$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/m06TB2cG6JPVS3dxE8HqVXOBB_s.roa File: m06TB2cG6JPVS3dxE8HqVXOBB_s.roa (raw, json) Hash identifier: EJrszcxQzZp/cNSrJhm147ZVpDqRCzfZhsumW1xeNqU= Subject key identifier: 9B:4E:93:07:67:06:E8:93:D5:4B:77:71:13:C1:EA:55:73:81:07:FB Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 01C8 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/m06TB2cG6JPVS3dxE8HqVXOBB_s.roa Signing time: Tue 13 May 2025 04:14:18 +0000 ROA not before: Tue 13 May 2025 04:14:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152609 IP address blocks: 157.20.248.33/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 08:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: May 13 04:14:18 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9B4E93076706E893D54B777113C1EA55738107FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:08:a1:f8:17:3b:10:a2:94:2e:e1:ab:8b:b9: 11:5a:0b:5d:b9:8b:51:72:8e:13:42:81:70:64:24: a1:c7:2b:64:2a:57:1e:e1:2f:ee:54:e9:65:d4:75: 4e:0e:5b:24:60:e3:58:ff:1c:47:62:39:8c:15:21: 28:56:73:29:64:42:51:41:80:bc:70:0d:51:68:44: e1:58:c5:75:69:33:9e:a3:f4:6f:72:d4:0b:b8:3a: 2f:b9:bb:5e:c7:0e:f8:88:ad:71:31:87:78:23:e9: 6f:17:79:53:e5:18:38:c3:ee:a0:b2:67:0c:c6:aa: e6:40:4d:15:16:92:5f:77:6c:ba:54:5c:e8:b1:0d: d3:2f:bf:bc:72:2d:60:ce:5a:0a:c3:64:90:b3:02: d3:46:b9:6c:6d:be:5f:84:fa:95:30:72:9c:0b:6c: 45:44:69:8c:fc:21:07:9d:6e:5f:de:9b:6d:00:ca: e9:cc:00:53:f6:8a:d9:7f:5f:8d:36:f6:3b:5d:11: 08:01:0f:15:f0:1c:09:67:9d:8b:01:7a:0e:86:4a: ce:e7:83:de:2d:e1:b1:bf:db:52:0f:55:58:66:91: 6e:25:e8:ae:39:f9:34:84:10:01:97:55:2b:d2:66: 32:d2:e2:fc:a4:36:dc:2d:b6:fe:c9:c0:b0:dd:97: b1:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:4E:93:07:67:06:E8:93:D5:4B:77:71:13:C1:EA:55:73:81:07:FB X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/m06TB2cG6JPVS3dxE8HqVXOBB_s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.248.33/32 Signature Algorithm: sha256WithRSAEncryption 6f:44:62:f8:cc:ec:18:d7:70:ce:12:18:4e:20:f1:ac:9a:dd: 0f:60:9a:cf:d5:c1:d2:c9:44:89:89:32:77:ac:71:42:f0:ac: 2e:0f:12:ca:e6:ff:90:30:f5:9d:a1:34:30:0b:ce:d3:3d:8f: 54:1a:46:e6:48:ca:63:30:b5:ba:a7:aa:48:56:4e:08:6d:11: 27:e4:5c:21:03:e8:1a:6c:76:6d:2d:ce:38:c9:be:26:64:fd: 45:81:44:f6:06:42:5d:8e:31:fa:35:fd:2a:ab:50:e3:08:f2: 24:41:73:a6:f8:ff:16:d4:9e:78:a7:e2:49:41:85:f6:f0:bb: 10:81:6d:86:b2:80:85:0d:96:6d:2f:71:5e:c5:75:48:c5:ca: 11:37:27:8e:00:77:c8:ab:16:b0:d6:89:ed:14:57:4f:9a:8f: ae:85:cb:b0:f3:62:f2:9d:32:83:f7:08:31:65:2c:87:25:29: ae:7e:e6:1c:e9:f1:1f:8e:97:99:81:f2:b8:db:96:bf:5e:6d: 29:2c:1e:4b:d5:9d:9d:b4:10:c2:f0:32:fa:2f:30:c0:88:1e: 69:16:17:06:6b:db:01:9a:8c:50:b1:b6:67:7c:1b:a8:61:02: ce:91:b9:38:3d:67:29:3c:ac:ce:3e:88:0d:81:d2:e6:6c:c0: cb:2d:ab:fd -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA1MTMw NDE0MThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlCNEU5MzA3NjcwNkU4 OTNENTRCNzc3MTEzQzFFQTU1NzM4MTA3RkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFCKH4FzsQopQu4auLuRFaC125i1FyjhNCgXBkJKHHK2QqVx7h L+5U6WXUdU4OWyRg41j/HEdiOYwVIShWcylkQlFBgLxwDVFoROFYxXVpM56j9G9y 1Au4Oi+5u17HDviIrXExh3gj6W8XeVPlGDjD7qCyZwzGquZATRUWkl93bLpUXOix DdMvv7xyLWDOWgrDZJCzAtNGuWxtvl+E+pUwcpwLbEVEaYz8IQedbl/em20AyunM AFP2itl/X4029jtdEQgBDxXwHAlnnYsBeg6GSs7ng94t4bG/21IPVVhmkW4l6K45 +TSEEAGXVSvSZjLS4vykNtwttv7JwLDdl7EbAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUm06TB2cG6JPVS3dxE8HqVXOBB/swHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvbTA2VEIyY0c2SlBWUzNkeEU4SHFW WE9CQl9zLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAJ0U+CEw DQYJKoZIhvcNAQELBQADggEBAG9EYvjM7BjXcM4SGE4g8aya3Q9gms/VwdLJRImJ MnescULwrC4PEsrm/5Aw9Z2hNDALztM9j1QaRuZIymMwtbqnqkhWTghtESfkXCED 6Bpsdm0tzjjJviZk/UWBRPYGQl2OMfo1/SqrUOMI8iRBc6b4/xbUnnin4klBhfbw uxCBbYaygIUNlm0vcV7FdUjFyhE3J44Ad8irFrDWie0UV0+aj66Fy7DzYvKdMoP3 CDFlLIclKa5+5hzp8R+Ol5mB8rjblr9ebSksHkvVnZ20EMLwMvovMMCIHmkWFwZr 2wGajFCxtmd8G6hhAs6RuTg9Zyk8rM4+iA2B0uZswMstq/0= -----END CERTIFICATE-----Generated at Mon May 19 07:16:14 2025 by rpki-client