$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/1F7YgxN0IftZbsUsReN9KWzyhVg.roa File: 1F7YgxN0IftZbsUsReN9KWzyhVg.roa (raw, json) Hash identifier: jVSpH9GtBvJhTPQaFDH3Se2lj8C7YyR1HtqmKSu1NsA= Subject key identifier: D4:5E:D8:83:13:74:21:FB:59:6E:C5:2C:45:E3:7D:29:6C:F2:85:58 Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 01DC Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/1F7YgxN0IftZbsUsReN9KWzyhVg.roa Signing time: Tue 13 May 2025 05:05:23 +0000 ROA not before: Tue 13 May 2025 05:05:23 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152609 IP address blocks: 157.20.248.40/30 maxlen: 30 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 08:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 476 (0x1dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: May 13 05:05:23 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D45ED883137421FB596EC52C45E37D296CF28558 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:cb:fb:14:9c:8e:05:5e:d1:b7:92:9e:77:2c: fd:a0:45:f1:61:6f:54:d6:39:60:53:4e:57:b8:47: 3d:7e:4b:b0:c5:59:f8:08:18:f7:5c:a6:b3:c5:c3: 84:6b:ed:ea:b6:a5:a2:1b:7e:c2:8f:57:95:e1:02: 3e:d1:d0:96:29:b1:8c:db:63:7e:bf:d0:04:0f:99: ee:27:6a:87:21:b7:32:6f:76:f6:80:7d:35:5d:cd: 5b:8c:e0:e7:6f:b6:fb:f5:9c:df:5d:4a:08:b8:af: f8:c5:b9:ed:82:e6:15:b7:ca:5c:76:d6:2b:3d:88: 70:b4:c3:cc:e2:9e:b5:1b:3b:13:ed:63:c0:e3:cd: 7e:0a:f3:b6:66:d6:83:f4:52:24:94:10:15:99:d4: 1e:dd:a1:3e:7d:53:7d:8c:84:c4:21:9c:81:22:a3: 87:46:77:1e:14:36:1b:75:38:52:64:7d:60:3b:35: c4:51:1e:28:95:15:3b:04:22:89:6f:b2:bf:ad:8e: 7f:c9:e2:d4:3c:0e:51:1f:bd:cf:88:ec:d8:8b:06: a2:49:2a:a7:eb:7a:a5:83:4d:14:c4:28:db:b4:37: 06:37:16:63:ee:c7:ac:8b:da:e5:ad:61:b8:be:7a: ab:82:7b:00:16:69:92:86:2f:66:98:3d:93:82:39: 37:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:5E:D8:83:13:74:21:FB:59:6E:C5:2C:45:E3:7D:29:6C:F2:85:58 X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/1F7YgxN0IftZbsUsReN9KWzyhVg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.248.40/30 Signature Algorithm: sha256WithRSAEncryption 15:c4:71:09:b1:c4:c4:bb:6c:47:24:17:2f:66:2e:73:5d:d3: 97:98:b9:97:fb:f9:2f:4b:e5:66:89:ca:b4:d2:62:37:53:e2: d3:9e:8b:49:7f:6d:6d:08:da:17:d6:d3:d1:e3:48:50:de:82: b9:76:57:82:9f:75:bc:4d:1b:e4:0a:a5:4e:32:38:12:40:26: 1a:d6:d9:d6:12:d9:c9:30:dc:f0:a5:54:54:55:a9:2c:06:3a: c2:b9:4f:87:48:2e:31:6f:12:a7:f7:ba:49:5e:d0:40:68:2f: e4:15:9e:4a:23:c5:05:4c:d4:01:46:0d:5f:46:45:ac:da:4d: 85:6c:fc:67:ff:f0:5e:21:79:d1:e7:b8:61:bf:2a:e9:39:29: f0:b8:97:82:10:31:61:20:70:0b:5a:1c:09:d1:35:34:4a:2b: a1:4d:1d:27:06:98:80:fe:f1:ea:f2:ff:7a:ce:f9:31:f4:91: b8:ce:60:27:75:38:fa:1e:22:fb:43:b8:18:6a:2b:8e:7d:90: 60:61:ac:5f:c9:70:dc:7c:2f:85:3f:5e:a9:26:31:5b:08:95: aa:11:07:02:50:c6:40:c1:9e:b1:d6:1e:d4:30:3e:e1:d0:e5: 84:41:d2:59:3b:f9:28:43:bf:f2:a5:1a:c1:99:e6:69:f1:ee: c7:9c:9f:4d -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAdwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA1MTMw NTA1MjNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ0NUVEODgzMTM3NDIx RkI1OTZFQzUyQzQ1RTM3RDI5NkNGMjg1NTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMy/sUnI4FXtG3kp53LP2gRfFhb1TWOWBTTle4Rz1+S7DFWfgI GPdcprPFw4Rr7eq2paIbfsKPV5XhAj7R0JYpsYzbY36/0AQPme4naochtzJvdvaA fTVdzVuM4Odvtvv1nN9dSgi4r/jFue2C5hW3ylx21is9iHC0w8zinrUbOxPtY8Dj zX4K87Zm1oP0UiSUEBWZ1B7doT59U32MhMQhnIEio4dGdx4UNht1OFJkfWA7NcRR HiiVFTsEIolvsr+tjn/J4tQ8DlEfvc+I7NiLBqJJKqfreqWDTRTEKNu0NwY3FmPu x6yL2uWtYbi+equCewAWaZKGL2aYPZOCOTfnAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU1F7YgxN0IftZbsUsReN9KWzyhVgwHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvMUY3WWd4TjBJZnRaYnNVc1JlTjlL V3p5aFZnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAp0U+Cgw DQYJKoZIhvcNAQELBQADggEBABXEcQmxxMS7bEckFy9mLnNd05eYuZf7+S9L5WaJ yrTSYjdT4tOei0l/bW0I2hfW09HjSFDegrl2V4KfdbxNG+QKpU4yOBJAJhrW2dYS 2ckw3PClVFRVqSwGOsK5T4dILjFvEqf3ukle0EBoL+QVnkojxQVM1AFGDV9GRaza TYVs/Gf/8F4hedHnuGG/Kuk5KfC4l4IQMWEgcAtaHAnRNTRKK6FNHScGmID+8ery /3rO+TH0kbjOYCd1OPoeIvtDuBhqK459kGBhrF/JcNx8L4U/XqkmMVsIlaoRBwJQ xkDBnrHWHtQwPuHQ5YRB0lk7+ShDv/KlGsGZ5mnx7secn00= -----END CERTIFICATE-----Generated at Mon May 19 07:21:10 2025 by rpki-client