$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/RYKudM5ng4YAEw8SOt5VIttRPFM.roa File: RYKudM5ng4YAEw8SOt5VIttRPFM.roa (raw, json) Hash identifier: IIEniaW1uCybS3xEGSMWNy3xeKQxrLL2dKDvFkgmHj8= Subject key identifier: 45:82:AE:74:CE:67:83:86:00:13:0F:12:3A:DE:55:22:DB:51:3C:53 Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0D71 Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/RYKudM5ng4YAEw8SOt5VIttRPFM.roa Signing time: Mon 10 Feb 2025 14:13:20 +0000 ROA not before: Mon 10 Feb 2025 14:13:20 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 61.58.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3441 (0xd71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Feb 10 14:13:20 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4582AE74CE67838600130F123ADE5522DB513C53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:78:6b:c7:b1:f3:ae:0c:e4:5f:c2:77:54:d1: 12:46:8f:48:5b:aa:44:b8:15:11:c0:79:db:b9:8d: bf:5d:3f:11:f7:b9:01:ed:71:27:33:e3:38:5d:d2: dd:08:7c:5c:ea:a0:ac:2a:59:45:8a:dc:0b:b5:b7: 93:bc:ec:ef:80:3a:f8:0c:83:bd:20:92:cb:99:06: a6:0d:88:a5:db:88:9d:de:1f:9b:3f:3f:3d:20:3a: fb:62:e1:af:a8:3c:97:42:2d:96:ee:e2:f4:de:22: db:b8:fb:76:df:09:c8:df:0e:cb:79:4c:83:97:ca: 9b:44:72:4e:c1:f7:82:c0:10:ca:72:d4:c3:1f:61: c3:a7:b4:ed:ca:e1:48:f1:e1:76:ee:e3:83:c7:68: 48:23:be:d0:0d:c9:3a:e8:ed:07:c7:6e:04:f6:95: 39:c4:cc:c2:6a:ad:3e:93:4c:8a:2c:bf:29:07:8e: 01:cb:30:42:b4:72:42:05:f5:9c:d0:90:60:e3:95: 20:b5:d7:32:e1:88:b6:46:e8:52:9d:8b:de:90:46: 5e:a7:62:d3:15:14:1c:73:de:dd:07:f4:16:4b:ec: bc:4b:2d:27:9a:68:b8:de:20:8f:bf:37:93:bf:2b: 4f:4f:a2:ce:40:c4:9c:69:f8:8d:73:62:13:ed:4a: 43:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:82:AE:74:CE:67:83:86:00:13:0F:12:3A:DE:55:22:DB:51:3C:53 X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/RYKudM5ng4YAEw8SOt5VIttRPFM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.80.0/20 Signature Algorithm: sha256WithRSAEncryption 2f:9e:e5:81:51:63:c7:18:2f:57:32:c3:86:f2:72:dd:aa:a2: a2:d4:eb:da:e3:f2:75:cc:98:da:e7:bc:62:99:ba:68:a4:00: 80:8b:45:4a:37:20:f2:68:80:45:aa:37:ad:45:68:9d:3c:79: d6:da:ec:90:1b:d7:d8:d5:55:cb:6d:18:ea:b5:ce:54:12:dd: 95:5a:65:3f:5f:4e:a5:92:00:5b:6f:e8:a0:06:b7:49:cc:87: 43:5f:ee:51:0c:66:96:01:da:01:2a:01:88:8b:69:e0:f0:c4: b1:53:2c:7d:dd:24:e4:37:69:ad:d4:57:26:6f:43:89:6d:14: 3f:43:2e:e3:4c:c1:34:3e:90:7c:1c:0c:17:e0:60:7a:f1:6c: ff:6e:b5:18:e1:bb:40:64:f8:fa:71:62:8d:26:0e:3f:a5:a9: 85:c7:c0:be:57:59:cb:8e:58:84:6e:71:bd:c0:95:ea:e9:be: 57:4f:f9:f8:87:24:8c:a2:e4:85:d9:3e:f3:42:52:24:c6:f7: c9:2a:dd:6f:a6:31:a2:c9:10:af:4e:f7:5e:c8:5c:c4:d3:e4: 50:e7:35:57:ab:62:f9:d4:52:4b:a7:cd:f6:ab:d0:e8:df:7b: 0e:47:54:ff:82:a0:a4:b9:fa:0b:8f:7a:c8:b3:3a:e1:b3:87: de:d7:8e:10 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDXEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNTAyMTAx NDEzMjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ1ODJBRTc0Q0U2Nzgz ODYwMDEzMEYxMjNBREU1NTIyREI1MTNDNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYeGvHsfOuDORfwndU0RJGj0hbqkS4FRHAedu5jb9dPxH3uQHt cScz4zhd0t0IfFzqoKwqWUWK3Au1t5O87O+AOvgMg70gksuZBqYNiKXbiJ3eH5s/ Pz0gOvti4a+oPJdCLZbu4vTeItu4+3bfCcjfDst5TIOXyptEck7B94LAEMpy1MMf YcOntO3K4Ujx4Xbu44PHaEgjvtANyTro7QfHbgT2lTnEzMJqrT6TTIosvykHjgHL MEK0ckIF9ZzQkGDjlSC11zLhiLZG6FKdi96QRl6nYtMVFBxz3t0H9BZL7LxLLSea aLjeII+/N5O/K09Pos5AxJxp+I1zYhPtSkMlAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQURYKudM5ng4YAEw8SOt5VIttRPFMwHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9SWUt1ZE01bmc0WUFFdzhTT3Q1 Vkl0dFJQRk0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEPTpQ MA0GCSqGSIb3DQEBCwUAA4IBAQAvnuWBUWPHGC9XMsOG8nLdqqKi1Ova4/J1zJja 57ximbpopACAi0VKNyDyaIBFqjetRWidPHnW2uyQG9fY1VXLbRjqtc5UEt2VWmU/ X06lkgBbb+igBrdJzIdDX+5RDGaWAdoBKgGIi2ng8MSxUyx93STkN2mt1Fcmb0OJ bRQ/Qy7jTME0PpB8HAwX4GB68Wz/brUY4btAZPj6cWKNJg4/pamFx8C+V1nLjliE bnG9wJXq6b5XT/n4hySMouSF2T7zQlIkxvfJKt1vpjGiyRCvTvdeyFzE0+RQ5zVX q2L51FJLp832q9Do33sOR1T/gqCkufoLj3rIszrhs4fe144Q -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:44 2025 by rpki-client on console.sobornost.net