$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/w-DdvlBPOjF1RTy13y2GC5cYQPo.roa File: w-DdvlBPOjF1RTy13y2GC5cYQPo.roa (raw, json) Hash identifier: HPBylB7AU3sZVqJwwScaX6BBWM8hDiRxliOCVTAJ0TY= Subject key identifier: C3:E0:DD:BE:50:4F:3A:31:75:45:3C:B5:DF:2D:86:0B:97:18:40:FA Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 1351 Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/w-DdvlBPOjF1RTy13y2GC5cYQPo.roa Signing time: Mon 10 Feb 2025 14:03:36 +0000 ROA not before: Mon 10 Feb 2025 14:03:36 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131644 IP address blocks: 182.173.12.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 08:36:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4945 (0x1351) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Feb 10 14:03:36 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C3E0DDBE504F3A3175453CB5DF2D860B971840FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:c7:7b:3b:9d:a1:e0:b0:13:62:17:c7:30:5e: 5c:c4:02:89:e4:85:9e:74:b1:64:31:e2:6b:5a:71: 55:22:de:6c:da:98:83:90:9b:00:03:8b:46:97:29: fc:ef:db:58:1a:39:6a:52:80:d1:ea:4f:c5:02:21: 07:c7:c0:91:a8:bf:08:da:c4:19:05:12:65:9a:2d: 72:08:b4:d4:36:e7:dc:5f:31:be:2f:20:c1:84:15: a6:af:b9:6d:c1:9b:c3:9a:39:da:2e:ab:15:5b:cc: 5c:ae:4d:3e:f8:e6:39:3a:a7:68:c0:1b:42:b7:6c: 80:2f:2b:78:4e:5b:b4:98:03:b5:82:a8:d8:92:80: 25:ce:72:eb:42:7a:9f:4b:82:92:cc:fd:25:d8:b1: 41:b7:dd:d5:2e:2a:e7:22:fc:6c:6b:d0:70:7e:f7: f2:47:14:7b:c9:f1:80:a9:55:97:c1:21:8a:57:d7: c3:40:20:a3:7b:13:1a:c8:90:71:7e:19:a2:5e:5c: 9b:44:34:02:58:c6:0a:ce:8c:83:3b:ff:76:7f:0e: 8a:15:d0:a9:9e:d5:49:aa:84:a6:83:db:f4:cd:cb: f8:d6:21:cc:5e:5d:6d:73:3a:6f:54:83:b4:3d:74: 93:53:17:09:24:64:de:8e:8c:f2:92:23:f4:a0:fd: f7:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:E0:DD:BE:50:4F:3A:31:75:45:3C:B5:DF:2D:86:0B:97:18:40:FA X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/w-DdvlBPOjF1RTy13y2GC5cYQPo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 182.173.12.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:a5:a0:8d:94:97:7b:a7:54:97:95:39:27:d9:1d:28:17:63: f7:71:aa:b0:88:cb:d4:af:b2:5b:d8:21:3c:f6:be:72:20:e6: ca:70:eb:30:d1:70:f4:74:65:10:bd:b5:52:45:c2:cf:92:e3: b3:d1:08:b0:7b:26:52:22:27:c7:cd:87:c0:f3:23:88:3c:de: c5:b7:56:53:89:16:ee:cf:5c:da:d5:f2:75:20:ae:6b:fb:3c: 62:a2:2a:ed:ea:0e:d8:c8:3f:97:15:64:9d:de:44:dc:64:f1: 3b:f6:6a:a3:69:d2:e2:c9:74:fe:b7:76:5c:62:6e:f4:69:79: 97:3a:e9:07:7d:84:da:98:21:30:4f:48:b2:5e:1b:9f:3b:2b: 76:94:01:d5:cb:b7:29:01:5b:16:29:37:49:c5:92:4a:83:c3: ce:3e:cc:4b:fd:b1:e7:5f:07:3d:77:8b:49:19:bf:38:fa:b6: cd:a2:0a:96:24:aa:3c:be:d1:9a:35:d9:c3:55:ef:95:31:83: 38:b8:61:37:dd:db:29:39:9f:09:47:98:14:8d:b9:ab:e5:09: fb:7c:d7:ca:e7:09:80:c1:d8:f8:5d:f8:d9:71:2f:0d:42:bf: a4:a9:8e:cd:84:d7:b7:2d:39:53:de:d1:b4:b5:6f:11:0a:38: ab:be:dc:be -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICE1EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNTAyMTAx NDAzMzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMzRTBEREJFNTA0RjNB MzE3NTQ1M0NCNURGMkQ4NjBCOTcxODQwRkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDcx3s7naHgsBNiF8cwXlzEAonkhZ50sWQx4mtacVUi3mzamIOQ mwADi0aXKfzv21gaOWpSgNHqT8UCIQfHwJGovwjaxBkFEmWaLXIItNQ259xfMb4v IMGEFaavuW3Bm8OaOdouqxVbzFyuTT745jk6p2jAG0K3bIAvK3hOW7SYA7WCqNiS gCXOcutCep9LgpLM/SXYsUG33dUuKuci/Gxr0HB+9/JHFHvJ8YCpVZfBIYpX18NA IKN7ExrIkHF+GaJeXJtENAJYxgrOjIM7/3Z/DooV0Kme1UmqhKaD2/TNy/jWIcxe XW1zOm9Ug7Q9dJNTFwkkZN6OjPKSI/Sg/fcvAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUw+DdvlBPOjF1RTy13y2GC5cYQPowHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy93LURkdmxCUE9qRjFSVHkxM3ky R0M1Y1lRUG8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBtq0M MA0GCSqGSIb3DQEBCwUAA4IBAQBupaCNlJd7p1SXlTkn2R0oF2P3caqwiMvUr7Jb 2CE89r5yIObKcOsw0XD0dGUQvbVSRcLPkuOz0QiweyZSIifHzYfA8yOIPN7Ft1ZT iRbuz1za1fJ1IK5r+zxioirt6g7YyD+XFWSd3kTcZPE79mqjadLiyXT+t3ZcYm70 aXmXOukHfYTamCEwT0iyXhufOyt2lAHVy7cpAVsWKTdJxZJKg8POPsxL/bHnXwc9 d4tJGb84+rbNogqWJKo8vtGaNdnDVe+VMYM4uGE33dspOZ8JR5gUjbmr5Qn7fNfK 5wmAwdj4XfjZcS8NQr+kqY7NhNe3LTlT3tG0tW8RCjirvty+ -----END CERTIFICATE-----Generated at Sat Apr 5 08:27:29 2025 by rpki-client