$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/KuraqfI9NQdXOz9bD3_ACmbdbyA.roa File: KuraqfI9NQdXOz9bD3_ACmbdbyA.roa (raw, json) Hash identifier: k3LXsyF2J3jvxVKkkUuejn/0Sir2UM48oXatjPFSpnw= Subject key identifier: 2A:EA:DA:A9:F2:3D:35:07:57:3B:3F:5B:0F:7F:C0:0A:66:DD:6F:20 Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9 Certificate serial: 0D1D Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/KuraqfI9NQdXOz9bD3_ACmbdbyA.roa Signing time: Mon 10 Feb 2025 14:23:28 +0000 ROA not before: Mon 10 Feb 2025 14:23:28 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131584 IP address blocks: 101.3.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 21:19:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3357 (0xd1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9 Validity Not Before: Feb 10 14:23:28 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2AEADAA9F23D3507573B3F5B0F7FC00A66DD6F20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:56:4f:13:67:41:a5:06:c3:cd:d4:15:30:35: fa:cb:68:ca:a3:a9:12:28:4f:2d:07:b9:5c:74:62: 98:6a:23:7f:f8:3a:0f:53:04:5e:8f:d6:48:06:3e: 1f:30:e5:d9:dc:10:6e:6d:a1:98:7f:ab:db:b2:17: 54:cf:2e:73:7d:60:ab:57:23:ac:e2:6e:b2:82:72: 8f:9b:a0:98:f2:09:3e:7c:b7:d2:d5:68:d8:13:e2: 0c:b2:6e:aa:07:6c:6d:43:44:12:61:9b:d7:b2:1f: 8f:0c:1f:a0:d9:69:9d:4e:06:75:03:2e:93:15:8a: 2d:9a:9b:9b:b0:ce:33:bb:41:d1:9e:25:7b:c7:34: e3:9f:4c:83:d1:1f:38:f0:b6:8b:34:27:bc:2c:84: 59:f5:c8:e1:e6:33:7e:85:f4:78:33:8c:56:4b:f7: fc:a7:5d:a6:f8:b4:31:12:e7:a3:74:95:fc:a2:cb: 59:ec:78:f5:aa:1f:6f:23:80:ce:05:3c:98:df:df: c2:b8:17:58:56:ab:8e:41:1f:f4:a2:a7:f0:59:9f: b7:cb:a3:e3:f0:bb:5b:1a:6d:57:51:a8:4d:1b:6c: 8b:97:05:9e:a1:8c:64:8d:02:45:07:61:3a:ce:6a: 66:19:00:1d:5e:70:2a:75:f0:dd:8e:1e:02:ad:e8: 05:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:EA:DA:A9:F2:3D:35:07:57:3B:3F:5B:0F:7F:C0:0A:66:DD:6F:20 X509v3 Authority Key Identifier: keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/KuraqfI9NQdXOz9bD3_ACmbdbyA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.3.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1f:fb:e6:db:d8:68:21:1f:21:3f:f1:34:c1:c3:2d:4f:fc:ef: 75:df:c5:ca:31:e8:de:cd:33:f2:25:e8:03:94:a4:75:c6:09: 1c:97:56:06:59:58:59:84:24:53:4f:26:ea:d5:d5:18:69:04: ad:bc:c1:0b:60:28:b9:55:47:18:20:e1:f8:af:d2:32:a9:f0: 4d:76:55:53:82:62:20:0d:42:92:81:a3:75:a4:36:62:e2:1f: 79:d6:30:a2:b0:75:5a:09:e8:a7:b0:63:09:86:f7:81:ca:2b: 91:c4:8d:9f:81:c6:f8:87:f5:c3:36:d8:ce:b3:5b:d7:35:29: aa:fe:2e:74:b4:68:6a:2a:1c:a8:3b:7e:db:1b:8d:8c:78:7f: d1:9f:bd:23:c6:9c:f2:b0:d4:5c:ee:89:76:e4:f1:01:f6:e6: d3:21:f2:d4:15:10:71:bd:7a:8e:68:98:ee:7b:90:d4:9d:20: cf:3a:94:95:ca:e1:30:94:f6:a4:f3:37:8f:06:b0:06:9e:57: 72:98:9f:db:db:e2:1a:3e:7d:7f:40:82:b5:b2:68:13:63:25: 60:87:b7:ae:6f:5c:60:1e:66:cf:3a:12:91:bd:e9:0e:57:24: 7f:06:b9:f1:0e:75:df:e0:b9:7f:c6:4b:48:31:7a:6f:21:2a: a2:d1:4e:79 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICDR0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREY1 NjczQTE5NzIxMjZFN0QyQ0M1RDRENTFCNDkxMDgzNDVCRjhDOTAeFw0yNTAyMTAx NDIzMjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJBRUFEQUE5RjIzRDM1 MDc1NzNCM0Y1QjBGN0ZDMDBBNjZERDZGMjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6Vk8TZ0GlBsPN1BUwNfrLaMqjqRIoTy0HuVx0YphqI3/4Og9T BF6P1kgGPh8w5dncEG5toZh/q9uyF1TPLnN9YKtXI6zibrKCco+boJjyCT58t9LV aNgT4gyybqoHbG1DRBJhm9eyH48MH6DZaZ1OBnUDLpMVii2am5uwzjO7QdGeJXvH NOOfTIPRHzjwtos0J7wshFn1yOHmM36F9HgzjFZL9/ynXab4tDES56N0lfyiy1ns ePWqH28jgM4FPJjf38K4F1hWq45BH/Sip/BZn7fLo+Pwu1sabVdRqE0bbIuXBZ6h jGSNAkUHYTrOamYZAB1ecCp18N2OHgKt6AURAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUKuraqfI9NQdXOz9bD3/ACmbdbyAwHwYDVR0jBBgwFoAU31ZzoZchJufSzF1N UbSRCDRb+MkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83 NzE2LzMxWnpvWmNoSnVmU3pGMU5VYlNSQ0RSYi1Nay5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvMzFaem9aY2hKdWZTekYxTlViU1JDRFJiLU1rLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83NzE2L0t1cmFxZkk5TlFk WE96OWJEM19BQ21iZGJ5QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBlAzANBgkqhkiG9w0BAQsFAAOCAQEAH/vm29hoIR8hP/E0wcMtT/zvdd/F yjHo3s0z8iXoA5SkdcYJHJdWBllYWYQkU08m6tXVGGkErbzBC2AouVVHGCDh+K/S MqnwTXZVU4JiIA1CkoGjdaQ2YuIfedYworB1Wgnop7BjCYb3gcorkcSNn4HG+If1 wzbYzrNb1zUpqv4udLRoaiocqDt+2xuNjHh/0Z+9I8ac8rDUXO6JduTxAfbm0yHy 1BUQcb16jmiY7nuQ1J0gzzqUlcrhMJT2pPM3jwawBp5Xcpif29viGj59f0CCtbJo E2MlYIe3rm9cYB5mzzoSkb3pDlckfwa58Q513+C5f8ZLSDF6byEqotFOeQ== -----END CERTIFICATE-----Generated at Sat Apr 26 20:16:35 2025 by rpki-client