$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ZAT/M2GAbD_65TzKfKYLGyD3B13H6vI.roa File: M2GAbD_65TzKfKYLGyD3B13H6vI.roa (raw, json) Hash identifier: DFzYKyNafE0yZk93gddUxCE8gf66tv4UZPPb6MoGlig= Subject key identifier: 33:61:80:6C:3F:FA:E5:3C:CA:7C:A6:0B:1B:20:F7:07:5D:C7:EA:F2 Certificate issuer: /CN=41D608336CCF0EDFEA4A24614F1D7234884E8991 Certificate serial: 0137 Authority key identifier: 41:D6:08:33:6C:CF:0E:DF:EA:4A:24:61:4F:1D:72:34:88:4E:89:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/QdYIM2zPDt_qSiRhTx1yNIhOiZE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/M2GAbD_65TzKfKYLGyD3B13H6vI.roa Signing time: Mon 10 Feb 2025 13:45:06 +0000 ROA not before: Mon 10 Feb 2025 13:45:06 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 201217 IP address blocks: 210.79.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/QdYIM2zPDt_qSiRhTx1yNIhOiZE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/QdYIM2zPDt_qSiRhTx1yNIhOiZE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/QdYIM2zPDt_qSiRhTx1yNIhOiZE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41D608336CCF0EDFEA4A24614F1D7234884E8991 Validity Not Before: Feb 10 13:45:06 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3361806C3FFAE53CCA7CA60B1B20F7075DC7EAF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:fc:90:ec:38:b4:ed:1d:9b:b7:1c:72:7c:27: 20:08:05:dc:7a:6f:88:78:9f:25:81:09:a1:dd:68: eb:69:4f:d5:c3:e9:02:53:0a:ce:06:37:91:b5:63: a2:01:1e:5d:08:d0:c3:e3:60:5d:90:df:10:58:b7: 7f:00:43:36:8b:c0:b9:bc:ad:3d:85:f6:63:fe:6b: d8:06:37:d4:eb:ea:ca:35:7c:88:9e:d7:ab:5b:64: 9a:08:99:33:8f:f7:45:8b:6f:20:52:87:76:a7:9b: 8e:1a:bf:7e:1b:c6:e5:fc:76:1a:b9:21:d6:9a:34: c4:10:4a:73:f8:47:af:d2:79:d4:2b:06:62:e4:d1: 17:45:c7:3a:9d:cd:8d:67:7a:12:79:9d:c3:78:dc: df:5b:bd:e4:af:f5:66:b7:ec:5c:e2:2b:c2:50:08: b4:95:ea:e2:45:a8:e6:9b:e2:24:3f:ac:a7:b7:51: 78:f2:d0:25:b5:40:c8:e3:33:c6:4c:1b:97:81:e1: ef:a5:6b:62:7c:ad:f8:38:d9:36:da:59:4d:72:a3: 3f:e4:1b:8c:58:b1:ad:b8:3d:72:f7:f4:1a:c4:69: 46:a2:de:fd:b1:7e:1c:25:9e:6f:fc:42:b4:23:72: 11:49:88:63:d4:20:95:99:30:d5:2a:05:1c:c7:a9: ee:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:61:80:6C:3F:FA:E5:3C:CA:7C:A6:0B:1B:20:F7:07:5D:C7:EA:F2 X509v3 Authority Key Identifier: keyid:41:D6:08:33:6C:CF:0E:DF:EA:4A:24:61:4F:1D:72:34:88:4E:89:91 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/QdYIM2zPDt_qSiRhTx1yNIhOiZE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QdYIM2zPDt_qSiRhTx1yNIhOiZE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/M2GAbD_65TzKfKYLGyD3B13H6vI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.79.151.0/24 