$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/33ttGQGMXoRoa3LelEQnUBrHuVM.roa File: 33ttGQGMXoRoa3LelEQnUBrHuVM.roa (raw, json) Hash identifier: rVP0fVDStlZkeBvhzPXsZhD7dyLFDwzDf/o6XnRGH4M= Subject key identifier: DF:7B:6D:19:01:8C:5E:84:68:6B:72:DE:94:44:27:50:1A:C7:B9:53 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0E01 Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/33ttGQGMXoRoa3LelEQnUBrHuVM.roa Signing time: Mon 10 Feb 2025 13:59:19 +0000 ROA not before: Mon 10 Feb 2025 13:59:19 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 211.78.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 16:49:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3585 (0xe01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Feb 10 13:59:19 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DF7B6D19018C5E84686B72DE944427501AC7B953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:af:60:99:1e:ed:56:45:1c:38:48:5d:78:3d: 7b:0d:09:fa:20:f8:47:c6:60:65:eb:0f:fe:ed:f1: 94:4b:4d:40:c2:61:90:07:89:02:7c:31:55:ab:31: ec:6b:2d:75:bc:10:97:6e:98:27:74:fc:bf:93:fc: 68:15:e3:fb:95:34:30:c0:f8:c3:89:63:38:d7:8d: c6:3e:8d:8d:73:9c:61:c5:74:17:db:e4:37:42:9c: b9:24:f3:cf:15:4b:b8:04:7a:47:f0:55:d0:d6:ec: c9:91:b5:4c:09:5e:e0:8a:0a:d5:ad:72:2c:f1:43: 3b:1f:12:3b:e9:88:ed:86:1b:91:55:81:12:39:7d: 54:45:67:b2:32:fc:a2:d3:e9:65:b4:1b:9a:32:c7: da:96:77:5f:4b:61:68:cd:34:88:56:fa:fd:82:67: fe:9e:86:c4:2e:e1:6d:dd:a4:e6:93:95:36:13:21: 4d:8a:c7:0e:39:77:2a:67:75:2f:02:1f:aa:bc:87: 41:eb:ff:f5:bd:42:16:dd:79:37:10:d5:9c:88:bf: ae:3e:97:f8:82:dd:69:45:dc:7c:c3:af:45:ae:64: 29:c2:a7:98:e6:6a:ce:46:f5:3e:ba:4f:94:2f:81: 0e:25:27:da:29:f4:30:ab:0e:d4:72:75:f3:d3:e8: 8b:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:7B:6D:19:01:8C:5E:84:68:6B:72:DE:94:44:27:50:1A:C7:B9:53 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/33ttGQGMXoRoa3LelEQnUBrHuVM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.78.0.0/18 Signature Algorithm: sha256WithRSAEncryption 4f:eb:5b:e9:31:29:c2:b5:53:a8:ae:65:84:fa:4d:9a:fa:b5: 5c:26:e3:7f:ad:c1:68:b2:26:dd:89:e3:1b:3c:af:c2:a1:ac: 65:ab:ba:f0:05:8e:40:c6:d1:6e:d1:1f:0b:43:bd:53:b7:9b: b7:62:40:3f:4d:b3:3e:60:0e:a0:45:e0:62:03:31:ee:6e:ed: 6c:ab:79:72:07:19:98:0b:e9:58:db:2d:ab:1b:61:a5:39:77: b0:20:51:78:5a:d9:a4:bb:8e:c7:74:a9:c3:5d:b1:6b:92:fc: 3b:f2:b2:5f:05:27:b4:30:6f:f6:88:eb:19:aa:55:67:51:a5: 70:e5:36:70:81:cf:1f:2c:c5:4e:d0:60:8f:cc:f6:cd:9a:a4: 19:7c:6c:b3:63:31:2d:2d:69:08:87:7d:17:b1:42:1e:44:75: 68:a9:c2:cd:ee:82:28:67:cf:de:91:72:cf:47:79:09:8a:4a: 1a:7c:e4:71:d0:41:bf:a2:c3:2d:27:4c:51:2b:8f:bf:5a:f0: 7d:1a:86:7a:42:25:7f:8d:61:c8:5c:11:1a:12:b0:43:34:98: b5:57:79:97:f6:aa:7c:69:ff:4e:6c:c2:61:7b:2d:58:b9:2a: 24:80:b5:ba:fa:92:1f:8a:59:08:8e:a8:8c:89:0d:0f:6f:64: 9c:cb:b0:a3 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDgEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNTAyMTAx MzU5MTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERGN0I2RDE5MDE4QzVF ODQ2ODZCNzJERTk0NDQyNzUwMUFDN0I5NTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCir2CZHu1WRRw4SF14PXsNCfog+EfGYGXrD/7t8ZRLTUDCYZAH iQJ8MVWrMexrLXW8EJdumCd0/L+T/GgV4/uVNDDA+MOJYzjXjcY+jY1znGHFdBfb 5DdCnLkk888VS7gEekfwVdDW7MmRtUwJXuCKCtWtcizxQzsfEjvpiO2GG5FVgRI5 fVRFZ7Iy/KLT6WW0G5oyx9qWd19LYWjNNIhW+v2CZ/6ehsQu4W3dpOaTlTYTIU2K xw45dypndS8CH6q8h0Hr//W9QhbdeTcQ1ZyIv64+l/iC3WlF3HzDr0WuZCnCp5jm as5G9T66T5QvgQ4lJ9op9DCrDtRydfPT6IuxAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU33ttGQGMXoRoa3LelEQnUBrHuVMwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dULzMzdHRHUUdNWG9Sb2EzTGVsRVFuVUJy SHVWTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbTTgAwDQYJ KoZIhvcNAQELBQADggEBAE/rW+kxKcK1U6iuZYT6TZr6tVwm43+twWiyJt2J4xs8 r8KhrGWruvAFjkDG0W7RHwtDvVO3m7diQD9Nsz5gDqBF4GIDMe5u7WyreXIHGZgL 6VjbLasbYaU5d7AgUXha2aS7jsd0qcNdsWuS/Dvysl8FJ7Qwb/aI6xmqVWdRpXDl NnCBzx8sxU7QYI/M9s2apBl8bLNjMS0taQiHfRexQh5EdWipws3ugihnz96Rcs9H eQmKShp85HHQQb+iwy0nTFErj79a8H0ahnpCJX+NYchcERoSsEM0mLVXeZf2qnxp /05swmF7LVi5KiSAtbr6kh+KWQiOqIyJDQ9vZJzLsKM= -----END CERTIFICATE-----Generated at Sat Apr 26 14:42:11 2025 by rpki-client