$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/FfkdNsW_0brVVAClCLGO8vDsjtU.roa File: FfkdNsW_0brVVAClCLGO8vDsjtU.roa (raw, json) Hash identifier: NJ5LnTpQpqg1MWRaULRQck26nsbj0kYHTpMn8Y79fOQ= Subject key identifier: 15:F9:1D:36:C5:BF:D1:BA:D5:54:00:A5:08:B1:8E:F2:F0:EC:8E:D5 Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 135D Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/FfkdNsW_0brVVAClCLGO8vDsjtU.roa Signing time: Mon 10 Feb 2025 14:03:39 +0000 ROA not before: Mon 10 Feb 2025 14:03:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17408 IP address blocks: 203.119.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 08:36:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4957 (0x135d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Feb 10 14:03:39 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=15F91D36C5BFD1BAD55400A508B18EF2F0EC8ED5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:73:a3:dc:06:57:a0:79:19:a5:41:a2:de:08: 2e:e7:ff:88:09:12:55:6d:35:7f:09:1a:5a:b4:ee: 99:f1:90:e4:b1:5b:97:44:50:bc:7a:e7:ae:4a:2c: d0:3e:62:cd:03:ef:99:ad:a5:37:19:3d:63:7d:53: 92:86:af:a9:f5:3e:7c:f4:bb:af:f0:59:aa:48:19: 5e:8e:6f:6d:a7:3f:7a:1a:c0:72:d8:6a:6a:f2:32: 52:e8:6e:74:7c:07:b0:4d:f5:36:c8:66:75:58:ab: 22:5c:9c:7f:c8:60:04:f6:35:40:4e:6a:39:79:81: c2:d7:b0:8b:26:40:fd:fd:9b:86:e9:6c:a2:bd:14: fa:59:55:78:9e:b8:fd:3d:9a:bc:5b:fd:31:6e:74: 3d:cb:38:bb:d5:10:c4:81:ff:2d:9c:c7:e0:f1:d6: a1:45:8e:88:31:ef:34:63:21:37:58:a0:de:23:f2: c9:ae:04:5a:26:b7:89:bd:9b:ba:28:df:54:ae:35: 1f:af:c0:89:77:ab:0c:70:ae:92:26:a6:c8:21:75: 71:13:e1:a2:81:39:cc:0d:f3:a3:e8:e7:91:5d:10: 45:ad:1c:c9:d8:4c:9c:38:ea:c7:a8:43:d6:71:e8: 67:33:1b:55:1b:30:52:1b:00:83:d7:5a:dd:a9:87: 67:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:F9:1D:36:C5:BF:D1:BA:D5:54:00:A5:08:B1:8E:F2:F0:EC:8E:D5 X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/FfkdNsW_0brVVAClCLGO8vDsjtU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.119.3.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:38:38:61:b7:92:87:b5:85:56:23:2f:01:cb:d2:f6:08:e3: fd:5d:cb:1f:57:46:46:f7:51:da:68:12:6a:e3:7e:70:b9:67: 3e:5f:32:7f:1a:8e:ac:c3:dd:c6:e6:79:4a:3a:18:4b:d6:5d: b5:6a:f5:33:00:05:73:1d:82:2f:4f:82:ab:20:a1:c9:83:bc: 42:d5:02:f5:66:3e:e7:43:ce:62:0e:a5:e2:c3:ac:7a:9b:af: 91:c1:4a:87:55:df:29:7c:a3:ed:ab:87:fa:0b:46:1f:76:8a: 6f:79:58:f9:7b:fa:69:70:39:be:f4:39:62:07:62:49:11:8d: aa:0e:c6:5c:49:db:9a:41:e6:cc:99:5c:3f:0f:43:0f:7a:f7: f3:36:fc:33:eb:8e:7c:07:92:0e:bd:3d:7e:b3:8f:b7:9d:3b: 47:47:80:ec:32:03:66:3b:b4:2a:c0:c9:f9:5f:86:d5:d8:e3: 19:55:9f:aa:9b:9c:f0:35:02:a7:90:8a:0d:84:c9:e6:3c:c8: 97:b7:fa:4c:0e:d8:85:4b:4e:f9:60:9d:70:67:a0:58:e2:94: 4d:80:ab:d1:f8:24:26:ce:bb:d6:1e:47:9c:ba:db:42:6e:27: 85:43:28:81:8b:a6:df:dc:49:ab:cb:a7:2c:e7:c8:41:93:bd: cc:85:e2:5a -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICE10wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNTAyMTAx NDAzMzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE1RjkxRDM2QzVCRkQx QkFENTU0MDBBNTA4QjE4RUYyRjBFQzhFRDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNc6PcBlegeRmlQaLeCC7n/4gJElVtNX8JGlq07pnxkOSxW5dE ULx6565KLNA+Ys0D75mtpTcZPWN9U5KGr6n1Pnz0u6/wWapIGV6Ob22nP3oawHLY amryMlLobnR8B7BN9TbIZnVYqyJcnH/IYAT2NUBOajl5gcLXsIsmQP39m4bpbKK9 FPpZVXieuP09mrxb/TFudD3LOLvVEMSB/y2cx+Dx1qFFjogx7zRjITdYoN4j8smu BFomt4m9m7oo31SuNR+vwIl3qwxwrpImpsghdXET4aKBOcwN86Po55FdEEWtHMnY TJw46seoQ9Zx6GczG1UbMFIbAIPXWt2ph2d3AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUFfkdNsW/0brVVAClCLGO8vDsjtUwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9GZmtkTnNXXzBiclZWQUNsQ0xH Tzh2RHNqdFUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy3cD MA0GCSqGSIb3DQEBCwUAA4IBAQAqODhht5KHtYVWIy8By9L2COP9XcsfV0ZG91Ha aBJq435wuWc+XzJ/Go6sw93G5nlKOhhL1l21avUzAAVzHYIvT4KrIKHJg7xC1QL1 Zj7nQ85iDqXiw6x6m6+RwUqHVd8pfKPtq4f6C0YfdopveVj5e/ppcDm+9DliB2JJ EY2qDsZcSduaQebMmVw/D0MPevfzNvwz6458B5IOvT1+s4+3nTtHR4DsMgNmO7Qq wMn5X4bV2OMZVZ+qm5zwNQKnkIoNhMnmPMiXt/pMDtiFS075YJ1wZ6BY4pRNgKvR +CQmzrvWHkecuttCbieFQyiBi6bf3Emry6cs58hBk73MheJa -----END CERTIFICATE-----Generated at Sat Apr 5 08:19:01 2025 by rpki-client