$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/EjNpMXXvvVCwyFGWyMubdtB2030.roa File: EjNpMXXvvVCwyFGWyMubdtB2030.roa (raw, json) Hash identifier: buZM3Uc7yt29XNlsfjEbiJShEjAL9a1I5Rfck0Eo4CY= Subject key identifier: 12:33:69:31:75:EF:BD:50:B0:C8:51:96:C8:CB:9B:76:D0:76:D3:7D Certificate issuer: /CN=6602965A7D3F7FFBF3B51EDF14E3BBCC2DF3B69A Certificate serial: D7 Authority key identifier: 66:02:96:5A:7D:3F:7F:FB:F3:B5:1E:DF:14:E3:BB:CC:2D:F3:B6:9A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZgKWWn0_f_vztR7fFOO7zC3ztpo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/EjNpMXXvvVCwyFGWyMubdtB2030.roa Signing time: Mon 10 Feb 2025 14:22:28 +0000 ROA not before: Mon 10 Feb 2025 14:22:28 +0000 ROA not after: Fri 26 Dec 2025 15:30:27 +0000 asID: 152619 IP address blocks: 161.248.44.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZgKWWn0_f_vztR7fFOO7zC3ztpo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZgKWWn0_f_vztR7fFOO7zC3ztpo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ZgKWWn0_f_vztR7fFOO7zC3ztpo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 00:38:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6602965A7D3F7FFBF3B51EDF14E3BBCC2DF3B69A Validity Not Before: Feb 10 14:22:28 2025 GMT Not After : Dec 26 15:30:27 2025 GMT Subject: CN=1233693175EFBD50B0C85196C8CB9B76D076D37D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:6c:ef:47:d6:dc:8b:24:70:80:55:a0:87:a7: 48:04:74:e5:23:24:88:2b:8e:d5:b4:a0:a1:cf:45: 03:4f:25:74:68:17:3b:99:93:4d:51:fb:1e:16:b2: 15:ec:cc:61:44:cc:e7:26:ea:e7:8f:ab:bb:5e:8e: d0:0a:2f:fe:5d:13:82:ef:63:32:2e:f7:e5:45:20: 4b:d9:c5:f1:6f:81:dd:b5:70:92:b6:6c:6f:66:49: bb:a6:d6:ce:d3:cf:b1:f8:56:1d:8d:1e:4b:2c:c1: f8:fd:c0:b1:15:03:cd:ad:bc:ca:56:7e:30:c2:7d: 24:ba:8d:d0:38:24:20:01:0f:e7:d0:f2:88:2e:1f: 3b:44:4c:f3:04:44:bb:4a:33:b1:89:09:81:b1:6f: 23:7e:e9:b2:db:6b:f6:42:3a:9d:ce:f7:b7:d1:47: 3d:bf:c3:58:27:b7:c1:77:0b:f7:bf:4b:3f:60:8c: 04:07:3e:f5:78:e5:7d:61:8a:5a:2d:d1:ae:30:84: f7:85:f1:bb:c7:18:d8:00:e5:d5:00:f7:50:4f:26: cd:35:7d:20:ae:cb:ff:8c:1d:a1:8b:ef:39:d7:2c: 33:d0:16:f5:b7:6b:5d:26:3f:52:1e:32:ff:d7:d1: 29:9f:27:0c:6a:ab:52:3a:8a:52:53:3a:ef:80:de: 7a:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:33:69:31:75:EF:BD:50:B0:C8:51:96:C8:CB:9B:76:D0:76:D3:7D X509v3 Authority Key Identifier: keyid:66:02:96:5A:7D:3F:7F:FB:F3:B5:1E:DF:14:E3:BB:CC:2D:F3:B6:9A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZgKWWn0_f_vztR7fFOO7zC3ztpo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZgKWWn0_f_vztR7fFOO7zC3ztpo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/EjNpMXXvvVCwyFGWyMubdtB2030.