$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/N-gjgYlWMDGqdQ2nkVTKjiHMzIY.roa File: N-gjgYlWMDGqdQ2nkVTKjiHMzIY.roa (raw, json) Hash identifier: h9AfKnLubyMCMrK9zicrcaOKGGYE8n9yoUqLKuu2900= Subject key identifier: 37:E8:23:81:89:56:30:31:AA:75:0D:A7:91:54:CA:8E:21:CC:CC:86 Certificate issuer: /CN=1F7D627FE36A2EBF69809BC847B5433BF43E37E8 Certificate serial: D9 Authority key identifier: 1F:7D:62:7F:E3:6A:2E:BF:69:80:9B:C8:47:B5:43:3B:F4:3E:37:E8 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/H31if-NqLr9pgJvIR7VDO_Q-N-g.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/N-gjgYlWMDGqdQ2nkVTKjiHMzIY.roa Signing time: Mon 10 Feb 2025 14:22:29 +0000 ROA not before: Mon 10 Feb 2025 14:22:29 +0000 ROA not after: Fri 26 Dec 2025 15:30:27 +0000 asID: 152619 IP address blocks: 2401:e3e0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/H31if-NqLr9pgJvIR7VDO_Q-N-g.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 09:38:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F7D627FE36A2EBF69809BC847B5433BF43E37E8 Validity Not Before: Feb 10 14:22:29 2025 GMT Not After : Dec 26 15:30:27 2025 GMT Subject: CN=37E8238189563031AA750DA79154CA8E21CCCC86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:53:34:0f:d3:c4:55:3d:00:b8:89:fd:d4:54: 4a:f2:f2:2d:6a:31:d9:9c:a1:ba:1e:d6:cb:61:23: fb:5c:10:92:fb:9d:90:6e:78:03:19:d0:42:9e:3d: d2:8f:e2:bc:2e:00:7d:30:cc:62:7d:ad:e5:98:64: c4:81:13:b0:2f:91:96:99:2e:27:99:f0:76:e4:e8: cc:e1:01:02:31:6b:20:4b:03:be:05:e1:fa:68:6d: 7e:93:b2:1a:19:7a:c8:bf:5b:b4:12:ae:57:59:ce: de:06:3d:1d:f4:dc:8c:cb:90:e8:65:e7:99:f9:4a: 83:2f:bd:30:46:de:0e:37:97:8a:fd:f6:02:31:71: 2e:80:2d:e5:d5:be:78:ce:6a:f4:9d:c5:1c:55:e7: 5b:34:a2:16:41:a8:90:62:62:88:b6:b7:12:d1:51: 6f:72:9a:19:68:ef:0e:0a:b2:a7:9e:f4:d5:5d:d5: 5c:80:48:a5:51:fc:ec:52:af:7b:33:ad:ab:21:6d: d8:9b:d1:89:21:55:a4:e8:ee:95:13:cd:4c:f0:67: 81:ae:7b:dd:97:93:17:d4:51:5c:e9:b2:9c:61:59: fe:10:d3:f4:fc:8e:92:e2:94:82:b1:a3:82:12:89: 60:4d:9c:0b:54:01:60:e6:a1:fd:57:77:0f:29:b0: f3:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:E8:23:81:89:56:30:31:AA:75:0D:A7:91:54:CA:8E:21:CC:CC:86 X509v3 Authority Key Identifier: keyid:1F:7D:62:7F:E3:6A:2E:BF:69:80:9B:C8:47:B5:43:3B:F4:3E:37:E8 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/H31if-NqLr9pgJvIR7VDO_Q-N-g.