$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/9YE3H9tQXm5n_dPA3CNYP-HKyNg.roa File: 9YE3H9tQXm5n_dPA3CNYP-HKyNg.roa (raw, json) Hash identifier: u2NXnt4a2nOymrLWWWIUbAjh0iqprGLPU4YOrBk6apw= Subject key identifier: F5:81:37:1F:DB:50:5E:6E:67:FD:D3:C0:DC:23:58:3F:E1:CA:C8:D8 Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 135A Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/9YE3H9tQXm5n_dPA3CNYP-HKyNg.roa Signing time: Mon 10 Feb 2025 14:03:38 +0000 ROA not before: Mon 10 Feb 2025 14:03:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131621 IP address blocks: 2001:de4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 08:36:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4954 (0x135a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Feb 10 14:03:38 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F581371FDB505E6E67FDD3C0DC23583FE1CAC8D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:90:52:b5:c3:d8:a9:c7:1d:d2:95:43:54:7c: 02:93:dc:d2:07:f3:31:7b:21:53:96:60:ea:60:f9: 57:07:e2:62:50:e5:dc:15:21:0b:06:00:4f:df:c2: f0:76:c6:9b:c8:71:0a:f4:4a:d3:8b:e7:78:ba:bb: f1:73:04:54:b9:d0:07:1a:26:e4:12:e2:96:72:aa: 90:c4:06:29:2f:46:33:a3:0f:11:ec:c1:31:3e:4c: 50:d5:89:b4:92:c2:fe:36:37:d6:89:8e:55:c2:a4: f9:d0:00:dc:c2:bd:21:0c:7b:e9:a3:87:c7:65:1e: bc:fd:3a:95:37:7b:0f:ee:25:2c:b0:ed:f5:b1:cc: 97:3f:0f:0c:49:6d:54:18:26:68:15:b2:85:3c:64: 94:15:ef:9d:68:11:09:2f:bc:05:13:8b:13:16:32: 9c:77:d7:34:14:68:b1:8e:55:c4:29:90:63:e9:f6: d5:af:ec:4d:e3:e5:de:50:46:24:af:14:59:45:2f: 13:9e:21:6a:8f:5b:46:fe:a2:7c:86:31:49:63:54: a0:2b:94:11:7e:2d:b4:2b:fb:17:20:fa:a8:30:14: 0e:a3:6f:37:fe:b4:25:77:d0:3c:d4:3a:92:20:e6: 68:7d:3a:06:28:e2:7c:ec:13:84:00:1f:83:94:2e: 9b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:81:37:1F:DB:50:5E:6E:67:FD:D3:C0:DC:23:58:3F:E1:CA:C8:D8 X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/9YE3H9tQXm5n_dPA3CNYP-HKyNg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:de4::/48 Signature Algorithm: sha256WithRSAEncryption 5d:d2:5a:28:0e:95:4a:62:26:00:57:3f:22:ca:1f:21:3a:fb: 50:8f:d3:01:89:5d:89:7e:f1:ee:02:0a:9b:67:18:34:ce:cd: b1:6e:6d:9e:27:1b:48:e3:71:bf:48:59:2b:d3:f5:30:28:a1: e1:e7:b7:45:b3:e6:a2:1b:a9:54:b9:50:79:f7:41:85:36:a1: 66:13:fe:3a:de:7b:a4:62:6f:ae:d6:35:eb:af:1d:e4:17:90: 35:31:54:18:61:6b:b2:1b:53:3b:8a:6b:9c:33:15:da:de:33: 4b:8d:1b:8d:97:2a:b0:81:9c:35:50:53:43:14:09:1b:a2:07: ba:ac:0d:19:be:91:57:cf:d3:31:57:5c:3a:d6:42:fe:d2:5d: cc:25:e5:9b:75:d3:8b:30:4a:3c:e3:f0:08:fa:e0:0b:0a:5a: e2:03:4e:4d:bd:5d:6f:99:ab:b1:37:cd:ac:36:64:43:7a:88: ef:a7:46:b9:33:ae:f1:95:c1:67:d5:e3:7a:3e:d1:e9:4a:73: 6c:93:4e:0c:76:26:5e:35:70:88:6c:36:0f:b5:94:58:d9:58: 61:98:dd:84:f8:4f:a3:78:c0:61:3a:24:2d:6f:63:96:09:08: da:40:8d:1f:bc:94:84:c4:6f:92:2a:67:73:b0:21:66:7f:d5: d2:2a:89:05 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICE1owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNTAyMTAx NDAzMzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY1ODEzNzFGREI1MDVF NkU2N0ZERDNDMERDMjM1ODNGRTFDQUM4RDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5kFK1w9ipxx3SlUNUfAKT3NIH8zF7IVOWYOpg+VcH4mJQ5dwV IQsGAE/fwvB2xpvIcQr0StOL53i6u/FzBFS50AcaJuQS4pZyqpDEBikvRjOjDxHs wTE+TFDVibSSwv42N9aJjlXCpPnQANzCvSEMe+mjh8dlHrz9OpU3ew/uJSyw7fWx zJc/DwxJbVQYJmgVsoU8ZJQV751oEQkvvAUTixMWMpx31zQUaLGOVcQpkGPp9tWv 7E3j5d5QRiSvFFlFLxOeIWqPW0b+onyGMUljVKArlBF+LbQr+xcg+qgwFA6jbzf+ tCV30DzUOpIg5mh9OgYo4nzsE4QAH4OULpv/AgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQU9YE3H9tQXm5n/dPA3CNYP+HKyNgwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy85WUUzSDl0UVhtNW5fZFBBM0NO WVAtSEt5Tmcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 5AAAMA0GCSqGSIb3DQEBCwUAA4IBAQBd0looDpVKYiYAVz8iyh8hOvtQj9MBiV2J fvHuAgqbZxg0zs2xbm2eJxtI43G/SFkr0/UwKKHh57dFs+aiG6lUuVB590GFNqFm E/463nukYm+u1jXrrx3kF5A1MVQYYWuyG1M7imucMxXa3jNLjRuNlyqwgZw1UFND FAkboge6rA0ZvpFXz9MxV1w61kL+0l3MJeWbddOLMEo84/AI+uALClriA05NvV1v mauxN82sNmRDeojvp0a5M67xlcFn1eN6PtHpSnNsk04MdiZeNXCIbDYPtZRY2Vhh mN2E+E+jeMBhOiQtb2OWCQjaQI0fvJSExG+SKmdzsCFmf9XSKokF -----END CERTIFICATE-----Generated at Sat Apr 5 08:29:47 2025 by rpki-client