$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/SEcFvix0Ihveab7SkF3kFLHWtOs.roa File: SEcFvix0Ihveab7SkF3kFLHWtOs.roa (raw, json) Hash identifier: qTCx1cQPHAxjrrzx0QPmyJXL2loJergkuPVQIWOqSPg= Subject key identifier: 48:47:05:BE:2C:74:22:1B:DE:69:BE:D2:90:5D:E4:14:B1:D6:B4:EB Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 01C4 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/SEcFvix0Ihveab7SkF3kFLHWtOs.roa Signing time: Tue 13 May 2025 04:13:45 +0000 ROA not before: Tue 13 May 2025 04:13:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152609 IP address blocks: 157.20.248.30/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 08:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 452 (0x1c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: May 13 04:13:45 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=484705BE2C74221BDE69BED2905DE414B1D6B4EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8c:c1:07:ae:f6:d7:0e:2c:73:81:7e:da:c6: df:d0:c1:69:2d:27:12:70:84:e4:d1:a3:90:4d:e1: 5f:88:a3:3b:cf:99:00:d9:c7:a0:9d:23:92:f5:63: 63:cd:87:49:f0:55:ed:af:dc:ed:92:08:00:a4:0b: 9a:6b:c3:2d:80:a4:98:a1:81:b5:47:88:94:71:33: cb:33:ca:0e:03:fe:81:ff:54:c4:9e:a6:be:0f:bd: 2e:e8:a2:86:9f:75:25:22:5a:a1:62:23:01:60:37: 9d:ef:87:6e:fd:de:06:df:48:ce:50:a7:8c:b4:a4: 53:b5:ff:c2:7b:16:7a:91:53:21:d5:f3:d2:e4:13: 7d:d0:52:6e:5f:d3:11:18:78:0c:02:c3:4e:93:7c: 8c:f7:1f:87:99:a1:29:d9:7d:ee:c7:cf:33:d8:07: 70:11:d5:6e:ab:f3:8f:d4:24:04:65:51:9e:f5:54: 27:f7:6a:fb:67:cc:a1:89:3a:e1:aa:d7:f4:e5:40: e8:fa:b4:59:d0:1a:2e:f2:74:0d:c2:2d:39:46:6f: 3c:ad:eb:7d:7c:7f:e0:c9:96:b5:96:8c:e4:f7:ef: 41:45:54:50:c1:05:04:a5:b8:f8:3f:68:32:c7:24: a8:ad:1a:f3:b8:a2:96:ad:ea:41:55:46:ce:42:37: b2:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:47:05:BE:2C:74:22:1B:DE:69:BE:D2:90:5D:E4:14:B1:D6:B4:EB X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/SEcFvix0Ihveab7SkF3kFLHWtOs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.248.30/32 Signature Algorithm: sha256WithRSAEncryption 78:ff:fe:9c:31:d0:c2:b9:bb:3e:f0:b6:5e:c6:51:bc:d5:09: eb:c0:89:7c:73:53:79:dd:79:2f:6b:51:c7:d4:27:92:25:e7: 7e:ab:06:b1:83:16:bf:53:2f:ea:40:09:69:61:3b:dc:94:01: a7:02:a0:0d:f1:20:82:08:72:17:7f:ac:fa:f2:8e:be:15:69: fb:cb:13:24:b6:cf:e2:81:78:05:c9:5c:de:99:a6:ea:18:4e: 7b:ac:d5:16:51:83:5a:b1:8b:c5:df:27:95:06:2e:c5:19:6b: 4c:1c:57:2a:16:43:3b:5e:36:a5:6b:ae:a0:93:23:ee:40:9d: 48:ab:17:ed:3d:84:c9:f5:d9:ff:f8:66:79:f3:bc:b0:1a:56: 03:f6:c0:fe:6b:21:d9:88:10:c8:9f:d9:9e:33:08:a8:02:bc: 95:3c:a0:84:56:dd:2b:b0:37:93:68:b9:17:7c:bb:16:d5:62: 09:ff:0b:d5:ef:1d:53:40:a9:3b:a5:38:4f:06:36:7a:89:91: e6:7f:32:23:22:fe:f1:8e:1b:58:7d:e4:df:a8:64:30:39:4f: a0:77:fa:1e:20:6d:6a:9f:d0:24:09:77:7b:25:47:ca:65:67: 0c:32:73:24:0c:40:fc:46:5b:3c:a0:cc:b4:c2:55:23:96:f9: e3:2e:b1:fd -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAcQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA1MTMw NDEzNDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ4NDcwNUJFMkM3NDIy MUJERTY5QkVEMjkwNURFNDE0QjFENkI0RUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyjMEHrvbXDixzgX7axt/QwWktJxJwhOTRo5BN4V+IozvPmQDZ x6CdI5L1Y2PNh0nwVe2v3O2SCACkC5prwy2ApJihgbVHiJRxM8szyg4D/oH/VMSe pr4PvS7oooafdSUiWqFiIwFgN53vh2793gbfSM5Qp4y0pFO1/8J7FnqRUyHV89Lk E33QUm5f0xEYeAwCw06TfIz3H4eZoSnZfe7HzzPYB3AR1W6r84/UJARlUZ71VCf3 avtnzKGJOuGq1/TlQOj6tFnQGi7ydA3CLTlGbzyt6318f+DJlrWWjOT370FFVFDB BQSluPg/aDLHJKitGvO4opat6kFVRs5CN7JZAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUSEcFvix0Ihveab7SkF3kFLHWtOswHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvU0VjRnZpeDBJaHZlYWI3U2tGM2tG TEhXdE9zLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAJ0U+B4w DQYJKoZIhvcNAQELBQADggEBAHj//pwx0MK5uz7wtl7GUbzVCevAiXxzU3ndeS9r UcfUJ5Il536rBrGDFr9TL+pACWlhO9yUAacCoA3xIIIIchd/rPryjr4VafvLEyS2 z+KBeAXJXN6ZpuoYTnus1RZRg1qxi8XfJ5UGLsUZa0wcVyoWQzteNqVrrqCTI+5A nUirF+09hMn12f/4ZnnzvLAaVgP2wP5rIdmIEMif2Z4zCKgCvJU8oIRW3SuwN5No uRd8uxbVYgn/C9XvHVNAqTulOE8GNnqJkeZ/MiMi/vGOG1h95N+oZDA5T6B3+h4g bWqf0CQJd3slR8plZwwycyQMQPxGWzygzLTCVSOW+eMusf0= -----END CERTIFICATE-----Generated at Mon May 19 07:54:07 2025 by rpki-client