$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/nnlgpko-vHZJpoaQm6tT3pjBTUA.roa File: nnlgpko-vHZJpoaQm6tT3pjBTUA.roa (raw, json) Hash identifier: cLTlP2LrS1cBQLtzhB5rIjxa6t/cINPTpn/4MZOag38= Subject key identifier: 9E:79:60:A6:4A:3E:BC:76:49:A6:86:90:9B:AB:53:DE:98:C1:4D:40 Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 01F8 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/nnlgpko-vHZJpoaQm6tT3pjBTUA.roa Signing time: Wed 14 May 2025 03:11:08 +0000 ROA not before: Wed 14 May 2025 03:11:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152609 IP address blocks: 157.20.248.98/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 08:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 504 (0x1f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: May 14 03:11:08 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9E7960A64A3EBC7649A686909BAB53DE98C14D40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:89:d0:11:ac:c0:a3:3b:14:82:f6:a6:cf:2c: 20:ea:51:2a:a8:eb:a1:4c:03:59:19:e5:be:ca:af: 7c:88:71:99:55:56:85:22:69:32:2b:9a:a8:7a:ae: 60:20:26:4a:cc:a4:a8:03:9f:33:72:4d:50:84:88: 29:23:6e:95:27:b0:de:c5:37:b3:20:ad:ea:89:63: 21:52:97:8b:aa:5f:6f:6d:c9:40:1f:b4:04:cd:43: 85:35:31:d4:af:79:58:52:8c:9e:44:2a:06:d0:eb: 29:25:55:fb:2a:36:e1:cd:85:01:54:4c:10:b1:49: dd:db:08:a0:1e:9d:4c:f4:28:08:01:be:f9:65:92: fd:44:3f:13:2c:2d:c5:b7:63:f5:9f:71:00:0a:9e: d8:07:cd:25:81:e1:b6:50:ab:e6:ee:57:ff:07:64: c3:c9:0f:0f:ac:63:cb:64:8f:18:e0:57:c3:ac:cc: dc:79:2f:a2:47:7c:f2:3f:0b:3c:9d:dc:ad:fc:92: b8:ca:12:23:71:48:c5:c2:4c:2f:8c:4d:91:87:d0: ec:12:28:e7:f3:9f:6a:77:6a:9e:26:35:41:c5:ea: d7:d3:ec:ec:22:00:06:e0:8f:f5:3f:c1:e0:27:4b: b5:c6:85:ec:df:7b:d2:e0:dd:bd:75:f4:d7:e4:bc: 50:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:79:60:A6:4A:3E:BC:76:49:A6:86:90:9B:AB:53:DE:98:C1:4D:40 X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/nnlgpko-vHZJpoaQm6tT3pjBTUA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.248.98/32 Signature Algorithm: sha256WithRSAEncryption 6b:b1:dd:8e:22:a5:69:a7:14:8b:5b:64:69:f4:dd:8e:12:7b: 2c:ab:86:b3:30:e1:ef:38:e4:83:de:d9:30:92:83:a8:74:1b: 49:d1:be:32:ca:37:b5:98:dc:a4:9e:5a:63:bb:ce:77:fe:9a: 02:61:9d:a8:80:3f:98:10:da:98:9a:25:94:f7:7e:ba:03:fe: 0c:84:e2:50:7a:e0:9d:a8:80:97:ac:a3:4e:d8:3b:81:ff:f1: d4:00:88:86:db:32:c5:95:5f:ab:b1:00:df:16:64:be:ae:b7: e8:84:f2:8a:d2:2a:e1:85:34:49:e7:41:bc:9e:97:e1:29:c9: 62:de:29:71:ea:1b:28:fb:4d:d6:92:d0:89:3e:5a:bb:a8:1c: 47:2b:d3:6a:7f:d9:f3:69:05:93:f7:a0:ff:af:b1:25:fb:fa: c6:c2:34:12:55:66:38:4b:14:bb:6b:fb:41:6b:4c:8a:fb:37: 08:08:ef:e3:e0:c1:42:7b:6b:75:5b:53:9b:0f:e1:2e:21:0b: f8:02:1a:92:45:51:8c:e7:8c:8a:07:62:a8:91:02:be:80:45: b0:d3:ec:eb:fc:c9:00:a4:e3:24:50:82:39:77:35:0e:d3:41: 0b:f8:1e:fb:96:1b:7c:2a:2e:b9:df:72:71:81:93:a2:4e:de: 17:cd:3d:8d -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAfgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA1MTQw MzExMDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlFNzk2MEE2NEEzRUJD NzY0OUE2ODY5MDlCQUI1M0RFOThDMTRENDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzidARrMCjOxSC9qbPLCDqUSqo66FMA1kZ5b7Kr3yIcZlVVoUi aTIrmqh6rmAgJkrMpKgDnzNyTVCEiCkjbpUnsN7FN7MgreqJYyFSl4uqX29tyUAf tATNQ4U1MdSveVhSjJ5EKgbQ6yklVfsqNuHNhQFUTBCxSd3bCKAenUz0KAgBvvll kv1EPxMsLcW3Y/WfcQAKntgHzSWB4bZQq+buV/8HZMPJDw+sY8tkjxjgV8OszNx5 L6JHfPI/Czyd3K38krjKEiNxSMXCTC+MTZGH0OwSKOfzn2p3ap4mNUHF6tfT7Owi AAbgj/U/weAnS7XGhezfe9Lg3b119NfkvFBPAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUnnlgpko+vHZJpoaQm6tT3pjBTUAwHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvbm5sZ3Brby12SFpKcG9hUW02dFQz cGpCVFVBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAJ0U+GIw DQYJKoZIhvcNAQELBQADggEBAGux3Y4ipWmnFItbZGn03Y4SeyyrhrMw4e845IPe 2TCSg6h0G0nRvjLKN7WY3KSeWmO7znf+mgJhnaiAP5gQ2piaJZT3froD/gyE4lB6 4J2ogJeso07YO4H/8dQAiIbbMsWVX6uxAN8WZL6ut+iE8orSKuGFNEnnQbyel+Ep yWLeKXHqGyj7TdaS0Ik+WruoHEcr02p/2fNpBZP3oP+vsSX7+sbCNBJVZjhLFLtr +0FrTIr7NwgI7+PgwUJ7a3VbU5sP4S4hC/gCGpJFUYznjIoHYqiRAr6ARbDT7Ov8 yQCk4yRQgjl3NQ7TQQv4HvuWG3wqLrnfcnGBk6JO3hfNPY0= -----END CERTIFICATE-----Generated at Mon May 19 07:43:55 2025 by rpki-client