$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/idDqYNN5AILfICHDCGc9ApGHC2Y.roa File: idDqYNN5AILfICHDCGc9ApGHC2Y.roa (raw, json) Hash identifier: VyIA6n1h3forZ8D6t+let30A9tcuDr2QIwrBy3RDC8k= Subject key identifier: 89:D0:EA:60:D3:79:00:82:DF:20:21:C3:08:67:3D:02:91:87:0B:66 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1173 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/idDqYNN5AILfICHDCGc9ApGHC2Y.roa Signing time: Mon 10 Feb 2025 14:27:22 +0000 ROA not before: Mon 10 Feb 2025 14:27:22 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24154 IP address blocks: 222.156.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4467 (0x1173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:27:22 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=89D0EA60D3790082DF2021C308673D0291870B66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:69:ac:5b:8d:1e:53:e1:a3:0b:32:c3:77:6a: f3:89:5b:98:ca:69:15:4d:8f:5b:df:51:ed:eb:88: ba:06:8a:23:fa:9a:a3:13:3b:f3:04:b1:c5:b5:e7: ae:b1:56:b9:8b:62:65:c8:b4:c2:c5:8a:43:9d:b3: 5c:ce:bd:f3:7a:bc:48:16:2f:07:37:55:2d:9e:41: 01:0d:58:21:ff:fd:27:a7:4a:cd:f9:dc:5a:b7:4a: b0:70:f2:c5:de:32:8c:01:31:34:38:89:09:be:47: 80:fb:0d:e6:17:cf:83:b6:33:5c:90:b7:ed:e2:a8: 38:5d:76:db:26:30:4c:e4:37:f2:45:90:c1:51:67: 5f:39:33:dd:fe:5d:d4:00:64:7d:a2:cf:10:eb:cc: 17:82:b3:63:4d:5c:4f:96:75:ef:26:8e:57:02:d8: 8c:1e:b8:0a:d0:d1:a8:95:8e:30:7e:0e:ab:61:b9: 7c:72:c0:63:3d:2f:48:4d:66:72:57:ce:0c:97:21: 7a:02:36:d5:8e:55:89:7d:24:27:95:de:c8:3f:72: c9:f3:13:20:08:66:89:3f:57:64:33:1c:fb:69:ed: 29:e2:71:c6:12:b7:8a:f6:dd:e6:d3:6a:00:39:aa: 69:34:83:92:60:cc:34:44:a0:f2:41:e7:5e:a4:96: d7:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:D0:EA:60:D3:79:00:82:DF:20:21:C3:08:67:3D:02:91:87:0B:66 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/idDqYNN5AILfICHDCGc9ApGHC2Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 222.156.254.0/24 Signature Algorithm: sha256WithRSAEncryption 58:cc:52:33:b0:dd:a1:48:30:fa:f3:6a:2f:db:8f:ad:60:d8: b8:6b:ca:74:6e:c1:69:a8:5e:85:a4:23:f6:f5:fc:ad:80:c8: 68:d9:8a:ff:1d:b6:81:73:f3:a4:a0:86:28:95:27:b2:c1:d3: dd:a0:5f:0b:0d:ec:c0:c2:e5:2c:6e:df:18:ef:1a:3b:1f:72: d6:70:14:c4:a1:2c:dd:02:5f:27:1c:41:d1:71:06:77:78:da: a9:86:1a:e0:d6:04:93:62:04:df:da:9f:04:1c:2c:16:c6:52: 51:39:37:81:8d:62:12:52:d1:08:73:be:8c:a2:99:c9:c5:ac: b6:4a:47:0f:fe:6f:6e:44:90:da:a8:0a:3c:4f:7d:38:d9:fe: 2f:5c:50:48:8d:71:0b:e8:60:7e:13:65:26:98:b3:09:75:82: 96:5d:f0:65:1d:8d:65:60:0b:08:0c:64:8e:34:60:c3:96:09: 6e:ec:c1:3f:67:1c:43:91:d7:13:14:2c:38:db:d8:23:ca:6c: 75:f5:ee:39:ff:ab:9a:d6:d4:cb:91:04:8b:74:01:f4:a5:2d: 65:35:0f:8b:b5:9b:d0:7a:67:e7:75:d5:46:de:48:a1:fa:73: 6f:80:e5:06:5c:39:c1:51:7f:3d:42:3f:d0:2f:85:f1:50:79: b7:5b:bc:5e -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEXMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI3MjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg5RDBFQTYwRDM3OTAw ODJERjIwMjFDMzA4NjczRDAyOTE4NzBCNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQaaxbjR5T4aMLMsN3avOJW5jKaRVNj1vfUe3riLoGiiP6mqMT O/MEscW1566xVrmLYmXItMLFikOds1zOvfN6vEgWLwc3VS2eQQENWCH//SenSs35 3Fq3SrBw8sXeMowBMTQ4iQm+R4D7DeYXz4O2M1yQt+3iqDhddtsmMEzkN/JFkMFR Z185M93+XdQAZH2izxDrzBeCs2NNXE+Wde8mjlcC2IweuArQ0aiVjjB+DqthuXxy wGM9L0hNZnJXzgyXIXoCNtWOVYl9JCeV3sg/csnzEyAIZok/V2QzHPtp7SniccYS t4r23ebTagA5qmk0g5JgzDREoPJB516klte1AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUidDqYNN5AILfICHDCGc9ApGHC2YwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2lkRHFZTk41QUlMZklDSERDR2M5QXBH SEMyWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADenP4wDQYJ KoZIhvcNAQELBQADggEBAFjMUjOw3aFIMPrzai/bj61g2LhrynRuwWmoXoWkI/b1 /K2AyGjZiv8dtoFz86SghiiVJ7LB092gXwsN7MDC5Sxu3xjvGjsfctZwFMShLN0C XyccQdFxBnd42qmGGuDWBJNiBN/anwQcLBbGUlE5N4GNYhJS0QhzvoyimcnFrLZK Rw/+b25EkNqoCjxPfTjZ/i9cUEiNcQvoYH4TZSaYswl1gpZd8GUdjWVgCwgMZI40 YMOWCW7swT9nHEOR1xMULDjb2CPKbHX17jn/q5rW1MuRBIt0AfSlLWU1D4u1m9B6 Z+d11UbeSKH6c2+A5QZcOcFRfz1CP9AvhfFQebdbvF4= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:36 2025 by rpki-client on console.sobornost.net