$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/-18l1uUyH6nqqiq_fnmcMI4pc68.roa File: -18l1uUyH6nqqiq_fnmcMI4pc68.roa (raw, json) Hash identifier: 9dlGOBRps7HNtgR/QauuWHhFY3bbKeP7QQJlDErl/iY= Subject key identifier: FB:5F:25:D6:E5:32:1F:A9:EA:AA:2A:BF:7E:79:9C:30:8E:29:73:AF Certificate issuer: /CN=422E7C95D87DE9AEEB212A0C4CCB0174E65CA5D0 Certificate serial: 045A Authority key identifier: 42:2E:7C:95:D8:7D:E9:AE:EB:21:2A:0C:4C:CB:01:74:E6:5C:A5:D0 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Qi58ldh96a7rISoMTMsBdOZcpdA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/-18l1uUyH6nqqiq_fnmcMI4pc68.roa Signing time: Mon 10 Feb 2025 13:57:40 +0000 ROA not before: Mon 10 Feb 2025 13:57:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 16509 IP address blocks: 160.25.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Qi58ldh96a7rISoMTMsBdOZcpdA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 18:48:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1114 (0x45a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=422E7C95D87DE9AEEB212A0C4CCB0174E65CA5D0 Validity Not Before: Feb 10 13:57:40 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FB5F25D6E5321FA9EAAA2ABF7E799C308E2973AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:72:06:c3:d8:9c:c8:5f:79:86:69:02:78:17: 80:26:ff:18:5e:54:81:5e:12:db:92:a2:eb:a8:33: ee:b7:d1:04:91:35:00:ae:48:69:ac:02:57:93:68: b4:ad:d8:09:d1:0c:da:74:fc:3b:63:b6:4f:99:8c: ec:5c:fe:9a:2e:85:08:9b:a1:1a:cc:4d:dc:f1:e0: 2e:d5:e6:c7:1a:d2:f5:ac:e8:52:63:e8:ab:34:a1: e5:6f:ad:55:35:ec:a0:20:ca:c2:3e:9e:06:b6:47: 68:6a:42:0b:2b:a8:fd:1e:35:17:b0:4d:b6:f2:96: 30:16:c6:49:32:fe:81:2f:9f:73:a4:38:c3:2a:8c: 00:f1:e3:f0:ed:95:41:61:ac:b5:2f:4f:55:04:63: bd:e7:47:1b:8d:6a:9d:b6:bf:37:5b:cc:54:35:61: 97:da:d1:b5:4d:54:52:75:75:fd:99:7c:23:38:e2: ee:51:26:8b:4e:c6:c8:24:4e:cc:9c:9c:d5:8d:7a: 63:84:3f:59:0c:9f:8d:39:41:d8:c7:e7:24:59:5c: 69:19:a8:b1:55:4f:9a:87:e4:5a:14:5f:f3:02:d0: 2c:d7:e1:a3:f7:e7:bc:b3:79:e5:9b:5f:55:32:d5: d3:ee:09:8d:c0:91:10:49:2f:9a:a1:a9:b5:e4:a4: b5:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:5F:25:D6:E5:32:1F:A9:EA:AA:2A:BF:7E:79:9C:30:8E:29:73:AF X509v3 Authority Key Identifier: keyid:42:2E:7C:95:D8:7D:E9:AE:EB:21:2A:0C:4C:CB:01:74:E6:5C:A5:D0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Qi58ldh96a7rISoMTMsBdOZcpdA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/-18l1uUyH6nqqiq_fnmcMI4pc68.