$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/-oQKQNh70eBkxp_EOQb89z5F9t4.roa File: -oQKQNh70eBkxp_EOQb89z5F9t4.roa (raw, json) Hash identifier: AMJ0on1JbXFgisXFlomBZ97N86mqyMFQK6/dKXTzGIU= Subject key identifier: FA:84:0A:40:D8:7B:D1:E0:64:C6:9F:C4:39:06:FC:F7:3E:45:F6:DE Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Certificate serial: 0E11 Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/-oQKQNh70eBkxp_EOQb89z5F9t4.roa Signing time: Mon 10 Feb 2025 14:22:07 +0000 ROA not before: Mon 10 Feb 2025 14:22:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18424 IP address blocks: 121.50.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 16:48:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3601 (0xe11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Validity Not Before: Feb 10 14:22:07 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FA840A40D87BD1E064C69FC43906FCF73E45F6DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a1:3a:6e:46:b5:2f:de:22:1c:69:ef:0b:b8: 01:c5:4a:bb:25:8e:25:f2:cb:d3:66:36:8e:bd:d7: 7a:2c:4b:9d:2d:dc:e2:3d:52:8c:36:75:e1:0a:df: 7a:a0:9f:4a:b6:ea:7e:0c:75:a3:1a:81:93:13:7b: 7d:94:d7:78:da:dd:30:8b:37:dd:2c:3b:4a:02:0a: 8a:c0:a2:cd:33:3d:03:8c:c4:6f:49:8c:b2:40:64: eb:18:a6:aa:b6:d1:f6:43:0b:e6:25:48:82:63:78: 68:8e:1e:0f:f4:0d:8e:ce:1b:33:89:87:ce:eb:18: d1:a7:a3:08:4f:2d:0e:42:03:71:a2:e8:49:a2:96: b0:f9:e0:e3:77:71:f3:41:c4:c1:c6:ee:d5:b8:cd: 87:ba:76:34:db:d6:ee:42:50:52:44:6d:86:53:85: d8:58:5f:2b:d3:a4:b3:35:e4:36:1a:c3:cc:20:56: 6c:1c:05:d9:19:31:e2:1c:92:53:a3:18:b2:54:a9: 44:1c:75:16:8a:6d:03:11:9d:bc:a2:47:00:30:48: d5:ac:08:bf:dd:46:56:7f:d3:f2:ee:f2:2f:0b:dc: 1c:51:6d:24:9a:aa:98:45:ce:d9:f9:20:64:a5:e8: b4:49:ad:06:75:da:26:14:ae:81:7b:c8:05:2b:7f: de:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:84:0A:40:D8:7B:D1:E0:64:C6:9F:C4:39:06:FC:F7:3E:45:F6:DE X509v3 Authority Key Identifier: keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/-oQKQNh70eBkxp_EOQb89z5F9t4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 121.50.145.0/24 Signature Algorithm: sha256WithRSAEncryption 75:46:3a:58:00:c1:96:62:80:3e:68:dc:5e:db:78:b2:68:a8: ba:e2:c1:84:e0:14:19:1f:75:79:a1:5e:d1:22:d8:87:2a:d9: bf:da:60:23:5c:88:78:dc:2e:cf:23:77:6a:68:4f:07:54:7a: 13:fe:04:03:36:a4:f2:6c:7b:85:85:41:e1:0f:32:21:96:73: 52:5a:03:ea:61:2e:9f:80:57:49:6a:86:26:2e:51:35:c7:4c: 5b:25:d6:77:eb:c3:e0:0c:07:97:2f:04:b7:1f:b6:3e:16:d7: c0:9e:ca:e8:58:2e:e3:6d:5b:fd:54:cc:17:fc:f0:a6:64:95: c0:d2:7e:3c:1a:3e:16:b9:63:73:a9:6e:39:51:6d:19:cc:cf: 47:2b:3b:2b:5e:f8:da:aa:10:26:35:b8:5a:70:40:e4:99:f7: 3e:7a:22:88:1f:c4:62:ee:3d:c6:f3:97:86:d7:8f:4b:dd:ba: 72:be:5b:dd:1f:23:79:2d:ee:01:8e:03:27:18:44:5a:45:76: 6b:c8:2f:61:10:31:7a:02:4e:40:7c:ed:2b:3a:27:a8:fa:9d: ae:56:7e:4e:83:58:dd:21:c3:af:5c:26:39:92:db:15:a1:ed: ac:c3:96:65:91:8a:8d:54:91:7d:ba:cd:23:49:e9:09:22:d7: 5f:d7:3f:a5 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDhEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3 RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yNTAyMTAx NDIyMDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZBODQwQTQwRDg3QkQx RTA2NEM2OUZDNDM5MDZGQ0Y3M0U0NUY2REUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqoTpuRrUv3iIcae8LuAHFSrsljiXyy9NmNo6913osS50t3OI9 Uow2deEK33qgn0q26n4MdaMagZMTe32U13ja3TCLN90sO0oCCorAos0zPQOMxG9J jLJAZOsYpqq20fZDC+YlSIJjeGiOHg/0DY7OGzOJh87rGNGnowhPLQ5CA3Gi6Emi lrD54ON3cfNBxMHG7tW4zYe6djTb1u5CUFJEbYZThdhYXyvTpLM15DYaw8wgVmwc BdkZMeIcklOjGLJUqUQcdRaKbQMRnbyiRwAwSNWsCL/dRlZ/0/Lu8i8L3BxRbSSa qphFztn5IGSl6LRJrQZ12iYUroF7yAUrf96RAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQU+oQKQNh70eBkxp/EOQb89z5F9t4wHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOLy1vUUtRTmg3MGVC a3hwX0VPUWI4OXo1Rjl0NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAB5MpEwDQYJKoZIhvcNAQELBQADggEBAHVGOlgAwZZigD5o3F7beLJoqLri wYTgFBkfdXmhXtEi2Icq2b/aYCNciHjcLs8jd2poTwdUehP+BAM2pPJse4WFQeEP MiGWc1JaA+phLp+AV0lqhiYuUTXHTFsl1nfrw+AMB5cvBLcftj4W18CeyuhYLuNt W/1UzBf88KZklcDSfjwaPha5Y3OpbjlRbRnMz0crOyte+NqqECY1uFpwQOSZ9z56 IogfxGLuPcbzl4bXj0vdunK+W90fI3kt7gGOAycYRFpFdmvIL2EQMXoCTkB87Ss6 J6j6na5Wfk6DWN0hw69cJjmS2xWh7azDlmWRio1UkX26zSNJ6Qki11/XP6U= -----END CERTIFICATE-----Generated at Tue Apr 22 15:21:23 2025 by rpki-client