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 161.248.44.0/23 Signature Algorithm: sha256WithRSAEncryption 71:8f:74:ff:9d:6f:42:7e:18:05:d4:6c:64:68:77:9a:f9:e5: 3f:57:c5:f6:57:5c:a2:27:df:92:79:f2:13:a7:47:8d:9b:e8: 42:80:99:b8:04:cb:8d:10:8c:03:3c:79:9e:c7:01:cb:7c:3e: 21:37:52:f1:84:02:10:6c:89:bd:19:e3:10:7e:60:f7:9f:a7: 90:56:f8:4a:19:a3:6b:fc:e5:cd:7a:2c:e0:74:d2:b1:d5:0a: e2:d1:3d:8e:d1:9e:4a:63:db:be:83:2e:c3:c5:75:3d:0b:ff: ee:39:3d:2c:9e:30:f1:c5:1d:4f:73:37:d4:5e:5f:dc:cc:55: 6b:51:87:fd:3e:24:d7:67:a4:36:4d:29:1a:6a:97:e4:cc:0b: 81:06:c8:2d:ed:b3:53:b2:a3:9c:8d:bf:2f:f2:54:ad:72:0c: b9:8e:09:31:27:c6:24:f2:bc:db:71:3a:6a:c5:ff:1d:b2:89: ac:4c:fe:a5:61:51:47:b8:04:d0:17:55:2f:0d:92:a6:a8:fc: 1b:61:80:c1:56:ba:8a:0c:7f:ea:a5:8a:7a:eb:6c:65:91:2a: c7:60:a2:02:d5:8e:77:cd:cd:52:6b:1e:35:c0:8e:c5:99:c6: 25:2d:32:27:9c:12:d9:f1:72:d0:79:e9:34:f8:5a:d1:d0:e9: f3:ae:d0:b8 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICANcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjYw Mjk2NUE3RDNGN0ZGQkYzQjUxRURGMTRFM0JCQ0MyREYzQjY5QTAeFw0yNTAyMTAx NDIyMjhaFw0yNTEyMjYxNTMwMjdaMDMxMTAvBgNVBAMTKDEyMzM2OTMxNzVFRkJE NTBCMEM4NTE5NkM4Q0I5Qjc2RDA3NkQzN0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYbO9H1tyLJHCAVaCHp0gEdOUjJIgrjtW0oKHPRQNPJXRoFzuZ k01R+x4WshXszGFEzOcm6uePq7tejtAKL/5dE4LvYzIu9+VFIEvZxfFvgd21cJK2 bG9mSbum1s7Tz7H4Vh2NHksswfj9wLEVA82tvMpWfjDCfSS6jdA4JCABD+fQ8ogu HztETPMERLtKM7GJCYGxbyN+6bLba/ZCOp3O97fRRz2/w1gnt8F3C/e/Sz9gjAQH PvV45X1hilot0a4whPeF8bvHGNgA5dUA91BPJs01fSCuy/+MHaGL7znXLDPQFvW3 a10mP1IeMv/X0SmfJwxqq1I6ilJTOu+A3nqhAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUEjNpMXXvvVCwyFGWyMubdtB2030wHwYDVR0jBBgwFoAUZgKWWn0/f/vztR7f FOO7zC3ztpowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVkVSWUZB U1QvWmdLV1duMF9mX3Z6dFI3ZkZPTzd6QzN6dHBvLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9aZ0tXV24wX2Zfdnp0UjdmRk9PN3pDM3p0cG8uY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9WRVJZRkFTVC9Fak5wTVhYdnZWQ3d5 RkdXeU11YmR0QjIwMzAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBofgsMA0GCSqGSIb3DQEBCwUAA4IBAQBxj3T/nW9CfhgF1GxkaHea+eU/V8X2 V1yiJ9+SefITp0eNm+hCgJm4BMuNEIwDPHmexwHLfD4hN1LxhAIQbIm9GeMQfmD3 n6eQVvhKGaNr/OXNeizgdNKx1Qri0T2O0Z5KY9u+gy7DxXU9C//uOT0snjDxxR1P czfUXl/czFVrUYf9PiTXZ6Q2TSkaapfkzAuBBsgt7bNTsqOcjb8v8lStcgy5jgkx J8Yk8rzbcTpqxf8dsomsTP6lYVFHuATQF1UvDZKmqPwbYYDBVrqKDH/qpYp662xl kSrHYKIC1Y53zc1Sax41wI7FmcYlLTInnBLZ8XLQeek0+FrR0OnzrtC4 -----END CERTIFICATE-----Generated at Wed Apr 16 00:08:25 2025 by rpki-client