc:86:81:5f:70:69:79:ee:f4:eb:a9: 42:e0:0f:d3:ac:f3:2c:af:ec:4d:d6:23:0a:aa:35:a9:fb:37: 05:4b:24:18:7c:13:aa:b6:6e:e4:e2:84:f2:2e:5d:3a:c5:18: 06:3c:83:a5:57:82:9c:70:eb:be:b2:e9:ad:e1:37:f7:68:d5: a4:a1:9f:cb:ad:b6:8b:b2:b5:42:ad:56:7f:7a:4a:55:a7:d6: b0:b5:5d:1f:eb:62:23:51:f2:bd:ec:53:59:23:ab:ef:ff:07: 30:e2:38:0d:13:f9:b1:97:7b:25:6a:0c:40:28:a2:e0:87:f8: 26:be:53:73:04:e1:c5:55:67:ec:bf:42:6b:9b:64:49:e1:f9: 6a:98:03:b3 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICAY0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUNE MkZEQzM4NTIyQTc0QTQyMkRFN0JEMUMwMjZENTVFMDhEOUU5QTAeFw0yNTAyMTAx MzQ0MTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk4QzIxOTEzQkI3ODND OEY3QjkyOUI2QjkwQUJCN0RENjRDNUYxQUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxcL4GRWKgWt6zyFp8VKqfOJ4uB40rrLXAEpbi/ARojDMLVp6+ p+qGEkwtuY25c1WhT4sH4UcZ5EGOwDqiww0aej3ZcYgyo3Ho1t9h83a1P3LnCHgL 7W+axqEq7OAebnWCsyRua0+EdZwysNBB4siv1Q8BCKadYZOIgOt2Jz+jcvcT6Ie3 tuwL1ouULTTvAi6X/rvn7vq3K2KTRs09CzpQ+tx+YI3kyRIWYBM/+dH1sP+Cn+jL l94zVSY8TYv6ZOVaTSCP46wAiALVkxS1BOUuRYHlGXkoUPrrE9FjoD99oe82KjB1 Z0hPMIuQ87JFCid2z1QdFSxkUN5DPgnli/rjAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUmMIZE7t4PI97kptrkKu33WTF8a8wHwYDVR0jBBgwFoAU7NL9w4Uip0pCLee9 HAJtVeCNnpowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFBTSUxL RVJBLzdOTDl3NFVpcDBwQ0xlZTlIQUp0VmVDTm5wby5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvN05MOXc0VWlwMHBDTGVlOUhBSnRWZUNObnBvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFBTSUxLRVJBL21NSVpFN3Q0UEk5 N2twdHJrS3UzM1dURjhhOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPKoFAwDQYJKoZIhvcNAQELBQADggEBAKGqkiK5ZiYjx8eHWa+P/gLttpue RZydh6dahdPgV1cnTpJN0lC32qVqEVXHzb8hrPuVD/djKx5UFp6D2ZvTiywFFpd3 L6Qav4K/aZxSWK2iRZOxdgNNPsI/wFPg4DK89+EqFw9OLJD7Cy/N7no3oV/SVO28 hoFfcGl57vTrqULgD9Os8yyv7E3WIwqqNan7NwVLJBh8E6q2buTihPIuXTrFGAY8 g6VXgpxw676y6a3hN/do1aShn8uttouytUKtVn96SlWn1rC1XR/rYiNR8r3sU1kj q+//BzDiOA0T+bGXeyVqDEAoouCH+Ca+U3ME4cVVZ+y/QmubZEnh+WqYA7M= -----END CERTIFICATE-----Generated at Tue Apr 8 00:38:08 2025 by rpki-client