$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/a8gqUmolwitdIbdobUVnPtimEh0.roa File: a8gqUmolwitdIbdobUVnPtimEh0.roa (raw, json) Hash identifier: RsREZwJlikKlEZE/IcLqB/4qImc4yhcvEvy2vStma7k= Subject key identifier: 6B:C8:2A:52:6A:25:C2:2B:5D:21:B7:68:6D:45:67:3E:D8:A6:12:1D Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1265 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/a8gqUmolwitdIbdobUVnPtimEh0.roa Signing time: Mon 10 Feb 2025 14:28:22 +0000 ROA not before: Mon 10 Feb 2025 14:28:22 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7482 IP address blocks: 203.79.232.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4709 (0x1265) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:28:22 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6BC82A526A25C22B5D21B7686D45673ED8A6121D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:0b:16:88:24:41:59:4c:cf:4d:89:b0:35:5d: e0:7a:ad:7a:86:49:64:ac:22:c9:70:7e:dc:8a:02: f6:4d:e8:48:f1:71:de:a2:fd:08:b3:1f:ac:8d:80: 06:16:6d:fc:aa:ee:2d:91:db:30:86:17:a5:a0:8f: 34:9d:58:93:fd:72:3c:b6:1f:da:9c:25:d9:82:fe: 92:4f:14:b5:81:89:3d:0c:8d:9e:c6:08:3c:04:e2: a8:1c:d6:fe:86:7d:bf:f4:65:2b:f1:80:ee:a6:52: ad:42:88:60:ae:5e:a3:32:f2:76:d3:69:66:75:eb: 33:71:61:d5:a1:1f:26:cf:1e:9d:eb:f6:bb:f6:5c: a0:c6:0d:24:a7:c5:2d:f3:ef:d1:b2:93:e2:54:62: 2a:8a:25:c6:85:a1:74:d5:04:c3:db:c0:0f:68:3d: f1:f3:71:41:d5:61:00:20:e0:79:d6:90:8f:53:6b: b7:5a:6d:5c:a8:c5:15:33:4e:61:08:61:c6:ae:cb: 7f:2b:a8:32:48:eb:ae:0c:22:73:8c:19:35:94:b4: 50:d5:17:20:46:63:91:2a:24:6a:f3:fe:60:d0:02: 0e:9d:61:5b:44:a1:7f:e0:b6:3f:67:31:cc:2e:c8: ad:4e:18:dd:49:7d:89:e6:39:20:5d:9f:76:e8:c4: 60:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:C8:2A:52:6A:25:C2:2B:5D:21:B7:68:6D:45:67:3E:D8:A6:12:1D X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/a8gqUmolwitdIbdobUVnPtimEh0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.79.232.0/21 Signature Algorithm: sha256WithRSAEncryption 80:53:fc:72:bb:44:cd:d8:9f:06:57:8e:93:43:47:d3:f8:bc: 73:ef:2f:e3:9a:8b:a8:30:44:0d:d9:22:c5:1d:b5:bc:a0:13: c8:5f:e6:b9:65:33:5a:a7:39:0e:99:0e:f3:fd:9b:2b:9a:3a: e8:74:94:ad:1e:f9:2f:18:b9:be:80:de:71:71:6d:ec:ae:13: 70:07:7a:3b:47:71:d1:91:3e:a7:2b:ad:a3:ef:03:6e:5a:58: 18:2b:2a:ca:b6:36:f7:b7:eb:4f:13:7c:32:df:f8:1b:b3:14: 33:dd:78:73:f4:38:3b:fb:ef:39:dd:20:5a:db:95:f8:61:86: a5:38:af:63:ff:82:c7:e6:19:52:4f:14:25:9e:2d:ae:6e:83: 74:ec:7d:47:16:3e:99:d8:f6:29:81:fc:db:d0:e0:23:f6:3d: b0:9d:4c:6c:6c:9f:27:f7:e6:11:b4:a3:78:81:b4:be:a4:9c: 84:64:8d:1e:4a:3d:0c:f3:d1:86:bb:24:39:c4:0b:4f:c2:2b: ac:c3:5e:8b:59:40:8d:89:c6:13:2c:3d:ef:14:06:d3:64:9c: c6:92:4b:e8:10:18:55:9a:0d:42:65:91:ba:19:95:06:82:91: 14:8c:28:f2:98:cd:22:c4:1d:41:26:d0:ec:7d:a8:0c:ee:aa: 97:75:bf:3e -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEmUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI4MjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZCQzgyQTUyNkEyNUMy MkI1RDIxQjc2ODZENDU2NzNFRDhBNjEyMUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyCxaIJEFZTM9NibA1XeB6rXqGSWSsIslwftyKAvZN6Ejxcd6i /QizH6yNgAYWbfyq7i2R2zCGF6WgjzSdWJP9cjy2H9qcJdmC/pJPFLWBiT0MjZ7G CDwE4qgc1v6Gfb/0ZSvxgO6mUq1CiGCuXqMy8nbTaWZ16zNxYdWhHybPHp3r9rv2 XKDGDSSnxS3z79Gyk+JUYiqKJcaFoXTVBMPbwA9oPfHzcUHVYQAg4HnWkI9Ta7da bVyoxRUzTmEIYcauy38rqDJI664MInOMGTWUtFDVFyBGY5EqJGrz/mDQAg6dYVtE oX/gtj9nMcwuyK1OGN1JfYnmOSBdn3boxGAVAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUa8gqUmolwitdIbdobUVnPtimEh0wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2E4Z3FVbW9sd2l0ZEliZG9iVVZuUHRp bUVoMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPLT+gwDQYJ KoZIhvcNAQELBQADggEBAIBT/HK7RM3YnwZXjpNDR9P4vHPvL+Oai6gwRA3ZIsUd tbygE8hf5rllM1qnOQ6ZDvP9myuaOuh0lK0e+S8Yub6A3nFxbeyuE3AHejtHcdGR PqcrraPvA25aWBgrKsq2Nve3608TfDLf+BuzFDPdeHP0ODv77zndIFrblfhhhqU4 r2P/gsfmGVJPFCWeLa5ug3TsfUcWPpnY9imB/NvQ4CP2PbCdTGxsnyf35hG0o3iB tL6knIRkjR5KPQzz0Ya7JDnEC0/CK6zDXotZQI2JxhMsPe8UBtNknMaSS+gQGFWa DUJlkboZlQaCkRSMKPKYzSLEHUEm0Ox9qAzuqpd1vz4= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:36 2025 by rpki-client on console.sobornost.net