$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/edlKt9EZ_2zPFqWoRRS-i6IdHR8.roa File: edlKt9EZ_2zPFqWoRRS-i6IdHR8.roa (raw, json) Hash identifier: mIHGr0wpUz9CZynd/KQO/iKBfS48rCtnmV2jl1Vr0wY= Subject key identifier: 79:D9:4A:B7:D1:19:FF:6C:CF:16:A5:A8:45:14:BE:8B:A2:1D:1D:1F Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 1354 Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/edlKt9EZ_2zPFqWoRRS-i6IdHR8.roa Signing time: Mon 10 Feb 2025 14:03:37 +0000 ROA not before: Mon 10 Feb 2025 14:03:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9311 IP address blocks: 150.242.100.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 08:36:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4948 (0x1354) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Feb 10 14:03:37 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=79D94AB7D119FF6CCF16A5A84514BE8BA21D1D1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:15:bf:28:65:55:d0:17:93:bc:4e:0a:84:11: 4f:56:75:17:a0:b7:6a:21:02:d2:b7:53:44:78:6a: c6:5b:89:c2:ad:b0:95:ea:85:e1:6b:12:05:08:85: 7a:5c:5f:24:96:47:81:a6:3c:17:9b:f1:97:ea:49: 78:73:ed:99:a1:12:ec:65:af:dd:41:b5:87:2e:d8: c1:88:e9:2b:90:60:18:13:ba:e2:af:f6:77:2f:43: be:67:e9:a5:42:27:e8:99:06:24:4a:3d:1e:f3:66: 74:88:89:ed:65:c3:dd:f1:e0:05:85:c7:91:63:4a: 97:bd:33:ab:77:39:b9:da:6b:2b:de:93:8f:4f:2a: cc:d4:ab:cd:09:51:a4:64:67:c5:f7:ff:6a:b7:8b: c6:e3:b4:2e:31:b3:ec:2f:68:59:26:a9:8f:0e:26: 02:d3:28:e9:fd:d4:51:32:7a:da:78:66:f4:1d:79: e9:74:ac:6e:be:46:d9:42:eb:d9:c3:b9:36:be:1e: e6:96:98:a0:f3:ae:b1:ad:c5:38:4f:15:d3:d3:81: a3:89:40:72:f6:78:42:e3:25:33:c3:59:f9:87:e3: df:f2:11:9a:c5:a9:44:53:ab:c6:d0:63:0a:d0:27: 36:70:3b:eb:5b:77:72:49:65:f3:cb:c8:cf:89:b5: 25:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:D9:4A:B7:D1:19:FF:6C:CF:16:A5:A8:45:14:BE:8B:A2:1D:1D:1F X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/edlKt9EZ_2zPFqWoRRS-i6IdHR8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.242.100.0/22 Signature Algorithm: sha256WithRSAEncryption 1f:61:87:ce:57:ad:fb:66:66:f1:f3:81:af:2e:08:c3:cb:c2: ee:73:6b:ad:76:26:fa:8d:89:6c:af:e4:ec:13:ee:4f:de:58: 46:8f:6c:bf:9b:b9:30:a0:15:26:fe:62:2a:11:12:a5:8e:35: 7a:71:01:95:33:98:b5:a8:fa:56:78:63:3d:8b:4a:8a:fb:ed: fb:9e:c5:bb:ec:4a:b5:9b:9e:8c:bc:2a:81:53:eb:52:67:0e: c0:74:f0:35:76:6a:c1:d5:2b:66:ab:10:b9:45:31:c8:7c:16: d1:2c:fe:1f:0c:18:d2:4f:0b:88:d3:fb:2e:2b:0f:17:66:40: fd:e2:6c:37:54:15:ac:ff:50:b2:17:49:12:2e:84:b8:8a:11: 42:6a:21:b0:f1:f5:91:20:c2:b7:a1:c2:3b:a8:b0:9b:c9:44: ec:d4:13:55:49:40:a7:55:c6:32:00:a7:ac:bc:ab:53:ac:0b: 87:6f:50:ff:99:57:d1:5f:70:d4:bb:db:68:17:33:51:94:bd: 5c:33:4e:2e:1c:ee:2e:33:f7:61:b6:89:5c:26:34:f2:77:3b: 91:51:60:db:c1:2a:9d:b4:aa:72:25:0d:70:13:3f:69:8c:4f: fb:3a:26:e4:12:3e:d3:c4:d8:c0:54:e4:83:62:1b:a4:ee:0b: 28:dc:7e:d9 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICE1QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNTAyMTAx NDAzMzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc5RDk0QUI3RDExOUZG NkNDRjE2QTVBODQ1MTRCRThCQTIxRDFEMUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIFb8oZVXQF5O8TgqEEU9WdRegt2ohAtK3U0R4asZbicKtsJXq heFrEgUIhXpcXySWR4GmPBeb8ZfqSXhz7ZmhEuxlr91BtYcu2MGI6SuQYBgTuuKv 9ncvQ75n6aVCJ+iZBiRKPR7zZnSIie1lw93x4AWFx5FjSpe9M6t3Obnaayvek49P KszUq80JUaRkZ8X3/2q3i8bjtC4xs+wvaFkmqY8OJgLTKOn91FEyetp4ZvQdeel0 rG6+RtlC69nDuTa+HuaWmKDzrrGtxThPFdPTgaOJQHL2eELjJTPDWfmH49/yEZrF qURTq8bQYwrQJzZwO+tbd3JJZfPLyM+JtSVNAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUedlKt9EZ/2zPFqWoRRS+i6IdHR8wHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9lZGxLdDlFWl8yelBGcVdvUlJT LWk2SWRIUjgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQClvJk MA0GCSqGSIb3DQEBCwUAA4IBAQAfYYfOV637Zmbx84GvLgjDy8Luc2utdib6jYls r+TsE+5P3lhGj2y/m7kwoBUm/mIqERKljjV6cQGVM5i1qPpWeGM9i0qK++37nsW7 7Eq1m56MvCqBU+tSZw7AdPA1dmrB1StmqxC5RTHIfBbRLP4fDBjSTwuI0/suKw8X ZkD94mw3VBWs/1CyF0kSLoS4ihFCaiGw8fWRIMK3ocI7qLCbyUTs1BNVSUCnVcYy AKesvKtTrAuHb1D/mVfRX3DUu9toFzNRlL1cM04uHO4uM/dhtolcJjTydzuRUWDb wSqdtKpyJQ1wEz9pjE/7OibkEj7TxNjAVOSDYhuk7gso3H7Z -----END CERTIFICATE-----Generated at Sat Apr 5 05:10:49 2025 by rpki-client