$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/yksQg1mICyUgYLfA38ycOaRMh38.roa File: yksQg1mICyUgYLfA38ycOaRMh38.roa (raw, json) Hash identifier: l7FvlHghZWVhfylUepgIp+BqVBI/0+R5nWD6zIZMEvo= Subject key identifier: CA:4B:10:83:59:88:0B:25:20:60:B7:C0:DF:CC:9C:39:A4:4C:87:7F Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Certificate serial: 0CEF Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/yksQg1mICyUgYLfA38ycOaRMh38.roa Signing time: Mon 10 Feb 2025 13:50:56 +0000 ROA not before: Mon 10 Feb 2025 13:50:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 2914 IP address blocks: 2001:d40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 08:07:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3311 (0xcef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Validity Not Before: Feb 10 13:50:56 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CA4B108359880B252060B7C0DFCC9C39A44C877F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:71:ff:a6:b6:a8:8f:96:08:82:6b:42:76:f8: 90:39:85:90:c8:fa:af:f1:85:d2:e1:f6:f6:a4:e6: 0a:a1:44:51:fa:0c:62:4e:88:91:31:a9:06:a2:84: 42:1f:35:8e:77:42:70:cd:d7:1f:2f:6b:4e:32:78: 56:5d:aa:20:89:c0:18:88:36:bc:a8:6e:f2:e3:92: 94:13:d6:2c:d2:28:b3:56:1b:81:ed:88:68:9f:c9: ed:f6:39:fe:ef:0c:f1:34:9b:67:0a:f8:28:0a:3c: fe:75:21:27:05:d1:0b:30:c8:69:67:2a:bb:69:58: 9d:6e:11:35:e8:52:06:0a:c2:c1:0a:68:2d:48:21: 97:cd:50:ac:93:a5:16:2c:f0:66:28:54:29:40:f2: cc:15:d3:06:27:79:00:21:44:4b:dd:05:e3:32:3c: 65:69:87:d0:4a:eb:bb:6d:db:90:34:60:9f:fb:77: 37:33:4c:a1:04:2f:bd:05:bb:01:38:59:ae:d9:9b: a2:df:40:f9:98:cc:af:2f:5d:4a:f1:21:e4:2d:6f: 2c:87:95:e0:c9:6e:de:66:12:4a:71:f8:8d:d4:49: 42:e1:f0:02:33:d1:99:e1:4c:0e:6c:e8:d1:00:eb: 80:7a:13:7e:e9:39:1b:d5:13:76:ff:40:f7:be:0f: 5f:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:4B:10:83:59:88:0B:25:20:60:B7:C0:DF:CC:9C:39:A4:4C:87:7F X509v3 Authority Key Identifier: keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/yksQg1mICyUgYLfA38ycOaRMh38.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:d40::/32 Signature Algorithm: sha256WithRSAEncryption 61:c4:b8:c9:8a:04:06:45:15:76:bd:cd:36:ed:70:f8:ad:90: 77:65:e7:de:01:41:50:ad:bc:0e:59:6e:b8:1b:13:26:b9:3f: b4:fd:0c:ad:ab:65:46:db:77:d6:7a:30:52:a4:b6:e7:a9:02: 6a:a8:74:72:59:da:2f:ca:8a:ef:0d:f4:51:cf:3c:3e:a5:8c: 90:2f:ad:8a:56:2a:b7:c7:79:f9:ff:a6:e4:50:98:77:27:ca: 3f:74:71:29:ea:e5:5f:28:d3:0c:81:b8:aa:14:7b:24:88:e6: ef:1b:52:79:82:e4:be:49:d4:9c:40:87:3b:b3:83:84:35:f0: 4d:4f:f2:fe:09:9d:ac:91:c5:7a:55:89:cf:85:3c:cb:5f:f3: 8f:12:78:56:8d:d3:1c:34:f4:aa:8e:c5:9b:8c:e1:ea:9d:fe: d7:eb:7d:23:8b:4e:39:17:54:c5:d0:62:2e:e3:c3:fe:53:c8: 28:8d:8e:69:6f:a6:b1:d1:96:a4:1a:0e:97:06:a3:37:6f:3c: b8:91:ff:55:6f:64:4b:96:10:27:19:34:d2:bd:3e:b8:4c:79: 11:47:3c:0a:53:c6:2a:d6:92:ee:3c:4f:99:ca:1f:5c:d5:28: 82:46:76:51:81:2e:30:a7:14:6c:1d:27:e0:68:29:34:70:00: b3:ed:be:b8 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDO8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUy Njk3RkE3MDI1MkY4M0Y0MUQxMjFFQzBCNUNCNDU4QjZGRjIxNDAeFw0yNTAyMTAx MzUwNTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENBNEIxMDgzNTk4ODBC MjUyMDYwQjdDMERGQ0M5QzM5QTQ0Qzg3N0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjcf+mtqiPlgiCa0J2+JA5hZDI+q/xhdLh9vak5gqhRFH6DGJO iJExqQaihEIfNY53QnDN1x8va04yeFZdqiCJwBiINryobvLjkpQT1izSKLNWG4Ht iGifye32Of7vDPE0m2cK+CgKPP51IScF0QswyGlnKrtpWJ1uETXoUgYKwsEKaC1I IZfNUKyTpRYs8GYoVClA8swV0wYneQAhREvdBeMyPGVph9BK67tt25A0YJ/7dzcz TKEEL70FuwE4Wa7Zm6LfQPmYzK8vXUrxIeQtbyyHleDJbt5mEkpx+I3USULh8AIz 0ZnhTA5s6NEA64B6E37pORvVE3b/QPe+D1/9AgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUyksQg1mICyUgYLfA38ycOaRMh38wHwYDVR0jBBgwFoAUniaX+nAlL4P0HRIe wLXLRYtv8hQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOVFQv bmlhWC1uQWxMNFAwSFJJZXdMWExSWXR2OGhRLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9uaWFYLW5BbEw0UDBIUklld0xYTFJZdHY4aFEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05UVC95a3NRZzFtSUN5VWdZTGZBMzh5 Y09hUk1oMzgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAIAEN QDANBgkqhkiG9w0BAQsFAAOCAQEAYcS4yYoEBkUVdr3NNu1w+K2Qd2Xn3gFBUK28 DlluuBsTJrk/tP0MratlRtt31nowUqS256kCaqh0clnaL8qK7w30Uc88PqWMkC+t ilYqt8d5+f+m5FCYdyfKP3RxKerlXyjTDIG4qhR7JIjm7xtSeYLkvknUnECHO7OD hDXwTU/y/gmdrJHFelWJz4U8y1/zjxJ4Vo3THDT0qo7Fm4zh6p3+1+t9I4tOORdU xdBiLuPD/lPIKI2OaW+msdGWpBoOlwajN288uJH/VW9kS5YQJxk00r0+uEx5EUc8 ClPGKtaS7jxPmcofXNUogkZ2UYEuMKcUbB0n4GgpNHAAs+2+uA== -----END CERTIFICATE-----Generated at Sat Apr 12 05:37:04 2025 by rpki-client