$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/niyGTm_HncgZQl8eznfbE9h-FF8.roa File: niyGTm_HncgZQl8eznfbE9h-FF8.roa (raw, json) Hash identifier: Dnrp1sco/YFm86a+9EyLYrnPOeydObPrXqa1wKu7pd8= Subject key identifier: 9E:2C:86:4E:6F:C7:9D:C8:19:42:5F:1E:CE:77:DB:13:D8:7E:14:5F Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0D10 Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/niyGTm_HncgZQl8eznfbE9h-FF8.roa Signing time: Mon 10 Feb 2025 14:02:29 +0000 ROA not before: Mon 10 Feb 2025 14:02:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18182 IP address blocks: 219.84.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3344 (0xd10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Feb 10 14:02:29 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9E2C864E6FC79DC819425F1ECE77DB13D87E145F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:4e:5c:3b:64:66:51:1d:94:1a:84:ae:b9:ae: ca:f7:12:fc:2d:26:e2:38:af:a0:3c:2b:64:71:0c: ec:6e:51:44:cc:92:b5:62:6e:15:d3:4f:2c:8e:bc: c1:5c:3a:89:ba:7e:dd:82:10:46:4a:29:3f:da:d8: 35:d9:21:f8:08:bc:26:18:90:89:31:17:96:c0:8c: b9:a3:5d:86:8c:87:a8:f2:1a:46:5d:bb:ed:e8:6e: 60:6b:cc:01:47:cf:00:f7:4c:b6:ad:b0:49:21:3d: cd:c1:12:b9:7f:c9:e3:16:36:42:66:45:56:42:7a: 69:d7:3c:67:b5:10:72:99:c6:c5:66:7b:08:de:99: ef:6b:33:24:93:3c:67:00:cb:00:69:e6:72:84:28: ba:44:66:ef:1c:97:25:1a:41:47:e9:a2:2c:ff:65: 32:77:db:4d:e9:5d:34:ec:10:83:70:25:dd:e1:2a: 08:23:12:c4:93:53:b7:f7:c7:a3:21:c3:48:72:30: 12:f0:6f:02:43:6e:93:de:f2:ec:ef:30:60:38:ad: 0c:1e:6f:d6:f1:e6:89:80:01:23:34:3b:09:ba:5d: 2e:5d:9e:55:f3:05:24:7e:1b:1c:06:64:bc:7d:c4: 68:3d:25:4b:6b:b7:eb:0a:0b:28:a2:6f:44:f0:d6: 68:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:2C:86:4E:6F:C7:9D:C8:19:42:5F:1E:CE:77:DB:13:D8:7E:14:5F X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/niyGTm_HncgZQl8eznfbE9h-FF8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 219.84.0.0/16 Signature Algorithm: sha256WithRSAEncryption 39:9e:43:75:e9:03:01:ba:c9:20:a9:ae:45:a6:6f:a0:8f:55: 35:79:b7:6f:8d:ca:d4:f7:23:2d:69:11:e7:54:c2:2c:12:ab: d9:09:20:c2:88:5a:74:a7:95:e4:ca:72:e2:6c:94:9e:2a:30: 83:98:4b:0e:d6:de:13:27:a7:4d:70:34:ec:a8:e5:ec:9e:dc: 23:0f:bc:a0:56:b8:2d:74:fd:e9:39:9a:35:5e:ef:54:98:94: 06:d8:a6:ad:62:4f:10:0c:1f:0b:c7:d6:e1:05:44:30:e3:ce: 23:50:9e:0f:96:fa:20:32:c2:da:6c:af:7f:ea:ea:20:82:41: e4:c8:d7:cf:53:5b:88:05:80:5d:dd:3c:1a:2c:ce:7d:db:50: 02:48:c3:8b:1c:91:2c:93:76:ac:10:eb:39:67:09:55:3b:f4: c8:41:3c:c2:4d:33:dd:8b:31:fb:61:48:8b:69:c8:91:f9:7b: f7:d5:e0:81:9f:52:c5:8d:bc:92:1b:2c:bf:6d:b4:5d:39:8c: fa:88:ae:af:a3:a3:63:41:c9:41:5d:1f:2c:1c:d2:00:46:ba: 0f:a9:ff:70:11:9b:86:1e:7b:ce:68:b1:eb:ec:19:72:dd:01: f7:a1:9f:0a:3a:d5:cd:23:60:2f:d1:6c:ed:35:90:06:de:37: 2d:ed:96:0a -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDRAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yNTAyMTAx NDAyMjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlFMkM4NjRFNkZDNzlE QzgxOTQyNUYxRUNFNzdEQjEzRDg3RTE0NUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUTlw7ZGZRHZQahK65rsr3EvwtJuI4r6A8K2RxDOxuUUTMkrVi bhXTTyyOvMFcOom6ft2CEEZKKT/a2DXZIfgIvCYYkIkxF5bAjLmjXYaMh6jyGkZd u+3obmBrzAFHzwD3TLatsEkhPc3BErl/yeMWNkJmRVZCemnXPGe1EHKZxsVmewje me9rMySTPGcAywBp5nKEKLpEZu8clyUaQUfpoiz/ZTJ3203pXTTsEINwJd3hKggj EsSTU7f3x6Mhw0hyMBLwbwJDbpPe8uzvMGA4rQweb9bx5omAASM0Owm6XS5dnlXz BSR+GxwGZLx9xGg9JUtrt+sKCyiib0Tw1mjrAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUniyGTm/HncgZQl8eznfbE9h+FF8wHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9uaXlHVG1fSG5jZ1pRbDhlem5m YkU5aC1GRjgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA21Qw DQYJKoZIhvcNAQELBQADggEBADmeQ3XpAwG6ySCprkWmb6CPVTV5t2+NytT3Iy1p EedUwiwSq9kJIMKIWnSnleTKcuJslJ4qMIOYSw7W3hMnp01wNOyo5eye3CMPvKBW uC10/ek5mjVe71SYlAbYpq1iTxAMHwvH1uEFRDDjziNQng+W+iAywtpsr3/q6iCC QeTI189TW4gFgF3dPBoszn3bUAJIw4sckSyTdqwQ6zlnCVU79MhBPMJNM92LMfth SItpyJH5e/fV4IGfUsWNvJIbLL9ttF05jPqIrq+jo2NByUFdHywc0gBGug+p/3AR m4Yee85osevsGXLdAfehnwo61c0jYC/RbO01kAbeNy3tlgo= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:43 2025 by rpki-client on console.sobornost.net