$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/rX-A4Ekok_6lST_9Fy_PLxLnlK4.roa File: rX-A4Ekok_6lST_9Fy_PLxLnlK4.roa (raw, json) Hash identifier: HI9VdV501KzGp6wfg+TrFakKA1r12CuvDKPKTVe5uXA= Subject key identifier: AD:7F:80:E0:49:28:93:FE:A5:49:3F:FD:17:2F:CF:2F:12:E7:94:AE Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 0204 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/rX-A4Ekok_6lST_9Fy_PLxLnlK4.roa Signing time: Wed 14 May 2025 05:25:06 +0000 ROA not before: Wed 14 May 2025 05:25:06 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152609 IP address blocks: 157.20.249.66/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 08:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 516 (0x204) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: May 14 05:25:06 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AD7F80E0492893FEA5493FFD172FCF2F12E794AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:e4:57:d7:5c:a6:cb:70:f2:8a:a4:b8:3e:f4: 53:22:49:b0:a3:6a:b3:1c:80:84:6e:4f:a0:d6:84: b8:2f:21:f8:40:db:ce:4c:5d:0a:6d:b2:0b:30:07: 6d:91:53:f4:10:dc:aa:b5:13:06:1d:37:0e:3d:96: 6f:d6:d3:e0:f7:58:c1:8a:43:c3:d1:ef:bc:f2:5e: ed:80:be:19:01:50:53:5a:8a:e3:d2:ee:7c:cf:5e: 83:de:6d:b6:39:6e:19:3b:68:3d:64:8d:a6:70:6e: f3:b8:c2:26:72:ea:d8:69:1d:59:07:53:f8:a3:d5: 22:6a:6e:20:99:d9:f7:2f:ba:f2:a2:88:39:b8:a4: d7:00:34:4c:1d:9d:8a:f1:3b:0a:dd:2e:c1:7e:aa: 2d:b2:1c:d9:91:1e:71:16:a7:18:a5:04:8d:c1:af: 6d:7f:34:ac:cb:e0:be:c5:79:06:f6:40:9e:e1:52: 3f:e8:ce:2c:d2:83:5f:3d:d7:92:f4:09:00:89:14: d3:91:9b:bd:28:2a:b2:4c:de:d9:17:9b:71:6c:1d: 76:6e:f3:2f:7d:9d:80:fc:9a:8d:b6:48:e7:7a:c9: af:3f:9a:c7:ee:51:5d:96:8d:4b:f7:94:8e:33:99: 6a:fa:6b:e3:7f:d4:82:24:32:bd:91:65:23:84:f6: 95:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:7F:80:E0:49:28:93:FE:A5:49:3F:FD:17:2F:CF:2F:12:E7:94:AE X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/rX-A4Ekok_6lST_9Fy_PLxLnlK4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.249.66/32 Signature Algorithm: sha256WithRSAEncryption b3:b8:1c:71:4b:c9:2f:fa:c7:fe:64:26:61:e0:64:73:37:27: 07:d5:1a:3f:d6:8a:cf:03:ad:d3:ef:e3:a3:d1:34:5c:a3:d4: 5a:10:84:ac:45:9a:b1:e1:b3:db:6d:44:1b:0a:7c:c9:a1:cb: 4f:18:f5:95:3e:3a:f6:c6:35:30:5a:fc:7d:39:ba:68:7e:ca: e6:8e:5f:f7:65:de:c8:8f:55:05:13:41:ec:6b:2f:2f:e4:5b: 85:d3:c8:e3:6b:15:18:5f:91:58:d1:d3:74:53:f4:71:dc:57: 6a:4d:1b:0a:63:ec:18:6f:2e:b4:e7:cd:7d:7a:6a:36:72:b1: 2c:d9:00:61:60:0b:ab:68:9c:99:1e:2b:51:d2:6b:db:be:6d: c6:76:0f:44:aa:27:e8:77:9e:ec:48:0b:fb:6f:19:08:ff:b5: 8b:74:43:60:24:63:9f:7e:90:cf:0e:4f:5b:63:22:7b:b4:39: 37:01:f6:87:ba:c5:ae:33:92:25:dc:b0:93:fb:06:b9:3c:59: 7c:e8:df:f7:75:dd:7d:84:11:3a:f0:47:97:db:c3:0b:91:2d: 39:67:cb:bf:69:27:fe:ae:da:18:fd:52:bd:a7:56:e2:0a:1e: b1:80:c5:77:d0:28:7b:ef:08:11:40:9c:65:b3:d8:81:41:e3: 86:8f:a2:a7 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAgQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA1MTQw NTI1MDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFEN0Y4MEUwNDkyODkz RkVBNTQ5M0ZGRDE3MkZDRjJGMTJFNzk0QUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCa5FfXXKbLcPKKpLg+9FMiSbCjarMcgIRuT6DWhLgvIfhA285M XQptsgswB22RU/QQ3Kq1EwYdNw49lm/W0+D3WMGKQ8PR77zyXu2AvhkBUFNaiuPS 7nzPXoPebbY5bhk7aD1kjaZwbvO4wiZy6thpHVkHU/ij1SJqbiCZ2fcvuvKiiDm4 pNcANEwdnYrxOwrdLsF+qi2yHNmRHnEWpxilBI3Br21/NKzL4L7FeQb2QJ7hUj/o zizSg18915L0CQCJFNORm70oKrJM3tkXm3FsHXZu8y99nYD8mo22SOd6ya8/msfu UV2WjUv3lI4zmWr6a+N/1IIkMr2RZSOE9pVpAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUrX+A4Ekok/6lST/9Fy/PLxLnlK4wHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvclgtQTRFa29rXzZsU1RfOUZ5X1BM eExubEs0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAJ0U+UIw DQYJKoZIhvcNAQELBQADggEBALO4HHFLyS/6x/5kJmHgZHM3JwfVGj/Wis8DrdPv 46PRNFyj1FoQhKxFmrHhs9ttRBsKfMmhy08Y9ZU+OvbGNTBa/H05umh+yuaOX/dl 3siPVQUTQexrLy/kW4XTyONrFRhfkVjR03RT9HHcV2pNGwpj7BhvLrTnzX16ajZy sSzZAGFgC6tonJkeK1HSa9u+bcZ2D0SqJ+h3nuxIC/tvGQj/tYt0Q2AkY59+kM8O T1tjInu0OTcB9oe6xa4zkiXcsJP7Brk8WXzo3/d13X2EETrwR5fbwwuRLTlny79p J/6u2hj9Ur2nVuIKHrGAxXfQKHvvCBFAnGWz2IFB44aPoqc= -----END CERTIFICATE-----Generated at Mon May 19 07:21:09 2025 by rpki-client