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.25.220.0/24 Signature Algorithm: sha256WithRSAEncryption 93:e0:01:0a:58:20:f7:e0:47:b1:58:e0:bc:1b:08:6c:cc:45: dc:4c:91:34:b1:5b:a3:58:12:c8:75:c4:de:fa:3e:0b:07:4f: b7:12:a7:39:76:eb:ed:bd:3a:5e:d8:ea:09:3a:60:07:a6:e3: 97:01:8e:fb:da:dc:b6:65:42:d1:dc:34:fc:d1:61:ac:74:a3: 08:9f:eb:f9:03:e4:e8:15:75:82:5c:40:fd:03:eb:c8:7b:5d: 90:7c:08:01:66:55:fc:c4:7e:fa:70:e7:7d:c2:8a:d1:64:7f: 9c:b0:ae:1d:67:13:e2:ee:df:64:7f:64:d4:c9:49:1e:e6:e7: 51:ae:44:5a:b1:a1:e2:3a:56:03:9a:d8:20:a6:0b:e1:bf:8f: 9a:26:f2:1b:3b:78:fd:32:bc:58:93:c7:57:7c:34:de:59:e0: 39:a1:2b:62:da:e9:3a:22:87:30:69:a4:f4:ae:90:9f:5f:ac: 8e:0e:c7:8c:98:30:95:78:45:63:17:e2:79:96:54:89:e2:cf: 83:b8:8d:e1:6d:0c:d8:e4:fe:09:0d:c2:9c:81:69:e5:3a:ba: bb:9f:12:5e:ee:02:cb:27:c7:fe:94:ad:4c:37:4a:a8:1a:5d: 85:5b:9b:f0:62:10:6b:b7:24:2c:2a:e0:e1:b7:9c:a1:59:93: 5b:ea:37:3e -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICBFowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDIy RTdDOTVEODdERTlBRUVCMjEyQTBDNENDQjAxNzRFNjVDQTVEMDAeFw0yNTAyMTAx MzU3NDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZCNUYyNUQ2RTUzMjFG QTlFQUFBMkFCRjdFNzk5QzMwOEUyOTczQUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5cgbD2JzIX3mGaQJ4F4Am/xheVIFeEtuSouuoM+630QSRNQCu SGmsAleTaLSt2AnRDNp0/Dtjtk+ZjOxc/pouhQiboRrMTdzx4C7V5sca0vWs6FJj 6Ks0oeVvrVU17KAgysI+nga2R2hqQgsrqP0eNRewTbbyljAWxkky/oEvn3OkOMMq jADx4/DtlUFhrLUvT1UEY73nRxuNap22vzdbzFQ1YZfa0bVNVFJ1df2ZfCM44u5R JotOxsgkTsycnNWNemOEP1kMn405QdjH5yRZXGkZqLFVT5qH5FoUX/MC0CzX4aP3 57yzeeWbX1Uy1dPuCY3AkRBJL5qhqbXkpLVPAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU+18l1uUyH6nqqiq/fnmcMI4pc68wHwYDVR0jBBgwFoAUQi58ldh96a7rISoM TMsBdOZcpdAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0tJUFRF Q0gvUWk1OGxkaDk2YTdySVNvTVRNc0JkT1pjcGRBLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9RaTU4bGRoOTZhN3JJU29NVE1zQmRPWmNwZEEuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TS0lQVEVDSC8tMThsMXVVeUg2bnFx aXFfZm5tY01JNHBjNjgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAoBncMA0GCSqGSIb3DQEBCwUAA4IBAQCT4AEKWCD34EexWOC8GwhszEXcTJE0 sVujWBLIdcTe+j4LB0+3Eqc5duvtvTpe2OoJOmAHpuOXAY772ty2ZULR3DT80WGs dKMIn+v5A+ToFXWCXED9A+vIe12QfAgBZlX8xH76cOd9worRZH+csK4dZxPi7t9k f2TUyUke5udRrkRasaHiOlYDmtggpgvhv4+aJvIbO3j9MrxYk8dXfDTeWeA5oSti 2uk6IocwaaT0rpCfX6yODseMmDCVeEVjF+J5llSJ4s+DuI3hbQzY5P4JDcKcgWnl Orq7nxJe7gLLJ8f+lK1MN0qoGl2FW5vwYhBrtyQsKuDht5yhWZNb6jc+ -----END CERTIFICATE-----Generated at Thu Apr 24 15:53:56 2025 by rpki-client on console.sobornost.net