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/N-gjgYlWMDGqdQ2nkVTKjiHMzIY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:e3e0:2::/48 Signature Algorithm: sha256WithRSAEncryption 66:0c:e4:9e:12:3d:2a:e0:a6:d2:7b:b9:fb:66:69:a4:d5:a1: 71:2b:29:29:3b:52:cf:e4:eb:19:57:27:e4:7a:71:40:c0:e0: 0e:17:46:d8:09:e4:34:7a:fd:ed:8c:a1:bb:33:17:86:6e:67: 30:6a:a4:ca:57:9f:2b:a6:6d:08:8a:0d:46:50:f8:73:16:1d: 76:4b:06:93:1d:20:23:39:d6:0b:27:c2:d7:22:57:e2:9e:1a: a1:48:aa:a1:80:a5:8f:ca:2d:09:76:35:6d:8d:49:22:22:81: ea:40:1e:ec:23:fc:bb:f9:f6:46:b0:b4:29:0f:69:29:46:ae: ce:d9:25:b7:6b:3b:5e:98:88:fc:10:06:f6:48:99:f4:e8:47: f3:14:9d:e8:51:d4:25:ec:76:a1:21:20:21:d5:0c:76:55:8f: d7:15:95:b3:ff:48:81:c0:ff:39:ed:9f:36:a3:2f:56:75:b1: d9:68:53:c9:63:bf:07:8d:dc:09:01:3d:e0:a7:88:85:51:d7: 60:9b:f5:5d:ab:a3:0d:4f:56:6f:f8:a3:7a:71:48:0c:17:b2: 2d:41:d4:7d:65:b2:41:6c:ca:44:e3:7c:33:48:42:3c:e5:22: 29:33:c0:a0:ac:0b:98:88:3f:68:72:20:2d:c0:e8:db:43:68: a0:8c:bd:d1 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgICANkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUY3 RDYyN0ZFMzZBMkVCRjY5ODA5QkM4NDdCNTQzM0JGNDNFMzdFODAeFw0yNTAyMTAx NDIyMjlaFw0yNTEyMjYxNTMwMjdaMDMxMTAvBgNVBAMTKDM3RTgyMzgxODk1NjMw MzFBQTc1MERBNzkxNTRDQThFMjFDQ0NDODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnUzQP08RVPQC4if3UVEry8i1qMdmcoboe1sthI/tcEJL7nZBu eAMZ0EKePdKP4rwuAH0wzGJ9reWYZMSBE7AvkZaZLieZ8Hbk6MzhAQIxayBLA74F 4fpobX6TshoZesi/W7QSrldZzt4GPR303IzLkOhl55n5SoMvvTBG3g43l4r99gIx cS6ALeXVvnjOavSdxRxV51s0ohZBqJBiYoi2txLRUW9ymhlo7w4Ksqee9NVd1VyA SKVR/OxSr3szrashbdib0YkhVaTo7pUTzUzwZ4Gue92XkxfUUVzpspxhWf4Q0/T8 jpLilIKxo4ISiWBNnAtUAWDmof1Xdw8psPMjAgMBAAGjggH1MIIB8TAdBgNVHQ4E FgQUN+gjgYlWMDGqdQ2nkVTKjiHMzIYwHwYDVR0jBBgwFoAUH31if+NqLr9pgJvI R7VDO/Q+N+gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVkVSWUZB U1QvSDMxaWYtTnFMcjlwZ0p2SVI3VkRPX1EtTi1nLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9IMzFpZi1OcUxyOXBnSnZJUjdWRE9fUS1OLWcuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9WRVJZRkFTVC9OLWdqZ1lsV01ER3Fk UTJua1ZUS2ppSE16SVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJ AwcAJAHj4AACMA0GCSqGSIb3DQEBCwUAA4IBAQBmDOSeEj0q4KbSe7n7Zmmk1aFx KykpO1LP5OsZVyfkenFAwOAOF0bYCeQ0ev3tjKG7MxeGbmcwaqTKV58rpm0Iig1G UPhzFh12SwaTHSAjOdYLJ8LXIlfinhqhSKqhgKWPyi0JdjVtjUkiIoHqQB7sI/y7 +fZGsLQpD2kpRq7O2SW3aztemIj8EAb2SJn06EfzFJ3oUdQl7HahISAh1Qx2VY/X FZWz/0iBwP857Z82oy9WdbHZaFPJY78HjdwJAT3gp4iFUddgm/Vdq6MNT1Zv+KN6 cUgMF7ItQdR9ZbJBbMpE43wzSEI85SIpM8CgrAuYiD9ociAtwOjbQ2igjL3R -----END CERTIFICATE-----Generated at Wed Apr 16 06:19:57 2025 by rpki-client