$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/T6H9y9Km6MH8OoRzI12CGxjtpok.roa File: T6H9y9Km6MH8OoRzI12CGxjtpok.roa (raw, json) Hash identifier: LwCVU1JqO2GTX/MTF9xCa7lzhAvZXWGejWNNeoULPMo= Subject key identifier: 4F:A1:FD:CB:D2:A6:E8:C1:FC:3A:84:73:23:5D:82:1B:18:ED:A6:89 Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Certificate serial: 0D58 Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/T6H9y9Km6MH8OoRzI12CGxjtpok.roa Signing time: Mon 10 Feb 2025 14:12:17 +0000 ROA not before: Mon 10 Feb 2025 14:12:17 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18419 IP address blocks: 61.60.192.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3416 (0xd58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Validity Not Before: Feb 10 14:12:17 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4FA1FDCBD2A6E8C1FC3A8473235D821B18EDA689 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5e:d4:b1:8f:6b:8e:02:83:ca:d0:1e:15:0c: 83:36:50:c3:b0:31:09:db:51:d9:95:ba:31:da:e6: 20:ab:b4:f4:c9:94:5f:f9:88:6f:77:6b:f0:47:ae: 4f:44:da:6c:b2:4c:0b:bf:d8:56:36:54:02:de:46: e7:c0:92:d8:e4:e3:6f:38:18:82:73:d2:40:cb:f5: 46:30:dd:c6:65:51:59:7f:1a:e2:2a:8c:2a:6f:82: 5e:73:3e:70:3e:5b:b5:47:ee:78:ea:7f:0b:32:a1: 65:e7:ec:79:24:2a:7b:1f:da:1b:af:c2:76:4b:e1: 85:d4:5b:0a:bc:57:37:5f:ea:e8:95:bb:a7:59:80: db:66:a5:02:34:bd:94:fb:8c:3e:22:13:ee:5d:73: c6:2b:46:ad:5b:ec:57:b9:6b:9d:91:28:bf:53:18: 60:d1:4f:bf:7b:0a:10:88:3c:62:a1:d6:01:fd:d6: 98:4c:50:80:cb:b0:44:c5:e5:10:4b:1a:df:7e:cb: 85:a4:7c:6b:80:f2:dd:ff:ff:1e:64:93:b1:0f:ac: 30:87:c6:62:72:5f:c0:1a:e5:0b:a8:61:4d:ac:dc: b9:39:77:19:b2:88:e7:c0:38:62:1e:95:19:41:5b: ff:6c:da:18:53:1b:f2:77:8d:62:ab:58:ea:15:a2: dc:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:A1:FD:CB:D2:A6:E8:C1:FC:3A:84:73:23:5D:82:1B:18:ED:A6:89 X509v3 Authority Key Identifier: keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/T6H9y9Km6MH8OoRzI12CGxjtpok.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.60.192.0/20 Signature Algorithm: sha256WithRSAEncryption 14:8a:71:1a:28:64:9e:30:66:53:7f:91:4d:8a:a5:91:8d:09: f8:bf:96:55:98:58:8b:88:56:7e:50:21:20:b7:d8:14:70:d5: b9:57:12:70:78:d9:b6:70:d8:0f:c8:28:c2:f2:b6:51:2a:f6: ad:3a:54:2a:a4:db:92:01:3f:dd:d2:85:d0:38:ea:84:be:f8: 1c:ef:21:7d:ad:5b:d8:a0:16:b0:2a:ae:4d:65:72:4f:6b:c2: be:dd:19:8d:5c:85:4d:7a:e6:a0:88:5e:ff:24:6a:23:52:9f: d4:9e:03:0b:12:e6:63:ca:8c:b7:18:18:be:2f:db:bd:77:11: 53:cc:0a:42:06:d0:df:f3:a6:cd:aa:5a:a5:74:96:51:d7:cb: f6:15:95:1d:8c:8e:95:54:ea:09:4f:33:05:24:aa:b6:fd:f6: 59:94:2f:26:c7:c3:fb:55:d0:72:47:d4:0f:79:8f:b6:5c:c4: 48:aa:e6:9a:59:3a:fb:c3:fd:5f:dd:08:0c:b9:79:1c:fe:05: b2:5a:72:1d:a2:66:f8:f8:2b:d1:77:bf:ca:ee:69:dd:06:f3: fe:fd:8d:04:b1:d7:7a:a1:8d:9a:40:75:2d:66:c7:0e:7b:c9: da:b1:8f:fd:27:77:6b:84:d8:12:73:a8:be:5e:aa:c1:af:e4: 82:1d:fb:e8 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDVgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yNTAyMTAx NDEyMTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRGQTFGRENCRDJBNkU4 QzFGQzNBODQ3MzIzNUQ4MjFCMThFREE2ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDXtSxj2uOAoPK0B4VDIM2UMOwMQnbUdmVujHa5iCrtPTJlF/5 iG93a/BHrk9E2myyTAu/2FY2VALeRufAktjk4284GIJz0kDL9UYw3cZlUVl/GuIq jCpvgl5zPnA+W7VH7njqfwsyoWXn7HkkKnsf2huvwnZL4YXUWwq8Vzdf6uiVu6dZ gNtmpQI0vZT7jD4iE+5dc8YrRq1b7Fe5a52RKL9TGGDRT797ChCIPGKh1gH91phM UIDLsETF5RBLGt9+y4WkfGuA8t3//x5kk7EPrDCHxmJyX8Aa5QuoYU2s3Lk5dxmy iOfAOGIelRlBW/9s2hhTG/J3jWKrWOoVotw1AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUT6H9y9Km6MH8OoRzI12CGxjtpokwHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+ q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS9UNkg5eTlLbTZNSDhPb1J6STEy Q0d4anRwb2sucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEPTzA MA0GCSqGSIb3DQEBCwUAA4IBAQAUinEaKGSeMGZTf5FNiqWRjQn4v5ZVmFiLiFZ+ UCEgt9gUcNW5VxJweNm2cNgPyCjC8rZRKvatOlQqpNuSAT/d0oXQOOqEvvgc7yF9 rVvYoBawKq5NZXJPa8K+3RmNXIVNeuagiF7/JGojUp/UngMLEuZjyoy3GBi+L9u9 dxFTzApCBtDf86bNqlqldJZR18v2FZUdjI6VVOoJTzMFJKq2/fZZlC8mx8P7VdBy R9QPeY+2XMRIquaaWTr7w/1f3QgMuXkc/gWyWnIdomb4+CvRd7/K7mndBvP+/Y0E sdd6oY2aQHUtZscOe8nasY/9J3drhNgSc6i+XqrBr+SCHfvo -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:43 2025 by rpki-client on console.sobornost.net