$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/WYJdsOkz6dN-bLYCf6tWyjcMO64.roa File: WYJdsOkz6dN-bLYCf6tWyjcMO64.roa (raw, json) Hash identifier: 1/7L5Jp/S5kfHQHkNoN4Q8bsTZdVsY/2lPRksVM0Wb4= Subject key identifier: 59:82:5D:B0:E9:33:E9:D3:7E:6C:B6:02:7F:AB:56:CA:37:0C:3B:AE Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Certificate serial: 0E0F Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/WYJdsOkz6dN-bLYCf6tWyjcMO64.roa Signing time: Mon 10 Feb 2025 14:22:06 +0000 ROA not before: Mon 10 Feb 2025 14:22:06 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18424 IP address blocks: 2405:8700:9900::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 16:48:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3599 (0xe0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Validity Not Before: Feb 10 14:22:06 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=59825DB0E933E9D37E6CB6027FAB56CA370C3BAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:26:e1:6f:08:05:bc:92:66:24:90:fc:c3:31: ab:19:f6:49:c2:d9:11:fa:a6:27:ab:c6:66:da:25: 6e:19:c1:2a:3a:bf:4a:6f:c6:71:9d:8c:a4:a1:66: 53:0c:ec:4b:4e:22:1c:c0:9d:b2:17:2f:1d:b5:c5: 3c:5a:77:27:11:17:5e:6d:38:04:4a:54:16:1d:27: 81:ad:10:d9:04:ce:ff:55:1a:b7:cf:80:ad:bc:81: b6:52:dc:9e:ee:e4:c2:01:b0:b5:ee:6e:3c:a7:62: 78:22:db:6f:da:97:89:bb:2e:9e:81:73:cc:1c:93: e2:2b:ae:12:42:29:4c:bb:26:52:91:d1:8e:08:d3: 67:8c:a9:ea:86:37:ec:2a:7d:ee:6a:32:54:4c:76: fc:f2:45:97:7c:ce:c2:9e:bc:5a:ed:ab:e1:b1:ce: b8:99:e0:ee:a3:d4:44:17:27:6e:43:b7:ce:8a:05: 50:ca:98:47:57:d8:60:1f:1e:52:28:a7:07:81:2b: 67:9f:4c:96:45:e9:37:c7:66:56:d4:ef:06:de:c1: 50:42:72:6e:65:43:02:bc:66:5c:bd:0a:1e:ab:1e: c2:49:e4:25:cd:b9:91:96:a3:74:68:54:2e:d5:94: e8:14:6c:8c:44:89:03:e3:3c:81:25:c0:41:37:b8: fe:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:82:5D:B0:E9:33:E9:D3:7E:6C:B6:02:7F:AB:56:CA:37:0C:3B:AE X509v3 Authority Key Identifier: keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/WYJdsOkz6dN-bLYCf6tWyjcMO64.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:8700:9900::/48 Signature Algorithm: sha256WithRSAEncryption 92:40:75:c5:dc:81:a8:b4:01:39:81:81:ee:90:aa:30:da:16: 38:ce:ed:1a:63:06:e4:65:4f:d0:7d:cf:f4:85:ba:5d:33:d9: d5:0d:ed:61:42:1c:ae:68:cd:fa:37:b2:24:e9:92:c4:07:6f: b3:ad:f9:3d:f5:3d:25:1d:2e:90:2a:7a:55:d3:12:c6:91:17: a2:01:b9:30:99:d5:7d:ac:5e:6e:12:91:57:13:9b:dc:66:2d: 46:31:3f:c1:d8:d1:a5:d1:c7:90:67:27:e7:05:32:88:45:71: ab:8b:f5:a6:f5:7b:5f:6e:6e:ee:78:e8:bb:fd:be:ec:63:05: bb:02:8e:67:97:be:9b:40:4a:0d:fb:f7:f2:cf:f1:a2:24:57: fd:cf:f0:85:c3:09:88:c2:25:4a:78:0a:40:c3:9a:a6:4d:7d: 3b:48:d5:2d:a6:48:98:1d:74:a6:1d:59:d2:2f:dc:2c:27:47: d9:dd:7e:f8:1c:dd:b7:a1:b8:27:32:f5:e5:a1:69:a4:7b:e2: 71:41:90:6a:72:93:f8:65:d3:a3:02:5d:77:1e:ce:ff:91:a6: 9e:64:cc:85:93:73:09:62:44:db:41:9d:5b:25:df:77:47:8a: 8b:87:d5:98:84:ed:37:fa:bd:cb:5d:7b:54:e0:4c:48:13:62: 76:5f:f8:91 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICDg8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3 RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yNTAyMTAx NDIyMDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU5ODI1REIwRTkzM0U5 RDM3RTZDQjYwMjdGQUI1NkNBMzcwQzNCQUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnJuFvCAW8kmYkkPzDMasZ9knC2RH6pierxmbaJW4ZwSo6v0pv xnGdjKShZlMM7EtOIhzAnbIXLx21xTxadycRF15tOARKVBYdJ4GtENkEzv9VGrfP gK28gbZS3J7u5MIBsLXubjynYngi22/al4m7Lp6Bc8wck+IrrhJCKUy7JlKR0Y4I 02eMqeqGN+wqfe5qMlRMdvzyRZd8zsKevFrtq+GxzriZ4O6j1EQXJ25Dt86KBVDK mEdX2GAfHlIopweBK2efTJZF6TfHZlbU7wbewVBCcm5lQwK8Zly9Ch6rHsJJ5CXN uZGWo3RoVC7VlOgUbIxEiQPjPIElwEE3uP7LAgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUWYJdsOkz6dN+bLYCf6tWyjcMO64wHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL1dZSmRzT2t6NmRO LWJMWUNmNnRXeWpjTU82NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAkBYcAmQAwDQYJKoZIhvcNAQELBQADggEBAJJAdcXcgai0ATmBge6QqjDa FjjO7RpjBuRlT9B9z/SFul0z2dUN7WFCHK5ozfo3siTpksQHb7Ot+T31PSUdLpAq elXTEsaRF6IBuTCZ1X2sXm4SkVcTm9xmLUYxP8HY0aXRx5BnJ+cFMohFcauL9ab1 e19ubu546Lv9vuxjBbsCjmeXvptASg379/LP8aIkV/3P8IXDCYjCJUp4CkDDmqZN fTtI1S2mSJgddKYdWdIv3CwnR9ndfvgc3behuCcy9eWhaaR74nFBkGpyk/hl06MC XXcezv+Rpp5kzIWTcwliRNtBnVsl33dHiouH1ZiE7Tf6vctde1TgTEgTYnZf+JE= -----END CERTIFICATE-----Generated at Tue Apr 22 14:59:05 2025 by rpki-client