$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/dQA9fDsh7OCXDZIOZ66ldDg7Ru0.roa File: dQA9fDsh7OCXDZIOZ66ldDg7Ru0.roa (raw, json) Hash identifier: 8iGrgzv8wQb3J+ZMxTf9iAFBAK51k2VtLOmrQAXxcrc= Subject key identifier: 75:00:3D:7C:3B:21:EC:E0:97:0D:92:0E:67:AE:A5:74:38:3B:46:ED Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 127D Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/dQA9fDsh7OCXDZIOZ66ldDg7Ru0.roa Signing time: Mon 10 Feb 2025 14:28:28 +0000 ROA not before: Mon 10 Feb 2025 14:28:28 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131597 IP address blocks: 218.35.64.0/19 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4733 (0x127d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:28:28 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=75003D7C3B21ECE0970D920E67AEA574383B46ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:38:52:de:11:64:25:6e:50:12:8f:71:cd:cf: f8:b1:a7:e4:54:7a:35:1a:2b:86:f6:05:d5:36:69: 79:63:22:01:28:60:ef:fd:93:dd:2b:62:c3:3e:da: ff:75:7c:df:fc:4f:1e:bb:c8:c9:be:b9:dd:3f:4f: 45:13:62:af:58:e0:06:ce:0f:0b:f3:2f:35:e7:10: 4d:cd:34:2e:19:66:19:92:5f:cc:b4:d5:99:7d:88: 6f:f6:d9:a3:31:82:ba:f3:86:74:5f:09:d8:5c:c5: c3:2c:00:e8:6a:84:58:a3:06:d5:9f:28:c1:b6:64: 42:d6:da:c1:ed:ab:61:31:35:de:63:68:ec:7b:5f: c5:cf:c9:d1:9c:a9:3b:53:68:a3:9b:70:06:65:2a: cb:3f:85:38:b0:84:5b:15:31:41:12:d7:e6:04:a2: 20:28:ac:14:98:05:c0:46:a6:1e:97:59:68:bd:df: e1:6c:f5:39:8d:21:9e:66:f1:b5:97:4b:70:7f:d1: 84:15:6e:79:ae:a4:aa:d7:25:2d:98:40:f1:b0:6f: 73:87:2c:47:bf:b2:94:17:7a:ab:ff:13:ef:d6:39: 50:db:a6:f9:ec:99:2a:bd:d4:ae:91:c3:b3:84:4b: 4c:26:2c:dd:88:3f:7a:25:95:29:db:ce:40:32:9e: 6e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:00:3D:7C:3B:21:EC:E0:97:0D:92:0E:67:AE:A5:74:38:3B:46:ED X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/dQA9fDsh7OCXDZIOZ66ldDg7Ru0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.35.64.0/19 Signature Algorithm: sha256WithRSAEncryption c0:fd:42:d4:04:49:d7:61:40:6b:53:02:2f:8d:ed:30:ee:78: 1f:f2:26:46:12:61:26:94:0d:c3:aa:f6:95:86:87:bd:62:e3: dc:60:6e:37:f2:73:5c:66:96:ca:ed:ef:59:13:b2:16:6f:50: 26:c9:4d:d6:14:05:69:dd:25:bf:7c:c8:7e:2c:d3:ee:19:10: 7b:10:06:ce:f5:32:bb:05:2b:ad:cd:af:2c:4f:30:1f:f0:61: 99:f0:cc:e8:64:37:ac:e8:31:81:a4:1b:fd:55:5c:98:48:90: 9c:8e:85:67:d2:72:55:a1:c9:57:75:dd:7f:eb:74:b5:ab:5c: 7e:0d:98:84:0c:76:3b:5a:d5:61:23:33:2b:f4:89:7c:d6:e3: b5:a0:5d:bd:05:67:97:85:77:48:78:e5:4f:c3:39:25:fb:fc: 8e:7d:62:ca:4a:b8:a0:f4:88:c5:71:9e:c3:c7:2e:97:c4:c2: 12:4d:47:31:53:3d:72:2f:a1:58:11:6d:58:bd:3a:1a:53:f2: 92:50:07:d5:62:1a:77:ba:6c:3e:4f:8d:51:0d:a1:9b:c4:71: 12:f5:59:29:ce:a7:52:8b:df:1f:85:9b:b4:a8:69:a1:a6:c1: b4:de:ba:90:f5:9d:27:94:75:41:58:93:55:7f:5c:68:dd:db: 50:86:af:32 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEn0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI4MjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc1MDAzRDdDM0IyMUVD RTA5NzBEOTIwRTY3QUVBNTc0MzgzQjQ2RUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwOFLeEWQlblASj3HNz/ixp+RUejUaK4b2BdU2aXljIgEoYO/9 k90rYsM+2v91fN/8Tx67yMm+ud0/T0UTYq9Y4AbODwvzLzXnEE3NNC4ZZhmSX8y0 1Zl9iG/22aMxgrrzhnRfCdhcxcMsAOhqhFijBtWfKMG2ZELW2sHtq2ExNd5jaOx7 X8XPydGcqTtTaKObcAZlKss/hTiwhFsVMUES1+YEoiAorBSYBcBGph6XWWi93+Fs 9TmNIZ5m8bWXS3B/0YQVbnmupKrXJS2YQPGwb3OHLEe/spQXeqv/E+/WOVDbpvns mSq91K6Rw7OES0wmLN2IP3ollSnbzkAynm63AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUdQA9fDsh7OCXDZIOZ66ldDg7Ru0wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2RRQTlmRHNoN09DWERaSU9aNjZsZERn N1J1MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXaI0AwDQYJ KoZIhvcNAQELBQADggEBAMD9QtQESddhQGtTAi+N7TDueB/yJkYSYSaUDcOq9pWG h71i49xgbjfyc1xmlsrt71kTshZvUCbJTdYUBWndJb98yH4s0+4ZEHsQBs71MrsF K63NryxPMB/wYZnwzOhkN6zoMYGkG/1VXJhIkJyOhWfSclWhyVd13X/rdLWrXH4N mIQMdjta1WEjMyv0iXzW47WgXb0FZ5eFd0h45U/DOSX7/I59YspKuKD0iMVxnsPH LpfEwhJNRzFTPXIvoVgRbVi9OhpT8pJQB9ViGne6bD5PjVENoZvEcRL1WSnOp1KL 3x+Fm7SoaaGmwbTeupD1nSeUdUFYk1V/XGjd21CGrzI= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:36 2025 by rpki-client on console.sobornost.net