$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/oZXxChf66Wbb5YOyol2geDl6YS8.roa File: oZXxChf66Wbb5YOyol2geDl6YS8.roa (raw, json) Hash identifier: kwNGYkOUA47ow5NYn11aGHlyAPtQyc2f2cwP7T+T8h4= Subject key identifier: A1:95:F1:0A:17:FA:E9:66:DB:E5:83:B2:A2:5D:A0:78:39:7A:61:2F Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Certificate serial: 0E19 Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/oZXxChf66Wbb5YOyol2geDl6YS8.roa Signing time: Mon 10 Feb 2025 14:22:09 +0000 ROA not before: Mon 10 Feb 2025 14:22:09 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18424 IP address blocks: 2405:8700:3000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 21:18:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3609 (0xe19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Validity Not Before: Feb 10 14:22:09 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A195F10A17FAE966DBE583B2A25DA078397A612F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:15:c5:79:0c:17:61:37:09:0a:6a:99:c3:b7: 5f:b9:9c:f8:d2:df:26:30:2d:7e:47:8b:2d:a2:f7: 87:98:89:fd:72:32:3c:43:8b:9f:ba:f7:3b:a8:ee: 5b:7b:af:26:1a:25:7b:96:cc:14:71:a7:d1:82:91: c9:da:ce:44:0e:96:83:f4:a9:4b:f6:b0:1d:ff:3d: 34:be:7d:49:f6:80:87:01:80:54:d7:de:89:03:4e: d6:13:85:e8:59:42:af:03:87:d7:c9:2f:3b:c7:ba: 53:e4:aa:b3:27:f9:33:23:c5:d6:03:e8:3a:fd:20: 8c:e7:ad:71:05:7a:ce:74:29:b8:aa:33:2f:e5:c8: 5d:63:1d:6b:2b:58:b9:8f:f7:7f:a9:1b:d3:f5:5f: d1:ed:6b:bd:f5:47:04:60:96:0f:c4:f6:96:03:23: b6:0e:08:37:a7:ec:ea:7b:15:da:c9:30:50:51:24: 97:cc:2b:ce:1d:5b:38:1d:5f:ec:08:92:01:89:00: 06:1e:19:f8:d6:d1:d6:04:56:0a:e0:ee:df:b8:13: bb:e8:a6:73:01:83:dd:03:6c:ff:bd:49:95:40:d9: c4:30:71:c6:cd:d2:46:61:0d:1b:ea:08:ae:4f:91: cf:02:6d:90:85:61:9e:f1:8e:76:dc:67:b3:1e:b6: 70:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:95:F1:0A:17:FA:E9:66:DB:E5:83:B2:A2:5D:A0:78:39:7A:61:2F X509v3 Authority Key Identifier: keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/oZXxChf66Wbb5YOyol2geDl6YS8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:8700:3000::/48 Signature Algorithm: sha256WithRSAEncryption 10:8b:41:0c:c8:ec:7e:9e:cb:2d:bc:40:a3:34:27:8b:d1:d5: 97:7f:f5:0e:49:d9:53:1c:b9:23:3e:f8:b2:7b:76:19:e9:b1: ed:f7:97:68:d5:18:8b:ae:d3:6d:b2:b2:f7:05:5a:04:7d:40: 1f:29:ff:cb:7a:46:8f:60:cd:f6:01:2c:b2:04:96:99:2e:9f: a2:b7:e4:53:81:e4:21:10:35:61:66:fb:16:6f:77:95:8f:58: 19:cc:76:87:a2:e6:51:dc:39:3b:c5:20:1e:d8:37:67:23:fc: e7:b3:e4:60:eb:da:fb:36:42:2c:6c:e3:05:28:e8:66:1f:bb: 48:e7:67:40:93:69:79:2b:c4:2c:1d:60:1c:8e:a8:23:d6:9a: 6e:b7:07:10:e0:74:7d:0b:b6:fa:24:6e:50:5d:00:52:1e:9d: cb:28:75:09:06:86:87:7b:10:08:0b:07:93:50:f9:f8:04:e8: f0:fd:e3:5b:a1:22:2c:b5:e5:b0:13:58:fb:a3:5d:65:6d:08: f3:b6:66:fc:80:c4:b8:8a:f6:b9:c0:91:81:af:1e:f0:e0:fb: 3d:2c:62:ed:63:46:73:5f:10:2c:0d:55:02:ec:4b:d7:5b:e6: 2e:f5:18:39:99:6e:4a:6b:58:7d:eb:6b:70:a8:b6:46:23:a2: ed:23:97:92 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICDhkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3 RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yNTAyMTAx NDIyMDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEExOTVGMTBBMTdGQUU5 NjZEQkU1ODNCMkEyNURBMDc4Mzk3QTYxMkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9FcV5DBdhNwkKapnDt1+5nPjS3yYwLX5Hiy2i94eYif1yMjxD i5+69zuo7lt7ryYaJXuWzBRxp9GCkcnazkQOloP0qUv2sB3/PTS+fUn2gIcBgFTX 3okDTtYThehZQq8Dh9fJLzvHulPkqrMn+TMjxdYD6Dr9IIznrXEFes50KbiqMy/l yF1jHWsrWLmP93+pG9P1X9Hta731RwRglg/E9pYDI7YOCDen7Op7FdrJMFBRJJfM K84dWzgdX+wIkgGJAAYeGfjW0dYEVgrg7t+4E7vopnMBg90DbP+9SZVA2cQwccbN 0kZhDRvqCK5Pkc8CbZCFYZ7xjnbcZ7MetnBxAgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUoZXxChf66Wbb5YOyol2geDl6YS8wHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL29aWHhDaGY2Nldi YjVZT3lvbDJnZURsNllTOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAkBYcAMAAwDQYJKoZIhvcNAQELBQADggEBABCLQQzI7H6eyy28QKM0J4vR 1Zd/9Q5J2VMcuSM++LJ7dhnpse33l2jVGIuu022ysvcFWgR9QB8p/8t6Ro9gzfYB LLIElpkun6K35FOB5CEQNWFm+xZvd5WPWBnMdoei5lHcOTvFIB7YN2cj/Oez5GDr 2vs2Qixs4wUo6GYfu0jnZ0CTaXkrxCwdYByOqCPWmm63BxDgdH0LtvokblBdAFIe ncsodQkGhod7EAgLB5NQ+fgE6PD941uhIiy15bATWPujXWVtCPO2ZvyAxLiK9rnA kYGvHvDg+z0sYu1jRnNfECwNVQLsS9db5i71GDmZbkprWH3ra3CotkYjou0jl5I= -----END CERTIFICATE-----Generated at Tue Apr 22 20:11:11 2025 by rpki-client