$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/toRjlGPVYMZtmxqOmLlk80gCpTY.roa File: toRjlGPVYMZtmxqOmLlk80gCpTY.roa (raw, json) Hash identifier: aQX+Gf82MXttD+WePSOdOvWL9P/v1S5AH2vx3Ej/oXI= Subject key identifier: B6:84:63:94:63:D5:60:C6:6D:9B:1A:8E:98:B9:64:F3:48:02:A5:36 Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 1361 Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/toRjlGPVYMZtmxqOmLlk80gCpTY.roa Signing time: Mon 10 Feb 2025 14:03:40 +0000 ROA not before: Mon 10 Feb 2025 14:03:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9311 IP address blocks: 203.119.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 08:36:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4961 (0x1361) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Feb 10 14:03:40 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B684639463D560C66D9B1A8E98B964F34802A536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e5:a9:90:80:1b:51:94:eb:65:d5:bf:fa:4a: 04:e2:3c:b9:e6:7b:3e:4b:42:52:b3:37:b6:2b:c9: ba:38:ea:32:ce:ef:a4:0d:5a:d6:94:38:da:ce:46: 08:2c:50:e9:c4:b0:83:6b:af:9a:f9:e2:80:6a:4d: 52:c8:d4:da:95:35:32:c2:53:80:27:2a:ce:53:a8: ed:dd:52:71:30:ba:af:ad:6a:7f:75:9a:57:75:df: d6:45:f3:60:27:c6:85:3a:5f:ef:c9:49:c5:b4:f4: 00:de:6a:12:02:9f:55:89:24:bf:13:f1:24:78:f6: da:b6:bc:81:a7:72:11:5f:28:99:ae:31:53:10:53: 63:e2:94:ca:24:95:17:1a:78:8a:cf:88:f1:c7:02: b7:6a:3f:3a:e1:e0:da:96:3f:13:f0:36:ec:56:36: b8:28:f5:0b:06:bd:7e:0a:9b:5c:27:64:f1:5c:5a: d4:50:d5:5a:9f:56:fa:01:4c:74:88:f1:50:b3:f3: 7b:d5:9e:dc:31:c3:dd:1a:8f:41:30:e0:a6:69:51: c9:aa:ff:96:e2:b5:99:66:93:46:7d:2f:75:c9:bc: 84:76:69:78:26:dc:5a:87:74:1f:79:7f:c4:9a:e8: e0:e9:73:03:da:e3:5f:1b:cf:ad:7f:fa:ba:d0:b7: d3:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:84:63:94:63:D5:60:C6:6D:9B:1A:8E:98:B9:64:F3:48:02:A5:36 X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/toRjlGPVYMZtmxqOmLlk80gCpTY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.119.94.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:88:66:90:44:2f:13:1e:28:99:39:76:cf:83:b8:f6:6d:37: 9c:f9:c1:6f:5f:14:65:cd:a3:d9:d5:a7:e2:14:8d:a4:ae:74: 98:b3:bd:93:cd:9f:46:27:2e:cf:4a:ca:79:f7:13:b7:20:61: b6:76:b2:d6:35:96:cb:cf:f5:9c:b0:61:1e:7c:60:c8:7f:34: 6e:9b:29:dc:47:91:21:17:0e:ff:1c:28:c6:3b:3e:e9:e2:11: 35:a4:7c:e2:bf:6e:fa:b1:31:9c:38:b1:d8:1e:ab:91:85:74: b6:96:dc:b3:2f:4b:b2:4e:48:ca:5a:aa:81:30:5a:5e:4f:c6: bb:96:79:de:37:94:e5:a6:13:73:6f:56:64:ad:e5:49:16:1d: 85:e9:eb:5b:30:dd:9c:73:9c:a6:25:db:31:15:a8:e3:69:cd: 0e:2b:86:61:12:bb:fe:18:07:a8:fb:b3:c4:42:6e:99:b4:e4: 57:dc:0c:6c:d7:11:f5:4b:98:d3:d9:0e:1e:a7:fc:31:51:49: e0:9c:61:10:59:9f:c8:b2:4e:3a:15:46:d7:98:2d:98:ed:be: 42:19:76:bd:cc:bf:6d:83:a1:76:84:c0:cf:56:d0:7d:08:fa: 73:dd:a7:1b:ef:ad:aa:0d:55:d9:47:14:bb:6c:78:c0:de:b8: 88:99:26:55 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICE2EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNTAyMTAx NDAzNDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI2ODQ2Mzk0NjNENTYw QzY2RDlCMUE4RTk4Qjk2NEYzNDgwMkE1MzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+5amQgBtRlOtl1b/6SgTiPLnmez5LQlKzN7Yrybo46jLO76QN WtaUONrORggsUOnEsINrr5r54oBqTVLI1NqVNTLCU4AnKs5TqO3dUnEwuq+tan91 mld139ZF82AnxoU6X+/JScW09ADeahICn1WJJL8T8SR49tq2vIGnchFfKJmuMVMQ U2PilMoklRcaeIrPiPHHArdqPzrh4NqWPxPwNuxWNrgo9QsGvX4Km1wnZPFcWtRQ 1VqfVvoBTHSI8VCz83vVntwxw90aj0Ew4KZpUcmq/5bitZlmk0Z9L3XJvIR2aXgm 3FqHdB95f8Sa6ODpcwPa418bz61/+rrQt9O3AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUtoRjlGPVYMZtmxqOmLlk80gCpTYwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy90b1JqbEdQVllNWnRteHFPbUxs azgwZ0NwVFkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy3de MA0GCSqGSIb3DQEBCwUAA4IBAQCdiGaQRC8THiiZOXbPg7j2bTec+cFvXxRlzaPZ 1afiFI2krnSYs72TzZ9GJy7PSsp59xO3IGG2drLWNZbLz/WcsGEefGDIfzRumync R5EhFw7/HCjGOz7p4hE1pHziv276sTGcOLHYHquRhXS2ltyzL0uyTkjKWqqBMFpe T8a7lnneN5TlphNzb1ZkreVJFh2F6etbMN2cc5ymJdsxFajjac0OK4ZhErv+GAeo +7PEQm6ZtORX3Axs1xH1S5jT2Q4ep/wxUUngnGEQWZ/Isk46FUbXmC2Y7b5CGXa9 zL9tg6F2hMDPVtB9CPpz3acb762qDVXZRxS7bHjA3riImSZV -----END CERTIFICATE-----Generated at Sat Apr 5 08:25:13 2025 by rpki-client