$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/FYVh_wmYVBNHR1BpVGCn3bDL4KQ.roa File: FYVh_wmYVBNHR1BpVGCn3bDL4KQ.roa (raw, json) Hash identifier: oDCQu1Wrys2+HN8dhUYJVs/7XulpZyArGc3tisrogns= Subject key identifier: 15:85:61:FF:09:98:54:13:47:47:50:69:54:60:A7:DD:B0:CB:E0:A4 Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 1360 Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/FYVh_wmYVBNHR1BpVGCn3bDL4KQ.roa Signing time: Mon 10 Feb 2025 14:03:40 +0000 ROA not before: Mon 10 Feb 2025 14:03:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131644 IP address blocks: 101.101.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 08:36:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4960 (0x1360) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Feb 10 14:03:40 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=158561FF09985413474750695460A7DDB0CBE0A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:48:b7:57:b7:8e:bf:e9:9c:65:a7:42:7c:5b: b0:26:1e:46:0d:3f:fe:55:d7:c6:ca:72:69:bd:57: 11:17:66:16:06:60:b0:84:c0:f4:6f:79:75:dc:bf: 29:cc:3a:4a:28:b8:2d:ff:fa:c3:8a:55:b3:8d:de: 87:bd:24:ff:b0:c6:2f:23:17:8a:02:29:5d:4c:ec: 05:a7:f3:8b:d2:ab:17:cb:76:8f:f3:3f:e2:79:f5: f1:20:6e:28:0d:af:c5:cd:57:dd:47:3a:84:90:d7: 11:27:ac:05:f1:f0:98:8a:b7:43:65:6e:c5:73:70: 50:e7:d5:4b:00:c7:d9:14:3f:98:1b:11:48:9f:2d: a9:ee:f3:82:82:dc:a8:cb:e4:df:97:35:05:c6:98: b8:3e:21:4f:26:a6:91:98:13:5b:16:27:43:a2:cb: f1:f1:f4:c3:f4:17:d9:0b:e0:97:aa:ec:1d:fd:98: bb:9a:cf:81:85:2d:f9:a4:8e:66:e4:98:0a:4b:18: c4:99:4e:c9:b0:94:eb:43:c8:97:2d:dc:72:f6:33: 5d:49:6d:99:20:b5:3e:6c:4c:4b:05:76:d9:e0:4a: fb:80:38:fc:24:56:f8:5e:05:48:c8:54:33:2f:d1: 3f:55:0a:91:85:2d:fb:f9:b9:6f:56:be:0d:71:49: f1:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:85:61:FF:09:98:54:13:47:47:50:69:54:60:A7:DD:B0:CB:E0:A4 X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/FYVh_wmYVBNHR1BpVGCn3bDL4KQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.101.101.0/24 Signature Algorithm: sha256WithRSAEncryption a2:22:4d:6a:2d:46:0b:37:b4:5c:3c:86:0c:98:c5:e8:58:eb: 44:f5:b4:d4:ec:10:87:34:53:00:16:66:bd:62:56:d0:71:82: 68:37:12:ea:1c:09:b7:04:d1:a0:b3:89:07:9a:df:24:8b:0e: ff:d9:4e:1e:17:11:5d:96:ce:21:2a:92:e1:6c:56:70:14:63: 80:32:f8:61:e3:4f:df:28:d2:02:95:ff:fd:a2:3b:03:b9:31: 30:b4:24:20:17:5b:af:d6:14:33:b1:3e:05:ba:cb:e4:55:ad: 0a:78:26:01:8f:00:78:25:46:ef:7a:64:6f:43:cd:e6:8a:ce: f0:55:20:ed:74:63:b0:95:14:92:05:3e:8b:0d:b0:c8:a9:fc: ec:5e:e4:ca:d8:fc:6a:1b:36:19:b6:97:1d:85:74:05:f7:1c: 9c:2f:32:df:13:eb:af:a5:b5:c5:3d:ab:5e:50:94:3a:07:e8: f3:1d:55:7a:37:ea:ae:d6:c4:af:47:5b:a5:e0:c3:4a:40:5e: 63:b3:ad:9f:03:b7:f3:02:57:cd:45:58:fe:b5:67:db:7f:85: 54:ab:5f:31:89:33:ec:35:83:a2:fc:00:ed:71:d0:65:fc:40: af:dc:4b:f6:57:a8:2a:38:ef:82:bc:06:a3:e3:47:6a:89:c7: b5:0d:56:c0 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICE2AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNTAyMTAx NDAzNDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE1ODU2MUZGMDk5ODU0 MTM0NzQ3NTA2OTU0NjBBN0REQjBDQkUwQTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOSLdXt46/6Zxlp0J8W7AmHkYNP/5V18bKcmm9VxEXZhYGYLCE wPRveXXcvynMOkoouC3/+sOKVbON3oe9JP+wxi8jF4oCKV1M7AWn84vSqxfLdo/z P+J59fEgbigNr8XNV91HOoSQ1xEnrAXx8JiKt0NlbsVzcFDn1UsAx9kUP5gbEUif Lanu84KC3KjL5N+XNQXGmLg+IU8mppGYE1sWJ0Oiy/Hx9MP0F9kL4Jeq7B39mLua z4GFLfmkjmbkmApLGMSZTsmwlOtDyJct3HL2M11JbZkgtT5sTEsFdtngSvuAOPwk VvheBUjIVDMv0T9VCpGFLfv5uW9Wvg1xSfHlAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUFYVh/wmYVBNHR1BpVGCn3bDL4KQwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9GWVZoX3dtWVZCTkhSMUJwVkdD bjNiREw0S1Eucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZWVl MA0GCSqGSIb3DQEBCwUAA4IBAQCiIk1qLUYLN7RcPIYMmMXoWOtE9bTU7BCHNFMA Fma9YlbQcYJoNxLqHAm3BNGgs4kHmt8kiw7/2U4eFxFdls4hKpLhbFZwFGOAMvhh 40/fKNIClf/9ojsDuTEwtCQgF1uv1hQzsT4FusvkVa0KeCYBjwB4JUbvemRvQ83m is7wVSDtdGOwlRSSBT6LDbDIqfzsXuTK2PxqGzYZtpcdhXQF9xycLzLfE+uvpbXF PateUJQ6B+jzHVV6N+qu1sSvR1ul4MNKQF5js62fA7fzAlfNRVj+tWfbf4VUq18x iTPsNYOi/ADtcdBl/ECv3Ev2V6gqOO+CvAaj40dqice1DVbA -----END CERTIFICATE-----Generated at Sat Apr 5 05:11:27 2025 by rpki-client