$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/WC8LoWcLkehTuYDBqRwaNpkMAWo.roa File: WC8LoWcLkehTuYDBqRwaNpkMAWo.roa (raw, json) Hash identifier: OdOl8/gWA7ap2QiKLDXDb20CjC/AR5svbdsdRbPlC3A= Subject key identifier: 58:2F:0B:A1:67:0B:91:E8:53:B9:80:C1:A9:1C:1A:36:99:0C:01:6A Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 0200 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/WC8LoWcLkehTuYDBqRwaNpkMAWo.roa Signing time: Wed 14 May 2025 05:24:14 +0000 ROA not before: Wed 14 May 2025 05:24:14 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152609 IP address blocks: 157.20.249.98/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 08:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 512 (0x200) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: May 14 05:24:14 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=582F0BA1670B91E853B980C1A91C1A36990C016A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e2:d5:1e:67:b6:67:e3:ec:52:75:06:30:6b: cb:6d:42:72:bf:be:85:c8:6c:39:9e:2d:70:9e:9e: 9f:05:1a:ed:e8:df:0d:d9:36:35:ff:76:51:e9:8b: 7d:3e:76:a3:74:25:86:d5:79:2e:fb:50:ad:82:52: 49:15:88:c6:a2:87:82:04:18:c5:f3:58:9c:b1:30: 3b:60:cc:0f:bf:23:b1:00:3e:ef:3c:57:d9:d4:dc: 5a:90:d6:39:54:3a:6a:8d:dc:47:4d:2e:d9:0c:11: ba:25:4f:7f:7d:e7:e8:e1:2b:09:0a:37:06:79:17: 32:7b:10:20:d3:87:e0:b9:1a:a1:73:90:07:2f:61: 0c:f8:b1:79:e2:f5:fe:ee:a6:e6:51:b9:36:1c:2c: c8:37:44:5f:9e:b4:2e:68:9f:8e:42:73:81:50:b8: 1d:fd:f7:c8:6b:c3:43:1b:96:81:52:48:c5:f2:56: f9:d3:e0:6a:67:dd:41:ed:49:4b:d3:a4:2d:62:88: e9:4b:66:09:2e:44:70:e5:2f:bd:5f:69:e4:95:79: 40:4f:26:2a:c3:72:94:13:48:7d:24:5d:83:4c:31: 29:de:59:b1:be:c8:d6:b2:97:2c:9b:54:31:f4:f4: 05:fb:a2:16:37:e0:e2:43:05:75:2f:38:34:4c:b1: 85:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:2F:0B:A1:67:0B:91:E8:53:B9:80:C1:A9:1C:1A:36:99:0C:01:6A X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/WC8LoWcLkehTuYDBqRwaNpkMAWo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.249.98/32 Signature Algorithm: sha256WithRSAEncryption 73:a2:83:3d:2a:e3:8a:dc:8e:d4:e4:bd:0c:f3:ac:89:be:21: 33:12:35:3a:da:74:73:0f:d4:ed:58:c9:e5:e8:43:f7:9e:fd: ae:1b:44:72:34:d7:2e:98:a5:e6:c6:64:3e:1b:d9:20:ec:b7: 87:ad:0b:83:b6:3c:03:66:32:72:95:ec:05:0b:41:9e:cb:7f: 55:bb:58:a6:5e:d6:ac:56:10:28:eb:80:14:ee:e9:45:0b:f3: 87:98:0b:85:71:6e:11:6e:bd:84:4c:e4:06:5b:f4:81:4d:9d: 01:2e:8e:1f:16:b8:2b:60:60:52:0b:9a:5c:db:ea:46:60:65: b5:39:12:cd:48:c1:e0:b8:89:80:b4:59:62:da:af:03:9d:00: 4c:20:bc:4f:0b:d0:43:df:ba:8b:31:78:4a:5e:99:53:83:26: 7a:af:6b:82:a1:93:a0:23:b5:94:87:82:17:0e:5e:7b:39:ea: a4:3c:a9:9f:9d:20:59:9c:1d:47:6a:e8:e9:44:4d:cf:5a:77: af:ac:b4:c4:67:3f:75:5f:83:52:5c:18:e3:11:c1:83:33:b1: 42:7b:3d:00:6d:00:9d:03:29:92:ef:19:5d:2c:95:ac:36:02: a6:fc:3a:5b:90:e1:b9:e3:60:94:ad:f1:90:20:38:48:b0:35: f1:2c:6a:7b -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAgAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA1MTQw NTI0MTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU4MkYwQkExNjcwQjkx RTg1M0I5ODBDMUE5MUMxQTM2OTkwQzAxNkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC94tUeZ7Zn4+xSdQYwa8ttQnK/voXIbDmeLXCenp8FGu3o3w3Z NjX/dlHpi30+dqN0JYbVeS77UK2CUkkViMaih4IEGMXzWJyxMDtgzA+/I7EAPu88 V9nU3FqQ1jlUOmqN3EdNLtkMEbolT3995+jhKwkKNwZ5FzJ7ECDTh+C5GqFzkAcv YQz4sXni9f7upuZRuTYcLMg3RF+etC5on45Cc4FQuB3998hrw0MbloFSSMXyVvnT 4Gpn3UHtSUvTpC1iiOlLZgkuRHDlL71faeSVeUBPJirDcpQTSH0kXYNMMSneWbG+ yNaylyybVDH09AX7ohY34OJDBXUvODRMsYXNAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUWC8LoWcLkehTuYDBqRwaNpkMAWowHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvV0M4TG9XY0xrZWhUdVlEQnFSd2FO cGtNQVdvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAJ0U+WIw DQYJKoZIhvcNAQELBQADggEBAHOigz0q44rcjtTkvQzzrIm+ITMSNTradHMP1O1Y yeXoQ/ee/a4bRHI01y6YpebGZD4b2SDst4etC4O2PANmMnKV7AULQZ7Lf1W7WKZe 1qxWECjrgBTu6UUL84eYC4VxbhFuvYRM5AZb9IFNnQEujh8WuCtgYFILmlzb6kZg ZbU5Es1IweC4iYC0WWLarwOdAEwgvE8L0EPfuosxeEpemVODJnqva4Khk6AjtZSH ghcOXns56qQ8qZ+dIFmcHUdq6OlETc9ad6+stMRnP3Vfg1JcGOMRwYMzsUJ7PQBt AJ0DKZLvGV0slaw2Aqb8OluQ4bnjYJSt8ZAgOEiwNfEsans= -----END CERTIFICATE-----Generated at Mon May 19 07:22:46 2025 by rpki-client