$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZZriLYLN89RKpRrPPoWbNOg-Drw.roa File: ZZriLYLN89RKpRrPPoWbNOg-Drw.roa (raw, json) Hash identifier: dJfoYpAcbLUL3dKXtP/JqT6iLtS+lGV8N+zRPUPTNVc= Subject key identifier: 65:9A:E2:2D:82:CD:F3:D4:4A:A5:1A:CF:3E:85:9B:34:E8:3E:0E:BC Certificate issuer: /CN=1F7D627FE36A2EBF69809BC847B5433BF43E37E8 Certificate serial: D8 Authority key identifier: 1F:7D:62:7F:E3:6A:2E:BF:69:80:9B:C8:47:B5:43:3B:F4:3E:37:E8 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/H31if-NqLr9pgJvIR7VDO_Q-N-g.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZZriLYLN89RKpRrPPoWbNOg-Drw.roa Signing time: Mon 10 Feb 2025 14:22:28 +0000 ROA not before: Mon 10 Feb 2025 14:22:28 +0000 ROA not after: Fri 26 Dec 2025 15:30:27 +0000 asID: 152619 IP address blocks: 2401:e3e0:f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/H31if-NqLr9pgJvIR7VDO_Q-N-g.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 09:38:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F7D627FE36A2EBF69809BC847B5433BF43E37E8 Validity Not Before: Feb 10 14:22:28 2025 GMT Not After : Dec 26 15:30:27 2025 GMT Subject: CN=659AE22D82CDF3D44AA51ACF3E859B34E83E0EBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:6e:01:99:09:81:d5:ee:64:cf:1f:10:5b:f6: b6:f2:20:ac:55:1d:b6:e4:6f:5c:b6:b3:88:a0:5e: f0:df:68:bf:9a:06:40:06:d0:01:9e:65:56:ea:57: d3:32:1d:b4:c1:08:ef:c0:98:5c:e7:7a:c0:f7:67: 61:a4:f4:b4:06:0e:2c:28:7e:38:a6:dc:05:bc:e2: a2:0d:75:7f:bc:40:a4:2a:ef:64:ae:cb:e1:49:e5: 01:eb:16:f4:53:7c:a2:9e:1a:19:a6:72:9a:a2:93: 9e:c2:40:3c:3f:2d:07:f2:d5:c9:c5:97:d8:5f:a3: 7a:ff:ef:7b:09:0c:24:5a:75:11:72:f1:21:3f:fa: e4:82:a2:92:c2:91:06:74:3d:1a:8f:12:c0:3e:0c: 2b:9a:1b:f9:11:4b:d8:6d:f7:6c:81:b4:93:c6:6f: a7:b0:15:7e:57:8a:d3:57:c8:13:58:fe:36:91:0d: 74:ae:4f:e6:e0:75:8e:38:60:06:85:14:ca:f7:be: 3b:aa:13:d1:af:d6:a8:0a:38:82:5e:06:e9:4c:05: fb:53:ca:55:26:62:93:b0:6a:0a:42:ba:e9:05:f3: a5:4e:83:7a:23:e3:0b:b0:d5:db:93:38:71:4c:bb: 14:d4:15:a4:11:62:99:f7:23:8d:26:02:bd:59:6a: eb:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:9A:E2:2D:82:CD:F3:D4:4A:A5:1A:CF:3E:85:9B:34:E8:3E:0E:BC X509v3 Authority Key Identifier: keyid:1F:7D:62:7F:E3:6A:2E:BF:69:80:9B:C8:47:B5:43:3B:F4:3E:37:E8 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/H31if-NqLr9pgJvIR7VDO_Q-N-g.