$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/Szni_yWlqO__RHm1SOUg9mwtG9Q.roa File: Szni_yWlqO__RHm1SOUg9mwtG9Q.roa (raw, json) Hash identifier: /dZcUGYyxz/bG4cMFooKd9B+l3q09s/+d7Mcce3hSnE= Subject key identifier: 4B:39:E2:FF:25:A5:A8:EF:FF:44:79:B5:48:E5:20:F6:6C:2D:1B:D4 Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 135C Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/Szni_yWlqO__RHm1SOUg9mwtG9Q.roa Signing time: Mon 10 Feb 2025 14:03:39 +0000 ROA not before: Mon 10 Feb 2025 14:03:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131644 IP address blocks: 119.75.240.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 08:36:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4956 (0x135c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Feb 10 14:03:39 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4B39E2FF25A5A8EFFF4479B548E520F66C2D1BD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ff:a3:b8:de:ae:be:58:f6:d3:ec:67:4c:76: c2:5b:03:9b:3d:e4:21:0d:b1:f0:6b:59:6c:e2:9b: 83:8c:64:24:77:17:b5:e5:e0:72:e6:7b:e9:8a:9b: 0a:c2:5a:4e:a1:01:a0:be:9f:9a:d4:12:55:7e:03: e2:f1:d4:5b:9c:56:8d:04:eb:ae:fe:aa:aa:8d:28: f0:5e:e5:00:3f:c4:b4:bc:80:fc:54:df:b9:f9:e1: 24:2a:c1:66:5f:f5:3a:42:14:3d:58:49:a7:5a:01: 25:55:25:b7:08:db:15:81:37:b4:c6:73:ed:5f:4e: b4:45:d2:3f:94:66:06:90:2b:9b:36:84:32:7b:a2: 29:e8:92:ec:ff:85:b1:77:c0:13:63:60:fa:fb:21: 21:02:d4:31:49:46:3a:db:c7:e6:28:f4:d0:b9:ee: 41:c2:c3:89:74:5c:63:6b:81:d4:b0:58:7d:a5:81: ab:c9:9a:67:24:6f:4b:54:b4:40:b6:d4:a4:38:cf: 15:04:c7:6a:39:63:ab:fb:a4:2e:38:0e:33:7e:d0: d1:4f:72:96:d1:e4:54:5a:8d:7c:c7:f1:d1:25:0f: b4:97:18:3e:f1:c7:b3:97:0b:d0:8e:b8:3f:94:11: 95:b1:62:dd:c4:27:8e:fb:0d:26:0d:22:f1:ba:55: a0:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:39:E2:FF:25:A5:A8:EF:FF:44:79:B5:48:E5:20:F6:6C:2D:1B:D4 X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/Szni_yWlqO__RHm1SOUg9mwtG9Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.75.240.0/22 Signature Algorithm: sha256WithRSAEncryption 8b:94:e0:bd:6a:3b:9e:76:f2:11:68:2d:2c:ca:3b:97:a1:5f: c0:c8:87:77:1d:aa:38:16:5a:6f:ce:b9:70:1a:64:6e:d4:51: 4e:d1:9e:2f:8b:2f:cc:95:83:b5:a0:67:d4:6f:2e:9b:77:14: fa:de:0e:0f:6d:f9:59:a4:17:16:41:98:a3:c0:ea:cf:6a:cd: fc:f3:3d:a6:84:18:63:8c:05:66:6b:3a:27:6c:72:69:90:85: 98:98:34:23:aa:a9:e8:2c:26:26:68:ae:c9:a0:7c:e6:d6:76: 74:51:12:f5:d4:a1:ec:0f:70:d2:bf:f6:2f:06:06:b5:e2:31: b9:7e:d2:4d:cf:f0:cf:2f:3d:f2:93:86:f9:80:ce:d9:83:1a: a1:c2:ad:8d:3f:2c:5b:a5:84:90:5d:aa:7c:52:0e:f3:51:08: 68:20:c2:3f:d0:7a:35:68:d6:b2:85:43:a2:b8:86:b0:6d:90: 3c:c8:0c:8c:15:00:9d:49:98:41:0d:12:3c:84:b4:7d:87:61: fe:64:5e:1b:cf:4b:70:8b:06:de:8e:06:c8:5f:57:9c:f1:2f: 6c:c6:57:c8:e0:67:a1:1e:2f:73:19:62:7c:74:2b:b0:27:6d: a5:3a:82:29:fa:dd:43:8f:c2:fd:67:24:a7:72:2f:23:3b:cf: 92:a6:06:d8 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICE1wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNTAyMTAx NDAzMzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRCMzlFMkZGMjVBNUE4 RUZGRjQ0NzlCNTQ4RTUyMEY2NkMyRDFCRDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDc/6O43q6+WPbT7GdMdsJbA5s95CENsfBrWWzim4OMZCR3F7Xl 4HLme+mKmwrCWk6hAaC+n5rUElV+A+Lx1FucVo0E667+qqqNKPBe5QA/xLS8gPxU 37n54SQqwWZf9TpCFD1YSadaASVVJbcI2xWBN7TGc+1fTrRF0j+UZgaQK5s2hDJ7 oinokuz/hbF3wBNjYPr7ISEC1DFJRjrbx+Yo9NC57kHCw4l0XGNrgdSwWH2lgavJ mmckb0tUtEC21KQ4zxUEx2o5Y6v7pC44DjN+0NFPcpbR5FRajXzH8dElD7SXGD7x x7OXC9COuD+UEZWxYt3EJ477DSYNIvG6VaBHAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUSzni/yWlqO//RHm1SOUg9mwtG9QwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9Tem5pX3lXbHFPX19SSG0xU09V Zzltd3RHOVEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCd0vw MA0GCSqGSIb3DQEBCwUAA4IBAQCLlOC9ajuedvIRaC0syjuXoV/AyId3Hao4Flpv zrlwGmRu1FFO0Z4viy/MlYO1oGfUby6bdxT63g4PbflZpBcWQZijwOrPas388z2m hBhjjAVmazonbHJpkIWYmDQjqqnoLCYmaK7JoHzm1nZ0URL11KHsD3DSv/YvBga1 4jG5ftJNz/DPLz3yk4b5gM7Zgxqhwq2NPyxbpYSQXap8Ug7zUQhoIMI/0Ho1aNay hUOiuIawbZA8yAyMFQCdSZhBDRI8hLR9h2H+ZF4bz0twiwbejgbIX1ec8S9sxlfI 4GehHi9zGWJ8dCuwJ22lOoIp+t1Dj8L9ZySnci8jO8+SpgbY -----END CERTIFICATE-----Generated at Sat Apr 5 08:23:28 2025 by rpki-client