$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/jA6hHblVXdwaUgpwugoo1Liyo6g.roa File: jA6hHblVXdwaUgpwugoo1Liyo6g.roa (raw, json) Hash identifier: xvU2MTD86fC0irzAJVLmF6/YC591LPyZ6cf3OcDL+tk= Subject key identifier: 8C:0E:A1:1D:B9:55:5D:DC:1A:52:0A:70:BA:0A:28:D4:B8:B2:A3:A8 Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 01F6 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/jA6hHblVXdwaUgpwugoo1Liyo6g.roa Signing time: Wed 14 May 2025 03:10:59 +0000 ROA not before: Wed 14 May 2025 03:10:59 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152609 IP address blocks: 157.20.248.97/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 08:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 502 (0x1f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: May 14 03:10:59 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8C0EA11DB9555DDC1A520A70BA0A28D4B8B2A3A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ef:23:df:4c:bd:86:8b:ca:61:e2:f0:0f:ac: e8:c4:9b:9c:62:a6:89:94:f2:8b:23:bb:b5:5c:a3: a4:5a:b7:e4:d1:81:d0:8b:bb:83:9c:9d:4c:98:fb: 24:ed:cb:49:81:9a:3b:b2:ca:8c:93:a7:df:08:bc: 51:04:d3:71:e7:03:94:8a:7b:44:6d:d0:ec:d6:46: 84:81:04:d7:48:ef:01:c5:4b:76:d5:79:bf:ae:4f: d0:a0:61:b1:e7:b9:3b:e6:54:83:58:ae:00:80:71: ca:a9:e0:a2:c8:ac:86:c9:58:5e:77:78:f3:3d:7f: 9b:0c:83:71:0e:4c:9f:e4:52:1d:ff:8a:c2:44:13: 69:ce:a0:bc:3f:89:ff:89:3b:48:73:f2:b2:d2:67: 9c:66:84:ca:7b:61:49:c7:20:98:1f:0a:78:7d:06: 31:d6:a8:b0:3a:1d:42:85:61:b3:c6:8f:07:4c:fe: 5d:04:36:58:21:4f:59:2f:d5:c0:5d:40:52:48:e3: 6f:14:85:d9:5c:f1:ad:cc:da:40:e2:e0:30:02:c4: 02:07:5b:68:f8:f5:fb:3b:9a:67:dc:85:1e:2c:09: 45:b2:6d:52:12:8b:56:4e:6a:2e:3b:9a:3d:38:94: d6:e7:96:57:31:9c:89:f5:7c:f5:99:9e:62:86:d1: c8:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:0E:A1:1D:B9:55:5D:DC:1A:52:0A:70:BA:0A:28:D4:B8:B2:A3:A8 X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/jA6hHblVXdwaUgpwugoo1Liyo6g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.248.97/32 Signature Algorithm: sha256WithRSAEncryption 4c:61:71:ad:13:36:b9:0c:f1:61:25:0f:3a:83:7d:4b:85:fd: 97:74:b6:ad:c0:c6:b9:11:de:31:dd:9b:ae:06:8a:26:de:12: 14:f1:f7:bd:78:30:9b:58:53:05:62:91:ae:fb:72:5c:11:3a: 5e:80:99:5f:6f:61:f6:1b:28:04:6d:1d:bb:d5:4b:cb:66:c9: 93:fa:25:85:bc:de:b3:d8:53:ff:02:70:8f:f8:01:a2:37:b1: 5b:b7:44:24:25:c2:3e:42:96:c3:db:ae:19:c4:df:ba:9c:75: b2:38:ac:f1:f1:2b:a9:4b:14:fb:37:d8:e1:bc:1f:7b:57:a2: a8:25:dc:a4:38:9a:12:1f:52:0e:f3:e6:13:47:39:38:ff:5f: ed:92:03:24:58:64:93:7e:b1:20:38:6e:92:81:d5:8b:0a:ef: c2:50:33:0b:f2:bd:5b:0e:47:c6:ff:17:b7:b3:ad:a9:22:b5: ea:47:ea:9c:b0:f8:03:98:57:b9:3e:88:57:f3:e6:a6:f0:09: 50:8e:36:9d:bc:43:6b:c8:a9:c2:68:e6:67:e7:a9:22:5b:38: 88:05:60:87:83:5f:66:63:c7:9e:df:c1:62:c0:3d:e6:36:bd: 4f:59:58:2c:db:2f:38:5a:70:64:8d:72:3a:1d:51:af:8d:3e: fc:fc:6c:78 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAfYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA1MTQw MzEwNTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhDMEVBMTFEQjk1NTVE REMxQTUyMEE3MEJBMEEyOEQ0QjhCMkEzQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCt7yPfTL2Gi8ph4vAPrOjEm5xipomU8osju7Vco6Rat+TRgdCL u4OcnUyY+yTty0mBmjuyyoyTp98IvFEE03HnA5SKe0Rt0OzWRoSBBNdI7wHFS3bV eb+uT9CgYbHnuTvmVINYrgCAccqp4KLIrIbJWF53ePM9f5sMg3EOTJ/kUh3/isJE E2nOoLw/if+JO0hz8rLSZ5xmhMp7YUnHIJgfCnh9BjHWqLA6HUKFYbPGjwdM/l0E NlghT1kv1cBdQFJI428Uhdlc8a3M2kDi4DACxAIHW2j49fs7mmfchR4sCUWybVIS i1ZOai47mj04lNbnllcxnIn1fPWZnmKG0cizAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUjA6hHblVXdwaUgpwugoo1Liyo6gwHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvakE2aEhibFZYZHdhVWdwd3Vnb28x TGl5bzZnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAJ0U+GEw DQYJKoZIhvcNAQELBQADggEBAExhca0TNrkM8WElDzqDfUuF/Zd0tq3AxrkR3jHd m64GiibeEhTx9714MJtYUwVika77clwROl6AmV9vYfYbKARtHbvVS8tmyZP6JYW8 3rPYU/8CcI/4AaI3sVu3RCQlwj5ClsPbrhnE37qcdbI4rPHxK6lLFPs32OG8H3tX oqgl3KQ4mhIfUg7z5hNHOTj/X+2SAyRYZJN+sSA4bpKB1YsK78JQMwvyvVsOR8b/ F7ezrakitepH6pyw+AOYV7k+iFfz5qbwCVCONp28Q2vIqcJo5mfnqSJbOIgFYIeD X2Zjx57fwWLAPeY2vU9ZWCzbLzhacGSNcjodUa+NPvz8bHg= -----END CERTIFICATE-----Generated at Mon May 19 07:45:14 2025 by rpki-client