$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/Dd0pmsWqtDA6TmIglHrQEIWOXwM.roa File: Dd0pmsWqtDA6TmIglHrQEIWOXwM.roa (raw, json) Hash identifier: z/SOYGL3Io5NxgC2bwd1hJ4jVXcPUjv+sRshbeMYoZE= Subject key identifier: 0D:DD:29:9A:C5:AA:B4:30:3A:4E:62:20:94:7A:D0:10:85:8E:5F:03 Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0D6B Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/Dd0pmsWqtDA6TmIglHrQEIWOXwM.roa Signing time: Mon 10 Feb 2025 14:13:18 +0000 ROA not before: Mon 10 Feb 2025 14:13:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131596 IP address blocks: 61.63.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3435 (0xd6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Feb 10 14:13:18 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0DDD299AC5AAB4303A4E6220947AD010858E5F03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c9:95:5a:b6:7f:20:5a:97:4f:5a:1c:4f:2a: 41:5b:43:e4:f7:50:85:df:b4:1b:d0:52:1d:fc:3a: bb:72:e9:55:49:06:d7:fc:c3:65:29:51:14:16:fa: 97:e1:72:db:0b:fc:fe:9f:da:65:a3:38:7c:88:6a: 70:25:9e:c5:78:ae:81:54:c7:8c:c2:91:ed:e4:7f: a3:b4:e2:d9:eb:15:cb:66:38:1d:a9:ec:f8:b6:32: 3c:e4:bc:db:68:e1:eb:aa:17:71:00:97:9e:eb:cb: d6:43:ec:03:ef:88:3c:6c:da:20:6e:ae:80:73:b0: 06:46:00:54:b5:4f:6c:e8:b7:3e:b8:a8:b6:a0:8c: d9:99:0c:12:c6:dc:2f:81:a4:36:a1:45:7f:39:d1: 5c:a9:f4:3b:c5:15:25:fb:ba:f8:85:69:62:80:9e: d7:f4:7a:95:cf:02:bc:da:5a:b7:47:5e:70:8d:98: 82:26:ee:34:a0:76:36:41:21:ec:ba:0a:3b:5c:40: 20:dd:34:fb:4c:39:09:1b:b2:40:e5:91:a3:0c:56: df:c4:ed:e4:9a:93:5b:9e:45:b6:95:c8:3f:4e:fd: 1d:92:71:36:1d:b4:be:f5:1d:f6:e7:69:9c:fa:f1: 35:ef:ca:e7:cb:17:44:a8:b8:1b:c9:6a:28:e4:9b: ec:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:DD:29:9A:C5:AA:B4:30:3A:4E:62:20:94:7A:D0:10:85:8E:5F:03 X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/Dd0pmsWqtDA6TmIglHrQEIWOXwM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.63.96.0/19 Signature Algorithm: sha256WithRSAEncryption 54:33:b5:30:d7:41:08:01:2f:ff:bb:aa:0d:8c:2c:0e:79:60: 62:da:30:07:4e:6f:63:37:5e:1b:00:a5:b2:94:67:30:69:ab: 3a:9b:82:5e:76:ba:d3:6c:18:49:b8:1f:4a:e5:e1:6e:f6:65: 1f:c3:9f:ef:b9:d0:4d:63:97:74:83:77:c8:e2:0d:e2:73:51: 05:d0:66:e5:7c:46:8b:2a:55:c0:c1:2a:ca:c6:7c:5b:ec:a7: be:10:38:43:2d:12:9e:cb:90:57:ab:46:c6:81:5e:da:e5:e5: d5:f8:b6:a3:85:aa:e5:4c:fc:dc:2e:4b:f6:ce:13:65:5c:45: f8:a1:c2:9e:45:96:d5:ea:22:6b:7a:dc:58:09:a0:9b:82:bf: 30:0c:5f:f9:c9:40:68:2b:3f:9b:3b:38:07:4e:c2:84:6f:2b: 52:11:4c:d2:d4:d4:45:bb:46:9f:41:5b:53:d4:83:97:4b:f5: 7e:43:75:21:1c:cc:65:fb:c3:af:2c:3f:3d:28:77:b1:24:f6: 39:f7:d2:2d:6a:d7:98:29:50:62:7c:e2:f8:16:09:03:f2:e8: 05:e0:eb:7c:68:44:a8:ce:94:e2:10:a8:d8:5b:78:df:1a:76: f6:5b:85:8f:83:8f:66:97:6a:42:31:40:45:7a:e3:5b:59:95: 3b:fb:a3:79 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDWswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNTAyMTAx NDEzMThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBEREQyOTlBQzVBQUI0 MzAzQTRFNjIyMDk0N0FEMDEwODU4RTVGMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0yZVatn8gWpdPWhxPKkFbQ+T3UIXftBvQUh38Orty6VVJBtf8 w2UpURQW+pfhctsL/P6f2mWjOHyIanAlnsV4roFUx4zCke3kf6O04tnrFctmOB2p 7Pi2MjzkvNto4euqF3EAl57ry9ZD7APviDxs2iBuroBzsAZGAFS1T2zotz64qLag jNmZDBLG3C+BpDahRX850Vyp9DvFFSX7uviFaWKAntf0epXPArzaWrdHXnCNmIIm 7jSgdjZBIey6CjtcQCDdNPtMOQkbskDlkaMMVt/E7eSak1ueRbaVyD9O/R2ScTYd tL71HfbnaZz68TXvyufLF0SouBvJaijkm+zhAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUDd0pmsWqtDA6TmIglHrQEIWOXwMwHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9EZDBwbXNXcXREQTZUbUlnbEhy UUVJV09Yd00ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFPT9g MA0GCSqGSIb3DQEBCwUAA4IBAQBUM7Uw10EIAS//u6oNjCwOeWBi2jAHTm9jN14b AKWylGcwaas6m4JedrrTbBhJuB9K5eFu9mUfw5/vudBNY5d0g3fI4g3ic1EF0Gbl fEaLKlXAwSrKxnxb7Ke+EDhDLRKey5BXq0bGgV7a5eXV+LajharlTPzcLkv2zhNl XEX4ocKeRZbV6iJretxYCaCbgr8wDF/5yUBoKz+bOzgHTsKEbytSEUzS1NRFu0af QVtT1IOXS/V+Q3UhHMxl+8OvLD89KHexJPY599ItateYKVBifOL4FgkD8ugF4Ot8 aESozpTiEKjYW3jfGnb2W4WPg49ml2pCMUBFeuNbWZU7+6N5 -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:44 2025 by rpki-client on console.sobornost.net