$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/iPyRmGmKyKcMis7K1-ROfHu1SLU.roa File: iPyRmGmKyKcMis7K1-ROfHu1SLU.roa (raw, json) Hash identifier: OWcgQ1KLp9oU5vXzMON3wjXFqp8tcZsof1RmsquBEw0= Subject key identifier: 88:FC:91:98:69:8A:C8:A7:0C:8A:CE:CA:D7:E4:4E:7C:7B:B5:48:B5 Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Certificate serial: 0E10 Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/iPyRmGmKyKcMis7K1-ROfHu1SLU.roa Signing time: Mon 10 Feb 2025 14:22:07 +0000 ROA not before: Mon 10 Feb 2025 14:22:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24168 IP address blocks: 2405:8700:3000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 06:18:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3600 (0xe10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Validity Not Before: Feb 10 14:22:07 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=88FC9198698AC8A70C8ACECAD7E44E7C7BB548B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:5b:7c:4d:1e:74:79:e9:d4:3f:93:0c:53:61: b4:e3:6b:3a:7c:50:a5:36:08:61:76:1f:eb:16:ac: be:6e:81:c4:68:a1:ca:87:8f:a4:5e:e5:fa:01:18: 48:57:e0:8f:98:ea:c5:2b:4c:66:bd:a7:64:5a:a3: 75:2c:7d:f4:65:9a:cd:e7:23:aa:cf:7e:2d:c8:d3: 46:54:66:4f:ea:d5:d5:27:c9:0e:04:fb:ea:4b:17: 06:d5:aa:da:5e:3d:9f:e9:04:e0:6d:42:cb:91:2a: 6b:a3:58:c1:27:ff:72:1a:26:ea:90:6c:22:cb:6d: 71:95:a2:d0:05:9f:90:af:61:50:9e:0b:fd:b9:b7: bd:0a:81:0a:25:20:73:5a:a7:05:c8:ab:be:86:ed: c8:ef:e7:42:7d:63:ac:ad:8d:63:bd:ca:24:ce:fc: c3:55:be:3a:92:bf:73:7b:5a:e1:ca:69:ef:ad:c9: 40:51:c4:9d:d3:d4:3f:8d:b1:e6:ed:21:4e:be:97: 36:61:08:4c:d4:2f:3d:7d:a3:5d:b5:3e:38:58:1f: c8:88:a0:e1:60:2b:36:26:54:21:38:d6:83:94:91: 62:47:6d:00:a9:60:a4:b6:d8:0f:21:cb:b3:63:c9: 54:58:b2:12:06:06:e5:88:d5:0b:9a:3f:4c:e0:d3: dd:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:FC:91:98:69:8A:C8:A7:0C:8A:CE:CA:D7:E4:4E:7C:7B:B5:48:B5 X509v3 Authority Key Identifier: keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/iPyRmGmKyKcMis7K1-ROfHu1SLU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:8700:3000::/48 Signature Algorithm: sha256WithRSAEncryption 34:0c:8d:80:d3:90:3e:23:7d:0a:bb:65:3a:f6:e6:96:83:9f: 5b:4d:be:d5:df:3c:9c:94:c6:c1:c4:11:51:35:bd:7b:25:6d: d8:51:72:ec:1b:3b:82:7f:28:c4:cc:c1:ce:9f:dc:72:c1:5e: 45:86:e3:98:28:cf:85:6c:ef:5d:bf:b9:52:7e:42:7e:3d:81: 5c:fb:24:b8:bd:9d:54:fc:af:e0:78:19:11:a5:73:fd:5e:1d: c2:53:ca:05:18:9c:c8:00:2b:bc:b4:a4:b0:e9:82:4d:46:75: 1e:92:67:c4:57:d6:1f:05:be:9c:cd:d7:89:c9:da:64:57:18: f8:bc:12:84:21:70:ad:69:95:8a:02:51:90:b0:16:3a:e5:60: 5b:49:a5:23:e7:14:5f:2a:bc:bd:26:bf:5e:9f:6f:a6:96:68: 16:3f:94:3d:1b:c8:56:66:d3:fc:54:cb:75:e1:ee:d5:18:8b: dd:1c:f5:30:4d:69:a2:d4:07:16:d0:94:09:07:ab:7d:69:63: ac:16:db:42:40:ee:d8:de:b1:0b:39:9b:69:b3:2f:d2:bf:69: 56:d2:c7:8b:c8:84:b4:37:e2:cf:c6:5e:ac:65:bb:6a:a3:b9: e3:7c:bf:a4:64:d5:53:f8:9d:75:55:8a:f3:72:59:5f:f7:59: ac:00:ba:8f -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICDhAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3 RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yNTAyMTAx NDIyMDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg4RkM5MTk4Njk4QUM4 QTcwQzhBQ0VDQUQ3RTQ0RTdDN0JCNTQ4QjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpW3xNHnR56dQ/kwxTYbTjazp8UKU2CGF2H+sWrL5ugcRoocqH j6Re5foBGEhX4I+Y6sUrTGa9p2Rao3UsffRlms3nI6rPfi3I00ZUZk/q1dUnyQ4E ++pLFwbVqtpePZ/pBOBtQsuRKmujWMEn/3IaJuqQbCLLbXGVotAFn5CvYVCeC/25 t70KgQolIHNapwXIq76G7cjv50J9Y6ytjWO9yiTO/MNVvjqSv3N7WuHKae+tyUBR xJ3T1D+NsebtIU6+lzZhCEzULz19o121PjhYH8iIoOFgKzYmVCE41oOUkWJHbQCp YKS22A8hy7NjyVRYshIGBuWI1QuaP0zg090lAgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUiPyRmGmKyKcMis7K1+ROfHu1SLUwHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL2lQeVJtR21LeUtj TWlzN0sxLVJPZkh1MVNMVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAkBYcAMAAwDQYJKoZIhvcNAQELBQADggEBADQMjYDTkD4jfQq7ZTr25paD n1tNvtXfPJyUxsHEEVE1vXslbdhRcuwbO4J/KMTMwc6f3HLBXkWG45goz4Vs712/ uVJ+Qn49gVz7JLi9nVT8r+B4GRGlc/1eHcJTygUYnMgAK7y0pLDpgk1GdR6SZ8RX 1h8FvpzN14nJ2mRXGPi8EoQhcK1plYoCUZCwFjrlYFtJpSPnFF8qvL0mv16fb6aW aBY/lD0byFZm0/xUy3Xh7tUYi90c9TBNaaLUBxbQlAkHq31pY6wW20JA7tjesQs5 m2mzL9K/aVbSx4vIhLQ34s/GXqxlu2qjueN8v6Rk1VP4nXVVivNyWV/3WawAuo8= -----END CERTIFICATE-----Generated at Wed Apr 23 03:04:19 2025 by rpki-client