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZZriLYLN89RKpRrPPoWbNOg-Drw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:e3e0:f::/48 Signature Algorithm: sha256WithRSAEncryption 49:7c:2f:e5:3c:2e:ca:94:55:2d:df:68:47:b1:54:60:37:0a: 79:78:36:5f:a1:18:ef:cb:16:9b:ea:31:64:c5:c7:58:3c:aa: e6:43:a0:c7:67:e6:1b:e2:9b:ad:a5:ce:76:3f:c2:8d:66:b6: a5:74:fb:b4:76:98:36:10:66:ad:f3:bd:f6:c3:06:13:0c:7c: 2e:41:46:73:99:2d:ad:3d:95:ae:df:41:27:85:5b:5a:c4:58: 11:05:95:19:7b:46:c3:01:93:b1:59:97:6a:90:ec:95:10:c5: 1e:5e:1e:d2:aa:68:5d:00:e1:4d:c9:78:05:3f:be:44:f9:c4: 50:44:71:9b:f5:16:b4:75:d9:63:4d:db:f7:36:db:67:9d:98: 6f:7e:51:51:55:f7:5c:f5:c9:56:13:20:63:94:12:67:0f:4e: e3:07:35:ce:c1:ad:88:6f:8f:9a:b4:09:51:bd:9c:2c:9c:7e: cd:12:64:f0:70:0a:60:a0:62:b5:77:e3:b2:65:5f:96:a1:2f: d5:f9:41:66:11:23:8b:53:50:51:bc:3b:f8:18:0a:75:60:df: 46:0e:2c:28:d6:2a:01:4f:8c:1e:72:ef:af:90:0d:76:b2:6f: 9c:38:9f:3b:e6:65:ea:94:e0:25:3d:c7:38:1c:d5:d7:e8:e9: e7:8f:2a:14 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgICANgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUY3 RDYyN0ZFMzZBMkVCRjY5ODA5QkM4NDdCNTQzM0JGNDNFMzdFODAeFw0yNTAyMTAx NDIyMjhaFw0yNTEyMjYxNTMwMjdaMDMxMTAvBgNVBAMTKDY1OUFFMjJEODJDREYz RDQ0QUE1MUFDRjNFODU5QjM0RTgzRTBFQkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+bgGZCYHV7mTPHxBb9rbyIKxVHbbkb1y2s4igXvDfaL+aBkAG 0AGeZVbqV9MyHbTBCO/AmFznesD3Z2Gk9LQGDiwofjim3AW84qINdX+8QKQq72Su y+FJ5QHrFvRTfKKeGhmmcpqik57CQDw/LQfy1cnFl9hfo3r/73sJDCRadRFy8SE/ +uSCopLCkQZ0PRqPEsA+DCuaG/kRS9ht92yBtJPGb6ewFX5XitNXyBNY/jaRDXSu T+bgdY44YAaFFMr3vjuqE9Gv1qgKOIJeBulMBftTylUmYpOwagpCuukF86VOg3oj 4wuw1duTOHFMuxTUFaQRYpn3I40mAr1ZauutAgMBAAGjggH1MIIB8TAdBgNVHQ4E FgQUZZriLYLN89RKpRrPPoWbNOg+DrwwHwYDVR0jBBgwFoAUH31if+NqLr9pgJvI R7VDO/Q+N+gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVkVSWUZB U1QvSDMxaWYtTnFMcjlwZ0p2SVI3VkRPX1EtTi1nLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9IMzFpZi1OcUxyOXBnSnZJUjdWRE9fUS1OLWcuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9WRVJZRkFTVC9aWnJpTFlMTjg5Uktw UnJQUG9XYk5PZy1Ecncucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJ AwcAJAHj4AAPMA0GCSqGSIb3DQEBCwUAA4IBAQBJfC/lPC7KlFUt32hHsVRgNwp5 eDZfoRjvyxab6jFkxcdYPKrmQ6DHZ+Yb4putpc52P8KNZraldPu0dpg2EGat8732 wwYTDHwuQUZzmS2tPZWu30EnhVtaxFgRBZUZe0bDAZOxWZdqkOyVEMUeXh7Sqmhd AOFNyXgFP75E+cRQRHGb9Ra0ddljTdv3NttnnZhvflFRVfdc9clWEyBjlBJnD07j BzXOwa2Ib4+atAlRvZwsnH7NEmTwcApgoGK1d+OyZV+WoS/V+UFmESOLU1BRvDv4 GAp1YN9GDiwo1ioBT4wecu+vkA12sm+cOJ875mXqlOAlPcc4HNXX6OnnjyoU -----END CERTIFICATE-----Generated at Wed Apr 16 06:22:17 2025 by rpki-client