$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/EpxsVN7C8MQ4dwFs9encpaSWmvA.roa File: EpxsVN7C8MQ4dwFs9encpaSWmvA.roa (raw, json) Hash identifier: 9u7x62dw5m4bwaXnngUfQzi/lpqQ6AWGl7y0xvTBIrs= Subject key identifier: 12:9C:6C:54:DE:C2:F0:C4:38:77:01:6C:F5:E9:DC:A5:A4:96:9A:F0 Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 01E8 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/EpxsVN7C8MQ4dwFs9encpaSWmvA.roa Signing time: Tue 13 May 2025 17:40:18 +0000 ROA not before: Tue 13 May 2025 17:40:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152609 IP address blocks: 157.20.249.11/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 08:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 488 (0x1e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: May 13 17:40:18 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=129C6C54DEC2F0C43877016CF5E9DCA5A4969AF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:87:63:71:4f:48:0c:c6:9d:64:59:28:66:6b: 99:6e:b5:b5:be:64:ea:2a:84:88:64:40:37:a3:a7: 55:9a:fa:ca:34:65:0a:b1:c4:06:e0:37:16:a6:d3: 70:8d:56:76:f9:0a:9d:36:a1:8e:ca:bc:28:f6:45: 37:af:2a:44:5b:2d:7e:9c:5f:32:36:f7:3c:db:2e: 4a:81:a5:34:47:1d:56:d0:a6:04:75:49:06:4d:4c: 30:aa:95:b7:9b:c8:db:ab:34:2b:e8:6c:a0:d3:c9: 69:60:10:19:95:c5:ed:e3:05:95:bc:31:8e:b4:16: b7:48:17:0b:6f:7a:0d:6d:37:48:96:1c:26:36:20: 55:5d:5e:34:7b:15:ca:27:7a:e6:1e:f8:fc:4d:b4: ac:1f:bf:d7:d6:f0:c1:7e:77:a8:0d:e9:16:a4:fa: ca:b5:1f:53:bb:dd:6e:61:9f:a4:79:81:08:44:72: 15:12:49:24:07:e9:4c:02:ab:9a:f0:0d:9b:c9:da: 81:bf:1f:33:7e:b7:fb:bc:44:fd:ed:48:5a:54:db: 2b:4f:a0:41:7c:ae:f8:32:7e:23:73:8a:1d:70:29: 4c:80:6e:3a:d4:01:d9:1b:b4:96:72:05:63:23:79: 69:af:ef:21:9b:bd:4d:6c:6d:79:18:0e:a3:b1:ea: b3:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:9C:6C:54:DE:C2:F0:C4:38:77:01:6C:F5:E9:DC:A5:A4:96:9A:F0 X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/EpxsVN7C8MQ4dwFs9encpaSWmvA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.249.11/32 Signature Algorithm: sha256WithRSAEncryption 41:1a:f5:c5:70:15:d9:91:f6:9b:9d:7e:9d:38:07:41:0d:48: a7:9f:40:ab:2a:99:26:28:5b:52:fb:ff:f2:69:31:3f:e6:fb: 9e:63:1a:13:c1:ea:bc:d8:2f:e1:5a:f3:e2:e7:31:7f:17:bf: 7c:60:ab:f2:cf:1b:a0:2d:98:3e:bd:ab:9f:4a:b4:6b:d3:bc: 41:9c:83:8c:30:31:ac:35:17:ba:5b:d6:54:5e:ee:ac:e6:38: 29:6c:9a:95:09:44:7d:fb:bc:ad:bb:37:ec:39:10:30:12:8d: b7:e1:ac:63:35:2d:70:41:1a:99:c1:b3:4b:83:60:49:9e:7a: 2d:97:6d:1c:63:67:f4:de:db:b7:78:c4:5e:a3:e7:7c:de:49: 22:c0:69:a4:9e:7f:03:24:24:26:76:4f:02:24:b6:97:3d:0b: bd:3d:f2:df:81:22:41:ab:e4:82:64:2d:d8:80:a4:9a:97:e6: 5c:83:60:e4:ba:00:2f:91:be:5f:5d:44:bf:c7:0e:f4:7f:72: df:1b:ca:89:58:0b:f2:73:56:b4:53:83:26:76:ed:3f:00:53: fa:19:9f:93:40:cc:b7:1b:aa:f6:09:13:4c:17:b2:c6:c5:ad: 56:84:a5:24:f9:79:b2:bf:8d:c0:7a:0e:7a:fc:e1:32:ee:36: a9:0d:ff:b1 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAegwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA1MTMx NzQwMThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDEyOUM2QzU0REVDMkYw QzQzODc3MDE2Q0Y1RTlEQ0E1QTQ5NjlBRjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHh2NxT0gMxp1kWShma5lutbW+ZOoqhIhkQDejp1Wa+so0ZQqx xAbgNxam03CNVnb5Cp02oY7KvCj2RTevKkRbLX6cXzI29zzbLkqBpTRHHVbQpgR1 SQZNTDCqlbebyNurNCvobKDTyWlgEBmVxe3jBZW8MY60FrdIFwtveg1tN0iWHCY2 IFVdXjR7FconeuYe+PxNtKwfv9fW8MF+d6gN6Rak+sq1H1O73W5hn6R5gQhEchUS SSQH6UwCq5rwDZvJ2oG/HzN+t/u8RP3tSFpU2ytPoEF8rvgyfiNzih1wKUyAbjrU AdkbtJZyBWMjeWmv7yGbvU1sbXkYDqOx6rMrAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUEpxsVN7C8MQ4dwFs9encpaSWmvAwHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvRXB4c1ZON0M4TVE0ZHdGczllbmNw YVNXbXZBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAJ0U+Qsw DQYJKoZIhvcNAQELBQADggEBAEEa9cVwFdmR9pudfp04B0ENSKefQKsqmSYoW1L7 //JpMT/m+55jGhPB6rzYL+Fa8+LnMX8Xv3xgq/LPG6AtmD69q59KtGvTvEGcg4ww Maw1F7pb1lRe7qzmOClsmpUJRH37vK27N+w5EDASjbfhrGM1LXBBGpnBs0uDYEme ei2XbRxjZ/Te27d4xF6j53zeSSLAaaSefwMkJCZ2TwIktpc9C7098t+BIkGr5IJk LdiApJqX5lyDYOS6AC+Rvl9dRL/HDvR/ct8byolYC/JzVrRTgyZ27T8AU/oZn5NA zLcbqvYJE0wXssbFrVaEpST5ebK/jcB6Dnr84TLuNqkN/7E= -----END CERTIFICATE-----Generated at Mon May 19 07:41:36 2025 by rpki-client