$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/TT4kRnsq_Ct5ZxhhH6LlDt0O01Y.roa File: TT4kRnsq_Ct5ZxhhH6LlDt0O01Y.roa (raw, json) Hash identifier: 7xdv7mnW3xtVg3YSI15TF1y7r2dAV0rRHYIVSbSBjg8= Subject key identifier: 4D:3E:24:46:7B:2A:FC:2B:79:67:18:61:1F:A2:E5:0E:DD:0E:D3:56 Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Certificate serial: 0D14 Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/TT4kRnsq_Ct5ZxhhH6LlDt0O01Y.roa Signing time: Mon 10 Feb 2025 14:08:19 +0000 ROA not before: Mon 10 Feb 2025 14:08:19 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4782 IP address blocks: 117.56.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3348 (0xd14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Validity Not Before: Feb 10 14:08:19 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4D3E24467B2AFC2B796718611FA2E50EDD0ED356 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:2a:8d:6a:9a:44:39:22:86:7c:f6:52:fe:01: cc:e7:45:ae:9e:d1:26:5d:0c:a3:df:75:e2:5b:73: 5b:5b:f5:1b:e2:dd:ab:3e:7d:de:fb:a8:47:11:ee: 49:5d:d8:48:d1:b8:81:f3:a4:33:32:a7:03:8b:c3: b6:83:fa:e9:a4:c3:df:c5:e9:93:09:3e:9d:38:f4: 78:ca:44:d4:d3:12:4a:8e:f7:12:07:f9:44:a1:7a: 1c:b7:8e:2e:a0:31:a4:87:58:a9:d0:45:b4:a7:a1: 4c:75:d5:14:b8:7b:5f:33:04:a6:11:a6:61:be:3a: 54:57:c9:2c:b3:07:0d:3f:52:a2:2a:34:b1:ee:76: 01:d9:b2:4c:62:78:81:32:c5:44:0e:d7:61:2a:57: 50:00:94:43:c1:a9:b8:59:f5:93:0f:89:b3:1b:50: 22:b3:93:1d:bd:25:6c:c7:4b:bb:b4:a2:c3:6d:73: 50:6c:07:17:27:28:71:97:cb:ff:1c:51:88:46:7a: 8f:af:88:98:59:0a:54:af:be:1a:e1:c0:eb:86:5b: da:c4:04:97:d2:77:5b:8a:47:73:c2:c3:a3:b9:07: 6b:ca:b0:94:ef:06:2d:aa:d9:37:e3:33:95:ad:f7: 56:f5:fa:ec:5c:11:81:63:d2:b8:b7:38:f5:b8:90: 81:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:3E:24:46:7B:2A:FC:2B:79:67:18:61:1F:A2:E5:0E:DD:0E:D3:56 X509v3 Authority Key Identifier: keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/TT4kRnsq_Ct5ZxhhH6LlDt0O01Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 117.56.0.0/18 Signature Algorithm: sha256WithRSAEncryption 6f:59:c0:21:f8:dd:ce:48:73:28:a6:86:cd:fe:aa:45:ae:d2: a6:3b:d7:d4:22:15:85:1e:aa:82:3f:f5:c3:38:0a:5d:07:ad: 64:b9:3f:28:e8:db:30:b6:7a:4f:57:a3:8c:27:a2:fd:7b:1f: e0:fa:23:de:cf:18:6d:73:d6:59:a9:aa:97:99:69:72:81:89: af:cf:45:7c:55:9c:af:79:36:ea:9c:62:57:8e:30:40:02:94: 55:99:a1:8a:59:12:40:4a:c3:b8:ce:2f:9f:55:7e:9b:89:43: 94:13:f5:ad:11:25:ed:94:b0:0c:b0:93:10:7b:8e:5e:75:c5: 96:3e:7e:91:54:dd:b3:08:b2:88:7c:55:e0:b7:0a:11:1f:ce: 5f:aa:3d:1b:38:e3:9e:90:fa:90:95:2b:c2:10:c0:bb:52:ba: d0:97:ea:4b:7a:f6:91:6d:05:ff:7d:a6:65:fd:30:7c:af:47: c0:54:3d:b6:fa:2a:a4:72:99:f7:eb:49:21:dc:6e:a6:a5:6d: cc:1b:7b:f9:f8:85:57:b6:ec:4a:ee:9e:86:91:cc:5e:90:cb: eb:f1:7b:0b:fc:c1:bc:bb:48:3a:ca:95:21:9c:ad:44:14:15: e3:00:02:15:4a:55:64:4e:c3:0a:4c:df:87:92:58:a5:2b:cb: 5a:2d:13:40 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDRQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVG RTUzQzYxMUI0RkQ1NkIzRjY4MzE5RUVDQTYyODlGM0YwRjJBOTAeFw0yNTAyMTAx NDA4MTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDREM0UyNDQ2N0IyQUZD MkI3OTY3MTg2MTFGQTJFNTBFREQwRUQzNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkKo1qmkQ5IoZ89lL+AcznRa6e0SZdDKPfdeJbc1tb9Rvi3as+ fd77qEcR7kld2EjRuIHzpDMypwOLw7aD+umkw9/F6ZMJPp049HjKRNTTEkqO9xIH +UShehy3ji6gMaSHWKnQRbSnoUx11RS4e18zBKYRpmG+OlRXySyzBw0/UqIqNLHu dgHZskxieIEyxUQO12EqV1AAlEPBqbhZ9ZMPibMbUCKzkx29JWzHS7u0osNtc1Bs BxcnKHGXy/8cUYhGeo+viJhZClSvvhrhwOuGW9rEBJfSd1uKR3PCw6O5B2vKsJTv Bi2q2TfjM5Wt91b1+uxcEYFj0ri3OPW4kIEpAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUTT4kRnsq/Ct5ZxhhH6LlDt0O01YwHwYDVR0jBBgwFoAUdf5TxhG0/Vaz9oMZ 7spiifPw8qkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2Rm NVR4aEcwX1ZhejlvTVo3c3BpaWZQdzhxay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZGY1VHhoRzBfVmF6OW9NWjdzcGlpZlB3OHFrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL1RUNGtSbnNxX0N0NVp4aGhINkxsRHQw TzAxWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ1OAAwDQYJ KoZIhvcNAQELBQADggEBAG9ZwCH43c5Icyimhs3+qkWu0qY719QiFYUeqoI/9cM4 Cl0HrWS5Pyjo2zC2ek9Xo4wnov17H+D6I97PGG1z1lmpqpeZaXKBia/PRXxVnK95 NuqcYleOMEAClFWZoYpZEkBKw7jOL59VfpuJQ5QT9a0RJe2UsAywkxB7jl51xZY+ fpFU3bMIsoh8VeC3ChEfzl+qPRs4456Q+pCVK8IQwLtSutCX6kt69pFtBf99pmX9 MHyvR8BUPbb6KqRymffrSSHcbqalbcwbe/n4hVe27ErunoaRzF6Qy+vxewv8wby7 SDrKlSGcrUQUFeMAAhVKVWROwwpM34eSWKUry1otE0A= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:37 2025 by rpki-client on console.sobornost.net