$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/0nQF7ar_qaGoL5Flc1VI7TN_lbI.roa File: 0nQF7ar_qaGoL5Flc1VI7TN_lbI.roa (raw, json) Hash identifier: Peh2wR1o6Ef8u/a1+Np3ZZyOCCX5iC+yDn3E3jSvOQg= Subject key identifier: D2:74:05:ED:AA:FF:A9:A1:A8:2F:91:65:73:55:48:ED:33:7F:95:B2 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1268 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/0nQF7ar_qaGoL5Flc1VI7TN_lbI.roa Signing time: Mon 10 Feb 2025 14:14:48 +0000 ROA not before: Mon 10 Feb 2025 14:14:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 10085 IP address blocks: 203.163.194.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4712 (0x1268) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Feb 10 14:14:48 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D27405EDAAFFA9A1A82F9165735548ED337F95B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d4:5a:8f:ab:ed:96:5a:44:bf:c0:15:26:10: 8b:dc:16:c3:d7:06:b7:9d:5d:1d:b4:2e:2a:55:f0: f7:da:9d:a0:5e:c7:6b:9a:75:aa:f7:86:97:8b:e5: a9:ee:47:38:3b:3a:07:5b:b0:10:ff:06:cb:ed:18: f9:65:83:0f:0d:f5:ed:be:a0:89:3e:29:c1:bf:cd: 59:31:02:18:1a:ab:4f:8f:3c:57:48:9b:de:81:a4: fb:d4:4d:7a:63:a9:0a:3d:cc:08:38:b8:cc:7d:0f: b5:cc:92:6d:08:0d:35:c1:11:e9:b9:8f:4d:30:93: da:a7:da:cc:2f:af:4f:8e:08:ce:35:c2:5d:aa:11: 3d:0e:cc:30:a7:f2:b4:98:32:0a:70:43:bf:bd:09: 26:fd:06:20:7a:a7:f8:76:6f:f1:e6:57:6f:5b:9f: 63:4c:f7:11:71:64:d7:27:54:6d:cc:74:76:a9:d6: e3:99:0a:60:6a:ff:ea:b4:43:42:09:65:75:44:54: 02:d9:6d:98:48:f1:46:d7:6d:83:ab:d2:7d:90:ca: 99:6a:d0:ed:77:b2:c0:11:ea:64:fe:98:93:35:50: f1:13:54:ef:d5:86:43:00:1d:65:af:3c:dc:ba:fa: e8:7f:de:1f:41:3f:10:71:89:38:a6:f7:5e:9c:b5: db:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:74:05:ED:AA:FF:A9:A1:A8:2F:91:65:73:55:48:ED:33:7F:95:B2 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/0nQF7ar_qaGoL5Flc1VI7TN_lbI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.163.194.0/23 Signature Algorithm: sha256WithRSAEncryption 84:7d:24:7a:36:3f:ef:59:53:c6:77:be:c0:78:28:b4:18:3e: 29:c5:8d:02:45:79:63:69:37:3a:47:14:35:b2:75:3c:f4:26: 71:15:bd:53:8d:a4:18:a3:07:73:e5:cc:91:be:8e:0e:ec:8c: 32:b4:d1:17:d0:e8:43:68:91:ac:d1:c5:2c:10:5d:fa:02:ce: 70:36:48:3c:f1:9c:11:81:d0:a8:84:16:c9:66:aa:f0:7a:bb: 7f:9f:5a:76:7c:3e:c4:d6:eb:b4:9c:66:b3:d6:22:30:f5:6f: 09:75:07:6b:34:65:e0:13:66:8b:6c:d4:06:6d:da:c2:30:f9: 3b:d1:a0:a7:46:c2:25:60:25:2d:a2:82:b3:56:f7:d1:e6:76: 03:33:fa:94:52:09:fd:3e:a3:a5:b2:37:37:b4:10:db:25:eb: 32:50:95:e8:ee:e7:72:c4:de:e8:2c:a7:51:0c:a8:09:04:a0: 3f:7e:c9:2f:3e:76:44:ad:e7:c1:68:b0:7a:13:84:44:60:b0: f0:75:7c:92:21:55:e2:be:8b:86:b9:ea:af:92:7c:f7:a9:53: 06:13:21:5e:90:e9:20:fc:fc:73:6f:6f:aa:39:a8:0f:80:83: 0e:90:5c:1c:d9:01:8a:73:fb:c9:06:75:16:f0:60:f4:50:3b: fb:f1:bb:8f -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEmgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTAyMTAx NDE0NDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQyNzQwNUVEQUFGRkE5 QTFBODJGOTE2NTczNTU0OEVEMzM3Rjk1QjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCz1FqPq+2WWkS/wBUmEIvcFsPXBredXR20LipV8PfanaBex2ua dar3hpeL5anuRzg7OgdbsBD/BsvtGPllgw8N9e2+oIk+KcG/zVkxAhgaq0+PPFdI m96BpPvUTXpjqQo9zAg4uMx9D7XMkm0IDTXBEem5j00wk9qn2swvr0+OCM41wl2q ET0OzDCn8rSYMgpwQ7+9CSb9BiB6p/h2b/HmV29bn2NM9xFxZNcnVG3MdHap1uOZ CmBq/+q0Q0IJZXVEVALZbZhI8UbXbYOr0n2Qyplq0O13ssAR6mT+mJM1UPETVO/V hkMAHWWvPNy6+uh/3h9BPxBxiTim916ctduzAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU0nQF7ar/qaGoL5Flc1VI7TN/lbIwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy8wblFGN2FyX3FhR29M NUZsYzFWSTdUTl9sYkkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBy6PCMA0GCSqGSIb3DQEBCwUAA4IBAQCEfSR6Nj/vWVPGd77AeCi0GD4pxY0C RXljaTc6RxQ1snU89CZxFb1TjaQYowdz5cyRvo4O7IwytNEX0OhDaJGs0cUsEF36 As5wNkg88ZwRgdCohBbJZqrwert/n1p2fD7E1uu0nGaz1iIw9W8JdQdrNGXgE2aL bNQGbdrCMPk70aCnRsIlYCUtooKzVvfR5nYDM/qUUgn9PqOlsjc3tBDbJesyUJXo 7udyxN7oLKdRDKgJBKA/fskvPnZErefBaLB6E4REYLDwdXySIVXivouGueqvknz3 qVMGEyFekOkg/Pxzb2+qOagPgIMOkFwc2QGKc/vJBnUW8GD0UDv78buP -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:34 2025 by rpki-client on console.sobornost.net