$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/7uzT5j8ycMqa2YbtnWCqmq15pFc.roa File: 7uzT5j8ycMqa2YbtnWCqmq15pFc.roa (raw, json) Hash identifier: hCcnQLRUfbKWLOJpuFDrUqS1w4VWAtrGdNX/us8qShQ= Subject key identifier: EE:EC:D3:E6:3F:32:70:CA:9A:D9:86:ED:9D:60:AA:9A:AD:79:A4:57 Certificate issuer: /CN=9E454EA69C0249FFAB072242AEDD882821269838 Certificate serial: 01C9 Authority key identifier: 9E:45:4E:A6:9C:02:49:FF:AB:07:22:42:AE:DD:88:28:21:26:98:38 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/nkVOppwCSf-rByJCrt2IKCEmmDg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/7uzT5j8ycMqa2YbtnWCqmq15pFc.roa Signing time: Tue 29 Apr 2025 14:35:35 +0000 ROA not before: Tue 29 Apr 2025 14:35:35 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 150756 IP address blocks: 203.99.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/nkVOppwCSf-rByJCrt2IKCEmmDg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/nkVOppwCSf-rByJCrt2IKCEmmDg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/nkVOppwCSf-rByJCrt2IKCEmmDg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 20:52:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 457 (0x1c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E454EA69C0249FFAB072242AEDD882821269838 Validity Not Before: Apr 29 14:35:35 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EEECD3E63F3270CA9AD986ED9D60AA9AAD79A457 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e6:bd:31:9f:e8:ab:e8:b5:47:31:c7:67:32: 1f:ec:8e:2a:d5:64:f7:66:d7:2b:ab:ac:25:a4:44: 9c:1b:6d:e5:df:9f:94:ab:53:49:81:f8:4e:01:1a: aa:9e:44:41:80:1e:ce:fb:64:9b:f1:d5:b7:08:6a: be:61:d3:40:4d:8b:74:11:83:da:95:ae:ee:4c:7c: 08:29:61:09:63:2c:1d:88:d4:ff:5f:db:5f:99:8d: 2f:33:8d:a5:f5:71:7a:8d:02:9a:b5:97:fb:32:b8: 4d:51:4d:26:42:76:a6:06:57:72:65:78:54:24:30: ab:66:3c:88:b5:d4:34:b3:45:52:a5:ff:f5:7b:e7: 14:95:79:92:7f:02:48:da:94:f5:59:b9:b1:71:52: d8:04:fb:88:7e:ac:65:42:22:18:75:6e:58:93:3b: 45:21:e5:fe:85:4f:92:94:ec:9f:d4:7c:f0:74:7f: 28:87:9b:9f:4b:06:81:de:e1:8f:8a:d5:61:d0:3a: 22:0d:6a:23:13:91:fe:19:0a:00:56:4e:b4:74:52: 98:e4:3f:5a:49:df:07:bd:a5:0e:29:3e:86:8c:22: 9e:33:49:e9:b8:78:a2:25:49:31:1d:0b:9e:ab:dd: 76:50:b7:ce:91:4a:c3:59:f6:89:46:25:ba:61:33: 30:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:EC:D3:E6:3F:32:70:CA:9A:D9:86:ED:9D:60:AA:9A:AD:79:A4:57 X509v3 Authority Key Identifier: keyid:9E:45:4E:A6:9C:02:49:FF:AB:07:22:42:AE:DD:88:28:21:26:98:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/nkVOppwCSf-rByJCrt2IKCEmmDg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/nkVOppwCSf-rByJCrt2IKCEmmDg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/7uzT5j8ycMqa2YbtnWCqmq15pFc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.99.146.0/24 