$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/cNVMtiOzyQ9giYjcu1YV0t7b8t4.roa File: cNVMtiOzyQ9giYjcu1YV0t7b8t4.roa (raw, json) Hash identifier: jDASBZzRsytD0EJ63YDg4xU01pfh6+bMvxO+/sHJ81w= Subject key identifier: 70:D5:4C:B6:23:B3:C9:0F:60:89:88:DC:BB:56:15:D2:DE:DB:F2:DE Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 1352 Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/cNVMtiOzyQ9giYjcu1YV0t7b8t4.roa Signing time: Mon 10 Feb 2025 14:03:36 +0000 ROA not before: Mon 10 Feb 2025 14:03:36 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131644 IP address blocks: 182.173.8.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 08:36:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4946 (0x1352) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Feb 10 14:03:36 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=70D54CB623B3C90F608988DCBB5615D2DEDBF2DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:0f:44:97:a5:da:8f:46:4d:b1:20:4e:a0:50: da:d2:fb:73:0e:88:f5:41:43:2a:ec:eb:0f:35:c4: 92:cf:16:60:f4:76:1d:bf:cd:9d:db:89:45:50:80: ef:43:16:bb:9e:86:40:07:dc:f6:df:76:68:75:44: 46:5e:2c:c9:dd:51:ea:00:47:91:8e:86:fb:8e:2d: 7e:82:31:0c:0b:63:f1:88:2c:f6:a1:32:59:44:a8: 8a:c1:f9:c6:a6:dd:25:4d:54:9c:11:f7:1c:4e:15: fa:ed:ab:d1:6c:6e:31:19:09:3b:b4:c4:2b:e9:37: c6:10:75:5f:40:4a:36:86:9c:c0:c8:92:fa:c3:ce: 0a:5a:61:cc:75:77:fd:e5:ab:76:66:58:fa:24:c3: 9f:61:a5:73:66:b9:cd:4e:36:4e:26:24:68:4c:03: ae:41:c7:7e:2a:1a:dd:35:4f:99:87:20:85:99:b3: 53:c9:80:86:d9:b3:ed:7d:4e:4e:35:a5:ef:ba:29: 94:95:b8:7d:4a:7d:27:65:17:bb:05:37:90:bb:a6: 42:44:db:62:d7:5e:ba:56:fd:81:b5:04:ba:92:3c: 93:8b:1a:79:0a:da:f0:98:95:91:6c:70:ae:e7:19: 08:3b:72:ee:8c:69:17:53:25:b8:fa:f9:5d:38:eb: 63:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:D5:4C:B6:23:B3:C9:0F:60:89:88:DC:BB:56:15:D2:DE:DB:F2:DE X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/cNVMtiOzyQ9giYjcu1YV0t7b8t4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 182.173.8.0/22 Signature Algorithm: sha256WithRSAEncryption a0:f9:38:97:e9:d3:93:fe:d4:ef:72:07:95:db:ef:cc:5b:f8: 51:82:be:c2:75:29:66:56:f8:74:26:bb:a2:62:22:09:f7:40: a8:5a:6f:be:8d:ee:76:3f:8c:a2:e5:71:a9:4b:97:be:57:6e: 6c:2d:fa:d8:a6:68:df:b6:d4:e3:b9:7e:35:c1:f0:41:ed:09: 4e:a5:b1:30:ff:35:39:fc:16:b1:ad:16:9b:d5:b5:7d:da:c3: 17:79:77:c7:2f:b7:3a:e9:fd:97:1c:8d:a2:e7:dd:f5:fd:10: a3:8a:be:a0:c9:b9:59:b7:8d:fe:2f:d2:0d:7e:d5:9e:09:84: b1:65:95:43:16:3e:56:b0:6e:5c:cc:3c:de:35:33:ff:3e:94: d5:c7:cf:be:d3:89:61:bc:17:2e:89:1e:ee:64:c4:76:f9:a1: 5b:9c:14:a8:ec:83:0e:61:f5:90:5a:10:b2:11:4a:25:64:b7: 23:de:e8:d2:58:60:d0:67:25:ed:4b:34:10:60:18:33:8f:fa: e6:73:0b:9c:e7:96:b2:ac:aa:45:13:06:cc:41:7e:8c:6b:80: 35:c4:25:07:8b:16:09:1f:f0:96:f0:bd:df:49:ab:65:8f:c0: 46:d4:36:fc:7e:d6:af:32:0d:ca:d0:d9:1a:5e:5b:21:48:7a: e9:64:ee:94 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICE1IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNTAyMTAx NDAzMzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDcwRDU0Q0I2MjNCM0M5 MEY2MDg5ODhEQ0JCNTYxNUQyREVEQkYyREUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSD0SXpdqPRk2xIE6gUNrS+3MOiPVBQyrs6w81xJLPFmD0dh2/ zZ3biUVQgO9DFruehkAH3Pbfdmh1REZeLMndUeoAR5GOhvuOLX6CMQwLY/GILPah MllEqIrB+cam3SVNVJwR9xxOFfrtq9FsbjEZCTu0xCvpN8YQdV9ASjaGnMDIkvrD zgpaYcx1d/3lq3ZmWPokw59hpXNmuc1ONk4mJGhMA65Bx34qGt01T5mHIIWZs1PJ gIbZs+19Tk41pe+6KZSVuH1KfSdlF7sFN5C7pkJE22LXXrpW/YG1BLqSPJOLGnkK 2vCYlZFscK7nGQg7cu6MaRdTJbj6+V0462PPAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUcNVMtiOzyQ9giYjcu1YV0t7b8t4wHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9jTlZNdGlPenlROWdpWWpjdTFZ VjB0N2I4dDQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCtq0I MA0GCSqGSIb3DQEBCwUAA4IBAQCg+TiX6dOT/tTvcgeV2+/MW/hRgr7CdSlmVvh0 JruiYiIJ90CoWm++je52P4yi5XGpS5e+V25sLfrYpmjfttTjuX41wfBB7QlOpbEw /zU5/BaxrRab1bV92sMXeXfHL7c66f2XHI2i5931/RCjir6gyblZt43+L9INftWe CYSxZZVDFj5WsG5czDzeNTP/PpTVx8++04lhvBcuiR7uZMR2+aFbnBSo7IMOYfWQ WhCyEUolZLcj3ujSWGDQZyXtSzQQYBgzj/rmcwuc55ayrKpFEwbMQX6Ma4A1xCUH ixYJH/CW8L3fSatlj8BG1Db8ftavMg3K0NkaXlshSHrpZO6U -----END CERTIFICATE-----Generated at Sat Apr 5 08:29:41 2025 by rpki-client