$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/kOUDlplpcfqMxCCAGydaV1dNI-0.roa File: kOUDlplpcfqMxCCAGydaV1dNI-0.roa (raw, json) Hash identifier: XRzfnn5Uw+JzD9CtkjhHRf2AbR6lUJYXAlYCSIs/yaY= Subject key identifier: 90:E5:03:96:99:69:71:FA:8C:C4:20:80:1B:27:5A:57:57:4D:23:ED Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 01E0 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/kOUDlplpcfqMxCCAGydaV1dNI-0.roa Signing time: Tue 13 May 2025 05:05:44 +0000 ROA not before: Tue 13 May 2025 05:05:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152609 IP address blocks: 157.20.248.48/30 maxlen: 30 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 08:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 480 (0x1e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: May 13 05:05:44 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=90E50396996971FA8CC420801B275A57574D23ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b8:05:31:7d:60:cc:f8:ae:78:f2:72:45:70: b9:ca:24:11:4a:7a:bd:09:80:52:31:44:d6:a5:89: 83:44:9e:88:7a:4f:9e:0e:d8:9f:c9:2d:7e:45:28: b8:55:19:1e:29:ac:e4:9f:89:71:b2:bf:da:32:2b: 7c:7e:11:7e:5a:0a:b9:da:8e:ff:4a:44:c7:06:2e: 3f:12:e7:62:24:c5:83:22:6c:91:45:b0:0a:a5:d1: 03:05:48:64:ab:46:2f:08:03:33:c5:3a:1a:0e:4b: 04:77:c9:66:f5:cd:2b:3e:17:86:4b:35:b7:8d:2b: 93:7f:6a:a3:67:74:53:48:aa:e1:ff:fa:d6:58:33: 83:e2:d7:6e:a4:06:18:52:8b:26:d5:7a:21:54:bc: 40:1e:cb:c6:36:1e:43:11:3c:64:a2:b8:59:8e:d4: 9b:30:c4:1b:b2:12:96:24:41:18:db:dd:6b:33:82: 1b:b9:c5:e2:f3:95:09:58:b6:10:ff:04:47:6b:91: e8:9d:f3:21:56:72:7e:b0:14:d8:f1:97:85:b2:3b: 49:b0:09:1a:1c:d2:87:f2:35:13:55:fa:36:2d:e7: ae:db:ed:16:51:8a:a6:17:72:fe:2c:e8:fd:6c:17: be:a7:87:ab:63:a0:ea:93:a5:a6:18:7c:6d:7f:1f: 4a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:E5:03:96:99:69:71:FA:8C:C4:20:80:1B:27:5A:57:57:4D:23:ED X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/kOUDlplpcfqMxCCAGydaV1dNI-0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.248.48/30 Signature Algorithm: sha256WithRSAEncryption 71:ea:a4:d4:69:7c:f4:e6:db:ab:4e:9b:23:5f:62:b8:eb:18: 79:b5:11:17:8a:42:9f:6d:2a:d2:bc:7d:4d:0f:82:0a:a1:94: ba:1d:21:d9:52:5a:f7:e9:88:67:7e:24:08:f5:92:c1:9b:1d: 40:45:5f:e5:52:82:ec:a2:92:8c:aa:6f:15:7f:d0:46:42:22: c0:87:6c:63:52:b6:a6:4f:d9:85:b5:ff:26:5f:19:34:cc:fd: a1:ab:ea:9f:ac:01:5e:79:5c:1c:28:df:3c:cb:91:c7:ab:24: 73:7f:2c:1e:ef:cd:12:1e:f7:5d:d2:3f:78:d7:76:e7:63:d9: 4e:62:7a:d8:5e:37:ff:55:b7:c2:41:d4:b1:1f:fc:ad:29:e4: 85:f0:c5:78:f1:a9:43:a1:11:f8:c2:11:b0:5a:0e:9a:18:83: b3:89:d7:f6:2b:cb:e9:df:cc:e4:ce:65:54:61:66:52:26:ac: 86:1f:3c:40:d9:b8:5f:4b:80:e2:a7:0f:8e:dc:5e:da:5c:6c: 3e:78:35:ac:54:99:29:77:32:8a:b3:3f:b8:ff:4e:1c:0f:83: 80:c4:c2:61:32:ec:ed:b1:fa:e7:0c:f1:04:21:46:e3:50:bf: 65:d8:7c:dd:27:7d:d4:f7:18:54:b9:5c:2e:f0:d7:80:48:48: e8:33:64:3c -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAeAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA1MTMw NTA1NDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDkwRTUwMzk2OTk2OTcx RkE4Q0M0MjA4MDFCMjc1QTU3NTc0RDIzRUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7uAUxfWDM+K548nJFcLnKJBFKer0JgFIxRNaliYNEnoh6T54O 2J/JLX5FKLhVGR4prOSfiXGyv9oyK3x+EX5aCrnajv9KRMcGLj8S52IkxYMibJFF sAql0QMFSGSrRi8IAzPFOhoOSwR3yWb1zSs+F4ZLNbeNK5N/aqNndFNIquH/+tZY M4Pi126kBhhSiybVeiFUvEAey8Y2HkMRPGSiuFmO1JswxBuyEpYkQRjb3Wszghu5 xeLzlQlYthD/BEdrkeid8yFWcn6wFNjxl4WyO0mwCRoc0ofyNRNV+jYt567b7RZR iqYXcv4s6P1sF76nh6tjoOqTpaYYfG1/H0p/AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUkOUDlplpcfqMxCCAGydaV1dNI+0wHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQva09VRGxwbHBjZnFNeENDQUd5ZGFW MWROSS0wLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAp0U+DAw DQYJKoZIhvcNAQELBQADggEBAHHqpNRpfPTm26tOmyNfYrjrGHm1EReKQp9tKtK8 fU0PggqhlLodIdlSWvfpiGd+JAj1ksGbHUBFX+VSguyikoyqbxV/0EZCIsCHbGNS tqZP2YW1/yZfGTTM/aGr6p+sAV55XBwo3zzLkcerJHN/LB7vzRIe913SP3jXdudj 2U5ietheN/9Vt8JB1LEf/K0p5IXwxXjxqUOhEfjCEbBaDpoYg7OJ1/Yry+nfzOTO ZVRhZlImrIYfPEDZuF9LgOKnD47cXtpcbD54NaxUmSl3MoqzP7j/ThwPg4DEwmEy 7O2x+ucM8QQhRuNQv2XYfN0nfdT3GFS5XC7w14BISOgzZDw= -----END CERTIFICATE-----Generated at Mon May 19 08:16:23 2025 by rpki-client