$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/aPj35oaD07r9Fw0WH94YAmuhc_4.roa File: aPj35oaD07r9Fw0WH94YAmuhc_4.roa (raw, json) Hash identifier: 3v3Hdf6SkdESlHzVG9Nz8gyQNZizOpjF8pPYB1kgG4Q= Subject key identifier: 68:F8:F7:E6:86:83:D3:BA:FD:17:0D:16:1F:DE:18:02:6B:A1:73:FE Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Certificate serial: 0CF6 Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/aPj35oaD07r9Fw0WH94YAmuhc_4.roa Signing time: Mon 10 Feb 2025 13:50:58 +0000 ROA not before: Mon 10 Feb 2025 13:50:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18018 IP address blocks: 122.255.93.112/28 maxlen: 28 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3318 (0xcf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Validity Not Before: Feb 10 13:50:58 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=68F8F7E68683D3BAFD170D161FDE18026BA173FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:95:a2:57:99:c6:ae:d4:ea:ea:1d:cc:00:97: c0:cf:fd:bb:bf:d7:df:18:7b:9d:a4:55:90:0b:cf: d8:5b:0f:6f:3a:5c:d2:fe:72:92:f0:8e:36:18:e6: 9e:62:97:fc:c6:21:bd:a9:e5:d1:47:b4:23:d8:03: 1f:5e:72:c4:c3:5d:f9:a5:a3:c1:40:14:c9:fa:e8: 5d:9e:91:58:60:62:36:46:f5:f7:fe:49:c5:02:cf: bb:7e:5c:f8:d8:1c:3f:61:18:1c:df:d9:75:66:4b: 17:63:36:36:71:45:a3:15:16:5a:85:fa:7e:16:53: 45:e9:1f:7d:e7:7b:be:cc:15:77:ec:0c:a4:b1:a7: d9:0d:44:0a:c1:ec:b6:d7:0f:3c:7d:22:b8:55:03: d9:af:a9:44:09:c7:bf:3b:51:15:d7:5c:8b:7f:6f: ef:8f:f1:d4:7e:a9:47:f0:d3:63:96:68:94:36:90: ea:6e:07:16:39:40:0a:c8:ff:c3:27:7c:b3:d5:19: 52:4d:c4:15:03:d4:32:d8:83:9f:cc:3f:24:73:2b: 7a:96:85:51:0f:27:c8:19:ad:ba:80:e5:a0:17:1b: 7b:a8:45:5a:5c:30:63:6b:65:ac:39:51:d8:ee:34: 3d:eb:a0:bb:3e:c4:51:0d:e6:ad:fd:55:1c:74:34: 84:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:F8:F7:E6:86:83:D3:BA:FD:17:0D:16:1F:DE:18:02:6B:A1:73:FE X509v3 Authority Key Identifier: keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/aPj35oaD07r9Fw0WH94YAmuhc_4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.255.93.112/28 Signature Algorithm: sha256WithRSAEncryption 16:91:28:83:ed:94:31:85:8a:4d:bf:5d:b6:d2:5e:a6:8d:b7: cb:74:7f:e9:65:ee:ae:66:64:8a:c4:f2:b3:af:8e:d0:63:72: d2:58:fb:57:f8:10:64:63:88:41:05:5f:2a:f6:ea:21:05:73: 04:68:6e:94:cb:9e:cc:e2:d1:84:13:fa:d2:d2:4c:d2:d8:b8: de:b1:75:cf:4f:27:8b:86:3e:4f:ea:27:32:09:70:9f:0f:d4: ac:a5:9c:dc:c0:4d:81:55:31:c6:98:55:1c:2c:70:ea:a3:ed: 0e:00:b8:f7:59:c1:44:6c:ce:66:f3:45:c3:29:22:a2:51:5b: 48:d3:51:8a:e7:85:af:ac:d2:37:3b:26:61:80:61:30:c8:42: e4:e7:97:35:84:5b:13:87:37:25:70:15:fb:8d:b2:fb:39:47: 4c:84:86:ff:c2:56:32:39:08:b6:9c:6d:98:20:71:ab:78:50: 6f:c9:7a:2e:2e:ef:1c:21:17:f1:07:ed:1f:31:ff:cc:13:df: 87:2c:79:9e:dc:8f:76:eb:fd:59:4e:75:1b:bd:3a:fc:25:4f: 3d:2c:c3:8e:9b:e9:a7:9d:33:b1:3c:00:5c:14:af:4a:22:35: ba:d1:dd:3c:e6:12:3c:bf:70:ce:99:93:86:1c:a2:6f:62:cc: ab:c1:70:6b -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDPYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUy Njk3RkE3MDI1MkY4M0Y0MUQxMjFFQzBCNUNCNDU4QjZGRjIxNDAeFw0yNTAyMTAx MzUwNThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY4RjhGN0U2ODY4M0Qz QkFGRDE3MEQxNjFGREUxODAyNkJBMTczRkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPlaJXmcau1OrqHcwAl8DP/bu/198Ye52kVZALz9hbD286XNL+ cpLwjjYY5p5il/zGIb2p5dFHtCPYAx9ecsTDXfmlo8FAFMn66F2ekVhgYjZG9ff+ ScUCz7t+XPjYHD9hGBzf2XVmSxdjNjZxRaMVFlqF+n4WU0XpH33ne77MFXfsDKSx p9kNRArB7LbXDzx9IrhVA9mvqUQJx787URXXXIt/b++P8dR+qUfw02OWaJQ2kOpu BxY5QArI/8MnfLPVGVJNxBUD1DLYg5/MPyRzK3qWhVEPJ8gZrbqA5aAXG3uoRVpc MGNrZaw5UdjuND3roLs+xFEN5q39VRx0NISVAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUaPj35oaD07r9Fw0WH94YAmuhc/4wHwYDVR0jBBgwFoAUniaX+nAlL4P0HRIe wLXLRYtv8hQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOVFQv bmlhWC1uQWxMNFAwSFJJZXdMWExSWXR2OGhRLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9uaWFYLW5BbEw0UDBIUklld0xYTFJZdHY4aFEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05UVC9hUGozNW9hRDA3cjlGdzBXSDk0 WUFtdWhjXzQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUEev9d cDANBgkqhkiG9w0BAQsFAAOCAQEAFpEog+2UMYWKTb9dttJepo23y3R/6WXurmZk isTys6+O0GNy0lj7V/gQZGOIQQVfKvbqIQVzBGhulMuezOLRhBP60tJM0ti43rF1 z08ni4Y+T+onMglwnw/UrKWc3MBNgVUxxphVHCxw6qPtDgC491nBRGzOZvNFwyki olFbSNNRiueFr6zSNzsmYYBhMMhC5OeXNYRbE4c3JXAV+42y+zlHTISG/8JWMjkI tpxtmCBxq3hQb8l6Li7vHCEX8QftHzH/zBPfhyx5ntyPduv9WU51G706/CVPPSzD jpvpp50zsTwAXBSvSiI1utHdPOYSPL9wzpmThhyib2LMq8Fwaw== -----END CERTIFICATE-----Generated at Thu Apr 17 20:35:34 2025 by rpki-client