$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/v0BeITgXiieV1I3A64Elxh26wKk.roa File: v0BeITgXiieV1I3A64Elxh26wKk.roa (raw, json) Hash identifier: j7b8DGbqNMP6jbN3BozVqNHMcq66vEv6uenw2MP5ys8= Subject key identifier: BF:40:5E:21:38:17:8A:27:95:D4:8D:C0:EB:81:25:C6:1D:BA:C0:A9 Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 01C6 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/v0BeITgXiieV1I3A64Elxh26wKk.roa Signing time: Tue 13 May 2025 04:13:56 +0000 ROA not before: Tue 13 May 2025 04:13:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152609 IP address blocks: 157.20.248.31/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 08:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 454 (0x1c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: May 13 04:13:56 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BF405E2138178A2795D48DC0EB8125C61DBAC0A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:bf:47:bf:77:29:24:58:51:12:0d:3f:cd:4f: 2f:9e:84:6c:28:ab:97:4c:7c:d4:1e:35:2e:9c:b5: c5:6c:e8:f9:8d:9c:64:98:64:eb:02:f3:12:7f:29: 89:08:cb:06:f3:aa:1b:d9:50:4c:ce:93:16:e9:cb: cf:0b:3a:d9:3e:35:7c:01:fd:4d:8a:cf:02:dc:32: 82:69:5a:de:db:74:86:e4:e4:f3:25:9e:62:b9:a1: 5f:a4:35:a7:35:3c:f8:d2:35:23:29:9a:23:26:33: 42:19:c1:e6:5b:bf:b9:57:da:49:4e:4e:c5:e7:f2: cc:6e:b1:f7:c5:9b:75:73:dc:ee:ea:3d:b0:bd:57: 51:2e:4d:38:87:9d:4d:71:d6:06:ef:c0:d0:85:df: 93:8e:28:b7:3c:6e:78:2a:5d:d8:fd:83:55:e5:b2: 0d:c2:8f:d6:85:ca:fe:2b:cd:d3:bd:42:77:0b:f0: 04:c1:df:33:0c:71:f9:77:27:f0:fb:17:15:41:50: ec:e8:92:1c:55:db:c4:d5:87:88:ba:94:74:87:3a: af:72:55:f2:04:b2:66:df:86:e7:ec:ff:20:b8:f7: 35:b5:80:72:ce:88:46:9a:ef:96:d0:4e:ef:70:d6: 5c:c3:eb:0e:38:d6:d8:da:52:01:c3:25:d5:05:ee: bc:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:40:5E:21:38:17:8A:27:95:D4:8D:C0:EB:81:25:C6:1D:BA:C0:A9 X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/v0BeITgXiieV1I3A64Elxh26wKk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.248.31/32 Signature Algorithm: sha256WithRSAEncryption 78:73:31:fc:0c:01:e9:68:62:24:8e:ef:82:6d:fd:b8:57:88: d3:4d:b2:33:4d:6f:6f:a2:08:b1:d3:ea:8d:1c:dd:5b:98:74: 2e:01:9a:7d:7e:1d:52:68:c7:9d:ac:b0:63:cc:96:69:91:90: 2c:a8:d1:88:31:7c:f9:fd:09:a5:b5:8c:66:f3:ac:a2:07:27: e0:0b:e9:9b:2f:16:15:68:07:66:7f:35:74:ae:6c:19:c6:a1: 91:69:e5:9e:d2:63:f4:54:91:55:37:8a:89:9d:73:65:8c:e7: 2d:db:5c:b8:57:6c:a5:78:51:0e:1d:43:e0:44:9f:a3:89:63: c5:a0:b1:2f:60:22:64:2e:a1:a8:9b:80:5f:b8:2e:36:ac:54: 2d:e4:d4:93:a4:ca:e2:7b:37:04:7c:15:46:80:6b:cc:77:f4: 97:d6:5c:8c:1a:83:e4:f7:db:25:c8:ba:17:43:f1:f9:68:bc: c3:f7:e8:a9:bc:be:4c:75:79:11:14:3f:72:95:7d:9a:c5:c4: 6e:5e:8a:44:42:da:95:ea:0c:9c:da:b0:98:f0:86:72:13:a7: 9d:06:43:37:6b:42:1b:6a:42:a1:ba:20:4d:23:0b:2b:0a:28: b7:c3:4e:9a:c6:3e:0f:ba:01:a7:eb:b6:b2:a9:c5:74:da:0c: c3:11:8a:89 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAcYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA1MTMw NDEzNTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJGNDA1RTIxMzgxNzhB Mjc5NUQ0OERDMEVCODEyNUM2MURCQUMwQTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2v0e/dykkWFESDT/NTy+ehGwoq5dMfNQeNS6ctcVs6PmNnGSY ZOsC8xJ/KYkIywbzqhvZUEzOkxbpy88LOtk+NXwB/U2KzwLcMoJpWt7bdIbk5PMl nmK5oV+kNac1PPjSNSMpmiMmM0IZweZbv7lX2klOTsXn8sxusffFm3Vz3O7qPbC9 V1EuTTiHnU1x1gbvwNCF35OOKLc8bngqXdj9g1Xlsg3Cj9aFyv4rzdO9QncL8ATB 3zMMcfl3J/D7FxVBUOzokhxV28TVh4i6lHSHOq9yVfIEsmbfhufs/yC49zW1gHLO iEaa75bQTu9w1lzD6w441tjaUgHDJdUF7ryjAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUv0BeITgXiieV1I3A64Elxh26wKkwHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvdjBCZUlUZ1hpaWVWMUkzQTY0RWx4 aDI2d0trLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAJ0U+B8w DQYJKoZIhvcNAQELBQADggEBAHhzMfwMAeloYiSO74Jt/bhXiNNNsjNNb2+iCLHT 6o0c3VuYdC4Bmn1+HVJox52ssGPMlmmRkCyo0YgxfPn9CaW1jGbzrKIHJ+AL6Zsv FhVoB2Z/NXSubBnGoZFp5Z7SY/RUkVU3iomdc2WM5y3bXLhXbKV4UQ4dQ+BEn6OJ Y8WgsS9gImQuoaibgF+4LjasVC3k1JOkyuJ7NwR8FUaAa8x39JfWXIwag+T32yXI uhdD8flovMP36Km8vkx1eREUP3KVfZrFxG5eikRC2pXqDJzasJjwhnITp50GQzdr QhtqQqG6IE0jCysKKLfDTprGPg+6AafrtrKpxXTaDMMRiok= -----END CERTIFICATE-----Generated at Mon May 19 07:26:25 2025 by rpki-client