$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANIN/Dvtmwt-GZQEKZYB7OBDPQyeh8vs.roa File: Dvtmwt-GZQEKZYB7OBDPQyeh8vs.roa (raw, json) Hash identifier: 4CimOCBRgGTCrnVY3PpzHjAoI72713xLfLCHPuJlfr0= Subject key identifier: 0E:FB:66:C2:DF:86:65:01:0A:65:80:7B:38:10:CF:43:27:A1:F2:FB Certificate issuer: /CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D Certificate serial: 1319 Authority key identifier: C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/Dvtmwt-GZQEKZYB7OBDPQyeh8vs.roa Signing time: Mon 10 Feb 2025 14:26:08 +0000 ROA not before: Mon 10 Feb 2025 14:26:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131636 IP address blocks: 2403:b9c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 13:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4889 (0x1319) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D Validity Not Before: Feb 10 14:26:08 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0EFB66C2DF8665010A65807B3810CF4327A1F2FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:1c:57:80:2a:93:da:d7:87:e8:50:be:d3:d4: 46:08:65:6c:ae:32:5e:76:e4:0d:42:b3:69:4a:d7: 95:fb:d3:66:88:f3:10:cd:5c:16:10:3b:9e:3a:64: c0:6d:c0:3f:43:11:27:10:df:18:05:8c:b5:ab:a2: a6:49:09:62:34:9f:00:9a:aa:28:60:0d:e4:52:20: 47:5d:d7:77:88:c6:18:d0:cd:41:3b:20:36:e2:26: 94:96:01:39:ec:64:1e:cf:cd:9b:73:47:78:f7:28: e1:19:29:de:2b:3c:be:5f:30:e3:5b:57:4b:13:ff: fe:3b:b7:5e:eb:87:67:4b:19:b4:56:89:ae:19:31: 93:28:83:10:73:74:5d:29:08:eb:6f:e1:a2:ea:19: 37:9b:99:93:54:b9:2c:0a:fb:32:22:99:9f:cb:6b: 25:57:db:9a:17:d5:04:ed:5d:5f:21:ef:1a:a9:a9: b3:58:13:25:9e:7e:45:be:79:ec:71:63:75:16:80: b5:16:27:30:b1:85:4b:60:44:fe:d2:d4:32:1b:0e: 19:19:a7:3c:0c:05:d2:c7:fc:71:63:8b:0b:42:f3: 83:e7:05:ba:13:28:eb:8c:1e:c9:93:67:57:61:6c: f7:e0:c9:c1:f1:5d:21:1d:23:d5:76:a4:5b:00:03: 86:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:FB:66:C2:DF:86:65:01:0A:65:80:7B:38:10:CF:43:27:A1:F2:FB X509v3 Authority Key Identifier: keyid:C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/Dvtmwt-GZQEKZYB7OBDPQyeh8vs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:b9c0::/32 Signature Algorithm: sha256WithRSAEncryption 6f:f0:cb:ac:a1:78:6c:d5:2e:f8:9d:da:2b:38:3b:f7:9d:0c: 3b:e1:ea:89:87:2c:0e:f1:8d:e5:d8:f9:aa:20:a8:aa:d5:6c: 09:2f:b5:66:d3:3d:9c:93:df:df:82:f9:73:f9:97:38:0e:a0: 39:3a:17:f6:73:5f:3b:cf:1d:9e:25:3d:08:02:a4:74:31:ab: 63:88:d2:2d:56:46:4f:e7:e8:69:65:6c:8b:52:96:4b:30:dc: de:2d:7b:8f:a3:f5:61:2f:da:4e:76:99:39:4c:be:4a:1e:79: a5:f0:1b:59:f1:d6:93:48:a0:95:38:84:3e:48:de:40:14:76: ba:19:cb:62:11:ef:4e:38:ae:d2:41:90:e3:aa:73:be:bb:d3: eb:a7:ff:d0:a7:b1:79:f2:2f:98:73:06:dc:f6:4b:0a:30:bb: f2:e1:91:6f:7c:6b:33:fe:ad:08:17:75:8a:87:74:86:da:69: 02:bb:f8:15:b5:94:66:b7:8d:67:2e:3c:ae:7c:13:bf:b8:17: 46:1b:b5:87:4e:b8:6f:6f:88:d9:13:06:29:fc:04:20:4e:c9: cd:88:30:63:72:90:a3:a9:6b:04:4f:83:69:b1:aa:97:78:1f: 5c:70:12:b1:33:70:b9:40:0d:5e:14:c7:c2:43:34:d7:43:06: d6:19:11:96 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICExkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzBE MkM4QzNENEMyRkJCQTI0RDNEODM1MDhBQjE0MkYyRDQ5NDI3RDAeFw0yNTAyMTAx NDI2MDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBFRkI2NkMyREY4NjY1 MDEwQTY1ODA3QjM4MTBDRjQzMjdBMUYyRkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkHFeAKpPa14foUL7T1EYIZWyuMl525A1Cs2lK15X702aI8xDN XBYQO546ZMBtwD9DEScQ3xgFjLWroqZJCWI0nwCaqihgDeRSIEdd13eIxhjQzUE7 IDbiJpSWATnsZB7PzZtzR3j3KOEZKd4rPL5fMONbV0sT//47t17rh2dLGbRWia4Z MZMogxBzdF0pCOtv4aLqGTebmZNUuSwK+zIimZ/LayVX25oX1QTtXV8h7xqpqbNY EyWefkW+eexxY3UWgLUWJzCxhUtgRP7S1DIbDhkZpzwMBdLH/HFjiwtC84PnBboT KOuMHsmTZ1dhbPfgycHxXSEdI9V2pFsAA4YnAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUDvtmwt+GZQEKZYB7OBDPQyeh8vswHwYDVR0jBBgwFoAUwNLIw9TC+7ok09g1 CKsULy1JQn0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0FOSU4v d05MSXc5VEMtN29rMDlnMUNLc1VMeTFKUW4wLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS93TkxJdzlUQy03b2swOWcxQ0tzVUx5MUpRbjAuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9XQU5JTi9EdnRtd3QtR1pRRUtaWUI3T0JE UFF5ZWg4dnMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAO5 wDANBgkqhkiG9w0BAQsFAAOCAQEAb/DLrKF4bNUu+J3aKzg7950MO+HqiYcsDvGN 5dj5qiCoqtVsCS+1ZtM9nJPf34L5c/mXOA6gOToX9nNfO88dniU9CAKkdDGrY4jS LVZGT+foaWVsi1KWSzDc3i17j6P1YS/aTnaZOUy+Sh55pfAbWfHWk0iglTiEPkje QBR2uhnLYhHvTjiu0kGQ46pzvrvT66f/0KexefIvmHMG3PZLCjC78uGRb3xrM/6t CBd1iod0htppArv4FbWUZreNZy48rnwTv7gXRhu1h064b2+I2RMGKfwEIE7JzYgw Y3KQo6lrBE+DabGql3gfXHASsTNwuUANXhTHwkM010MG1hkRlg== -----END CERTIFICATE-----Generated at Thu Apr 17 12:10:38 2025 by rpki-client