$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/XlnDq0GPmriGegPsqufbyMLwwc0.roa File: XlnDq0GPmriGegPsqufbyMLwwc0.roa (raw, json) Hash identifier: Kvmv4n/fTv/7kk9KnZTfIP6y8DCIsdLkmqdfPQqjzY8= Subject key identifier: 5E:59:C3:AB:41:8F:9A:B8:86:7A:03:EC:AA:E7:DB:C8:C2:F0:C1:CD Certificate issuer: /CN=9E454EA69C0249FFAB072242AEDD882821269838 Certificate serial: 01C7 Authority key identifier: 9E:45:4E:A6:9C:02:49:FF:AB:07:22:42:AE:DD:88:28:21:26:98:38 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/nkVOppwCSf-rByJCrt2IKCEmmDg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/XlnDq0GPmriGegPsqufbyMLwwc0.roa Signing time: Tue 29 Apr 2025 14:33:43 +0000 ROA not before: Tue 29 Apr 2025 14:33:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 150756 IP address blocks: 203.99.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/nkVOppwCSf-rByJCrt2IKCEmmDg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/nkVOppwCSf-rByJCrt2IKCEmmDg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/nkVOppwCSf-rByJCrt2IKCEmmDg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 20:52:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 455 (0x1c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E454EA69C0249FFAB072242AEDD882821269838 Validity Not Before: Apr 29 14:33:43 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5E59C3AB418F9AB8867A03ECAAE7DBC8C2F0C1CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:fc:11:bf:e9:cb:14:f9:50:84:a7:10:63:47: f7:d7:2f:0e:a8:7a:8f:2e:a5:a3:57:89:b9:40:ff: 50:56:2a:c0:8b:c8:8f:6f:38:3e:c7:cf:bd:ba:70: 62:ba:36:28:b6:d9:56:1e:03:a8:d5:ac:ae:1d:24: 0e:25:41:16:4d:79:cf:73:3c:ba:3c:84:a0:b1:76: 98:77:d2:3c:c8:e4:b3:e4:62:d0:d2:b7:08:41:a9: 8e:d5:c4:59:88:16:71:1f:79:7b:c8:84:76:a1:5a: 75:64:56:70:63:9d:c2:f8:86:39:59:44:aa:30:15: cc:ac:24:24:cc:38:9c:42:98:83:16:80:d8:b5:f8: cc:81:0c:3a:04:4d:5f:cb:86:17:59:4d:ab:2f:65: 76:94:5d:8e:f7:b4:d9:5e:75:29:78:f4:d0:49:65: 47:7c:10:7f:3e:9c:af:b5:ea:a7:83:fb:6d:4c:b1: 75:72:7f:58:6c:8f:31:c6:41:2a:8f:63:5e:d3:aa: 6b:09:97:cf:fc:d5:5c:33:13:1a:5f:e3:24:87:8c: fa:2e:ed:7d:b7:57:70:cb:66:f0:fb:4b:62:17:8f: ea:2b:41:9f:57:01:ed:b4:cf:fa:22:17:28:39:0e: 3e:72:c7:7f:d7:77:a0:76:d3:4c:fb:bc:e5:70:9a: ca:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:59:C3:AB:41:8F:9A:B8:86:7A:03:EC:AA:E7:DB:C8:C2:F0:C1:CD X509v3 Authority Key Identifier: keyid:9E:45:4E:A6:9C:02:49:FF:AB:07:22:42:AE:DD:88:28:21:26:98:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/nkVOppwCSf-rByJCrt2IKCEmmDg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/nkVOppwCSf-rByJCrt2IKCEmmDg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/XlnDq0GPmriGegPsqufbyMLwwc0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.99.147.0/24 