$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/_a5_rsTZQmTRFEQX8zb9fFZL-HE.roa File: _a5_rsTZQmTRFEQX8zb9fFZL-HE.roa (raw, json) Hash identifier: lkleLGg/Pwlvcxxncw2jks3Mp2GuaCsZ2LE4yKQf5Ws= Subject key identifier: FD:AE:7F:AE:C4:D9:42:64:D1:14:44:17:F3:36:FD:7C:56:4B:F8:71 Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0D58 Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/_a5_rsTZQmTRFEQX8zb9fFZL-HE.roa Signing time: Mon 10 Feb 2025 14:13:13 +0000 ROA not before: Mon 10 Feb 2025 14:13:13 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 61.58.64.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3416 (0xd58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Feb 10 14:13:13 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FDAE7FAEC4D94264D1144417F336FD7C564BF871 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:de:5a:07:21:a5:8e:2e:f6:8e:99:27:66:15: 05:3b:fe:ed:c4:74:36:08:45:43:1d:44:ba:b2:f0: a7:e5:d6:09:20:98:98:4b:d5:7b:bf:78:42:39:57: ef:ec:3e:a6:fc:7d:91:89:3a:07:b3:19:51:88:29: 0e:47:ea:ed:26:cd:0e:2b:82:c5:99:9e:bf:94:3f: 3a:fb:00:40:46:8c:89:ac:10:7d:bb:f5:dd:56:71: bc:7f:dc:05:e6:5c:14:d5:a6:04:3f:29:f1:e5:32: a4:0a:1f:a7:6a:a9:5f:96:68:d1:74:ba:91:8b:e8: 51:0b:c8:4c:ff:de:8f:e3:41:99:87:45:7a:d5:6a: 0b:24:a4:8b:54:61:81:77:f1:d6:6f:15:21:ea:f4: a9:da:f0:25:a4:e3:cf:8f:36:54:d3:77:82:9b:d4: 84:57:35:b2:f0:9a:80:6e:ef:a5:17:c9:89:43:93: 0f:e3:80:ed:af:f1:c6:e6:db:83:6a:e2:d0:1a:6b: 74:96:5d:59:8d:36:51:9b:af:2f:0b:20:9a:35:83: 31:be:6f:e3:7d:c7:8e:a7:93:b9:5e:d6:ea:89:f1: ef:81:cd:25:54:07:ed:e5:db:65:bf:5a:e3:92:6c: 9a:6d:11:74:e2:d7:b2:9f:5a:ed:fa:05:26:bd:0d: 11:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:AE:7F:AE:C4:D9:42:64:D1:14:44:17:F3:36:FD:7C:56:4B:F8:71 X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/_a5_rsTZQmTRFEQX8zb9fFZL-HE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.64.0/21 Signature Algorithm: sha256WithRSAEncryption 13:0d:12:08:c6:0a:92:bd:e8:0c:ed:d4:32:c3:f1:fc:24:19: 3e:2e:46:1b:2f:15:cf:0e:07:30:e3:98:1c:43:7b:05:9d:91: fa:8b:e0:77:a6:e9:bd:69:fd:ff:91:0a:5d:d1:ac:7f:f1:a2: 18:71:1f:ac:93:b7:e8:7c:cb:57:cb:77:9b:11:36:f5:5c:3f: ef:99:d3:dd:ae:20:11:0a:04:8a:f7:f3:98:a5:f6:19:24:0d: 62:7c:ed:84:3b:df:6d:3e:bf:f5:45:09:c2:46:7e:54:ed:63: e9:95:19:da:6e:8b:51:8f:0a:30:89:91:cc:1c:02:2d:0b:b1: 82:81:ff:b8:d8:96:0b:7d:57:23:80:5f:a3:d0:ab:84:5a:c9: 00:f9:54:f4:24:52:89:6b:4f:92:1e:98:29:b6:c2:8c:76:bc: a6:2f:96:6d:c0:39:32:1b:1e:7b:2e:8c:e6:ca:0e:1e:45:aa: 4a:e3:ce:90:38:5e:9f:af:d6:c7:6f:4e:58:ba:55:72:81:5c: ff:bd:4b:0c:56:5b:6a:fa:37:c7:6f:28:bf:c8:7e:9a:ee:eb: c9:9d:1d:4f:9f:f9:a9:78:db:fb:7b:a7:56:b1:6a:48:a5:b4: 53:cf:41:04:b4:5d:bb:d0:9f:00:78:50:43:f6:f6:e6:8b:71: cf:a4:f0:5d -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDVgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNTAyMTAx NDEzMTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZEQUU3RkFFQzREOTQy NjREMTE0NDQxN0YzMzZGRDdDNTY0QkY4NzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJ3loHIaWOLvaOmSdmFQU7/u3EdDYIRUMdRLqy8Kfl1gkgmJhL 1Xu/eEI5V+/sPqb8fZGJOgezGVGIKQ5H6u0mzQ4rgsWZnr+UPzr7AEBGjImsEH27 9d1Wcbx/3AXmXBTVpgQ/KfHlMqQKH6dqqV+WaNF0upGL6FELyEz/3o/jQZmHRXrV agskpItUYYF38dZvFSHq9Kna8CWk48+PNlTTd4Kb1IRXNbLwmoBu76UXyYlDkw/j gO2v8cbm24Nq4tAaa3SWXVmNNlGbry8LIJo1gzG+b+N9x46nk7le1uqJ8e+BzSVU B+3l22W/WuOSbJptEXTi17KfWu36BSa9DRFvAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU/a5/rsTZQmTRFEQX8zb9fFZL+HEwHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9fYTVfcnNUWlFtVFJGRVFYOHpi OWZGWkwtSEUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDPTpA MA0GCSqGSIb3DQEBCwUAA4IBAQATDRIIxgqSvegM7dQyw/H8JBk+LkYbLxXPDgcw 45gcQ3sFnZH6i+B3pum9af3/kQpd0ax/8aIYcR+sk7fofMtXy3ebETb1XD/vmdPd riARCgSK9/OYpfYZJA1ifO2EO99tPr/1RQnCRn5U7WPplRnabotRjwowiZHMHAIt C7GCgf+42JYLfVcjgF+j0KuEWskA+VT0JFKJa0+SHpgptsKMdrymL5ZtwDkyGx57 Lozmyg4eRapK486QOF6fr9bHb05YulVygVz/vUsMVltq+jfHbyi/yH6a7uvJnR1P n/mpeNv7e6dWsWpIpbRTz0EEtF270J8AeFBD9vbmi3HPpPBd -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:44 2025 by rpki-client on console.sobornost.net