$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/TvvBBfl8ZtNoUbv-mRJkQDgGg4c.roa File: TvvBBfl8ZtNoUbv-mRJkQDgGg4c.roa (raw, json) Hash identifier: lrPccr3kbBFF4wFQJGdKQQGHgmvVCjMIPfa2T6nsRbc= Subject key identifier: 4E:FB:C1:05:F9:7C:66:D3:68:51:BB:FE:99:12:64:40:38:06:83:87 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0E03 Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/TvvBBfl8ZtNoUbv-mRJkQDgGg4c.roa Signing time: Mon 10 Feb 2025 13:59:19 +0000 ROA not before: Mon 10 Feb 2025 13:59:19 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 61.61.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3587 (0xe03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Feb 10 13:59:19 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4EFBC105F97C66D36851BBFE9912644038068387 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:57:7a:c2:e9:88:3b:c4:82:86:a5:0c:a0:24: 94:10:ed:0b:2a:23:f6:e8:73:a3:89:ae:af:bb:1c: 55:40:51:f1:70:54:d7:24:db:be:ea:4c:55:34:7c: e4:fc:d6:fe:aa:e7:20:a2:b3:d0:43:2f:7a:32:34: 86:3e:33:0a:31:73:25:ed:e7:f1:c2:79:d8:11:5e: fc:c4:a7:fc:00:7f:8f:9b:5c:0a:eb:78:33:e7:25: 66:32:40:bc:dc:46:2d:5b:da:4a:20:88:5a:cc:4c: 90:06:01:93:e2:34:e7:2c:a2:14:d0:b6:9e:1d:df: dc:a3:f2:38:db:30:22:98:6e:b2:00:48:9e:be:76: 48:40:f8:4f:28:99:10:4b:b1:06:19:3b:83:2e:ff: 61:12:4f:48:ad:8f:65:06:9b:ff:cd:f4:ab:18:95: af:64:e1:25:b0:ef:26:cc:30:05:f0:5a:b3:28:a0: 24:dd:4e:a8:33:b5:08:89:e5:fe:49:4c:99:e2:45: 67:92:14:47:6c:4d:5d:3f:45:dc:ec:bf:f8:c2:f3: 33:ab:b0:b5:83:66:7e:95:eb:5c:6d:27:6a:0b:13: e5:8a:30:62:42:c5:0f:ae:2b:33:e2:37:f5:fd:9b: 5c:ff:b1:1e:5b:1d:4a:e1:12:fe:64:3f:db:5a:7a: c4:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:FB:C1:05:F9:7C:66:D3:68:51:BB:FE:99:12:64:40:38:06:83:87 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/TvvBBfl8ZtNoUbv-mRJkQDgGg4c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.128.0/18 Signature Algorithm: sha256WithRSAEncryption 69:b9:2b:4f:90:71:c6:61:4c:28:a2:3d:e8:9f:c0:8c:27:61: c0:fc:01:5c:10:14:8d:64:28:01:ef:1d:39:d9:d1:07:57:5b: 89:f4:73:45:67:fc:f5:36:8b:4e:7a:5b:e4:88:55:6f:3f:da: b9:f3:ba:77:22:b4:62:c1:37:4d:05:be:cd:fa:b5:97:a8:08: 9d:55:2a:aa:4a:c0:97:8c:39:b4:46:df:31:c3:46:ae:a6:28: 98:86:3f:88:a2:8b:e5:c2:72:df:7a:df:81:8b:4d:3f:5b:09: b3:09:aa:e0:c5:7a:ea:6c:20:c1:93:31:94:34:93:9e:5b:dc: cb:18:cc:98:3a:d4:1f:6a:c7:80:4a:e5:c7:15:82:f6:35:00: a8:19:74:7e:3c:cb:14:a3:f5:41:e6:fe:0e:f5:6c:59:e4:8e: cc:ce:e3:46:03:35:8b:ed:7b:8a:a7:3f:1a:94:a4:36:ce:8b: f2:89:a7:af:10:d5:84:4e:3b:63:8e:64:ef:68:83:1d:4f:62: a5:dd:9a:e9:09:6e:5e:d3:f3:31:e9:2e:a4:40:98:06:bc:27: 6d:b6:6d:18:07:56:e5:f7:1a:ab:c1:8d:0a:14:86:5b:1f:7d: 38:5f:b2:37:6f:b9:fd:69:2b:39:fe:6d:71:93:35:f7:4a:ad: fe:7e:7c:f2 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDgMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNTAyMTAx MzU5MTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRFRkJDMTA1Rjk3QzY2 RDM2ODUxQkJGRTk5MTI2NDQwMzgwNjgzODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLV3rC6Yg7xIKGpQygJJQQ7QsqI/boc6OJrq+7HFVAUfFwVNck 277qTFU0fOT81v6q5yCis9BDL3oyNIY+MwoxcyXt5/HCedgRXvzEp/wAf4+bXArr eDPnJWYyQLzcRi1b2kogiFrMTJAGAZPiNOcsohTQtp4d39yj8jjbMCKYbrIASJ6+ dkhA+E8omRBLsQYZO4Mu/2EST0itj2UGm//N9KsYla9k4SWw7ybMMAXwWrMooCTd TqgztQiJ5f5JTJniRWeSFEdsTV0/Rdzsv/jC8zOrsLWDZn6V61xtJ2oLE+WKMGJC xQ+uKzPiN/X9m1z/sR5bHUrhEv5kP9taesR1AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUTvvBBfl8ZtNoUbv+mRJkQDgGg4cwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1R2dkJCZmw4WnROb1Vidi1tUkprUURn R2c0Yy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAY9PYAwDQYJ KoZIhvcNAQELBQADggEBAGm5K0+QccZhTCiiPeifwIwnYcD8AVwQFI1kKAHvHTnZ 0QdXW4n0c0Vn/PU2i056W+SIVW8/2rnzuncitGLBN00Fvs36tZeoCJ1VKqpKwJeM ObRG3zHDRq6mKJiGP4iii+XCct9634GLTT9bCbMJquDFeupsIMGTMZQ0k55b3MsY zJg61B9qx4BK5ccVgvY1AKgZdH48yxSj9UHm/g71bFnkjszO40YDNYvte4qnPxqU pDbOi/KJp68Q1YROO2OOZO9ogx1PYqXdmukJbl7T8zHpLqRAmAa8J222bRgHVuX3 GqvBjQoUhlsffThfsjdvuf1pKzn+bXGTNfdKrf5+fPI= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:39 2025 by rpki-client on console.sobornost.net