$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/OvDHEVzrNPLmKookGT5ACgPKIO4.roa File: OvDHEVzrNPLmKookGT5ACgPKIO4.roa (raw, json) Hash identifier: /m/1GKZYA18JkViIEcLJRFokk7fsTKDOdRV6f4veaXA= Subject key identifier: 3A:F0:C7:11:5C:EB:34:F2:E6:2A:8A:24:19:3E:40:0A:03:CA:20:EE Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 0F38 Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/OvDHEVzrNPLmKookGT5ACgPKIO4.roa Signing time: Mon 17 Feb 2025 07:53:10 +0000 ROA not before: Mon 17 Feb 2025 07:53:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131150 IP address blocks: 120.119.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3896 (0xf38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Feb 17 07:53:10 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3AF0C7115CEB34F2E62A8A24193E400A03CA20EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:57:96:05:b6:d4:8d:8a:82:2f:c5:a2:10:c6: 83:89:f2:9c:70:c1:9d:4b:10:86:af:a7:3e:c4:51: 6e:6b:05:e9:a2:99:66:f0:b7:a9:24:f8:66:d8:4a: d5:86:ff:a5:04:62:f4:04:cd:c1:8e:0a:80:e2:08: 27:2f:2d:dd:3c:97:b9:b1:80:41:c1:1d:c7:00:1c: f7:e1:0d:d2:64:b3:e0:78:c0:9c:27:78:c6:8b:2c: 92:18:a0:a3:83:b2:e7:7b:68:e3:94:2f:66:0b:26: 6f:2b:45:91:11:ec:cf:b0:65:a5:9f:da:18:5e:21: df:af:d4:e0:08:af:93:2a:6f:6e:92:37:aa:ef:8e: ee:3d:dd:be:f5:55:c4:4f:9c:ab:3b:91:47:de:c1: 24:a3:7e:65:86:3b:ba:01:a9:43:6e:d6:5c:d5:d3: 72:73:68:23:85:85:2c:ea:0e:16:d7:44:56:7c:53: f2:0a:50:f1:f3:e1:64:f3:05:b3:09:d2:d8:b0:f4: c9:8c:bf:56:dd:bf:dd:a0:46:1a:21:52:b5:0a:8e: d9:3f:07:e6:60:b7:da:b1:1a:64:3c:c2:34:0a:2d: 4d:9b:f9:e0:16:7e:0c:9d:d6:a3:3e:19:35:65:02: 75:d9:2e:2d:17:b3:6a:e8:ae:d7:18:f0:9f:65:7b: 07:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:F0:C7:11:5C:EB:34:F2:E6:2A:8A:24:19:3E:40:0A:03:CA:20:EE X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/OvDHEVzrNPLmKookGT5ACgPKIO4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 120.119.0.0/16 Signature Algorithm: sha256WithRSAEncryption ad:67:47:d8:39:c2:42:b7:21:f4:be:6a:94:de:c4:3a:12:1b: e6:b2:64:06:d2:ee:08:92:73:96:b4:1a:0c:a9:5a:c4:3e:15: 90:c3:6b:00:0c:33:64:0e:bb:c1:14:5e:22:23:b5:db:0f:8f: 1d:d9:17:4f:92:7e:1f:b8:76:12:d5:a4:f5:e9:a6:8e:50:36: fa:3d:e6:3d:7c:51:f8:93:24:32:c1:3a:10:c2:c3:32:e5:87: 96:c4:d7:9f:f7:76:ce:da:40:30:fa:23:79:67:d5:f9:ee:d5: 0d:af:c8:ca:05:d8:65:37:6d:7a:c5:c3:a6:42:bf:14:15:4e: 72:cd:28:cd:c7:22:01:51:6e:78:fb:c4:9b:ff:01:a6:60:da: 14:83:ef:85:1e:a4:7b:28:ca:c3:be:92:2d:f2:0d:a6:8a:cd: 16:c6:ad:5b:89:b8:37:16:62:80:45:c5:d7:d2:1d:17:cb:85: 97:8a:26:62:d0:ee:57:a7:6f:e1:96:3a:08:a0:8c:c7:07:32: 6c:3f:9b:d2:ae:4c:57:1a:8e:17:16:db:82:78:d0:0e:07:e0: 55:c8:22:38:de:8e:6e:b1:1a:fc:7b:8e:05:96:8f:6c:9e:c9: 60:12:ca:df:1d:a5:68:f8:ff:54:90:08:b5:5c:6f:92:05:a4: 59:a8:75:5b -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDzgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNTAyMTcw NzUzMTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNBRjBDNzExNUNFQjM0 RjJFNjJBOEEyNDE5M0U0MDBBMDNDQTIwRUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgV5YFttSNioIvxaIQxoOJ8pxwwZ1LEIavpz7EUW5rBemimWbw t6kk+GbYStWG/6UEYvQEzcGOCoDiCCcvLd08l7mxgEHBHccAHPfhDdJks+B4wJwn eMaLLJIYoKODsud7aOOUL2YLJm8rRZER7M+wZaWf2hheId+v1OAIr5Mqb26SN6rv ju493b71VcRPnKs7kUfewSSjfmWGO7oBqUNu1lzV03JzaCOFhSzqDhbXRFZ8U/IK UPHz4WTzBbMJ0tiw9MmMv1bdv92gRhohUrUKjtk/B+Zgt9qxGmQ8wjQKLU2b+eAW fgyd1qM+GTVlAnXZLi0Xs2rortcY8J9lewc7AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUOvDHEVzrNPLmKookGT5ACgPKIO4wHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9PdkRIRVZ6ck5QTG1Lb29rR1Q1 QUNnUEtJTzQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAeHcw DQYJKoZIhvcNAQELBQADggEBAK1nR9g5wkK3IfS+apTexDoSG+ayZAbS7giSc5a0 GgypWsQ+FZDDawAMM2QOu8EUXiIjtdsPjx3ZF0+Sfh+4dhLVpPXppo5QNvo95j18 UfiTJDLBOhDCwzLlh5bE15/3ds7aQDD6I3ln1fnu1Q2vyMoF2GU3bXrFw6ZCvxQV TnLNKM3HIgFRbnj7xJv/AaZg2hSD74UepHsoysO+ki3yDaaKzRbGrVuJuDcWYoBF xdfSHRfLhZeKJmLQ7lenb+GWOgigjMcHMmw/m9KuTFcajhcW24J40A4H4FXIIjje jm6xGvx7jgWWj2yeyWASyt8dpWj4/1SQCLVcb5IFpFmodVs= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:44 2025 by rpki-client on console.sobornost.net