$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/SXvXtxHpsEZoK-hmlAXwA_sdRCo.roa File: SXvXtxHpsEZoK-hmlAXwA_sdRCo.roa (raw, json) Hash identifier: ZyBnKxVQHLbd6INSqF4clqAjK3Pu2tH1KVVhoeG6y1Y= Subject key identifier: 49:7B:D7:B7:11:E9:B0:46:68:2B:E8:66:94:05:F0:03:FB:1D:44:2A Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 01F0 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/SXvXtxHpsEZoK-hmlAXwA_sdRCo.roa Signing time: Wed 14 May 2025 01:51:28 +0000 ROA not before: Wed 14 May 2025 01:51:28 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152609 IP address blocks: 157.20.248.67/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 08:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 496 (0x1f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: May 14 01:51:28 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=497BD7B711E9B046682BE8669405F003FB1D442A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:62:51:ae:0e:c1:d2:de:d8:cb:46:80:18:3f: ae:ac:2f:cd:18:e2:3a:6d:e6:1b:13:1a:f3:96:ed: 07:71:a8:f1:b5:7e:ac:ef:23:7b:1e:e1:f9:3a:9d: 5f:16:57:7a:84:e5:6f:48:0d:6b:a1:ad:ac:c5:55: 12:97:0a:9b:21:90:d1:2f:f5:e5:84:95:56:e4:1a: ad:46:96:7a:f7:cf:aa:0a:56:7b:10:53:9e:9c:0a: f7:57:58:89:de:b3:f7:bc:77:4c:2e:64:1e:6e:73: ec:3f:51:64:9a:93:e9:45:5b:0a:b2:b3:93:4a:9d: b2:11:69:96:8e:d7:6f:27:7e:bf:5a:3d:89:21:cf: 64:04:a7:fa:46:60:c5:1c:56:cc:7f:03:27:7e:93: 52:20:5b:25:be:75:45:79:cc:f3:87:ce:8d:7d:35: 6e:01:c7:a8:17:ee:6b:fc:10:b4:2b:fa:ae:ae:57: 9f:aa:b6:8a:66:98:49:46:27:c8:92:95:bf:bc:1a: ed:f7:f0:00:fc:1c:6f:bd:10:98:05:1b:ac:bd:7a: 33:77:66:4e:55:d5:17:8a:b2:b5:3f:30:f9:1f:2a: c9:c2:53:d4:54:58:ab:08:e2:07:b1:c1:b2:60:a2: c3:5e:bf:c4:8b:13:15:17:d2:fb:8f:18:5e:e7:d8: 09:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:7B:D7:B7:11:E9:B0:46:68:2B:E8:66:94:05:F0:03:FB:1D:44:2A X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/SXvXtxHpsEZoK-hmlAXwA_sdRCo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.248.67/32 Signature Algorithm: sha256WithRSAEncryption c7:b6:29:ab:aa:50:97:e8:f7:e2:58:6c:ff:e5:25:d0:c4:63: 11:b1:00:85:64:79:6e:60:1f:fb:4c:82:f6:46:84:a0:ae:98: 43:fa:9a:39:9c:38:0a:97:51:a8:bf:41:82:11:09:b6:53:f6: 16:c9:d8:02:6d:b2:65:7b:d1:e9:07:46:5c:dd:a5:26:9b:b3: 59:19:0d:08:42:ba:87:0f:69:79:1f:33:17:9e:b2:83:12:ee: 2a:f2:ea:4d:8c:72:8a:d7:17:50:7d:f3:96:90:12:c9:5a:3a: 61:c8:5c:a8:3b:f3:61:b7:99:b8:a1:e0:05:c3:a4:3f:34:8a: 7b:98:0f:06:0d:42:c0:6b:0c:c9:ae:e1:42:4d:05:3b:0b:5e: 98:68:f0:51:86:f9:a0:73:94:d1:99:20:80:a3:2b:16:0c:62: f9:ed:11:58:65:ef:a0:42:f6:0c:2b:e7:33:66:84:9e:c3:a6: 9a:47:4a:c0:30:53:0f:80:f4:61:77:7a:a8:7d:29:37:03:34: cc:9d:7f:0e:42:bf:82:04:05:78:36:c2:99:44:48:a4:47:8d: c7:c6:b0:ff:6d:22:6f:ad:db:7e:99:f9:95:ae:99:fb:1c:33: 11:84:2c:92:0e:58:f7:cb:16:9e:b1:67:f5:96:de:58:b3:1d: 04:d8:89:8d -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAfAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA1MTQw MTUxMjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ5N0JEN0I3MTFFOUIw NDY2ODJCRTg2Njk0MDVGMDAzRkIxRDQ0MkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMYlGuDsHS3tjLRoAYP66sL80Y4jpt5hsTGvOW7QdxqPG1fqzv I3se4fk6nV8WV3qE5W9IDWuhrazFVRKXCpshkNEv9eWElVbkGq1Glnr3z6oKVnsQ U56cCvdXWInes/e8d0wuZB5uc+w/UWSak+lFWwqys5NKnbIRaZaO128nfr9aPYkh z2QEp/pGYMUcVsx/Ayd+k1IgWyW+dUV5zPOHzo19NW4Bx6gX7mv8ELQr+q6uV5+q topmmElGJ8iSlb+8Gu338AD8HG+9EJgFG6y9ejN3Zk5V1ReKsrU/MPkfKsnCU9RU WKsI4gexwbJgosNev8SLExUX0vuPGF7n2AlPAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUSXvXtxHpsEZoK+hmlAXwA/sdRCowHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvU1h2WHR4SHBzRVpvSy1obWxBWHdB X3NkUkNvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAJ0U+EMw DQYJKoZIhvcNAQELBQADggEBAMe2KauqUJfo9+JYbP/lJdDEYxGxAIVkeW5gH/tM gvZGhKCumEP6mjmcOAqXUai/QYIRCbZT9hbJ2AJtsmV70ekHRlzdpSabs1kZDQhC uocPaXkfMxeesoMS7iry6k2McorXF1B985aQEslaOmHIXKg782G3mbih4AXDpD80 inuYDwYNQsBrDMmu4UJNBTsLXpho8FGG+aBzlNGZIICjKxYMYvntEVhl76BC9gwr 5zNmhJ7DpppHSsAwUw+A9GF3eqh9KTcDNMydfw5Cv4IEBXg2wplESKRHjcfGsP9t Im+t236Z+ZWumfscMxGELJIOWPfLFp6xZ/WW3lizHQTYiY0= -----END CERTIFICATE-----Generated at Mon May 19 07:48:28 2025 by rpki-client