$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ER2JgaksnTleVF4UcY3-8a6O07s.roa File: ER2JgaksnTleVF4UcY3-8a6O07s.roa (raw, json) Hash identifier: NxVGNGrwDqTFSck4Y4pB7J+DdeAaoqHE1IpgjHSgvWg= Subject key identifier: 11:1D:89:81:A9:2C:9D:39:5E:54:5E:14:71:8D:FE:F1:AE:8E:D3:BB Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 127A Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ER2JgaksnTleVF4UcY3-8a6O07s.roa Signing time: Mon 10 Feb 2025 14:14:53 +0000 ROA not before: Mon 10 Feb 2025 14:14:53 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131627 IP address blocks: 150.116.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4730 (0x127a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Feb 10 14:14:53 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=111D8981A92C9D395E545E14718DFEF1AE8ED3BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:28:d9:c5:79:46:ed:f3:66:8e:e9:59:f9:8a: 2a:98:35:3b:c5:21:b3:3a:c6:df:65:4a:64:44:9d: e0:17:d1:a7:a1:95:3f:59:3e:04:1b:57:64:03:6a: 0d:d7:d9:8b:1d:91:d8:63:17:b2:2f:a5:e1:b8:fe: 61:a2:7a:91:42:c8:73:5a:9e:2b:3a:92:ed:e2:5f: 49:3e:d2:8a:be:92:6e:c5:20:18:88:26:63:73:a2: 86:eb:f1:07:13:b1:86:f9:35:8c:8b:a1:66:56:ce: 5d:da:4a:e1:ca:65:e8:7d:a9:cd:1c:dd:72:6b:4b: bd:46:4c:6b:fa:32:12:2f:70:0f:78:5f:2a:76:c3: 4e:9e:da:01:52:b5:13:94:93:51:2f:ef:af:ef:52: 74:64:4a:ba:de:97:98:75:ed:aa:1a:7f:f0:eb:30: d0:a9:72:8c:ae:17:70:71:f2:fe:8a:43:a7:dd:fc: f9:c3:9d:c6:19:9b:bf:b6:a0:3e:18:8d:ef:70:31: c5:15:b2:a4:f1:e7:97:5e:18:51:c9:e3:d8:6b:0d: 52:8b:10:26:4a:b2:c0:9d:28:23:0b:f7:36:68:3c: c4:5a:11:db:c9:59:a5:83:a5:12:23:cf:55:ea:af: ef:33:53:d2:33:fe:9b:ee:77:f7:a0:08:5b:cd:d9: b0:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:1D:89:81:A9:2C:9D:39:5E:54:5E:14:71:8D:FE:F1:AE:8E:D3:BB X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ER2JgaksnTleVF4UcY3-8a6O07s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.64.0/20 Signature Algorithm: sha256WithRSAEncryption 4c:30:88:91:a6:db:1a:d7:fb:f8:7b:56:1c:a1:71:a0:83:71: c2:98:2d:b0:b2:0e:b3:74:40:ca:f4:2e:7c:04:2a:3a:3a:69: ec:66:a3:55:58:41:e7:35:62:3d:be:66:12:c6:f0:54:f0:b1: d8:e9:bc:4d:6c:4b:62:32:13:77:ba:96:0b:86:16:f5:ac:61: 4b:c4:e0:ee:dc:be:11:ef:45:bd:68:51:9d:d6:81:3e:db:9e: fc:9a:67:44:20:25:d9:63:76:ac:a5:b7:29:40:01:87:06:bb: 9b:c5:18:4a:c4:20:81:57:1d:e6:cd:96:7b:4e:24:ef:d0:c1: 59:8b:dc:2e:e8:36:fa:e4:9e:0b:23:4f:7e:3f:0e:3d:14:bd: d3:87:fa:7b:8f:d6:bd:6e:cc:a6:4e:79:74:34:c8:08:8e:e3: a7:e6:33:58:1c:02:62:41:3c:81:76:2d:b0:6b:85:c6:a4:99: 9e:cb:5b:76:52:21:38:3d:3c:45:6d:7c:0d:cb:be:a9:11:e7: 08:ae:e2:f7:3d:a9:d8:31:82:82:d8:f9:2a:af:ca:5f:20:a0: bc:e1:82:77:45:67:27:32:d8:7a:78:7b:71:70:ce:9c:ae:29: 77:a9:c4:3b:74:e9:df:04:7c:68:31:db:4d:ae:fe:ce:d8:6e: f4:fc:ca:f4 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEnowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTAyMTAx NDE0NTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDExMUQ4OTgxQTkyQzlE Mzk1RTU0NUUxNDcxOERGRUYxQUU4RUQzQkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6KNnFeUbt82aO6Vn5iiqYNTvFIbM6xt9lSmREneAX0aehlT9Z PgQbV2QDag3X2YsdkdhjF7IvpeG4/mGiepFCyHNanis6ku3iX0k+0oq+km7FIBiI JmNzoobr8QcTsYb5NYyLoWZWzl3aSuHKZeh9qc0c3XJrS71GTGv6MhIvcA94Xyp2 w06e2gFStROUk1Ev76/vUnRkSrrel5h17aoaf/DrMNCpcoyuF3Bx8v6KQ6fd/PnD ncYZm7+2oD4Yje9wMcUVsqTx55deGFHJ49hrDVKLECZKssCdKCML9zZoPMRaEdvJ WaWDpRIjz1Xqr+8zU9Iz/pvud/egCFvN2bBlAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUER2JgaksnTleVF4UcY3+8a6O07swHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9FUjJKZ2Frc25UbGVW RjRVY1kzLThhNk8wN3Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQElnRAMA0GCSqGSIb3DQEBCwUAA4IBAQBMMIiRptsa1/v4e1YcoXGgg3HCmC2w sg6zdEDK9C58BCo6OmnsZqNVWEHnNWI9vmYSxvBU8LHY6bxNbEtiMhN3upYLhhb1 rGFLxODu3L4R70W9aFGd1oE+2578mmdEICXZY3aspbcpQAGHBrubxRhKxCCBVx3m zZZ7TiTv0MFZi9wu6Db65J4LI09+Pw49FL3Th/p7j9a9bsymTnl0NMgIjuOn5jNY HAJiQTyBdi2wa4XGpJmey1t2UiE4PTxFbXwNy76pEecIruL3PanYMYKC2Pkqr8pf IKC84YJ3RWcnMth6eHtxcM6cril3qcQ7dOnfBHxoMdtNrv7O2G70/Mr0 -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:34 2025 by rpki-client on console.sobornost.net