$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/ycQZK4oFzOP3Tkdvo-HCP6c7jgY.roa File: ycQZK4oFzOP3Tkdvo-HCP6c7jgY.roa (raw, json) Hash identifier: LBlAufgAkyIZkB5/ba58ewtX39KA+UgTLkq3XnjxbJM= Subject key identifier: C9:C4:19:2B:8A:05:CC:E3:F7:4E:47:6F:A3:E1:C2:3F:A7:3B:8E:06 Certificate issuer: /CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A Certificate serial: 0225 Authority key identifier: EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/ycQZK4oFzOP3Tkdvo-HCP6c7jgY.roa Signing time: Mon 14 Apr 2025 14:52:40 +0000 ROA not before: Mon 14 Apr 2025 14:52:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 215595 IP address blocks: 202.160.80.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 549 (0x225) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A Validity Not Before: Apr 14 14:52:40 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C9C4192B8A05CCE3F74E476FA3E1C23FA73B8E06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:83:c7:8e:f5:2c:5d:6b:de:2c:0a:ee:5b:29: e0:48:97:a4:fc:35:36:94:0d:38:37:73:b8:2e:b7: d8:61:32:2f:cc:b4:c0:ab:ab:6a:19:96:2c:7b:4e: 0e:07:13:27:06:ba:b1:05:6e:b4:13:86:48:34:e8: 92:d3:19:6a:c8:c6:87:36:aa:9f:73:1d:ec:84:56: 80:c9:2b:1a:09:c4:b3:01:c2:d9:79:28:88:7e:35: ff:2e:41:f2:28:f6:7d:4a:e2:50:5c:52:1e:be:6e: 62:52:ea:24:96:a3:d1:95:2e:23:16:e1:34:8d:fd: da:bf:ed:16:e6:95:a7:71:ea:61:f9:03:b6:11:18: be:bd:e7:d3:63:bb:81:04:54:36:c0:2a:85:3a:fa: 06:92:8c:50:9d:65:38:f7:91:da:1e:a9:b6:bd:7b: 77:ed:0e:29:ff:89:80:a5:c4:3e:36:ae:b6:e4:01: 26:ac:9b:7c:47:79:5f:a4:7b:68:91:ba:b4:6c:0e: 2a:71:19:9b:68:79:b6:ce:80:c4:96:c5:25:24:a7: bf:20:17:ff:77:53:43:fe:dd:2e:fa:55:17:8d:c5: 00:d8:47:3b:f6:d0:53:10:3c:b0:6b:d7:23:c2:c1: a0:6a:40:e6:78:25:0b:3f:95:21:d1:cd:c4:49:57: 2a:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:C4:19:2B:8A:05:CC:E3:F7:4E:47:6F:A3:E1:C2:3F:A7:3B:8E:06 X509v3 Authority Key Identifier: keyid:EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/ycQZK4oFzOP3Tkdvo-HCP6c7jgY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.160.80.0/21 Signature Algorithm: sha256WithRSAEncryption 3d:07:13:67:bb:3f:4a:ee:e3:8a:95:99:8d:5e:1b:19:c1:fe: 0a:7c:48:e7:7b:9c:a3:ad:8a:53:86:16:c9:f9:b7:20:6e:a5: c2:24:f9:2b:e1:88:68:d1:3a:29:42:ab:10:d2:a3:e3:80:95: 55:07:4d:9b:f1:a6:a5:c2:cc:90:e5:61:d6:57:52:9c:da:65: d3:b7:5e:0b:66:16:65:04:0e:49:23:6a:82:c4:7c:ba:2d:65: 17:79:3d:eb:60:5a:fb:93:ec:9c:eb:e0:d6:2c:78:a4:95:96: 44:49:25:23:61:2d:d4:d5:47:c5:cf:64:5a:ef:1b:69:80:ef: 38:dc:5d:d7:12:32:ab:35:2d:d2:c1:12:bf:33:7e:7b:77:cf: 64:9a:ad:d2:44:1a:da:0e:f3:8c:16:5a:c9:f9:dc:b8:a4:77: e3:18:24:5f:d3:a5:da:0b:61:45:b1:5b:a1:3a:fa:ad:ea:f8: 47:bc:7d:78:91:23:5f:08:14:d4:79:c3:c4:bf:26:8d:8f:95: 2e:59:b6:87:97:75:c6:9d:a3:32:c0:03:a7:24:d1:df:0c:1a: 4d:86:ba:4e:b6:05:9e:bc:d1:1d:56:46:eb:f0:f2:6e:7d:94: 89:58:a0:6f:a1:2e:1b:66:8b:7e:27:2e:de:26:fa:15:1a:90: c4:c3:22:3e -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICAiUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUNE MkZEQzM4NTIyQTc0QTQyMkRFN0JEMUMwMjZENTVFMDhEOUU5QTAeFw0yNTA0MTQx NDUyNDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM5QzQxOTJCOEEwNUND RTNGNzRFNDc2RkEzRTFDMjNGQTczQjhFMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/g8eO9Sxda94sCu5bKeBIl6T8NTaUDTg3c7gut9hhMi/MtMCr q2oZlix7Tg4HEycGurEFbrQThkg06JLTGWrIxoc2qp9zHeyEVoDJKxoJxLMBwtl5 KIh+Nf8uQfIo9n1K4lBcUh6+bmJS6iSWo9GVLiMW4TSN/dq/7Rbmladx6mH5A7YR GL6959Nju4EEVDbAKoU6+gaSjFCdZTj3kdoeqba9e3ftDin/iYClxD42rrbkASas m3xHeV+ke2iRurRsDipxGZtoebbOgMSWxSUkp78gF/93U0P+3S76VReNxQDYRzv2 0FMQPLBr1yPCwaBqQOZ4JQs/lSHRzcRJVyrXAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUycQZK4oFzOP3Tkdvo+HCP6c7jgYwHwYDVR0jBBgwFoAU7NL9w4Uip0pCLee9 HAJtVeCNnpowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFBTSUxL RVJBLzdOTDl3NFVpcDBwQ0xlZTlIQUp0VmVDTm5wby5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvN05MOXc0VWlwMHBDTGVlOUhBSnRWZUNObnBvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFBTSUxLRVJBL3ljUVpLNG9Gek9Q M1RrZHZvLUhDUDZjN2pnWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPKoFAwDQYJKoZIhvcNAQELBQADggEBAD0HE2e7P0ru44qVmY1eGxnB/gp8 SOd7nKOtilOGFsn5tyBupcIk+SvhiGjROilCqxDSo+OAlVUHTZvxpqXCzJDlYdZX UpzaZdO3XgtmFmUEDkkjaoLEfLotZRd5PetgWvuT7Jzr4NYseKSVlkRJJSNhLdTV R8XPZFrvG2mA7zjcXdcSMqs1LdLBEr8zfnt3z2SardJEGtoO84wWWsn53Likd+MY JF/TpdoLYUWxW6E6+q3q+Ee8fXiRI18IFNR5w8S/Jo2PlS5ZtoeXdcadozLAA6ck 0d8MGk2Guk62BZ680R1WRuvw8m59lIlYoG+hLhtmi34nLt4m+hUakMTDIj4= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:44 2025 by rpki-client on console.sobornost.net