$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/_DLp1aYVm6VfKnF2szQEEwfIcVw.roa File: _DLp1aYVm6VfKnF2szQEEwfIcVw.roa (raw, json) Hash identifier: PQWNbufEx6fGkApqBrf0z4+5sziOs2tgmKYNFNNRr6k= Subject key identifier: FC:32:E9:D5:A6:15:9B:A5:5F:2A:71:76:B3:34:04:13:07:C8:71:5C Certificate issuer: /CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C Certificate serial: 0D56 Authority key identifier: 00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/_DLp1aYVm6VfKnF2szQEEwfIcVw.roa Signing time: Mon 10 Feb 2025 13:44:45 +0000 ROA not before: Mon 10 Feb 2025 13:44:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38047 IP address blocks: 2402:c340::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 16:49:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3414 (0xd56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C Validity Not Before: Feb 10 13:44:45 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FC32E9D5A6159BA55F2A7176B334041307C8715C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:60:94:a6:96:88:64:c1:08:97:0d:2e:a4:eb: cc:0d:05:b4:ba:6b:12:c8:c6:8b:47:7a:b9:01:c7: 21:72:59:42:64:ed:2a:d5:98:f3:d0:ed:c4:54:dd: 87:01:e4:36:ef:61:ef:29:ac:c4:ca:fe:07:f2:30: 50:fc:a0:9e:11:87:8f:91:a6:bc:42:6e:4f:8b:b0: 17:dc:ec:3d:0d:a4:8a:77:a3:13:06:03:fd:3f:4c: d4:b9:35:ab:ab:a7:57:29:b4:83:96:e1:26:a3:45: da:a9:83:c3:5a:81:23:92:d6:09:28:7f:63:fc:d6: 7c:31:ea:0a:4c:11:26:b2:69:09:40:20:d3:ba:64: ea:66:72:df:f9:a6:df:15:07:82:81:a0:3e:7a:56: 04:9c:a3:7c:fe:9c:a3:de:6a:c9:29:3d:d1:1d:cd: c7:e7:08:76:3c:39:36:57:d4:b0:91:ac:81:d8:7a: 90:27:23:b2:ad:75:00:c9:3d:31:1b:89:30:67:02: dd:20:09:9a:79:d2:57:57:9b:ac:9a:c0:cc:1a:a6: 5d:1e:77:24:fc:ea:ca:de:33:e4:2b:ce:34:31:63: 9b:fc:e4:60:8c:74:2c:a8:72:58:1e:96:4f:5d:b6: 0a:5f:94:0c:04:1f:73:55:ec:25:c0:f3:e1:64:b0: 76:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:32:E9:D5:A6:15:9B:A5:5F:2A:71:76:B3:34:04:13:07:C8:71:5C X509v3 Authority Key Identifier: keyid:00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/_DLp1aYVm6VfKnF2szQEEwfIcVw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:c340::/32 Signature Algorithm: sha256WithRSAEncryption 56:70:f1:39:b7:e4:85:2b:23:2c:a4:61:21:3a:40:bc:d4:be: c2:e5:a2:db:c2:b7:6a:f5:16:f9:f6:6b:b0:78:55:b8:7c:1a: bf:bb:d5:31:74:09:ef:52:12:7d:66:d4:47:15:eb:65:75:93: 9d:99:23:ed:be:24:c9:f9:52:fd:d8:2f:3f:0a:7e:4b:cd:ef: 3d:cb:37:fe:a7:01:1d:98:b3:30:d7:e9:2d:a6:3e:84:d4:30: ac:25:a7:d9:d5:69:bd:e9:b3:fd:9e:09:1b:26:81:c8:55:9b: 14:57:78:ca:0c:f9:82:9c:2c:1d:b3:c7:7a:75:50:a1:b4:01: 5e:de:59:e2:36:0b:0d:f7:b9:fa:85:aa:bd:dc:3c:07:44:67: f8:57:f9:02:2e:54:96:5d:ac:65:5f:5a:84:66:f8:bb:32:a8: 0d:ef:a9:22:b9:11:b4:e8:d5:69:51:1a:57:3e:8d:5b:4a:15: 77:30:33:2c:b3:9e:6f:a5:e8:8c:8c:87:3e:73:33:34:0d:e3: 11:6d:2d:d2:c7:fa:7f:bf:38:f1:dc:c6:95:0f:fc:ee:39:5e: ec:98:6f:61:00:ee:eb:df:bc:7a:13:35:d8:11:69:5f:35:54: 02:9c:a3:d0:11:5b:03:3f:c2:af:97:c4:fa:58:52:d4:1e:73: 88:4a:55:4a -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgICDVYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDA1 NzJFOTlDNjRFRDY1MkZBODFENTAxRUZBMTZDRjlENDRBRTk5QzAeFw0yNTAyMTAx MzQ0NDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZDMzJFOUQ1QTYxNTlC QTU1RjJBNzE3NkIzMzQwNDEzMDdDODcxNUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/YJSmlohkwQiXDS6k68wNBbS6axLIxotHerkBxyFyWUJk7SrV mPPQ7cRU3YcB5DbvYe8prMTK/gfyMFD8oJ4Rh4+RprxCbk+LsBfc7D0NpIp3oxMG A/0/TNS5Naurp1cptIOW4SajRdqpg8NagSOS1gkof2P81nwx6gpMESayaQlAINO6 ZOpmct/5pt8VB4KBoD56VgSco3z+nKPeaskpPdEdzcfnCHY8OTZX1LCRrIHYepAn I7KtdQDJPTEbiTBnAt0gCZp50ldXm6yawMwapl0edyT86sreM+QrzjQxY5v85GCM dCyoclgelk9dtgpflAwEH3NV7CXA8+FksHaFAgMBAAGjggH1MIIB8TAdBgNVHQ4E FgQU/DLp1aYVm6VfKnF2szQEEwfIcVwwHwYDVR0jBBgwFoAUAFcumcZO1lL6gdUB 76Fs+dRK6ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNI RU5HL0FGY3VtY1pPMWxMNmdkVUI3NkZzLWRSSzZady5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvQUZjdW1jWk8xbEw2Z2RVQjc2RnMtZFJLNlp3LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNIRU5HL19ETHAxYVlWbTZW ZktuRjJzelFFRXdmSWNWdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAkAsNAMA0GCSqGSIb3DQEBCwUAA4IBAQBWcPE5t+SFKyMspGEhOkC81L7C 5aLbwrdq9Rb59muweFW4fBq/u9UxdAnvUhJ9ZtRHFetldZOdmSPtviTJ+VL92C8/ Cn5Lze89yzf+pwEdmLMw1+ktpj6E1DCsJafZ1Wm96bP9ngkbJoHIVZsUV3jKDPmC nCwds8d6dVChtAFe3lniNgsN97n6haq93DwHRGf4V/kCLlSWXaxlX1qEZvi7MqgN 76kiuRG06NVpURpXPo1bShV3MDMss55vpeiMjIc+czM0DeMRbS3Sx/p/vzjx3MaV D/zuOV7smG9hAO7r37x6EzXYEWlfNVQCnKPQEVsDP8Kvl8T6WFLUHnOISlVK -----END CERTIFICATE-----Generated at Sat Apr 26 15:27:32 2025 by rpki-client