$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/c-fvlH32-j4aAUPjaIS0lgSaKj8.roa File: c-fvlH32-j4aAUPjaIS0lgSaKj8.roa (raw, json) Hash identifier: JIaDgwWMalPziajLxxgx01jT2yCVY8iBSIoJl6Do2Yc= Subject key identifier: 73:E7:EF:94:7D:F6:FA:3E:1A:01:43:E3:68:84:B4:96:04:9A:2A:3F Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Certificate serial: 0CF1 Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/c-fvlH32-j4aAUPjaIS0lgSaKj8.roa Signing time: Mon 10 Feb 2025 13:50:57 +0000 ROA not before: Mon 10 Feb 2025 13:50:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3949 IP address blocks: 122.255.94.16/28 maxlen: 28 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 16:49:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3313 (0xcf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Validity Not Before: Feb 10 13:50:57 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=73E7EF947DF6FA3E1A0143E36884B496049A2A3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c7:eb:78:28:8e:55:a2:82:ec:14:c1:1a:a1: 8d:25:1a:1f:c9:29:f8:d2:0e:50:f9:12:b8:52:4a: f1:32:b4:47:4c:03:07:35:0b:86:75:ce:ce:b2:60: e9:b8:8a:9f:53:99:d9:cc:c3:34:19:21:e2:38:01: 29:13:63:af:0f:a7:db:74:ec:0f:c6:53:d3:26:6f: fd:f7:e2:23:45:f5:ed:9b:74:10:43:dd:54:bd:05: ce:58:3f:16:a9:60:1a:e7:16:3b:cf:79:f1:0b:e1: a3:0c:c5:ab:b8:bf:2b:90:10:22:89:ef:5c:b8:c2: 9c:04:76:2a:13:0b:6d:de:12:c1:8e:2b:c0:da:03: 06:36:46:ae:ff:dd:5f:9a:98:1c:50:e2:36:0d:4e: 40:02:3c:3e:43:6f:e3:8d:06:8d:24:e5:c2:80:85: 8f:1b:51:1e:94:0b:5a:ab:cf:2e:6d:f7:9a:2e:3f: 39:ea:6e:6e:22:7a:98:96:6d:5f:96:02:4f:63:ec: 4e:fc:70:e0:fc:53:4b:72:5c:b4:9d:2d:37:d3:db: e3:6a:4b:7b:cc:8f:88:7c:ff:5b:bb:d0:1b:4c:b0: e4:16:56:cc:91:0c:f9:66:e1:13:03:17:49:46:e1: 4d:73:6c:f4:e4:a0:9a:80:1a:84:b3:48:34:b7:3f: 25:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:E7:EF:94:7D:F6:FA:3E:1A:01:43:E3:68:84:B4:96:04:9A:2A:3F X509v3 Authority Key Identifier: keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/c-fvlH32-j4aAUPjaIS0lgSaKj8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.255.94.16/28 Signature Algorithm: sha256WithRSAEncryption 30:4c:c3:b3:8c:d3:b3:52:a8:81:f9:33:df:8e:6f:6b:20:6c: c1:d6:d4:18:eb:41:65:0d:10:b8:77:4f:bc:45:0c:47:d0:92: fc:a0:99:b0:0e:e4:67:4d:9e:aa:df:d8:37:f1:1b:d8:bf:7c: 9b:1f:93:48:1d:39:63:b7:2e:c1:9a:85:c5:8c:c4:ec:77:df: 4e:dc:f7:63:1a:ed:d6:e1:d4:70:95:c7:05:8f:17:3d:be:91: 62:ca:e5:cd:36:4c:fd:5a:b9:c5:20:d5:79:ab:2c:f8:4d:65: a1:74:3c:76:fc:93:52:0b:44:ce:ac:ba:13:1b:73:15:f1:ae: da:01:b7:72:89:9e:a9:be:8d:23:01:7e:d3:8f:26:83:e0:60: 31:b0:51:c3:60:39:bd:93:4e:2c:5a:50:8c:50:8b:1f:31:fe: e9:39:7b:9a:dc:0c:8f:81:5c:5e:d6:68:8d:46:2e:c2:c2:6a: d9:5f:51:b7:33:0f:02:d0:30:4a:94:f0:36:53:6e:df:f3:f4: 9d:bc:bf:ae:97:9d:4c:d7:2d:cb:37:1a:56:c2:c4:d1:a2:41: de:60:cd:d6:5c:36:ba:92:d8:43:36:63:8d:c3:43:f1:bb:e8: 20:bc:70:34:e3:80:77:fc:ae:12:79:95:fe:2f:ab:f6:23:09: b9:8c:1f:02 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDPEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUy Njk3RkE3MDI1MkY4M0Y0MUQxMjFFQzBCNUNCNDU4QjZGRjIxNDAeFw0yNTAyMTAx MzUwNTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDczRTdFRjk0N0RGNkZB M0UxQTAxNDNFMzY4ODRCNDk2MDQ5QTJBM0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClx+t4KI5VooLsFMEaoY0lGh/JKfjSDlD5ErhSSvEytEdMAwc1 C4Z1zs6yYOm4ip9TmdnMwzQZIeI4ASkTY68Pp9t07A/GU9Mmb/334iNF9e2bdBBD 3VS9Bc5YPxapYBrnFjvPefEL4aMMxau4vyuQECKJ71y4wpwEdioTC23eEsGOK8Da AwY2Rq7/3V+amBxQ4jYNTkACPD5Db+ONBo0k5cKAhY8bUR6UC1qrzy5t95ouPznq bm4iepiWbV+WAk9j7E78cOD8U0tyXLSdLTfT2+NqS3vMj4h8/1u70BtMsOQWVsyR DPlm4RMDF0lG4U1zbPTkoJqAGoSzSDS3PyW/AgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUc+fvlH32+j4aAUPjaIS0lgSaKj8wHwYDVR0jBBgwFoAUniaX+nAlL4P0HRIe wLXLRYtv8hQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOVFQv bmlhWC1uQWxMNFAwSFJJZXdMWExSWXR2OGhRLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9uaWFYLW5BbEw0UDBIUklld0xYTFJZdHY4aFEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05UVC9jLWZ2bEgzMi1qNGFBVVBqYUlT MGxnU2FLajgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUEev9e EDANBgkqhkiG9w0BAQsFAAOCAQEAMEzDs4zTs1Kogfkz345vayBswdbUGOtBZQ0Q uHdPvEUMR9CS/KCZsA7kZ02eqt/YN/Eb2L98mx+TSB05Y7cuwZqFxYzE7HffTtz3 Yxrt1uHUcJXHBY8XPb6RYsrlzTZM/Vq5xSDVeass+E1loXQ8dvyTUgtEzqy6Extz FfGu2gG3comeqb6NIwF+048mg+BgMbBRw2A5vZNOLFpQjFCLHzH+6Tl7mtwMj4Fc XtZojUYuwsJq2V9RtzMPAtAwSpTwNlNu3/P0nby/rpedTNctyzcaVsLE0aJB3mDN 1lw2upLYQzZjjcND8bvoILxwNOOAd/yuEnmV/i+r9iMJuYwfAg== -----END CERTIFICATE-----Generated at Sat Apr 26 15:26:43 2025 by rpki-client