$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/-MIcDq8ysZexCWEyzM7nB8KtPM0.roa File: -MIcDq8ysZexCWEyzM7nB8KtPM0.roa (raw, json) Hash identifier: fWzax/Yptq6YTybwWUdjZQxa2hspB0RBJvFaPr8YeRU= Subject key identifier: F8:C2:1C:0E:AF:32:B1:97:B1:09:61:32:CC:CE:E7:07:C2:AD:3C:CD Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9 Certificate serial: 0DC3 Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/-MIcDq8ysZexCWEyzM7nB8KtPM0.roa Signing time: Thu 24 Apr 2025 06:13:15 +0000 ROA not before: Thu 24 Apr 2025 06:13:15 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18046 IP address blocks: 101.3.208.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3523 (0xdc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9 Validity Not Before: Apr 24 06:13:15 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F8C21C0EAF32B197B1096132CCCEE707C2AD3CCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e0:32:e3:79:ef:39:5f:d4:37:f6:84:fb:c9: 9e:92:48:16:83:55:d9:8b:d1:38:22:cf:b5:ca:7a: 7d:33:85:51:c5:fc:df:50:1f:98:89:6b:08:e3:09: f7:73:62:31:f5:3a:41:7c:79:8a:7c:82:2f:8a:b1: 26:2e:4e:43:07:3a:6d:8d:e8:5a:1a:c2:92:b4:bd: ce:e0:c0:fb:fc:f9:74:84:1d:b8:ea:53:48:a1:e0: 9d:1f:40:0d:69:3a:a1:02:9b:c4:b3:54:b6:e2:37: 1a:fd:35:db:25:97:7e:ba:45:70:32:1e:ab:77:11: 9e:8f:5f:79:ec:7e:ee:78:80:66:62:ae:fa:57:46: 9e:3f:02:af:5f:22:10:ad:e1:77:b6:95:82:86:a1: 2f:65:ea:ca:6f:9f:98:c0:8d:e3:4e:0a:fe:7e:a4: c5:cd:4a:29:87:53:d8:c9:36:30:c9:fd:4a:d6:2b: fd:2e:22:af:92:95:b6:e0:f7:1c:3d:69:a4:65:ef: 8e:72:9e:ca:3d:00:e9:fe:33:00:18:a6:30:d0:c2: dc:ff:23:f8:a0:b3:26:73:2b:03:f2:c1:36:36:cf: fa:a1:5d:17:00:00:7f:de:65:e8:ca:e7:ce:9a:0b: 7a:54:4c:3c:cd:15:99:a1:8a:af:c3:a8:ee:c5:fc: c6:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:C2:1C:0E:AF:32:B1:97:B1:09:61:32:CC:CE:E7:07:C2:AD:3C:CD X509v3 Authority Key Identifier: keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/-MIcDq8ysZexCWEyzM7nB8KtPM0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.3.208.0/22 Signature Algorithm: sha256WithRSAEncryption 2e:39:7f:7a:2b:77:47:2c:be:53:33:aa:68:f4:b6:47:81:3a: f6:05:43:4b:b2:7f:06:5e:a6:5b:64:60:56:e8:a5:7d:63:a2: 66:01:a9:b9:b1:42:11:a7:c7:4e:68:aa:ed:29:67:7f:9c:11: 10:cb:39:3e:b1:36:8c:b8:de:85:fb:81:b2:89:d8:14:69:3a: a6:b3:a3:68:c4:1d:35:e4:06:37:2d:2c:ce:8d:4a:6d:1e:16: f0:e3:9a:04:c4:d1:29:3d:cb:8e:a5:3a:54:5d:e2:bf:3c:36: 02:eb:d4:98:d0:74:7a:33:63:af:59:a3:21:1e:df:83:16:f5: e7:37:c6:ac:3b:28:b7:29:18:6e:34:a4:b3:0a:35:e5:0f:34: ef:e2:ec:3d:0d:dd:5b:d9:43:88:b8:1d:e4:80:94:71:78:0f: 6d:d9:e6:d8:16:e5:f9:1a:98:1d:a9:87:7d:6c:7f:de:2d:51: a0:b9:7f:9e:c2:b1:32:ec:ec:b9:82:81:80:6c:fc:22:a2:1d: 55:d4:ce:c5:0f:a8:5d:0b:f2:4c:11:cc:a2:8f:b9:98:f8:c3: e7:7e:93:0e:fe:98:23:52:c4:92:16:e9:15:79:a9:82:96:ae: 1f:83:7f:aa:d4:27:0b:6d:3a:22:61:75:9c:fe:5d:ab:e8:fb: 38:57:cd:09 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDcMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREY1 NjczQTE5NzIxMjZFN0QyQ0M1RDRENTFCNDkxMDgzNDVCRjhDOTAeFw0yNTA0MjQw NjEzMTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY4QzIxQzBFQUYzMkIx OTdCMTA5NjEzMkNDQ0VFNzA3QzJBRDNDQ0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCz4DLjee85X9Q39oT7yZ6SSBaDVdmL0Tgiz7XKen0zhVHF/N9Q H5iJawjjCfdzYjH1OkF8eYp8gi+KsSYuTkMHOm2N6FoawpK0vc7gwPv8+XSEHbjq U0ih4J0fQA1pOqECm8SzVLbiNxr9Ndsll366RXAyHqt3EZ6PX3nsfu54gGZirvpX Rp4/Aq9fIhCt4Xe2lYKGoS9l6spvn5jAjeNOCv5+pMXNSimHU9jJNjDJ/UrWK/0u Iq+Slbbg9xw9aaRl745ynso9AOn+MwAYpjDQwtz/I/igsyZzKwPywTY2z/qhXRcA AH/eZejK586aC3pUTDzNFZmhiq/DqO7F/MZBAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQU+MIcDq8ysZexCWEyzM7nB8KtPM0wHwYDVR0jBBgwFoAU31ZzoZchJufSzF1N UbSRCDRb+MkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83 NzE2LzMxWnpvWmNoSnVmU3pGMU5VYlNSQ0RSYi1Nay5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvMzFaem9aY2hKdWZTekYxTlViU1JDRFJiLU1rLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83NzE2Ly1NSWNEcTh5c1pl eENXRXl6TTduQjhLdFBNMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJlA9AwDQYJKoZIhvcNAQELBQADggEBAC45f3ord0csvlMzqmj0tkeBOvYF Q0uyfwZepltkYFbopX1jomYBqbmxQhGnx05oqu0pZ3+cERDLOT6xNoy43oX7gbKJ 2BRpOqazo2jEHTXkBjctLM6NSm0eFvDjmgTE0Sk9y46lOlRd4r88NgLr1JjQdHoz Y69ZoyEe34MW9ec3xqw7KLcpGG40pLMKNeUPNO/i7D0N3VvZQ4i4HeSAlHF4D23Z 5tgW5fkamB2ph31sf94tUaC5f57CsTLs7LmCgYBs/CKiHVXUzsUPqF0L8kwRzKKP uZj4w+d+kw7+mCNSxJIW6RV5qYKWrh+Df6rUJwttOiJhdZz+Xavo+zhXzQk= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:44 2025 by rpki-client on console.sobornost.net