$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/FkHzksHnidS1buQGVe3OSwW4jcU.roa File: FkHzksHnidS1buQGVe3OSwW4jcU.roa (raw, json) Hash identifier: QKSP6ji6Q9q5lDJM8MhbST6bRWfD7IgQYXbNMGw1EHk= Subject key identifier: 16:41:F3:92:C1:E7:89:D4:B5:6E:E4:06:55:ED:CE:4B:05:B8:8D:C5 Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 1364 Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/FkHzksHnidS1buQGVe3OSwW4jcU.roa Signing time: Mon 10 Feb 2025 14:03:41 +0000 ROA not before: Mon 10 Feb 2025 14:03:41 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131644 IP address blocks: 182.173.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 08:36:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4964 (0x1364) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Feb 10 14:03:41 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1641F392C1E789D4B56EE40655EDCE4B05B88DC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:d7:d8:d5:7d:6f:57:16:2e:83:1d:2c:ce:2f: 91:de:c4:63:a8:b4:a6:ef:73:db:21:98:3c:64:aa: 6b:36:7d:29:12:8f:a2:8f:bb:6f:b1:1f:e8:de:a4: 80:52:d4:c3:8b:31:b9:a6:3c:1c:15:51:82:3c:e7: 40:19:b6:85:2f:ef:fe:45:9a:c4:02:26:23:95:41: 5a:65:23:c4:52:49:eb:61:78:ea:89:6e:43:54:83: 24:bd:a6:09:38:b2:5a:98:39:35:81:66:b7:ea:aa: 23:26:dd:87:82:92:67:ec:56:d7:66:5e:a6:00:9d: 66:bf:40:43:dc:aa:de:0c:3f:93:cb:96:4b:e4:5e: 1f:79:2a:09:30:da:39:b2:fd:96:47:34:ef:1e:b2: c6:55:98:16:0e:2c:52:fe:c4:38:b2:3d:fd:66:4c: f1:2f:09:c0:a3:84:30:46:1a:79:2f:90:5e:c5:e7: eb:e4:2a:b7:f1:37:03:48:dd:ca:99:dd:dc:22:25: d7:73:48:11:3e:c7:20:c0:b8:b0:32:ec:57:7a:f4: cc:be:92:0d:67:2f:7b:bb:b1:aa:53:7d:f6:e1:e2: 40:1d:a8:f3:34:12:65:ea:1b:07:4b:e8:57:f8:7c: 07:ef:66:7a:bc:c1:8e:1e:2a:92:6e:a9:6f:e2:f7: d7:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:41:F3:92:C1:E7:89:D4:B5:6E:E4:06:55:ED:CE:4B:05:B8:8D:C5 X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/FkHzksHnidS1buQGVe3OSwW4jcU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 182.173.0.0/24 Signature Algorithm: sha256WithRSAEncryption b5:5d:1c:d1:4c:a4:7a:1e:d1:95:7d:dd:0f:8e:32:43:4b:6c: 39:ff:b6:05:a7:ab:69:5f:34:ab:75:68:60:7a:78:82:20:8f: c1:af:24:98:2b:25:d3:2b:e7:0e:aa:41:99:97:8a:b3:2a:1d: d1:3a:41:32:b7:30:99:fd:48:65:4e:b6:03:3b:7f:11:75:38: ac:3d:60:26:92:f6:de:13:8f:3f:4d:6e:61:fc:f6:06:53:99: 8f:69:ab:37:5f:1b:e8:99:25:73:5c:0a:8b:8c:1d:cf:1f:65: 31:cf:de:b7:ee:13:8b:3f:85:aa:88:52:02:5f:65:e1:b8:eb: 0f:55:ac:d3:6b:e6:9d:dc:1a:ad:c9:16:20:57:1d:4b:3d:ba: ea:8b:a8:97:79:ef:15:3e:02:5e:ba:18:87:ca:e4:40:2d:fb: 1b:fb:15:6f:ba:50:b9:d7:11:8e:67:16:a2:b0:c2:76:b1:79: c1:ff:8a:68:f6:4a:f1:a2:8f:a3:9a:29:e2:b3:f3:79:83:c7: 57:36:91:52:70:06:93:68:6d:02:35:3b:e3:88:74:b3:9e:eb: 3d:2b:87:18:9e:bd:8b:cb:c7:87:a4:aa:5c:59:a1:34:61:2d: fb:a3:ec:27:e2:af:bb:4f:e6:20:2f:8f:2a:ee:7a:06:21:27: 02:0c:73:11 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICE2QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNTAyMTAx NDAzNDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE2NDFGMzkyQzFFNzg5 RDRCNTZFRTQwNjU1RURDRTRCMDVCODhEQzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDg19jVfW9XFi6DHSzOL5HexGOotKbvc9shmDxkqms2fSkSj6KP u2+xH+jepIBS1MOLMbmmPBwVUYI850AZtoUv7/5FmsQCJiOVQVplI8RSSetheOqJ bkNUgyS9pgk4slqYOTWBZrfqqiMm3YeCkmfsVtdmXqYAnWa/QEPcqt4MP5PLlkvk Xh95Kgkw2jmy/ZZHNO8essZVmBYOLFL+xDiyPf1mTPEvCcCjhDBGGnkvkF7F5+vk KrfxNwNI3cqZ3dwiJddzSBE+xyDAuLAy7Fd69My+kg1nL3u7sapTffbh4kAdqPM0 EmXqGwdL6Ff4fAfvZnq8wY4eKpJuqW/i99dhAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUFkHzksHnidS1buQGVe3OSwW4jcUwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9Ga0h6a3NIbmlkUzFidVFHVmUz T1N3VzRqY1Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAtq0A MA0GCSqGSIb3DQEBCwUAA4IBAQC1XRzRTKR6HtGVfd0PjjJDS2w5/7YFp6tpXzSr dWhgeniCII/BrySYKyXTK+cOqkGZl4qzKh3ROkEytzCZ/UhlTrYDO38RdTisPWAm kvbeE48/TW5h/PYGU5mPaas3XxvomSVzXAqLjB3PH2Uxz9637hOLP4WqiFICX2Xh uOsPVazTa+ad3BqtyRYgVx1LPbrqi6iXee8VPgJeuhiHyuRALfsb+xVvulC51xGO ZxaisMJ2sXnB/4po9krxoo+jminis/N5g8dXNpFScAaTaG0CNTvjiHSznus9K4cY nr2Ly8eHpKpcWaE0YS37o+wn4q+7T+YgL48q7noGIScCDHMR -----END CERTIFICATE-----Generated at Sat Apr 5 08:27:36 2025 by rpki-client