$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/UIG2esNQLPPb0P2ypmWF0jvIQQ0.roa File: UIG2esNQLPPb0P2ypmWF0jvIQQ0.roa (raw, json) Hash identifier: /dHfe8Y2Uj8j29mG+vnzYNM40eA+/d6Gr8k819skBLM= Subject key identifier: 50:81:B6:7A:C3:50:2C:F3:DB:D0:FD:B2:A6:65:85:D2:3B:C8:41:0D Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 01E6 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/UIG2esNQLPPb0P2ypmWF0jvIQQ0.roa Signing time: Tue 13 May 2025 17:40:11 +0000 ROA not before: Tue 13 May 2025 17:40:11 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152609 IP address blocks: 157.20.249.10/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 08:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 486 (0x1e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: May 13 17:40:11 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5081B67AC3502CF3DBD0FDB2A66585D23BC8410D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:83:1c:f1:91:26:3d:a4:45:31:04:33:47:29: c4:19:11:00:73:f5:e0:b8:61:43:7c:1b:e7:64:8e: 8c:96:0e:9b:8c:d9:55:bf:8f:45:6d:f8:0a:1c:ef: 09:ab:3f:17:65:11:74:b4:c5:e7:f6:82:07:c5:87: 6b:2d:f3:0e:fb:b0:98:c5:08:70:a8:a2:e9:cb:2b: 7f:1e:58:57:38:dc:30:85:19:52:a5:40:92:6a:58: 8b:6b:a2:87:39:ae:bc:b6:b7:71:bd:10:e7:12:45: a8:13:27:d0:da:49:80:c5:e1:b0:a2:2b:b5:66:26: f0:0e:95:cf:b0:3f:1a:82:98:df:25:54:e1:c7:a6: c5:3b:15:1b:0d:d9:63:8e:f0:50:b7:ec:8f:5e:94: d6:e1:e9:f3:65:5c:10:c8:d1:56:09:5d:14:8f:bb: e2:8a:3d:db:7a:c6:a9:fe:44:22:10:96:6c:72:22: 32:30:4e:90:04:7f:b0:6f:56:a4:fa:33:0f:f4:79: 20:0f:08:03:b6:9f:85:a7:e7:cd:8f:5a:bd:64:1b: 25:3f:fa:ff:17:89:4b:b3:ee:b0:57:ea:82:f6:10: bf:de:9e:3d:ba:47:56:9b:68:54:25:99:c2:d7:c9: 29:aa:5d:2b:0a:79:c8:ab:db:a2:82:fb:1e:ea:c9: b0:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:81:B6:7A:C3:50:2C:F3:DB:D0:FD:B2:A6:65:85:D2:3B:C8:41:0D X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/UIG2esNQLPPb0P2ypmWF0jvIQQ0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.249.10/32 Signature Algorithm: sha256WithRSAEncryption c8:32:01:06:a7:be:df:c0:bb:3e:df:9b:2d:b9:9b:6c:1d:e3: 0b:bf:78:ba:54:1d:4e:c4:c5:58:c7:07:87:15:f0:c1:ae:45: f0:a0:a8:e0:b3:26:e4:f6:d9:bb:32:a3:97:76:16:55:cd:86: 17:03:6c:18:e9:d6:67:b4:1c:5d:89:47:02:88:5e:89:05:51: bc:0c:7d:2e:11:6e:1e:fd:0d:45:c1:d9:93:fe:76:33:fe:60: 35:d6:6f:07:a5:95:8d:8a:a5:e2:e1:79:df:b1:01:b4:5e:ce: 01:ee:94:57:84:16:fe:c8:4d:c5:ea:08:67:0c:37:2d:45:2f: 13:6b:6a:55:74:02:90:39:f5:b3:d8:b4:a7:8a:b0:a9:f9:e7: f0:cf:62:6a:d9:c7:00:51:77:8a:8d:e0:68:24:77:c1:7a:94: f0:47:cd:69:3c:09:d0:3a:18:bc:30:6a:e0:eb:85:d9:60:6b: 26:1b:3b:32:44:b4:2a:f0:ff:75:3e:c3:46:48:2f:c2:6c:52: 56:25:43:ea:60:bc:01:d7:bb:8c:b6:93:41:a6:6c:96:3d:6b: e6:bd:bf:44:05:a0:4e:ba:ab:1d:d0:1a:5d:4b:53:72:38:24: 35:78:fd:2c:9a:c4:3c:6e:cb:80:f1:51:83:cc:9a:c8:b7:1f: dd:39:32:a0 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAeYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA1MTMx NzQwMTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUwODFCNjdBQzM1MDJD RjNEQkQwRkRCMkE2NjU4NUQyM0JDODQxMEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4gxzxkSY9pEUxBDNHKcQZEQBz9eC4YUN8G+dkjoyWDpuM2VW/ j0Vt+Aoc7wmrPxdlEXS0xef2ggfFh2st8w77sJjFCHCoounLK38eWFc43DCFGVKl QJJqWItrooc5rry2t3G9EOcSRagTJ9DaSYDF4bCiK7VmJvAOlc+wPxqCmN8lVOHH psU7FRsN2WOO8FC37I9elNbh6fNlXBDI0VYJXRSPu+KKPdt6xqn+RCIQlmxyIjIw TpAEf7BvVqT6Mw/0eSAPCAO2n4Wn582PWr1kGyU/+v8XiUuz7rBX6oL2EL/enj26 R1abaFQlmcLXySmqXSsKecir26KC+x7qybB3AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUUIG2esNQLPPb0P2ypmWF0jvIQQ0wHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvVUlHMmVzTlFMUFBiMFAyeXBtV0Yw anZJUVEwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAJ0U+Qow DQYJKoZIhvcNAQELBQADggEBAMgyAQanvt/Auz7fmy25m2wd4wu/eLpUHU7ExVjH B4cV8MGuRfCgqOCzJuT22bsyo5d2FlXNhhcDbBjp1me0HF2JRwKIXokFUbwMfS4R bh79DUXB2ZP+djP+YDXWbwellY2KpeLhed+xAbRezgHulFeEFv7ITcXqCGcMNy1F LxNralV0ApA59bPYtKeKsKn55/DPYmrZxwBRd4qN4Ggkd8F6lPBHzWk8CdA6GLww auDrhdlgayYbOzJEtCrw/3U+w0ZIL8JsUlYlQ+pgvAHXu4y2k0GmbJY9a+a9v0QF oE66qx3QGl1LU3I4JDV4/SyaxDxuy4DxUYPMmsi3H905MqA= -----END CERTIFICATE-----Generated at Mon May 19 07:21:06 2025 by rpki-client