$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/TcPBG9mi2HQmVJYrRUN_mNO88ns.roa File: TcPBG9mi2HQmVJYrRUN_mNO88ns.roa (raw, json) Hash identifier: KfdMEvJ5TyC0XSi/dyUrO8vF6gK8SUiY4swD5PzPTVw= Subject key identifier: 4D:C3:C1:1B:D9:A2:D8:74:26:54:96:2B:45:43:7F:98:D3:BC:F2:7B Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Certificate serial: 0CF8 Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/TcPBG9mi2HQmVJYrRUN_mNO88ns.roa Signing time: Mon 10 Feb 2025 13:50:58 +0000 ROA not before: Mon 10 Feb 2025 13:50:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18018 IP address blocks: 122.255.94.0/28 maxlen: 28 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3320 (0xcf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Validity Not Before: Feb 10 13:50:58 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4DC3C11BD9A2D8742654962B45437F98D3BCF27B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:27:f3:a3:4d:db:0c:b5:cf:29:f6:23:9e:9e: 95:f4:26:e6:5d:17:f0:58:18:55:3d:6c:cc:93:c9: 55:87:38:04:4d:91:17:e1:61:3c:1b:50:f1:4c:51: e0:a7:b8:8f:2e:ff:3e:35:63:a3:62:0b:7c:b1:aa: 64:34:b4:4f:d8:86:48:e3:58:01:65:e2:9c:3b:f9: 3c:c4:fa:6b:c0:06:fd:eb:c2:4c:c3:fb:13:b5:49: 48:f8:82:ec:58:cc:ee:e7:1b:a6:01:d0:c7:d2:1a: 6f:33:83:4f:b8:5c:ff:b3:e3:d4:e1:35:6a:45:cd: 37:b1:fb:34:f8:81:c3:a2:3f:d9:35:2f:b5:d5:f2: 7f:79:2e:03:ef:b4:00:21:8b:2e:d0:d5:66:68:09: 1e:2c:4a:e7:c4:ce:0b:32:c7:4d:cf:cb:54:bc:07: ec:5a:ed:3c:54:9f:45:e0:da:72:2f:d1:cb:5a:bf: 26:25:4b:39:6b:28:ba:e5:2d:d9:c2:59:99:8e:2e: 9e:34:0c:28:2d:ca:b7:f9:dd:e5:8a:44:08:16:11: 2a:73:51:02:dc:a2:e3:a1:65:49:7d:65:d2:e4:72: ee:69:ff:f4:a7:8d:0d:9b:f1:39:62:d4:ba:1a:ae: 4b:d1:52:91:f4:f0:0c:7b:ae:f2:12:75:be:d9:c5: dd:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:C3:C1:1B:D9:A2:D8:74:26:54:96:2B:45:43:7F:98:D3:BC:F2:7B X509v3 Authority Key Identifier: keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/TcPBG9mi2HQmVJYrRUN_mNO88ns.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.255.94.0/28 Signature Algorithm: sha256WithRSAEncryption 63:3b:b4:09:e6:19:a0:5e:ff:06:1a:61:31:61:c1:8a:9b:47: bc:6d:ab:34:7c:92:99:fe:ce:8e:ef:36:74:47:3d:c6:b1:55: 59:c4:17:f0:75:8a:c0:ff:d3:5d:84:17:2a:17:7f:b0:7a:16: c8:9d:26:9b:0f:7c:e7:24:e6:66:01:50:2e:91:26:63:10:c4: 3b:b4:a3:25:0f:cc:6e:2e:7f:3f:64:e0:9c:a7:af:c5:5d:b4: 82:bd:45:7a:53:1b:d2:e2:a5:15:dc:03:6b:e7:bd:57:27:df: 20:a4:b8:5d:74:a4:00:40:20:44:cb:2d:20:9c:76:d3:2b:63: ee:73:73:56:b1:4d:66:a9:b4:d8:df:43:69:fa:e4:5b:9a:0a: 5b:cf:42:96:d4:66:5b:a3:a5:59:d2:11:28:3a:4b:95:c4:b2: 7c:f3:4b:2e:9f:27:26:d3:d1:45:2b:39:7f:6c:c6:92:1d:33: a8:7d:7e:d7:30:3c:9d:a3:91:6d:65:a6:7f:36:8f:fc:68:17: 66:e6:11:c3:e5:e8:03:8c:ab:60:77:36:b6:fe:69:69:11:49: 8d:68:cb:29:5b:93:47:eb:03:c8:c5:70:70:34:65:8b:2a:15: c1:49:c5:08:ad:52:45:15:97:05:d1:7d:34:cc:0f:39:c8:db: e5:e5:f7:8e -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDPgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUy Njk3RkE3MDI1MkY4M0Y0MUQxMjFFQzBCNUNCNDU4QjZGRjIxNDAeFw0yNTAyMTAx MzUwNThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDREQzNDMTFCRDlBMkQ4 NzQyNjU0OTYyQjQ1NDM3Rjk4RDNCQ0YyN0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQJ/OjTdsMtc8p9iOenpX0JuZdF/BYGFU9bMyTyVWHOARNkRfh YTwbUPFMUeCnuI8u/z41Y6NiC3yxqmQ0tE/YhkjjWAFl4pw7+TzE+mvABv3rwkzD +xO1SUj4guxYzO7nG6YB0MfSGm8zg0+4XP+z49ThNWpFzTex+zT4gcOiP9k1L7XV 8n95LgPvtAAhiy7Q1WZoCR4sSufEzgsyx03Py1S8B+xa7TxUn0Xg2nIv0ctavyYl SzlrKLrlLdnCWZmOLp40DCgtyrf53eWKRAgWESpzUQLcouOhZUl9ZdLkcu5p//Sn jQ2b8Tli1LoarkvRUpH08Ax7rvISdb7Zxd0hAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUTcPBG9mi2HQmVJYrRUN/mNO88nswHwYDVR0jBBgwFoAUniaX+nAlL4P0HRIe wLXLRYtv8hQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOVFQv bmlhWC1uQWxMNFAwSFJJZXdMWExSWXR2OGhRLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9uaWFYLW5BbEw0UDBIUklld0xYTFJZdHY4aFEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05UVC9UY1BCRzltaTJIUW1WSllyUlVO X21OTzg4bnMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUEev9e ADANBgkqhkiG9w0BAQsFAAOCAQEAYzu0CeYZoF7/BhphMWHBiptHvG2rNHySmf7O ju82dEc9xrFVWcQX8HWKwP/TXYQXKhd/sHoWyJ0mmw985yTmZgFQLpEmYxDEO7Sj JQ/Mbi5/P2TgnKevxV20gr1FelMb0uKlFdwDa+e9VyffIKS4XXSkAEAgRMstIJx2 0ytj7nNzVrFNZqm02N9DafrkW5oKW89CltRmW6OlWdIRKDpLlcSyfPNLLp8nJtPR RSs5f2zGkh0zqH1+1zA8naORbWWmfzaP/GgXZuYRw+XoA4yrYHc2tv5paRFJjWjL KVuTR+sDyMVwcDRliyoVwUnFCK1SRRWXBdF9NMwPOcjb5eX3jg== -----END CERTIFICATE-----Generated at Thu Apr 17 20:38:00 2025 by rpki-client