$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/Vbm_mM5QcOymdN-nDeu1zSIflC0.roa File: Vbm_mM5QcOymdN-nDeu1zSIflC0.roa (raw, json) Hash identifier: +St8oWZJ6RZgTPcyxUFC4NEreXCovhSwvz/fSTw4URc= Subject key identifier: 55:B9:BF:98:CE:50:70:EC:A6:74:DF:A7:0D:EB:B5:CD:22:1F:94:2D Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Certificate serial: 0E12 Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/Vbm_mM5QcOymdN-nDeu1zSIflC0.roa Signing time: Mon 10 Feb 2025 14:22:07 +0000 ROA not before: Mon 10 Feb 2025 14:22:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18424 IP address blocks: 121.50.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 10:48:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3602 (0xe12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Validity Not Before: Feb 10 14:22:07 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=55B9BF98CE5070ECA674DFA70DEBB5CD221F942D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:13:e8:f3:14:00:e6:aa:ac:f2:fc:a2:14:52: 4a:bc:0d:39:da:71:78:df:72:1e:26:cc:7a:c3:d3: 4f:ca:15:8f:76:8b:5b:b4:09:90:0b:51:80:f4:47: 5e:50:45:66:41:f5:19:10:bf:a0:94:55:5b:fc:1f: 94:6b:55:eb:61:82:92:7b:5f:fa:46:13:6c:5b:da: 3b:db:9e:8f:5b:f6:44:e8:29:fc:73:e6:0c:f6:2f: 5c:3a:27:cc:fa:b0:02:f3:96:e4:60:39:16:b4:7e: 71:56:a5:85:6a:d2:21:f2:c4:94:d8:a7:7d:f2:9d: 8a:2d:8d:fa:e5:da:f8:31:a3:3c:05:e9:e2:54:cf: 5b:2f:2c:1b:19:96:a5:4d:9b:69:c6:08:01:41:e8: ce:57:2a:d2:ee:48:d0:14:2f:64:23:8d:5c:67:eb: 9b:fc:9b:30:44:1f:52:ca:a0:02:ce:57:a8:6e:dc: c0:4b:ef:59:6a:c5:d8:61:09:83:84:60:bc:74:e6: 6e:d6:8b:09:6d:f4:a2:2a:e1:18:59:17:e4:61:26: d7:69:a4:31:3e:f8:e7:fa:1d:a8:25:f9:36:10:b1: 25:15:38:ba:6d:d6:4b:d4:88:6a:da:4f:f2:5a:0c: 21:62:61:1c:77:22:00:52:09:37:1d:32:a2:79:7c: d3:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:B9:BF:98:CE:50:70:EC:A6:74:DF:A7:0D:EB:B5:CD:22:1F:94:2D X509v3 Authority Key Identifier: keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/Vbm_mM5QcOymdN-nDeu1zSIflC0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 121.50.148.0/24 Signature Algorithm: sha256WithRSAEncryption 42:2e:a6:8c:b5:08:ca:1a:66:b8:64:c0:51:ad:e0:b1:fe:13: 29:45:9c:5b:9a:07:c2:97:b5:dc:97:ee:04:2d:a0:8f:e1:06: fa:bc:17:26:ba:4a:f7:f4:a6:e3:66:cb:e7:c8:ff:38:18:26: 24:ab:8b:66:df:22:52:b2:e0:d0:62:89:b8:b7:b7:9c:41:19: d0:28:d4:78:ed:16:61:30:20:22:79:55:bf:fb:fb:28:06:70: 35:56:ba:d5:f9:04:57:d7:67:c8:a6:be:c0:29:35:2b:7a:e5: 15:e2:34:43:e7:83:3f:b8:b5:60:f2:9d:4d:35:15:5c:04:a7: a2:ac:e8:96:0d:9c:6c:b3:32:92:77:e0:18:02:71:f4:5d:e4: 5d:b6:0c:b4:ce:d5:96:ee:17:0b:4a:a9:f8:4c:3e:9f:4f:b1: 3e:53:9e:0d:32:99:0c:27:c8:ef:25:75:ec:3c:82:fa:f0:67: c3:79:8e:2b:0c:10:72:80:f4:98:3c:8e:6f:e2:e3:c5:ef:18: 9a:93:3b:0e:a1:6b:8e:74:13:92:a0:d8:52:47:cf:be:02:4a: 22:af:32:5b:34:33:6c:b2:27:24:9e:fe:1d:df:d6:ee:6a:19: e1:0f:86:2a:05:56:db:80:46:8f:12:2b:23:1f:8c:5c:f1:ea: 00:3c:69:73 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDhIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3 RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yNTAyMTAx NDIyMDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU1QjlCRjk4Q0U1MDcw RUNBNjc0REZBNzBERUJCNUNEMjIxRjk0MkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9E+jzFADmqqzy/KIUUkq8DTnacXjfch4mzHrD00/KFY92i1u0 CZALUYD0R15QRWZB9RkQv6CUVVv8H5RrVethgpJ7X/pGE2xb2jvbno9b9kToKfxz 5gz2L1w6J8z6sALzluRgORa0fnFWpYVq0iHyxJTYp33ynYotjfrl2vgxozwF6eJU z1svLBsZlqVNm2nGCAFB6M5XKtLuSNAUL2QjjVxn65v8mzBEH1LKoALOV6hu3MBL 71lqxdhhCYOEYLx05m7Wiwlt9KIq4RhZF+RhJtdppDE++Of6Hagl+TYQsSUVOLpt 1kvUiGraT/JaDCFiYRx3IgBSCTcdMqJ5fNMJAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUVbm/mM5QcOymdN+nDeu1zSIflC0wHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL1ZibV9tTTVRY095 bWROLW5EZXUxelNJZmxDMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAB5MpQwDQYJKoZIhvcNAQELBQADggEBAEIupoy1CMoaZrhkwFGt4LH+EylF nFuaB8KXtdyX7gQtoI/hBvq8Fya6Svf0puNmy+fI/zgYJiSri2bfIlKy4NBiibi3 t5xBGdAo1HjtFmEwICJ5Vb/7+ygGcDVWutX5BFfXZ8imvsApNSt65RXiNEPngz+4 tWDynU01FVwEp6Ks6JYNnGyzMpJ34BgCcfRd5F22DLTO1ZbuFwtKqfhMPp9PsT5T ng0ymQwnyO8ldew8gvrwZ8N5jisMEHKA9Jg8jm/i48XvGJqTOw6ha450E5Kg2FJH z74CSiKvMls0M2yyJySe/h3f1u5qGeEPhioFVtuARo8SKyMfjFzx6gA8aXM= -----END CERTIFICATE-----Generated at Wed Apr 23 07:40:30 2025 by rpki-client