$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/zjvgvnhVZXwWhgqMwBYcRuhwfLQ.roa File: zjvgvnhVZXwWhgqMwBYcRuhwfLQ.roa (raw, json) Hash identifier: WxO+PmRoHksiyPLu2ThS3G7vpsNbAqXFJqcg7m56MX0= Subject key identifier: CE:3B:E0:BE:78:55:65:7C:16:86:0A:8C:C0:16:1C:46:E8:70:7C:B4 Certificate issuer: /CN=44F8DCF66B25B719056D1ED65C16EA9257E5553D Certificate serial: 048C Authority key identifier: 44:F8:DC:F6:6B:25:B7:19:05:6D:1E:D6:5C:16:EA:92:57:E5:55:3D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RPjc9msltxkFbR7WXBbqklflVT0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/zjvgvnhVZXwWhgqMwBYcRuhwfLQ.roa Signing time: Thu 08 May 2025 08:54:26 +0000 ROA not before: Thu 08 May 2025 08:54:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38855 IP address blocks: 160.30.78.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/RPjc9msltxkFbR7WXBbqklflVT0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/RPjc9msltxkFbR7WXBbqklflVT0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RPjc9msltxkFbR7WXBbqklflVT0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 09 May 2025 21:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1164 (0x48c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44F8DCF66B25B719056D1ED65C16EA9257E5553D Validity Not Before: May 8 08:54:26 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CE3BE0BE7855657C16860A8CC0161C46E8707CB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a7:23:91:75:ce:a1:f3:d2:83:5d:77:d6:2e: e4:a4:b8:eb:53:94:44:06:3d:ca:0a:70:8a:8c:60: 06:a2:f9:4a:bd:32:8f:96:31:b2:9d:e1:04:99:e6: 12:23:8f:d2:96:19:aa:ec:c4:f7:69:0c:00:70:46: 89:57:5f:b9:14:41:4e:1b:a2:ed:78:c9:7e:a6:ae: fd:73:b2:64:71:ea:55:00:fe:19:8b:f8:c4:6c:2f: 8d:66:a6:63:b0:0b:de:36:6f:77:76:6f:cc:7c:20: d3:71:bd:84:44:9e:9e:4c:4e:5a:8b:60:be:7c:4b: b3:46:2e:cd:6a:d5:6a:5a:57:eb:56:8a:cf:d9:f1: e5:5e:08:7c:ba:b2:b8:03:9a:a8:20:f4:36:c7:57: 81:8a:a6:b0:58:75:51:73:0c:5e:60:be:d4:9a:65: a9:40:18:c9:2c:af:fd:68:1a:ba:68:2f:52:97:2d: dc:f0:50:c5:86:00:d0:bb:bc:b1:41:4e:3c:1b:44: 4b:0b:f8:2b:31:3b:c6:5a:71:09:7b:d8:c1:a0:dc: 21:b4:a4:3c:31:34:02:45:d5:66:3b:8c:12:ab:f2: 41:a7:9f:ea:66:be:d6:78:ba:83:e1:6d:5e:11:b4: c7:12:c0:c0:ce:aa:17:c0:5b:e4:ac:32:65:6c:8b: 0a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:3B:E0:BE:78:55:65:7C:16:86:0A:8C:C0:16:1C:46:E8:70:7C:B4 X509v3 Authority Key Identifier: keyid:44:F8:DC:F6:6B:25:B7:19:05:6D:1E:D6:5C:16:EA:92:57:E5:55:3D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/RPjc9msltxkFbR7WXBbqklflVT0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RPjc9msltxkFbR7WXBbqklflVT0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/zjvgvnhVZXwWhgqMwBYcRuhwfLQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.30.78.0/23 