$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/-M4sPju3mJYHzIzLEfn2N3ndVag.roa File: -M4sPju3mJYHzIzLEfn2N3ndVag.roa (raw, json) Hash identifier: ZMKEH6JWwXfIqy4K+7+ryFCJVW3T42GM+tPxlOOp7t8= Subject key identifier: F8:CE:2C:3E:3B:B7:98:96:07:CC:8C:CB:11:F9:F6:37:79:DD:55:A8 Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 01F2 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/-M4sPju3mJYHzIzLEfn2N3ndVag.roa Signing time: Wed 14 May 2025 01:52:58 +0000 ROA not before: Wed 14 May 2025 01:52:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152609 IP address blocks: 157.20.248.68/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 08:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 498 (0x1f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: May 14 01:52:58 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F8CE2C3E3BB7989607CC8CCB11F9F63779DD55A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:18:79:e1:2f:09:53:cf:20:43:54:d3:29:97: 40:18:98:84:e6:9f:bf:13:e0:2f:b5:9d:2b:a4:8b: 7b:f5:5a:24:82:5e:a0:60:c5:bf:dd:5e:58:7b:09: 4a:f5:98:e0:55:3e:ce:63:82:6f:d5:c6:6c:1a:bc: 3b:13:ba:9d:9c:69:1d:08:16:38:4c:ee:95:4f:3b: ed:28:46:23:7a:c8:f9:54:25:65:2a:70:45:95:1b: 20:0d:19:89:02:76:21:05:f5:11:c7:0a:50:af:bc: e1:4c:c7:78:c9:77:4f:d3:07:1e:82:a1:b2:ed:71: ba:f3:9d:fe:0e:40:e5:f1:8a:0c:76:64:2a:07:5e: 21:f5:d8:6e:c8:a5:1d:d2:56:b9:bb:62:a3:3d:02: 85:bd:77:7a:a6:02:a2:21:71:b8:ed:13:2b:3d:1b: 37:b3:49:a4:86:ac:f8:a3:7b:fd:45:45:df:cb:21: c2:32:3a:f5:5f:12:ed:a9:4e:c7:46:1c:79:8f:aa: 3f:5c:a0:6e:2f:14:96:16:37:79:7d:12:a0:58:cd: 21:0c:2c:a1:de:9f:fe:4a:90:e2:e8:67:f5:f0:d0: 89:11:37:b4:8e:c2:55:5a:cb:26:50:63:f5:54:b4: 8c:55:e3:cc:c8:05:b7:68:a0:61:f3:e3:3b:21:29: 63:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:CE:2C:3E:3B:B7:98:96:07:CC:8C:CB:11:F9:F6:37:79:DD:55:A8 X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/-M4sPju3mJYHzIzLEfn2N3ndVag.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.248.68/32 Signature Algorithm: sha256WithRSAEncryption 66:a6:20:90:4a:5f:a1:26:87:6c:b1:cd:c6:0e:b0:6c:9a:57: c3:5b:b1:14:7c:cf:74:58:33:5f:f4:1d:11:19:0d:f8:4e:e5: 2e:86:26:54:a7:6f:8f:0d:f5:68:38:4b:a3:b5:d1:37:71:5c: e6:ec:41:96:e1:68:3b:be:e8:e2:8d:2f:26:44:f5:30:5e:91: ad:d5:0a:a2:e9:59:bf:26:31:8e:8f:27:14:5e:e9:0a:63:20: b4:0a:ea:5f:80:5f:ca:57:89:26:54:fb:e6:f8:dc:45:88:ac: 95:31:02:51:00:32:21:3d:96:c9:e7:8c:76:40:e5:2a:e2:be: 7e:a8:93:b8:a8:fc:b2:12:8b:e0:79:9e:9f:09:7a:fe:ee:7c: c1:b0:3f:b9:7c:9d:98:36:c4:a7:26:95:9a:b0:a8:88:ee:b5: 8c:d9:62:00:dc:b3:7a:21:71:2c:61:3a:86:3d:47:a8:8a:76: 14:2b:eb:36:73:2d:f6:34:2a:ad:e8:80:4b:4e:90:cf:53:54: eb:12:48:54:f5:12:4e:b5:fa:0e:50:78:dc:16:ab:6a:aa:0b: 7c:12:94:6f:74:41:13:0e:9e:e8:28:f1:cf:9e:49:10:70:27: 07:72:65:99:20:3d:6e:4e:29:03:a6:8e:a3:ca:66:96:88:7b: e8:57:bc:2b -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAfIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA1MTQw MTUyNThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY4Q0UyQzNFM0JCNzk4 OTYwN0NDOENDQjExRjlGNjM3NzlERDU1QTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGGHnhLwlTzyBDVNMpl0AYmITmn78T4C+1nSuki3v1WiSCXqBg xb/dXlh7CUr1mOBVPs5jgm/VxmwavDsTup2caR0IFjhM7pVPO+0oRiN6yPlUJWUq cEWVGyANGYkCdiEF9RHHClCvvOFMx3jJd0/TBx6CobLtcbrznf4OQOXxigx2ZCoH XiH12G7IpR3SVrm7YqM9AoW9d3qmAqIhcbjtEys9GzezSaSGrPije/1FRd/LIcIy OvVfEu2pTsdGHHmPqj9coG4vFJYWN3l9EqBYzSEMLKHen/5KkOLoZ/Xw0IkRN7SO wlVayyZQY/VUtIxV48zIBbdooGHz4zshKWN7AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU+M4sPju3mJYHzIzLEfn2N3ndVagwHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvLU00c1BqdTNtSllIekl6TEVmbjJO M25kVmFnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAJ0U+EQw DQYJKoZIhvcNAQELBQADggEBAGamIJBKX6Emh2yxzcYOsGyaV8NbsRR8z3RYM1/0 HREZDfhO5S6GJlSnb48N9Wg4S6O10TdxXObsQZbhaDu+6OKNLyZE9TBeka3VCqLp Wb8mMY6PJxRe6QpjILQK6l+AX8pXiSZU++b43EWIrJUxAlEAMiE9lsnnjHZA5Sri vn6ok7io/LISi+B5np8Jev7ufMGwP7l8nZg2xKcmlZqwqIjutYzZYgDcs3ohcSxh OoY9R6iKdhQr6zZzLfY0Kq3ogEtOkM9TVOsSSFT1Ek61+g5QeNwWq2qqC3wSlG90 QRMOnugo8c+eSRBwJwdyZZkgPW5OKQOmjqPKZpaIe+hXvCs= -----END CERTIFICATE-----Generated at Mon May 19 07:17:37 2025 by rpki-client