$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/A1BqvIdwAGp1hCCBaUlniby-_4U.roa File: A1BqvIdwAGp1hCCBaUlniby-_4U.roa (raw, json) Hash identifier: oR7Fs8LNl4gBOLhzQccPyXysgnXhcBqW4aJrcnp+RlY= Subject key identifier: 03:50:6A:BC:87:70:00:6A:75:84:20:81:69:49:67:89:BC:BE:FF:85 Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 01B6 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/A1BqvIdwAGp1hCCBaUlniby-_4U.roa Signing time: Mon 12 May 2025 09:43:49 +0000 ROA not before: Mon 12 May 2025 09:43:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152609 IP address blocks: 157.20.248.221/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 08:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 438 (0x1b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: May 12 09:43:49 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=03506ABC8770006A7584208169496789BCBEFF85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d5:3d:60:c0:40:9c:a1:a1:ed:6a:d5:46:98: 45:f4:3e:97:cb:26:9a:62:8d:3c:8c:f2:65:39:c9: 9d:e8:36:1f:40:d9:8d:fa:ac:76:03:e3:24:aa:28: 10:36:3b:92:23:92:ed:15:aa:35:d5:4e:4d:7f:91: 6c:05:9f:a5:a8:8d:0c:ec:64:16:40:cc:37:b5:a6: 77:05:74:cc:a8:5e:a3:48:fa:c4:92:83:29:e5:4a: d6:f5:1b:eb:c3:f7:d4:4f:7a:48:68:13:10:a1:0c: 36:08:99:83:bf:1f:f8:85:b0:08:e4:f0:38:01:b5: 1f:bf:bf:28:95:18:0a:8d:4a:b0:cf:94:49:08:0d: 6a:de:fa:a6:7a:8b:2b:97:af:bd:75:e8:f0:d6:8c: 82:a7:ee:e8:c7:98:d6:b3:d7:bd:2c:5b:6c:dd:3c: 99:2a:63:4c:c6:f3:df:81:91:26:ed:79:42:cc:4f: d7:23:b6:3c:89:f8:41:5d:0c:c9:1e:b5:1b:9b:8b: 46:ed:92:5c:c8:a3:b8:26:1b:ee:55:6c:c3:3a:e7: ed:55:e8:4b:2b:1e:eb:36:fc:8a:46:39:c4:5c:5c: 12:cf:d1:43:38:56:ce:bf:52:e5:92:6e:2e:be:22: 23:d1:28:ec:75:88:fa:64:19:22:17:75:b9:83:4f: 49:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:50:6A:BC:87:70:00:6A:75:84:20:81:69:49:67:89:BC:BE:FF:85 X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/A1BqvIdwAGp1hCCBaUlniby-_4U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.248.221/32 Signature Algorithm: sha256WithRSAEncryption 5f:9c:7d:a2:06:31:d7:1d:36:86:fc:36:a8:e8:96:0a:80:a3: 21:54:f8:03:ae:5a:d6:f7:8d:c9:78:46:ef:c7:7c:9e:49:90: e4:b2:bf:9c:cb:ee:27:69:75:31:22:f9:40:7f:b2:20:0c:3e: b9:0f:b0:f4:59:3d:70:3a:e2:bc:8a:ba:de:21:72:ec:cb:fc: 74:69:5c:37:26:85:e2:3e:94:e3:a0:c7:57:a6:28:31:97:b4: 21:e0:95:8d:be:7d:88:7e:37:84:55:d5:e9:cc:88:7b:11:64: 46:58:d4:1f:84:d0:87:4e:45:92:ca:28:a1:14:44:99:f9:d2: bd:db:09:ce:27:e5:43:86:d5:80:52:97:6e:c6:00:47:a5:50: 05:e1:10:2e:ee:eb:b4:a9:c2:1b:5a:78:a8:5c:62:0b:fb:97: 15:7b:ea:f5:85:d0:17:52:6d:33:88:4c:87:fc:36:00:6e:82: 69:38:ca:32:41:f8:9b:ab:10:c9:fd:97:38:1d:47:11:c0:35: 8b:07:f9:0e:e0:fa:ff:9d:eb:52:ec:bc:c8:34:82:ae:d3:6d: f5:68:48:92:96:3d:f0:26:48:d2:9b:3e:48:29:6a:b1:a8:dd: 1e:55:eb:92:41:b3:7a:35:19:c9:29:44:a8:e5:1c:c2:4e:2a: b5:93:66:60 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAbYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA1MTIw OTQzNDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDAzNTA2QUJDODc3MDAw NkE3NTg0MjA4MTY5NDk2Nzg5QkNCRUZGODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDF1T1gwECcoaHtatVGmEX0PpfLJppijTyM8mU5yZ3oNh9A2Y36 rHYD4ySqKBA2O5Ijku0VqjXVTk1/kWwFn6WojQzsZBZAzDe1pncFdMyoXqNI+sSS gynlStb1G+vD99RPekhoExChDDYImYO/H/iFsAjk8DgBtR+/vyiVGAqNSrDPlEkI DWre+qZ6iyuXr7116PDWjIKn7ujHmNaz170sW2zdPJkqY0zG89+BkSbteULMT9cj tjyJ+EFdDMketRubi0btklzIo7gmG+5VbMM65+1V6EsrHus2/IpGOcRcXBLP0UM4 Vs6/UuWSbi6+IiPRKOx1iPpkGSIXdbmDT0nfAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUA1BqvIdwAGp1hCCBaUlniby+/4UwHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvQTFCcXZJZHdBR3AxaENDQmFVbG5p YnktXzRVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAJ0U+N0w DQYJKoZIhvcNAQELBQADggEBAF+cfaIGMdcdNob8NqjolgqAoyFU+AOuWtb3jcl4 Ru/HfJ5JkOSyv5zL7idpdTEi+UB/siAMPrkPsPRZPXA64ryKut4hcuzL/HRpXDcm heI+lOOgx1emKDGXtCHglY2+fYh+N4RV1enMiHsRZEZY1B+E0IdORZLKKKEURJn5 0r3bCc4n5UOG1YBSl27GAEelUAXhEC7u67SpwhtaeKhcYgv7lxV76vWF0BdSbTOI TIf8NgBugmk4yjJB+JurEMn9lzgdRxHANYsH+Q7g+v+d61LsvMg0gq7TbfVoSJKW PfAmSNKbPkgparGo3R5V65JBs3o1GckpRKjlHMJOKrWTZmA= -----END CERTIFICATE-----Generated at Mon May 19 07:46:29 2025 by rpki-client