$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/1JPvEGIqedVYUhQl6ZQy9Eh-z5A.roa File: 1JPvEGIqedVYUhQl6ZQy9Eh-z5A.roa (raw, json) Hash identifier: fRKPJW2JHO6WI3wQJAQc3/tWG0Udk8IE5DX1H2AHi8Y= Subject key identifier: D4:93:EF:10:62:2A:79:D5:58:52:14:25:E9:94:32:F4:48:7E:CF:90 Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 0208 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/1JPvEGIqedVYUhQl6ZQy9Eh-z5A.roa Signing time: Wed 14 May 2025 06:03:19 +0000 ROA not before: Wed 14 May 2025 06:03:19 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152609 IP address blocks: 157.20.249.12/30 maxlen: 30 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 08:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 520 (0x208) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: May 14 06:03:19 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D493EF10622A79D558521425E99432F4487ECF90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:78:33:94:f0:88:1a:d2:0a:99:73:7e:7b:b2: cb:07:68:48:de:ad:2d:15:e1:ac:db:ea:d6:b2:d6: 93:3c:58:7d:53:8a:6b:ca:cc:b2:1f:39:14:cd:ed: 90:d5:93:56:3f:9a:cd:d1:c5:42:09:1a:b4:ff:b8: 11:08:4e:21:82:9d:7d:de:f2:a5:c0:44:70:ca:81: b7:f7:17:29:92:3b:37:86:59:a5:c5:23:68:33:6a: 80:ae:5e:97:62:cc:8a:56:99:27:37:e3:08:63:9c: 3b:aa:a1:10:75:b0:b9:bb:8b:8c:20:68:59:64:73: 53:aa:bf:f8:ba:77:c6:1a:d4:b4:6c:79:1e:e2:87: a1:6a:9d:4e:e7:2c:4e:91:46:31:95:b1:8c:d1:03: 20:95:29:6c:dd:b9:78:d5:22:0c:c8:c5:7d:66:08: 33:22:24:e2:4a:e8:c9:85:93:4c:c4:96:8c:44:4e: d2:d1:b8:55:fc:84:b1:d6:f2:c1:b8:7d:58:7c:ac: 3b:d0:15:fe:78:b5:89:e1:3a:be:69:d1:7b:c2:fc: bc:b6:ec:7a:10:5a:a6:be:dd:60:e1:b3:e0:83:0b: ea:bf:87:11:88:bf:2e:9d:66:d8:fe:f8:6b:30:d8: ba:27:5c:ae:dc:07:37:a3:16:61:b8:17:a7:a2:53: 14:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:93:EF:10:62:2A:79:D5:58:52:14:25:E9:94:32:F4:48:7E:CF:90 X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/1JPvEGIqedVYUhQl6ZQy9Eh-z5A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.249.12/30 Signature Algorithm: sha256WithRSAEncryption 4e:b0:f3:10:a0:5e:3f:c2:56:22:31:40:b1:0e:65:e3:07:b2: 76:6a:54:f6:4a:6f:c7:fa:f8:db:69:29:1c:12:a6:01:56:5a: 0c:3e:57:0c:0d:1a:38:d3:0d:b1:63:30:c2:c1:8a:07:95:3f: 16:fa:6e:5e:c3:2b:20:aa:86:ca:d0:58:a0:ab:e8:86:e8:41: 6d:2f:c7:bf:5a:3f:52:6a:1c:24:d3:8c:8e:b3:21:13:49:af: fb:02:23:28:79:07:96:31:bc:a0:ef:6b:53:7e:b1:ed:b7:38: 10:cf:71:cb:5c:38:d1:71:d5:0f:5d:16:e7:3f:d4:fd:14:a4: 30:a5:11:32:90:92:ab:5d:41:0e:6d:53:c5:c8:9a:42:7c:b2: 73:fc:f1:11:6a:7a:f6:b7:b6:c8:f2:00:9f:05:d6:e0:e2:ff: ad:f9:f7:17:d8:18:67:43:f3:e5:28:f7:87:e8:71:84:3b:48: e1:68:22:bc:75:92:e0:90:d5:8f:2e:b0:9a:80:63:a1:bf:1f: 72:0a:82:78:de:3e:a6:d1:9e:64:96:cd:b6:15:0f:23:a7:2b: fc:af:78:31:d5:fc:3f:a1:a9:aa:17:85:56:e9:a6:d4:23:11: e2:43:3a:6f:b4:41:f8:0d:2f:98:8e:34:4d:34:d6:98:83:f7: a3:9a:81:8d -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAggwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA1MTQw NjAzMTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ0OTNFRjEwNjIyQTc5 RDU1ODUyMTQyNUU5OTQzMkY0NDg3RUNGOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGeDOU8Iga0gqZc357sssHaEjerS0V4azb6tay1pM8WH1TimvK zLIfORTN7ZDVk1Y/ms3RxUIJGrT/uBEITiGCnX3e8qXARHDKgbf3FymSOzeGWaXF I2gzaoCuXpdizIpWmSc34whjnDuqoRB1sLm7i4wgaFlkc1Oqv/i6d8Ya1LRseR7i h6FqnU7nLE6RRjGVsYzRAyCVKWzduXjVIgzIxX1mCDMiJOJK6MmFk0zEloxETtLR uFX8hLHW8sG4fVh8rDvQFf54tYnhOr5p0XvC/Ly27HoQWqa+3WDhs+CDC+q/hxGI vy6dZtj++Gsw2LonXK7cBzejFmG4F6eiUxQ5AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU1JPvEGIqedVYUhQl6ZQy9Eh+z5AwHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvMUpQdkVHSXFlZFZZVWhRbDZaUXk5 RWgtejVBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAp0U+Qww DQYJKoZIhvcNAQELBQADggEBAE6w8xCgXj/CViIxQLEOZeMHsnZqVPZKb8f6+Ntp KRwSpgFWWgw+VwwNGjjTDbFjMMLBigeVPxb6bl7DKyCqhsrQWKCr6IboQW0vx79a P1JqHCTTjI6zIRNJr/sCIyh5B5YxvKDva1N+se23OBDPcctcONFx1Q9dFuc/1P0U pDClETKQkqtdQQ5tU8XImkJ8snP88RFqeva3tsjyAJ8F1uDi/6359xfYGGdD8+Uo 94focYQ7SOFoIrx1kuCQ1Y8usJqAY6G/H3IKgnjePqbRnmSWzbYVDyOnK/yveDHV /D+hqaoXhVbpptQjEeJDOm+0QfgNL5iONE001piD96OagY0= -----END CERTIFICATE-----Generated at Mon May 19 07:22:51 2025 by rpki-client