$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/q7DmYKyv-gyb-aNX2qIdQXCuIVM.roa File: q7DmYKyv-gyb-aNX2qIdQXCuIVM.roa (raw, json) Hash identifier: P3lYtGNO5vPNe0UAG1DNAuuEJ82KcMcgkImLD+IsbhU= Subject key identifier: AB:B0:E6:60:AC:AF:FA:0C:9B:F9:A3:57:DA:A2:1D:41:70:AE:21:53 Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 01EC Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/q7DmYKyv-gyb-aNX2qIdQXCuIVM.roa Signing time: Wed 14 May 2025 01:51:08 +0000 ROA not before: Wed 14 May 2025 01:51:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152609 IP address blocks: 157.20.248.65/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 08:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 492 (0x1ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: May 14 01:51:08 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=ABB0E660ACAFFA0C9BF9A357DAA21D4170AE2153 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:c2:3a:6d:47:a8:88:93:05:98:cd:dd:49:fa: e0:e0:72:c1:f1:45:bf:37:b1:87:3a:47:cc:42:a0: 9d:b5:f0:23:85:b0:6a:0e:f5:b3:74:bc:76:e9:4c: ed:53:b3:cd:9f:d7:1f:e8:e6:3d:62:fb:88:6b:58: d3:92:9d:b4:55:f0:64:8c:88:68:19:8a:b7:23:4d: 89:07:bb:cc:a0:ad:4d:29:a7:91:ed:44:18:69:f1: 7d:12:06:cc:2c:74:64:aa:62:df:4c:51:04:44:fc: fb:d5:31:66:78:d4:ab:a4:f3:50:b9:2b:5d:cc:51: 5f:20:33:88:38:4d:1f:32:79:a4:39:b1:84:3c:0b: 3a:fd:ed:66:07:76:d4:85:bc:8c:74:e4:90:d4:b1: b3:5e:47:9c:1b:1e:44:10:f4:60:1a:56:12:ad:81: 54:70:b9:8d:76:d4:2f:76:dc:1f:aa:57:7d:b2:cb: 06:20:30:ca:4d:71:04:6f:82:9c:a5:7b:4b:9c:2f: 4a:a1:32:54:80:6c:f2:8b:10:87:d1:a2:d4:e3:18: 2f:fd:f5:71:ab:27:40:31:85:ff:af:96:2c:fb:55: 74:ae:c6:85:d4:1e:19:c7:af:e1:d4:9c:10:25:72: 9e:f5:1d:7f:54:c8:bd:ba:36:ff:e1:f5:4e:11:40: ef:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:B0:E6:60:AC:AF:FA:0C:9B:F9:A3:57:DA:A2:1D:41:70:AE:21:53 X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/q7DmYKyv-gyb-aNX2qIdQXCuIVM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.248.65/32 Signature Algorithm: sha256WithRSAEncryption a1:90:74:74:0c:d1:26:39:94:9b:e9:60:3a:e5:93:5a:d1:46: cf:aa:58:f3:30:fb:82:df:42:74:ff:ea:b7:81:51:8d:21:7c: bb:02:50:87:49:b9:23:5e:44:fb:a4:5b:2b:9e:00:c6:9f:9e: 52:de:ba:6a:96:94:8d:bb:84:d5:09:33:55:9d:ec:ec:cc:d2: 51:0a:82:95:93:62:bc:48:71:7f:e5:23:3d:85:18:ff:ab:bd: cd:7c:bc:09:b7:48:fd:cb:3a:96:34:67:3b:e1:74:9c:57:47: 9d:3c:66:e7:27:b1:57:29:30:6e:bd:b3:fa:81:e7:11:78:f8: b2:01:79:3b:fd:df:c2:0b:d5:b6:d8:66:d3:10:9d:d6:ba:ed: 36:8d:34:a1:79:fd:cd:c0:90:d4:72:1e:2f:48:19:1b:2c:65: 25:76:c6:14:09:47:6f:a3:88:df:18:7b:f3:02:af:82:79:2e: cd:11:6b:09:4a:9a:42:4a:9d:e3:8d:6b:21:fe:c6:d2:8e:ab: b3:9f:5c:45:29:e5:ed:26:11:4f:21:73:06:83:f9:e2:59:4d: 06:0d:3c:cd:e1:77:a4:16:0b:d0:83:23:80:b4:a3:7d:d3:73: 05:f2:cd:05:35:ee:5f:3c:aa:31:19:ed:c3:48:fb:03:02:01: bd:d5:9b:89 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAewwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA1MTQw MTUxMDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFCQjBFNjYwQUNBRkZB MEM5QkY5QTM1N0RBQTIxRDQxNzBBRTIxNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDswjptR6iIkwWYzd1J+uDgcsHxRb83sYc6R8xCoJ218COFsGoO 9bN0vHbpTO1Ts82f1x/o5j1i+4hrWNOSnbRV8GSMiGgZircjTYkHu8ygrU0pp5Ht RBhp8X0SBswsdGSqYt9MUQRE/PvVMWZ41Kuk81C5K13MUV8gM4g4TR8yeaQ5sYQ8 Czr97WYHdtSFvIx05JDUsbNeR5wbHkQQ9GAaVhKtgVRwuY121C923B+qV32yywYg MMpNcQRvgpyle0ucL0qhMlSAbPKLEIfRotTjGC/99XGrJ0Axhf+vliz7VXSuxoXU HhnHr+HUnBAlcp71HX9UyL26Nv/h9U4RQO/7AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUq7DmYKyv+gyb+aNX2qIdQXCuIVMwHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvcTdEbVlLeXYtZ3liLWFOWDJxSWRR WEN1SVZNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAJ0U+EEw DQYJKoZIhvcNAQELBQADggEBAKGQdHQM0SY5lJvpYDrlk1rRRs+qWPMw+4LfQnT/ 6reBUY0hfLsCUIdJuSNeRPukWyueAMafnlLeumqWlI27hNUJM1Wd7OzM0lEKgpWT YrxIcX/lIz2FGP+rvc18vAm3SP3LOpY0ZzvhdJxXR508ZucnsVcpMG69s/qB5xF4 +LIBeTv938IL1bbYZtMQnda67TaNNKF5/c3AkNRyHi9IGRssZSV2xhQJR2+jiN8Y e/MCr4J5Ls0RawlKmkJKneONayH+xtKOq7OfXEUp5e0mEU8hcwaD+eJZTQYNPM3h d6QWC9CDI4C0o33TcwXyzQU17l88qjEZ7cNI+wMCAb3Vm4k= -----END CERTIFICATE-----Generated at Mon May 19 07:01:10 2025 by rpki-client