Signature Algorithm: sha256WithRSAEncryption b5:89:e2:68:7e:6f:e2:62:e8:87:01:24:19:e1:db:62:52:f5: cf:d1:41:d1:5d:b3:5f:b4:a7:e7:b0:7f:36:a0:84:90:1f:2e: 63:b8:a7:e9:72:2a:34:f2:a0:4c:80:d8:2a:77:bc:b4:71:a0: 53:47:1b:82:63:72:06:64:ca:6c:4d:63:3d:8e:07:e7:0f:b5: a5:f6:5d:55:ac:1b:b9:62:69:03:51:13:ea:92:d6:08:17:db: 6b:22:e5:a5:f1:bd:ca:b1:d9:1d:5c:6a:54:1f:90:fd:27:91: d9:7d:0a:7c:39:9d:b0:ba:65:9c:11:51:d7:2c:10:ef:e0:d8: 7a:b8:28:9f:2b:73:e1:30:f1:ae:52:14:29:89:6a:c0:72:b5: 1e:d0:1c:6c:0f:c4:ba:62:bf:67:b9:43:c5:a9:54:91:4a:67: de:2e:56:90:f3:21:5c:b6:97:f7:05:4d:2e:a4:d3:1d:bb:97: ec:58:f1:a8:fc:51:f3:8f:4d:27:b0:dd:cf:75:56:2f:e7:4c: 11:96:0a:27:e6:c7:86:b8:75:b9:d7:e7:36:ac:ac:cd:44:26: d4:34:0d:e4:1c:f6:83:f3:3f:10:ae:f5:ea:4b:c0:37:42:ab: d2:c5:1e:68:0b:bd:6c:12:d8:b0:1f:22:c1:c5:e7:54:2d:56: 8c:4e:b9:d1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICAckwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUU0 NTRFQTY5QzAyNDlGRkFCMDcyMjQyQUVERDg4MjgyMTI2OTgzODAeFw0yNTA0Mjkx NDM1MzVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVFRUNEM0U2M0YzMjcw Q0E5QUQ5ODZFRDlENjBBQTlBQUQ3OUE0NTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDR5r0xn+ir6LVHMcdnMh/sjirVZPdm1yurrCWkRJwbbeXfn5Sr U0mB+E4BGqqeREGAHs77ZJvx1bcIar5h00BNi3QRg9qVru5MfAgpYQljLB2I1P9f 21+ZjS8zjaX1cXqNApq1l/syuE1RTSZCdqYGV3JleFQkMKtmPIi11DSzRVKl//V7 5xSVeZJ/AkjalPVZubFxUtgE+4h+rGVCIhh1bliTO0Uh5f6FT5KU7J/UfPB0fyiH m59LBoHe4Y+K1WHQOiINaiMTkf4ZCgBWTrR0UpjkP1pJ3we9pQ4pPoaMIp4zSem4 eKIlSTEdC56r3XZQt86RSsNZ9olGJbphMzChAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU7uzT5j8ycMqa2YbtnWCqmq15pFcwHwYDVR0jBBgwFoAUnkVOppwCSf+rByJC rt2IKCEmmDgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkxPUFBZ L25rVk9wcHdDU2YtckJ5SkNydDJJS0NFbW1EZy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbmtWT3Bwd0NTZi1yQnlKQ3J0MklLQ0VtbURnLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkxPUFBZLzd1elQ1ajh5Y01xYTJZYnRu V0NxbXExNXBGYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADL Y5IwDQYJKoZIhvcNAQELBQADggEBALWJ4mh+b+Ji6IcBJBnh22JS9c/RQdFds1+0 p+ewfzaghJAfLmO4p+lyKjTyoEyA2Cp3vLRxoFNHG4JjcgZkymxNYz2OB+cPtaX2 XVWsG7liaQNRE+qS1ggX22si5aXxvcqx2R1calQfkP0nkdl9Cnw5nbC6ZZwRUdcs EO/g2Hq4KJ8rc+Ew8a5SFCmJasBytR7QHGwPxLpiv2e5Q8WpVJFKZ94uVpDzIVy2 l/cFTS6k0x27l+xY8aj8UfOPTSew3c91Vi/nTBGWCifmx4a4dbnX5zasrM1EJtQ0 DeQc9oPzPxCu9epLwDdCq9LFHmgLvWwS2LAfIsHF51QtVoxOudE= -----END CERTIFICATE-----Generated at Sat May 10 18:12:08 2025 by rpki-client