Signature Algorithm: sha256WithRSAEncryption c1:18:b9:b3:37:aa:d1:4a:c9:89:ba:58:ca:bb:57:3f:7c:fc: 36:5c:ac:f1:58:d2:74:f2:3f:f3:f9:c1:0c:42:50:99:f9:d3: ea:2c:e8:2e:39:2f:5c:ce:a3:95:c0:a4:a4:68:be:9e:a8:d5: 46:86:39:0f:0a:e8:83:1d:c0:7e:0e:a5:ff:fc:04:79:0e:7e: 43:5a:06:e9:6a:b6:d8:0d:11:c4:4d:77:b0:8f:f2:ac:a5:d6: 2b:97:e0:41:0e:dc:e8:b7:03:d8:10:1a:36:b2:84:44:7f:e5: 57:ca:f9:91:c5:84:52:f3:47:c2:b8:12:c5:31:60:ea:28:3c: 19:fc:13:47:97:e6:d1:1c:ec:39:77:2f:ad:4d:56:1f:e1:ea: 15:7f:5c:df:ba:72:8e:f4:09:e6:56:4c:6d:29:b4:a8:9f:19: 7d:83:12:01:e8:35:95:3b:c9:7c:11:cd:32:45:17:31:4c:31: df:62:27:b4:cf:fb:cc:a9:61:16:13:c7:fc:6d:87:b5:05:14: 02:d6:52:6b:e4:17:6c:90:ee:ae:58:6d:b2:a7:95:ea:37:13: 94:4d:81:5e:48:00:0b:da:c3:1f:7e:51:c1:35:0a:f8:c3:45: b8:17:24:b6:b6:ef:95:4a:a2:6c:17:6d:a2:9b:e9:d9:4d:ef: 76:1d:87:55 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBIwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDRG OERDRjY2QjI1QjcxOTA1NkQxRUQ2NUMxNkVBOTI1N0U1NTUzRDAeFw0yNTA1MDgw ODU0MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENFM0JFMEJFNzg1NTY1 N0MxNjg2MEE4Q0MwMTYxQzQ2RTg3MDdDQjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDApyORdc6h89KDXXfWLuSkuOtTlEQGPcoKcIqMYAai+Uq9Mo+W MbKd4QSZ5hIjj9KWGarsxPdpDABwRolXX7kUQU4bou14yX6mrv1zsmRx6lUA/hmL +MRsL41mpmOwC942b3d2b8x8INNxvYREnp5MTlqLYL58S7NGLs1q1WpaV+tWis/Z 8eVeCHy6srgDmqgg9DbHV4GKprBYdVFzDF5gvtSaZalAGMksr/1oGrpoL1KXLdzw UMWGANC7vLFBTjwbREsL+CsxO8ZacQl72MGg3CG0pDwxNAJF1WY7jBKr8kGnn+pm vtZ4uoPhbV4RtMcSwMDOqhfAW+SsMmVsiwoBAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUzjvgvnhVZXwWhgqMwBYcRuhwfLQwHwYDVR0jBBgwFoAURPjc9msltxkFbR7W XBbqklflVT0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVJRE9V L1JQamM5bXNsdHhrRmJSN1dYQmJxa2xmbFZUMC5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvUlBqYzltc2x0eGtGYlI3V1hCYnFrbGZsVlQwLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVJRE9VL3pqdmd2bmhWWlh3V2hncU13 QlljUnVod2ZMUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGg Hk4wDQYJKoZIhvcNAQELBQADggEBAMEYubM3qtFKyYm6WMq7Vz98/DZcrPFY0nTy P/P5wQxCUJn50+os6C45L1zOo5XApKRovp6o1UaGOQ8K6IMdwH4Opf/8BHkOfkNa BulqttgNEcRNd7CP8qyl1iuX4EEO3Oi3A9gQGjayhER/5VfK+ZHFhFLzR8K4EsUx YOooPBn8E0eX5tEc7Dl3L61NVh/h6hV/XN+6co70CeZWTG0ptKifGX2DEgHoNZU7 yXwRzTJFFzFMMd9iJ7TP+8ypYRYTx/xth7UFFALWUmvkF2yQ7q5YbbKnleo3E5RN gV5IAAvawx9+UcE1CvjDRbgXJLa275VKomwXbaKb6dlN73Ydh1U= -----END CERTIFICATE-----Generated at Fri May 9 20:38:02 2025 by rpki-client