Signature Algorithm: sha256WithRSAEncryption 40:c0:31:3a:fe:ad:33:54:98:73:1d:40:93:45:43:d0:23:3e: 64:80:99:f5:ca:84:58:c5:94:9f:d1:5d:84:b8:b7:06:a2:e3: fc:07:f9:e5:37:f9:17:9b:7b:41:b3:36:40:40:7e:8d:41:9a: e1:d2:f7:df:09:a4:5c:c9:c0:20:35:0d:15:97:ca:78:9e:38: a6:3b:50:67:c1:35:57:32:15:e3:ca:22:4f:16:90:a3:98:f0: 88:1b:75:9f:fa:0a:e2:36:d9:03:fd:5d:5d:9c:a1:6c:0f:62: 31:d3:25:8d:d9:72:96:2c:fb:85:69:95:ec:a0:fe:a4:90:a8: 56:ab:53:fa:07:d5:df:aa:20:83:9e:e4:37:72:f2:fd:ef:63: 88:d1:15:8d:d4:d5:9f:7a:98:21:d6:c4:bb:1b:0f:80:95:1b: 29:a2:65:ae:ae:dd:be:68:aa:d1:14:a9:12:21:b6:28:f9:b7: 80:3c:bf:15:8c:4f:32:f3:15:5c:1d:13:46:c7:6d:3b:c6:db: 97:22:73:ea:b3:d0:86:dd:b1:a2:a4:6d:c4:de:2e:6a:ef:4a: c6:23:c8:7a:83:6e:d1:9b:ec:3a:ea:b8:62:d6:76:6b:63:01: 52:b2:d0:2f:3f:7c:0a:92:a9:90:78:71:cd:6b:36:fa:63:87: 16:bd:df:4a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICAccwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUU0 NTRFQTY5QzAyNDlGRkFCMDcyMjQyQUVERDg4MjgyMTI2OTgzODAeFw0yNTA0Mjkx NDMzNDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVFNTlDM0FCNDE4RjlB Qjg4NjdBMDNFQ0FBRTdEQkM4QzJGMEMxQ0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDT/BG/6csU+VCEpxBjR/fXLw6oeo8upaNXiblA/1BWKsCLyI9v OD7Hz726cGK6Nii22VYeA6jVrK4dJA4lQRZNec9zPLo8hKCxdph30jzI5LPkYtDS twhBqY7VxFmIFnEfeXvIhHahWnVkVnBjncL4hjlZRKowFcysJCTMOJxCmIMWgNi1 +MyBDDoETV/LhhdZTasvZXaUXY73tNledSl49NBJZUd8EH8+nK+16qeD+21MsXVy f1hsjzHGQSqPY17TqmsJl8/81VwzExpf4ySHjPou7X23V3DLZvD7S2IXj+orQZ9X Ae20z/oiFyg5Dj5yx3/Xd6B200z7vOVwmsoHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUXlnDq0GPmriGegPsqufbyMLwwc0wHwYDVR0jBBgwFoAUnkVOppwCSf+rByJC rt2IKCEmmDgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkxPUFBZ L25rVk9wcHdDU2YtckJ5SkNydDJJS0NFbW1EZy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbmtWT3Bwd0NTZi1yQnlKQ3J0MklLQ0VtbURnLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkxPUFBZL1hsbkRxMEdQbXJpR2VnUHNx dWZieU1Md3djMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADL Y5MwDQYJKoZIhvcNAQELBQADggEBAEDAMTr+rTNUmHMdQJNFQ9AjPmSAmfXKhFjF lJ/RXYS4twai4/wH+eU3+Rebe0GzNkBAfo1BmuHS998JpFzJwCA1DRWXynieOKY7 UGfBNVcyFePKIk8WkKOY8IgbdZ/6CuI22QP9XV2coWwPYjHTJY3ZcpYs+4Vpleyg /qSQqFarU/oH1d+qIIOe5Ddy8v3vY4jRFY3U1Z96mCHWxLsbD4CVGymiZa6u3b5o qtEUqRIhtij5t4A8vxWMTzLzFVwdE0bHbTvG25cic+qz0IbdsaKkbcTeLmrvSsYj yHqDbtGb7DrquGLWdmtjAVKy0C8/fAqSqZB4cc1rNvpjhxa930o= -----END CERTIFICATE-----Generated at Sat May 10 18:12:08 2025 by rpki-client