Signature Algorithm: sha256WithRSAEncryption 67:40:fc:fb:0e:47:c4:1f:58:56:31:cd:2a:2e:f9:db:d1:17: 51:68:65:25:e4:80:b7:de:ae:ae:58:0f:fb:9b:44:02:3e:d0: 8e:d6:36:6d:48:c3:56:ee:1e:2a:65:d1:e7:11:61:a5:6c:25: 4d:af:9a:65:19:a8:a4:55:a1:83:36:a4:a2:6b:6e:00:45:06: ae:f8:cb:82:dd:73:96:01:6f:3a:87:20:2d:b3:b2:ae:10:ae: 9a:5d:0b:d4:c7:a8:38:04:02:73:7d:03:0a:25:a5:c1:b4:f0: f1:6e:d4:90:1a:31:cd:ed:28:ab:4b:00:0c:ef:15:b3:a8:ee: c6:f5:4d:4c:b4:56:30:c8:c2:25:9f:03:89:3a:38:98:d5:a7: b0:dd:79:04:82:1c:3d:93:33:20:8c:39:48:04:d5:cb:15:d2: be:bc:8d:9e:7c:e4:7d:2c:33:b9:7e:3c:02:dd:66:97:42:02: 6f:89:b4:1b:d7:01:67:95:a0:dd:91:06:80:38:b1:dc:39:9f: 8d:d4:ef:86:11:74:e6:64:d8:b5:cc:10:35:96:db:d1:72:96: d7:42:ce:26:47:c6:82:a7:13:c6:d4:20:94:bf:9b:74:a3:e0: 9e:c1:08:9e:68:f6:af:fc:71:59:6f:0c:13:6a:a4:d2:16:1b: d0:d2:6f:9b -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICATcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDFE NjA4MzM2Q0NGMEVERkVBNEEyNDYxNEYxRDcyMzQ4ODRFODk5MTAeFw0yNTAyMTAx MzQ1MDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMzNjE4MDZDM0ZGQUU1 M0NDQTdDQTYwQjFCMjBGNzA3NURDN0VBRjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDG/JDsOLTtHZu3HHJ8JyAIBdx6b4h4nyWBCaHdaOtpT9XD6QJT Cs4GN5G1Y6IBHl0I0MPjYF2Q3xBYt38AQzaLwLm8rT2F9mP+a9gGN9Tr6so1fIie 16tbZJoImTOP90WLbyBSh3anm44av34bxuX8dhq5IdaaNMQQSnP4R6/SedQrBmLk 0RdFxzqdzY1nehJ5ncN43N9bveSv9Wa37FziK8JQCLSV6uJFqOab4iQ/rKe3UXjy 0CW1QMjjM8ZMG5eB4e+la2J8rfg42TbaWU1yoz/kG4xYsa24PXL39BrEaUai3v2x fhwlnm/8QrQjchFJiGPUIJWZMNUqBRzHqe4dAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUM2GAbD/65TzKfKYLGyD3B13H6vIwHwYDVR0jBBgwFoAUQdYIM2zPDt/qSiRh Tx1yNIhOiZEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWkFUL1Fk WUlNMnpQRHRfcVNpUmhUeDF5TkloT2laRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UWRZSU0yelBEdF9xU2lSaFR4MXlOSWhPaVpFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvWkFUL00yR0FiRF82NVR6S2ZLWUxHeUQzQjEz SDZ2SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADST5cwDQYJ KoZIhvcNAQELBQADggEBAGdA/PsOR8QfWFYxzSou+dvRF1FoZSXkgLferq5YD/ub RAI+0I7WNm1Iw1buHipl0ecRYaVsJU2vmmUZqKRVoYM2pKJrbgBFBq74y4Ldc5YB bzqHIC2zsq4QrppdC9THqDgEAnN9AwolpcG08PFu1JAaMc3tKKtLAAzvFbOo7sb1 TUy0VjDIwiWfA4k6OJjVp7DdeQSCHD2TMyCMOUgE1csV0r68jZ585H0sM7l+PALd ZpdCAm+JtBvXAWeVoN2RBoA4sdw5n43U74YRdOZk2LXMEDWW29FyltdCziZHxoKn E8bUIJS/m3Sj4J7BCJ5o9q/8cVlvDBNqpNIWG9DSb5s= -----END CERTIFICATE-----Generated at Wed Feb 19 21:59:14 2025 by rpki-client