$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/hjHGQpV51C1_IR8ap-_XdUz-MUc.roa File: hjHGQpV51C1_IR8ap-_XdUz-MUc.roa (raw, json) Hash identifier: VUY+IKLK7Nx/95/1ocZ/q+dSi7Cw2Zgqmn2DUGyl7Zg= Subject key identifier: 86:31:C6:42:95:79:D4:2D:7F:21:1F:1A:A7:EF:D7:75:4C:FE:31:47 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0EFC Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/hjHGQpV51C1_IR8ap-_XdUz-MUc.roa Signing time: Tue 18 Feb 2025 07:46:46 +0000 ROA not before: Tue 18 Feb 2025 07:46:46 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18177 IP address blocks: 140.133.0.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3836 (0xefc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Feb 18 07:46:46 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8631C6429579D42D7F211F1AA7EFD7754CFE3147 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:94:31:41:ba:a8:eb:71:a9:27:24:45:c5:98: 05:7e:b0:26:3d:44:72:51:ca:55:f4:c5:57:ca:ed: 39:ab:5c:19:58:02:42:31:e9:15:00:68:42:6e:9c: 46:ca:12:49:44:cd:39:5d:f2:19:67:3f:89:10:87: a5:8d:91:22:db:f9:7b:0e:a4:8c:70:13:ae:90:cf: 0c:c9:15:66:52:bc:66:40:ef:63:dc:ca:64:c4:2a: 82:7c:6e:2c:ac:bf:a2:a1:e6:73:c8:72:04:f0:b5: 72:d5:33:80:11:f6:a8:26:c7:e5:16:01:5b:1e:89: 8a:8d:c2:4d:ba:85:54:1f:cc:2a:01:b7:ad:38:02: ee:58:40:58:aa:75:29:49:e5:96:ee:02:c4:6d:04: e1:45:4f:6c:58:73:0d:46:9c:58:fc:08:87:5f:8f: 30:3c:ad:11:33:f3:12:9d:82:43:ef:d2:f0:31:d0: 71:a7:83:29:78:2c:cf:ee:f7:35:af:95:5e:eb:26: 68:30:be:71:7a:44:be:da:db:c8:cb:a1:87:e8:9c: 65:58:0c:1c:33:dc:c6:5f:6b:20:12:1c:89:78:d6: 86:b5:6f:e1:f5:0f:0e:e9:b2:10:0b:02:9c:e9:ba: 91:ee:58:8c:14:e2:ed:50:95:77:4b:2c:e7:fd:96: a2:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:31:C6:42:95:79:D4:2D:7F:21:1F:1A:A7:EF:D7:75:4C:FE:31:47 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/hjHGQpV51C1_IR8ap-_XdUz-MUc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.133.0.0/20 Signature Algorithm: sha256WithRSAEncryption 7f:52:ed:19:cb:c0:2a:53:22:d6:00:fd:f8:4c:83:ee:3f:b4: f7:1c:56:62:2d:f3:90:ba:af:06:84:ab:3c:2b:73:f6:f1:fb: 58:83:38:33:73:3a:bb:da:c5:89:6d:0d:10:e5:b6:87:16:68: 07:2c:1d:77:72:ba:20:53:f5:91:d4:5f:a7:e0:ed:b1:e7:2b: 32:a6:9c:be:c8:7f:07:ef:df:b6:fc:4c:61:a6:93:58:a8:c2: 90:42:86:47:b1:3b:84:26:78:7b:38:a7:e4:c8:7a:16:04:86: c7:d1:47:8f:34:e7:14:fa:d1:10:8f:cd:9c:ac:45:de:30:0e: 94:23:b0:ec:2c:20:bf:41:87:a9:1b:87:5d:c3:f2:b9:69:d0: d2:fd:4c:73:e4:8e:d2:54:7a:80:53:58:a1:81:97:0f:47:6a: fa:7b:68:61:11:8b:31:3a:cc:69:33:6c:77:b9:df:6e:be:d2: 5d:70:65:05:05:59:ae:64:85:75:b0:ce:72:51:c0:c5:76:23: b4:3e:0c:de:4f:6c:78:a7:c5:40:ab:59:e9:78:26:f2:8d:0b: 65:38:5b:45:a0:44:2b:92:67:98:03:0a:2a:48:21:2e:79:95: 56:67:fa:89:00:c2:27:22:18:5c:2f:eb:13:b0:e7:27:99:9e: 8c:d8:4b:7b -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDvwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTAyMTgw NzQ2NDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg2MzFDNjQyOTU3OUQ0 MkQ3RjIxMUYxQUE3RUZENzc1NENGRTMxNDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSlDFBuqjrcaknJEXFmAV+sCY9RHJRylX0xVfK7TmrXBlYAkIx 6RUAaEJunEbKEklEzTld8hlnP4kQh6WNkSLb+XsOpIxwE66QzwzJFWZSvGZA72Pc ymTEKoJ8biysv6Kh5nPIcgTwtXLVM4AR9qgmx+UWAVseiYqNwk26hVQfzCoBt604 Au5YQFiqdSlJ5ZbuAsRtBOFFT2xYcw1GnFj8CIdfjzA8rREz8xKdgkPv0vAx0HGn gyl4LM/u9zWvlV7rJmgwvnF6RL7a28jLoYfonGVYDBwz3MZfayASHIl41oa1b+H1 Dw7pshALApzpupHuWIwU4u1QlXdLLOf9lqIRAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUhjHGQpV51C1/IR8ap+/XdUz+MUcwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9oakhHUXBWNTFDMV9JUjhhcC1f WGRVei1NVWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEjIUA MA0GCSqGSIb3DQEBCwUAA4IBAQB/Uu0Zy8AqUyLWAP34TIPuP7T3HFZiLfOQuq8G hKs8K3P28ftYgzgzczq72sWJbQ0Q5baHFmgHLB13crogU/WR1F+n4O2x5ysyppy+ yH8H79+2/ExhppNYqMKQQoZHsTuEJnh7OKfkyHoWBIbH0UePNOcU+tEQj82crEXe MA6UI7DsLCC/QYepG4ddw/K5adDS/Uxz5I7SVHqAU1ihgZcPR2r6e2hhEYsxOsxp M2x3ud9uvtJdcGUFBVmuZIV1sM5yUcDFdiO0PgzeT2x4p8VAq1npeCbyjQtlOFtF oEQrkmeYAwoqSCEueZVWZ/qJAMInIhhcL+sTsOcnmZ6M2Et7 -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:44 2025 by rpki-client on console.sobornost.net