$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/RYBekHDkWnZoamLtRC1rlt9cDo8.roa File: RYBekHDkWnZoamLtRC1rlt9cDo8.roa (raw, json) Hash identifier: JS2TX9IBDutxiOI78HHz53+u+23EMBgclNbOrK4XDms= Subject key identifier: 45:80:5E:90:70:E4:5A:76:68:6A:62:ED:44:2D:6B:96:DF:5C:0E:8F Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0E6E Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RYBekHDkWnZoamLtRC1rlt9cDo8.roa Signing time: Mon 10 Feb 2025 14:16:21 +0000 ROA not before: Mon 10 Feb 2025 14:16:21 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17716 IP address blocks: 192.192.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3694 (0xe6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Feb 10 14:16:21 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=45805E9070E45A76686A62ED442D6B96DF5C0E8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:19:0c:1c:62:65:91:f4:5c:dd:ed:1d:98:b7: 4e:d7:fe:47:04:e6:15:78:e4:0a:f4:e0:1e:d0:05: b9:d4:87:d1:37:b8:0b:51:0f:b5:26:e1:59:81:64: be:9d:0a:0f:b1:03:f5:82:3a:c1:ac:72:77:e0:e7: 57:47:2f:58:9e:d5:7f:3c:58:36:f2:33:80:f7:fc: c5:1c:16:ee:cb:d4:3c:94:4a:ee:8a:61:f6:a8:78: de:5c:a5:61:68:03:03:59:b1:93:51:b8:86:0a:fb: 1d:bb:4b:ab:c5:05:0a:48:60:c9:46:33:bd:c1:e1: 0e:0f:67:f3:ed:cb:1f:f4:c7:45:83:38:07:77:11: 6f:06:94:31:a3:8c:e4:e2:06:34:88:a5:ba:c4:74: 08:73:45:08:20:ae:26:09:5f:02:ff:99:7f:5f:c7: 3d:a4:2f:7b:ad:60:aa:10:65:b1:bc:32:4a:1e:15: f0:dd:6b:de:63:c9:c2:1d:4a:fa:e7:f4:b9:59:9b: 43:e8:f0:0f:25:5b:e4:04:d3:d3:65:9e:3a:7d:db: d3:5f:8f:80:ff:1b:ed:e1:8d:98:09:4c:6c:86:7c: 5c:f6:5f:9b:c8:1a:8c:69:92:3c:f9:c8:a5:3b:73: 8d:3a:89:00:2a:08:fa:a0:ee:dd:a9:41:9c:23:e5: cc:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:80:5E:90:70:E4:5A:76:68:6A:62:ED:44:2D:6B:96:DF:5C:0E:8F X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RYBekHDkWnZoamLtRC1rlt9cDo8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.192.1.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:84:e1:7e:27:73:b5:80:9d:8a:83:72:91:32:ae:42:ac:01: a8:69:74:30:05:6a:aa:0f:69:08:f3:99:ca:c7:9e:fc:41:1f: ed:2a:4f:26:c6:8f:ac:01:2a:b4:50:18:7a:bb:83:2e:1d:68: cd:17:02:ad:f7:b7:97:d9:51:eb:63:53:3b:c9:6f:aa:53:8e: f3:59:b1:38:e3:8c:f2:25:2c:2e:5f:27:f8:4d:75:58:a1:1e: 33:13:8a:42:38:1f:0f:d4:03:6f:a6:d3:79:6d:34:a9:e0:7a: 03:5a:42:6f:9d:6c:95:2b:28:36:ad:86:8a:e4:df:7b:4f:90: b7:e7:42:7d:56:16:52:45:08:9a:43:60:6e:f7:6e:bb:86:5b: c8:a8:5c:42:84:8a:2c:ea:31:02:ea:9f:92:f9:25:9d:91:82: 1a:f6:35:76:47:52:08:21:1b:99:d6:15:00:26:6a:c8:8d:ac: 4e:08:73:c8:16:de:2d:26:4d:0d:2a:2c:66:bc:e5:dc:14:b2: 10:31:46:c4:42:55:34:c5:1c:b9:2b:c1:41:35:da:6f:f3:ba: 11:16:94:7b:bd:e1:22:6c:ad:5c:9e:71:67:38:5b:6b:72:36: 14:0a:be:17:d6:d4:de:a4:aa:5f:f0:fd:05:d7:ae:0c:91:ef: 93:45:6a:46 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDm4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTAyMTAx NDE2MjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ1ODA1RTkwNzBFNDVB NzY2ODZBNjJFRDQ0MkQ2Qjk2REY1QzBFOEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6GQwcYmWR9Fzd7R2Yt07X/kcE5hV45Ar04B7QBbnUh9E3uAtR D7Um4VmBZL6dCg+xA/WCOsGscnfg51dHL1ie1X88WDbyM4D3/MUcFu7L1DyUSu6K YfaoeN5cpWFoAwNZsZNRuIYK+x27S6vFBQpIYMlGM73B4Q4PZ/Ptyx/0x0WDOAd3 EW8GlDGjjOTiBjSIpbrEdAhzRQggriYJXwL/mX9fxz2kL3utYKoQZbG8MkoeFfDd a95jycIdSvrn9LlZm0Po8A8lW+QE09Nlnjp929Nfj4D/G+3hjZgJTGyGfFz2X5vI Goxpkjz5yKU7c406iQAqCPqg7t2pQZwj5cx/AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQURYBekHDkWnZoamLtRC1rlt9cDo8wHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9SWUJla0hEa1duWm9hbUx0UkMx cmx0OWNEbzgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwMAB MA0GCSqGSIb3DQEBCwUAA4IBAQCfhOF+J3O1gJ2Kg3KRMq5CrAGoaXQwBWqqD2kI 85nKx578QR/tKk8mxo+sASq0UBh6u4MuHWjNFwKt97eX2VHrY1M7yW+qU47zWbE4 44zyJSwuXyf4TXVYoR4zE4pCOB8P1ANvptN5bTSp4HoDWkJvnWyVKyg2rYaK5N97 T5C350J9VhZSRQiaQ2Bu9267hlvIqFxChIos6jEC6p+S+SWdkYIa9jV2R1IIIRuZ 1hUAJmrIjaxOCHPIFt4tJk0NKixmvOXcFLIQMUbEQlU0xRy5K8FBNdpv87oRFpR7 veEibK1cnnFnOFtrcjYUCr4X1tTepKpf8P0F164Mke+TRWpG -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:44 2025 by rpki-client on console.sobornost.net