$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/qF0A6NA-M52w7mOwN3r6eO2d2HA.roa File: qF0A6NA-M52w7mOwN3r6eO2d2HA.roa (raw, json) Hash identifier: T35CWNUF5pt5O+CBgIfToFSbb8aeYkJsl3jwBPaDSns= Subject key identifier: A8:5D:00:E8:D0:3E:33:9D:B0:EE:63:B0:37:7A:FA:78:ED:9D:D8:70 Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Certificate serial: 0D19 Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/qF0A6NA-M52w7mOwN3r6eO2d2HA.roa Signing time: Mon 10 Feb 2025 14:08:20 +0000 ROA not before: Mon 10 Feb 2025 14:08:20 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4782 IP address blocks: 211.79.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3353 (0xd19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Validity Not Before: Feb 10 14:08:20 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A85D00E8D03E339DB0EE63B0377AFA78ED9DD870 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:34:76:36:fb:28:1c:51:ca:ac:cf:71:c9:c6: fd:64:4a:78:63:19:09:df:c9:ec:b3:d0:e4:50:43: b2:7b:61:c2:32:ba:3c:42:34:59:3a:ca:7b:32:99: a3:fa:b7:47:95:e9:db:f8:51:6e:7d:10:18:4b:26: 05:9a:a0:db:22:40:04:58:46:d8:18:96:c2:69:f4: 9a:b3:58:80:49:1c:8e:84:88:21:fe:5b:ad:43:ae: 60:bc:d5:78:fb:df:af:44:19:dc:46:11:ee:fc:38: 2b:a1:bf:9d:62:f1:5b:c3:0f:05:2a:4a:eb:66:51: 4a:bd:34:e4:b6:f1:b1:16:15:6a:60:d3:b7:03:41: f9:46:72:ed:4d:da:9e:16:1f:8e:72:d0:c5:3d:09: ae:7e:34:04:96:52:84:e4:7a:a7:f1:86:81:cb:ba: 2b:de:30:62:e1:e1:a7:c4:c3:6e:8a:f4:bc:97:2f: 3d:5e:07:c1:08:a4:a1:48:35:83:48:36:ad:c0:08: 2d:14:19:da:e3:55:f7:d9:f9:37:a5:cb:22:bf:6c: f5:a6:9a:57:24:44:7c:8a:f3:44:f3:ac:67:9b:22: be:8e:d3:ea:cf:10:b1:75:57:f4:69:6a:e0:19:01: a3:3e:d2:95:ad:ea:c0:31:b1:76:7e:d1:00:79:24: cd:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:5D:00:E8:D0:3E:33:9D:B0:EE:63:B0:37:7A:FA:78:ED:9D:D8:70 X509v3 Authority Key Identifier: keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/qF0A6NA-M52w7mOwN3r6eO2d2HA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.79.128.0/19 Signature Algorithm: sha256WithRSAEncryption c2:d0:61:d3:79:fc:39:85:ad:59:0b:f8:49:12:e6:91:c0:a3: b7:fd:7e:74:5c:63:55:6e:a9:93:c6:a5:90:b5:62:bf:67:04: 7f:79:a0:50:ec:cb:1a:94:6d:3a:8c:28:af:2f:67:cb:dd:68: 3c:4d:30:81:91:19:57:a2:fe:b4:39:99:6d:e0:95:48:73:b2: 0a:76:6e:53:01:00:51:38:b4:3e:d8:57:19:9c:f3:1d:80:6e: db:ef:64:0b:6b:30:f3:6f:7f:13:9d:14:9a:55:f1:fc:43:c7: 8e:7c:e8:1e:47:35:36:89:a4:12:e0:91:08:59:d1:56:ae:a4: b9:d9:4b:1f:3c:69:3e:f3:9a:ef:c0:74:00:9a:3c:5f:2f:c6: 7a:d3:3c:c5:c7:61:4e:76:84:fb:c7:a3:b3:c5:cb:01:02:84: 02:f0:cb:ce:58:eb:b2:6a:7e:b3:fb:67:cb:10:38:50:19:99: c0:ee:7a:b6:86:6f:f3:f4:4c:d1:8b:df:db:cd:88:b6:ca:d3: d4:ed:62:97:cb:34:8b:59:e5:d6:13:76:9b:7f:25:cd:2a:cd: 72:c5:fc:d9:cf:f7:81:8f:76:99:ea:7d:a2:bd:29:69:bd:d1: 15:89:9f:b9:c6:fb:1c:9e:53:0a:60:bf:18:89:eb:fd:da:16: a8:61:4a:b0 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDRkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVG RTUzQzYxMUI0RkQ1NkIzRjY4MzE5RUVDQTYyODlGM0YwRjJBOTAeFw0yNTAyMTAx NDA4MjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE4NUQwMEU4RDAzRTMz OURCMEVFNjNCMDM3N0FGQTc4RUQ5REQ4NzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5NHY2+ygcUcqsz3HJxv1kSnhjGQnfyeyz0ORQQ7J7YcIyujxC NFk6ynsymaP6t0eV6dv4UW59EBhLJgWaoNsiQARYRtgYlsJp9JqzWIBJHI6EiCH+ W61DrmC81Xj7369EGdxGEe78OCuhv51i8VvDDwUqSutmUUq9NOS28bEWFWpg07cD QflGcu1N2p4WH45y0MU9Ca5+NASWUoTkeqfxhoHLuiveMGLh4afEw26K9LyXLz1e B8EIpKFINYNINq3ACC0UGdrjVffZ+TelyyK/bPWmmlckRHyK80TzrGebIr6O0+rP ELF1V/RpauAZAaM+0pWt6sAxsXZ+0QB5JM3fAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUqF0A6NA+M52w7mOwN3r6eO2d2HAwHwYDVR0jBBgwFoAUdf5TxhG0/Vaz9oMZ 7spiifPw8qkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2Rm NVR4aEcwX1ZhejlvTVo3c3BpaWZQdzhxay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZGY1VHhoRzBfVmF6OW9NWjdzcGlpZlB3OHFrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL3FGMEE2TkEtTTUydzdtT3dOM3I2ZU8y ZDJIQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXTT4AwDQYJ KoZIhvcNAQELBQADggEBAMLQYdN5/DmFrVkL+EkS5pHAo7f9fnRcY1VuqZPGpZC1 Yr9nBH95oFDsyxqUbTqMKK8vZ8vdaDxNMIGRGVei/rQ5mW3glUhzsgp2blMBAFE4 tD7YVxmc8x2AbtvvZAtrMPNvfxOdFJpV8fxDx4586B5HNTaJpBLgkQhZ0VaupLnZ Sx88aT7zmu/AdACaPF8vxnrTPMXHYU52hPvHo7PFywEChALwy85Y67JqfrP7Z8sQ OFAZmcDueraGb/P0TNGL39vNiLbK09TtYpfLNItZ5dYTdpt/Jc0qzXLF/NnP94GP dpnqfaK9KWm90RWJn7nG+xyeUwpgvxiJ6/3aFqhhSrA= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:37 2025 by rpki-client on console.sobornost.net