$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/sKRwI7JoeOSobq-aVV_mPwIJw2I.roa File: sKRwI7JoeOSobq-aVV_mPwIJw2I.roa (raw, json) Hash identifier: Bw9Ho2jTzj26OiIYtkw5PCCkpPb2HiMSNOPgZNRyoME= Subject key identifier: B0:A4:70:23:B2:68:78:E4:A8:6E:AF:9A:55:5F:E6:3F:02:09:C3:62 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 126C Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/sKRwI7JoeOSobq-aVV_mPwIJw2I.roa Signing time: Mon 10 Feb 2025 14:14:50 +0000 ROA not before: Mon 10 Feb 2025 14:14:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17408 IP address blocks: 223.26.70.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:19:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4716 (0x126c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Feb 10 14:14:50 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B0A47023B26878E4A86EAF9A555FE63F0209C362 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:5a:a4:6d:08:31:ee:70:c6:a0:34:ce:7a:c4: 2a:ae:ad:2c:10:23:3a:07:d7:1f:a9:b2:d5:1c:c0: 0a:dc:d9:06:c3:5a:2b:65:0f:72:08:37:15:47:82: ca:95:f2:30:3b:e7:b7:a8:23:e6:18:3d:00:9f:2a: 11:30:23:bc:d3:37:90:62:77:a8:94:ea:17:4e:36: 3a:66:88:1f:91:4c:44:aa:be:14:a6:d6:63:e6:b6: 8d:51:e9:11:13:75:e5:38:6b:49:4a:6a:9d:da:0f: 1c:3a:4b:06:a6:44:c9:a8:0f:46:03:cb:76:d4:92: 74:d9:80:a3:5b:db:8f:25:cc:23:0f:20:5b:1d:d7: 5b:ad:1e:8e:97:6b:7f:7d:4f:4c:16:39:99:10:63: 66:ea:e1:f7:a7:90:e0:53:6e:d2:45:58:1e:16:44: cd:ea:73:06:0f:09:c2:9e:c5:9f:af:02:77:f1:7c: 7e:12:cc:37:c7:33:08:d6:7b:c3:9b:78:69:30:d6: 5b:d8:15:b4:7c:99:c4:7d:58:1f:5a:71:13:db:7e: 30:fa:4b:0b:d0:b0:d4:51:ed:d9:04:ff:fa:7b:70: b6:ae:07:0d:b5:64:73:96:86:57:28:38:69:1f:a3: 62:65:f9:74:d9:f1:35:8e:00:bb:5c:bd:cc:33:4d: c2:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:A4:70:23:B2:68:78:E4:A8:6E:AF:9A:55:5F:E6:3F:02:09:C3:62 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/sKRwI7JoeOSobq-aVV_mPwIJw2I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.26.70.0/23 Signature Algorithm: sha256WithRSAEncryption b7:12:9c:f8:7c:23:a9:5d:75:e2:5f:53:3f:78:22:57:7f:87: 76:eb:8b:a8:50:f2:e9:5a:a0:9f:66:4a:d5:e4:6c:ae:7d:7e: 31:d6:0f:c1:5c:1f:42:5c:6c:95:b2:67:80:ab:a5:2f:e8:bc: d3:28:c3:e2:18:a7:ae:46:c2:99:0a:2f:25:57:e7:7f:86:0e: e4:77:11:48:88:65:dc:c0:f9:f8:e6:e5:bf:7b:51:73:0b:43: e1:9d:98:52:93:c4:e2:f8:67:76:69:8d:45:bd:21:b0:11:ae: b4:0d:3d:7a:fa:87:f4:2d:53:cd:fd:71:11:7c:15:bf:50:12: 50:31:4c:65:97:91:74:b0:c3:44:1c:03:45:1d:1e:0e:8d:e8: 48:fe:40:bd:87:63:f0:cb:e6:0d:bd:93:42:19:71:85:5d:7e: ac:6d:53:87:ae:ba:b8:1b:76:f3:ba:11:1c:8a:35:7a:e8:61: e7:d5:73:f1:0c:9b:c0:81:78:05:bf:2f:24:ef:5f:6d:7e:1d: 20:11:81:75:a0:89:91:dd:99:d8:ef:b5:d8:e2:6c:ec:74:37: f2:d9:a9:c6:0d:d1:d1:09:c1:d8:7b:0d:33:96:3e:55:48:97: bc:d3:fa:4f:d2:e9:7f:5e:f7:ed:11:59:f5:42:a9:8e:a2:df: d0:3c:4f:a8 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEmwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTAyMTAx NDE0NTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIwQTQ3MDIzQjI2ODc4 RTRBODZFQUY5QTU1NUZFNjNGMDIwOUMzNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjWqRtCDHucMagNM56xCqurSwQIzoH1x+pstUcwArc2QbDWitl D3IINxVHgsqV8jA757eoI+YYPQCfKhEwI7zTN5Bid6iU6hdONjpmiB+RTESqvhSm 1mPmto1R6RETdeU4a0lKap3aDxw6SwamRMmoD0YDy3bUknTZgKNb248lzCMPIFsd 11utHo6Xa399T0wWOZkQY2bq4fenkOBTbtJFWB4WRM3qcwYPCcKexZ+vAnfxfH4S zDfHMwjWe8ObeGkw1lvYFbR8mcR9WB9acRPbfjD6SwvQsNRR7dkE//p7cLauBw21 ZHOWhlcoOGkfo2Jl+XTZ8TWOALtcvcwzTcJ1AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUsKRwI7JoeOSobq+aVV/mPwIJw2IwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9zS1J3STdKb2VPU29i cS1hVlZfbVB3SUp3Mkkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQB3xpGMA0GCSqGSIb3DQEBCwUAA4IBAQC3Epz4fCOpXXXiX1M/eCJXf4d264uo UPLpWqCfZkrV5GyufX4x1g/BXB9CXGyVsmeAq6Uv6LzTKMPiGKeuRsKZCi8lV+d/ hg7kdxFIiGXcwPn45uW/e1FzC0PhnZhSk8Ti+Gd2aY1FvSGwEa60DT16+of0LVPN /XERfBW/UBJQMUxll5F0sMNEHANFHR4OjehI/kC9h2Pwy+YNvZNCGXGFXX6sbVOH rrq4G3bzuhEcijV66GHn1XPxDJvAgXgFvy8k719tfh0gEYF1oImR3ZnY77XY4mzs dDfy2anGDdHRCcHYew0zlj5VSJe80/pP0ul/XvftEVn1QqmOot/QPE+o -----END CERTIFICATE-----Generated at Sun Apr 27 21:44:55 2025 by rpki-client on console.sobornost.net