$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/vOhbe0vW43UUz_ZX-qtBUw84xl8.roa File: vOhbe0vW43UUz_ZX-qtBUw84xl8.roa (raw, json) Hash identifier: ZC9bRJ9uapyK3weQ+k0I9WNE2NwolLO8ToA9R6rtORQ= Subject key identifier: BC:E8:5B:7B:4B:D6:E3:75:14:CF:F6:57:FA:AB:41:53:0F:38:C6:5F Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 01B8 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/vOhbe0vW43UUz_ZX-qtBUw84xl8.roa Signing time: Mon 12 May 2025 09:44:41 +0000 ROA not before: Mon 12 May 2025 09:44:41 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152609 IP address blocks: 157.20.248.248/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 08:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 440 (0x1b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: May 12 09:44:41 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BCE85B7B4BD6E37514CFF657FAAB41530F38C65F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:bd:13:71:03:54:76:64:3b:f6:35:41:b4:fc: 34:7d:49:c5:1c:cc:e6:44:ff:53:90:9c:4f:91:c9: ad:8a:31:31:56:de:40:a8:de:9c:1e:5e:cc:ae:4a: fb:1b:50:24:0a:e5:bd:d0:85:03:37:98:48:85:db: db:20:70:ab:60:15:76:d8:e3:42:c6:ec:f8:47:bd: 59:47:90:dc:68:2f:9c:94:01:ed:ec:4d:68:ff:3a: c2:f2:ce:76:30:79:7a:71:9f:f6:f8:70:e3:de:0b: 90:9d:d2:cf:d1:2c:66:16:8f:61:80:ef:1f:2e:4e: a2:80:db:d0:55:9c:92:48:ad:b4:af:7f:ce:e4:4b: 73:38:19:9f:1b:6d:86:c1:b6:9c:48:90:20:7e:c2: 1e:df:62:8d:e4:a1:ea:fe:ef:d0:08:9a:96:86:a2: e6:22:24:ad:bf:2f:7c:64:3c:f3:5b:a4:54:2f:47: 87:cf:21:b4:79:10:95:f1:ca:84:f0:2c:61:d3:42: 8f:74:14:a1:39:28:cd:b5:0b:6a:45:81:97:5b:e2: 04:26:e4:81:53:2a:90:7d:4b:75:6f:df:ab:e3:2a: 3e:a2:33:c7:fd:51:12:10:b4:ea:2e:b5:21:95:a2: 78:01:cc:65:ec:ab:45:42:11:3a:5a:74:a4:9d:c6: 4d:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:E8:5B:7B:4B:D6:E3:75:14:CF:F6:57:FA:AB:41:53:0F:38:C6:5F X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/vOhbe0vW43UUz_ZX-qtBUw84xl8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.248.248/32 Signature Algorithm: sha256WithRSAEncryption 90:91:47:4d:9c:fc:8e:89:9a:d6:8f:81:70:3c:34:62:10:e6: d2:69:64:f5:cd:72:ef:a5:b0:f3:d8:9e:72:09:c5:f6:7f:e8: 14:26:38:fd:35:8e:99:95:49:aa:46:00:67:bf:07:fc:26:c3: 32:65:09:37:6e:9a:8f:89:ea:8d:5f:ae:82:cb:78:f6:49:ce: cc:f7:25:a4:b6:8c:ec:7e:06:00:e1:2a:b8:d3:5e:9b:76:6f: d0:f6:c5:d9:5c:11:5c:39:d6:c5:8e:06:a1:2e:01:6c:c3:94: 6d:b4:95:4c:2a:f9:c4:c4:2a:90:07:42:fd:7a:d0:b8:61:c3: 18:7a:10:d8:2c:85:39:71:d4:42:b6:81:3e:b1:41:4d:e8:cb: bf:f2:4a:9e:a8:53:05:41:48:20:bd:be:21:05:12:b2:bc:2e: 9a:ff:ea:a0:da:e0:3d:78:d8:71:cf:99:97:23:47:60:81:7d: f1:f5:4b:f6:d0:73:ad:9b:8c:f3:49:db:51:e4:ee:6d:31:27: a2:42:4e:a7:8d:37:d5:6d:27:63:33:33:7a:c9:1b:da:62:91: 2c:05:7b:6c:7a:4e:af:4a:d0:c3:d3:b5:ce:77:b9:c6:45:2c: 1d:bd:25:c0:00:8d:29:12:3e:eb:1b:5e:05:5b:fc:43:d7:da: de:4a:c2:1e -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAbgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA1MTIw OTQ0NDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJDRTg1QjdCNEJENkUz NzUxNENGRjY1N0ZBQUI0MTUzMEYzOEM2NUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7vRNxA1R2ZDv2NUG0/DR9ScUczOZE/1OQnE+Rya2KMTFW3kCo 3pweXsyuSvsbUCQK5b3QhQM3mEiF29sgcKtgFXbY40LG7PhHvVlHkNxoL5yUAe3s TWj/OsLyznYweXpxn/b4cOPeC5Cd0s/RLGYWj2GA7x8uTqKA29BVnJJIrbSvf87k S3M4GZ8bbYbBtpxIkCB+wh7fYo3koer+79AImpaGouYiJK2/L3xkPPNbpFQvR4fP IbR5EJXxyoTwLGHTQo90FKE5KM21C2pFgZdb4gQm5IFTKpB9S3Vv36vjKj6iM8f9 URIQtOoutSGVongBzGXsq0VCETpadKSdxk2zAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUvOhbe0vW43UUz/ZX+qtBUw84xl8wHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvdk9oYmUwdlc0M1VVel9aWC1xdEJV dzg0eGw4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAJ0U+Pgw DQYJKoZIhvcNAQELBQADggEBAJCRR02c/I6JmtaPgXA8NGIQ5tJpZPXNcu+lsPPY nnIJxfZ/6BQmOP01jpmVSapGAGe/B/wmwzJlCTdumo+J6o1froLLePZJzsz3JaS2 jOx+BgDhKrjTXpt2b9D2xdlcEVw51sWOBqEuAWzDlG20lUwq+cTEKpAHQv160Lhh wxh6ENgshTlx1EK2gT6xQU3oy7/ySp6oUwVBSCC9viEFErK8Lpr/6qDa4D142HHP mZcjR2CBffH1S/bQc62bjPNJ21Hk7m0xJ6JCTqeNN9VtJ2MzM3rJG9pikSwFe2x6 Tq9K0MPTtc53ucZFLB29JcAAjSkSPusbXgVb/EPX2t5Kwh4= -----END CERTIFICATE-----Generated at Mon May 19 07:20:08 2025 by rpki-client