$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/DGGG5UfkP2CgqthJJbYqDSCNiRA.roa File: DGGG5UfkP2CgqthJJbYqDSCNiRA.roa (raw, json) Hash identifier: uxx9wRT6XSNTaBlcarpMgE2jAc0UDpg76AU+V0PqfIA= Subject key identifier: 0C:61:86:E5:47:E4:3F:60:A0:AA:D8:49:25:B6:2A:0D:20:8D:89:10 Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 01D6 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/DGGG5UfkP2CgqthJJbYqDSCNiRA.roa Signing time: Tue 13 May 2025 04:16:49 +0000 ROA not before: Tue 13 May 2025 04:16:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152609 IP address blocks: 157.20.248.27/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 08:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 470 (0x1d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: May 13 04:16:49 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0C6186E547E43F60A0AAD84925B62A0D208D8910 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:6e:17:08:81:54:14:c0:67:bf:2a:27:42:2e: fa:ab:23:40:54:08:b5:a5:02:47:80:4e:e3:14:46: c5:a4:3a:bc:a7:17:73:b9:2b:e9:15:85:de:28:9c: 77:56:eb:ee:a5:0b:ec:2e:c6:2a:45:cd:7a:fd:59: 8f:5f:3f:59:54:d4:f1:47:96:ae:bb:41:fd:a7:b2: 12:64:e6:cc:06:41:96:c1:c4:db:92:95:34:1a:76: 34:20:e7:73:b2:89:02:53:a4:d9:f5:fa:1f:23:a7: cd:5e:56:39:41:e8:88:ca:10:02:ab:f0:3e:cc:31: 45:84:21:f6:b3:5a:9a:80:c7:97:de:de:45:e9:56: 42:78:d9:08:4a:d3:61:d3:53:98:cd:dd:a9:9c:c8: 2a:b3:9b:86:6a:2f:03:f9:6f:1e:f0:b1:f2:da:17: d1:de:cc:2e:7f:13:ab:d5:6d:c8:db:ae:a9:ca:fe: 47:d4:a9:08:e9:ca:8b:cb:2d:3f:09:de:24:d4:82: fb:09:1e:a7:6e:24:09:97:f7:13:30:55:64:12:5f: d3:6f:33:81:89:1f:2e:ce:29:f0:49:1a:dd:78:8f: 14:6b:49:97:20:55:c8:74:ef:e6:6c:3e:f6:83:b2: f6:12:1c:98:07:ae:39:08:40:74:0a:8b:b1:ad:59: 9b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:61:86:E5:47:E4:3F:60:A0:AA:D8:49:25:B6:2A:0D:20:8D:89:10 X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/DGGG5UfkP2CgqthJJbYqDSCNiRA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.248.27/32 Signature Algorithm: sha256WithRSAEncryption 0c:d7:fb:43:53:43:e4:67:fa:c6:da:d1:ed:5b:52:73:f4:3e: 77:00:70:d5:e7:b3:e6:9c:95:01:3c:3b:fc:4c:9a:21:0c:99: cc:0d:c3:d0:63:0a:38:44:fa:5e:f1:76:1f:4d:69:8c:ec:c6: 4f:48:7b:d7:56:b1:c1:d3:76:b6:47:5b:a9:b8:15:e1:0c:21: 89:8e:32:42:45:8a:44:e2:f7:7d:ba:ed:bf:29:9c:c9:5d:e6: b2:35:7c:2e:65:df:20:ad:a0:c8:86:06:46:7f:25:66:46:c4: d3:c4:19:2c:02:6d:0f:65:70:84:3a:f8:60:26:60:30:ac:b0: 0f:2a:06:f1:8c:38:e8:99:28:a8:b2:85:56:da:3c:7a:78:e3: ef:ad:a8:80:fe:74:c5:86:0c:45:32:fb:1c:0b:64:1c:e8:ca: b6:1b:8d:bc:66:79:99:1b:61:fe:61:b3:64:22:87:d3:63:f9: 6d:a4:1a:70:38:eb:66:ed:01:e4:22:a2:27:f7:f4:e0:5e:12: bd:b1:2e:8f:e0:2f:a1:11:07:6b:2e:a6:85:0a:a5:2c:24:49: 97:4d:fd:26:c0:80:c9:78:33:f8:81:ec:0a:3a:b0:42:a8:f4: 5d:98:2d:06:44:b0:41:e6:52:25:f9:00:75:ba:e6:f2:a6:4a: de:04:6c:4a -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAdYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA1MTMw NDE2NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBDNjE4NkU1NDdFNDNG NjBBMEFBRDg0OTI1QjYyQTBEMjA4RDg5MTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYbhcIgVQUwGe/KidCLvqrI0BUCLWlAkeATuMURsWkOrynF3O5 K+kVhd4onHdW6+6lC+wuxipFzXr9WY9fP1lU1PFHlq67Qf2nshJk5swGQZbBxNuS lTQadjQg53OyiQJTpNn1+h8jp81eVjlB6IjKEAKr8D7MMUWEIfazWpqAx5fe3kXp VkJ42QhK02HTU5jN3amcyCqzm4ZqLwP5bx7wsfLaF9HezC5/E6vVbcjbrqnK/kfU qQjpyovLLT8J3iTUgvsJHqduJAmX9xMwVWQSX9NvM4GJHy7OKfBJGt14jxRrSZcg Vch07+ZsPvaDsvYSHJgHrjkIQHQKi7GtWZthAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUDGGG5UfkP2CgqthJJbYqDSCNiRAwHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvREdHRzVVZmtQMkNncXRoSkpiWXFE U0NOaVJBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAJ0U+Bsw DQYJKoZIhvcNAQELBQADggEBAAzX+0NTQ+Rn+sba0e1bUnP0PncAcNXns+aclQE8 O/xMmiEMmcwNw9BjCjhE+l7xdh9NaYzsxk9Ie9dWscHTdrZHW6m4FeEMIYmOMkJF ikTi93267b8pnMld5rI1fC5l3yCtoMiGBkZ/JWZGxNPEGSwCbQ9lcIQ6+GAmYDCs sA8qBvGMOOiZKKiyhVbaPHp44++tqID+dMWGDEUy+xwLZBzoyrYbjbxmeZkbYf5h s2Qih9Nj+W2kGnA462btAeQioif39OBeEr2xLo/gL6ERB2supoUKpSwkSZdN/SbA gMl4M/iB7Ao6sEKo9F2YLQZEsEHmUiX5AHW65vKmSt4EbEo= -----END CERTIFICATE-----Generated at Mon May 19 08:14:28 2025 by rpki-client