$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/wPvEHUT5l9_LGeQ5SmcqhsDi6Ug.roa File: wPvEHUT5l9_LGeQ5SmcqhsDi6Ug.roa (raw, json) Hash identifier: pG2CYq4JO6GqLT8aYcjpRs662hNRoplBvu+DacnHOAI= Subject key identifier: C0:FB:C4:1D:44:F9:97:DF:CB:19:E4:39:4A:67:2A:86:C0:E2:E9:48 Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 01C0 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/wPvEHUT5l9_LGeQ5SmcqhsDi6Ug.roa Signing time: Tue 13 May 2025 04:12:20 +0000 ROA not before: Tue 13 May 2025 04:12:20 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152609 IP address blocks: 157.20.248.28/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 08:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 448 (0x1c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: May 13 04:12:20 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C0FBC41D44F997DFCB19E4394A672A86C0E2E948 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:97:4c:b7:b7:35:80:9d:4c:29:af:6d:50:84: 0e:9f:d8:ec:a4:ae:f9:14:2e:04:ef:24:2f:de:19: ba:61:43:65:bd:af:87:31:dd:0c:3c:7a:e6:cd:77: 9a:bf:b9:60:97:a1:0b:be:62:99:4e:42:4f:9d:cd: 79:50:59:4c:ca:95:c7:66:e8:af:87:0f:24:68:83: 2d:9e:25:81:0e:32:b6:35:fa:69:9b:ba:48:9a:c8: 4d:38:b2:09:b2:c5:0f:40:eb:b7:30:32:e0:30:c3: 13:a5:9b:71:bb:6a:ec:e4:35:64:c9:bb:f3:be:f0: 38:a9:d6:96:3d:60:fc:06:37:0d:56:60:3b:8a:f9: 3d:f7:1a:7b:00:68:db:43:2a:10:83:70:be:1f:dd: c5:4f:fa:6d:6a:d3:0c:f7:00:ce:3a:e3:34:a3:e1: 86:4b:38:cb:fa:c8:43:4e:a2:e4:93:4f:b8:a6:02: 3a:12:27:59:52:00:98:aa:e8:71:03:95:6a:d4:17: 22:da:85:da:40:f0:3c:a0:de:a2:4b:b0:19:41:f6: 24:53:ed:0d:d3:d0:08:08:85:6d:fc:95:68:0e:ce: 74:17:bc:a4:17:3e:db:00:2c:d5:1e:df:8c:9f:d6: 51:e8:81:3e:d4:6a:f1:63:18:f7:61:08:85:2e:1f: 53:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:FB:C4:1D:44:F9:97:DF:CB:19:E4:39:4A:67:2A:86:C0:E2:E9:48 X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/wPvEHUT5l9_LGeQ5SmcqhsDi6Ug.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.248.28/32 Signature Algorithm: sha256WithRSAEncryption 61:79:77:69:88:af:e9:81:51:39:cf:f0:a8:e5:0d:91:8e:c2: 74:7c:4b:12:69:a4:0d:30:47:39:fd:b7:9c:3c:23:90:49:51: a3:d7:cb:c0:56:79:2c:b8:99:55:9a:49:66:e2:05:f2:1c:c0: 3f:83:cc:39:60:b7:09:d5:1b:ce:1d:08:bd:e7:7b:1a:ea:25: c9:b6:42:42:a0:94:de:98:82:87:06:7d:dc:85:49:ed:5c:ad: 06:43:d2:d7:57:1c:3a:7d:32:a9:95:94:d3:42:5e:1e:73:1e: fb:07:e1:cd:1e:d6:72:36:bc:45:06:5e:ba:8f:98:70:ba:20: d3:aa:96:0a:57:df:e1:9e:4a:a8:e7:4f:e9:90:95:a7:82:99: 77:18:8f:10:10:9c:bc:45:52:09:15:f3:61:97:a0:69:1c:f9: 0c:25:96:a9:db:49:6c:62:5f:19:7f:ff:b3:1d:95:93:19:7f: 72:09:c9:e9:77:2e:be:17:8c:0a:c2:72:b2:c3:b9:b8:a9:f5: a5:0c:02:00:f8:05:b5:24:bc:93:73:91:aa:94:a0:5f:26:c8: 59:7a:f8:d9:41:8f:8d:3c:e8:19:a7:01:c1:df:af:6c:c3:d0: 83:4f:7e:4f:5e:c3:f9:ac:af:0a:9a:c3:ec:f7:29:52:09:2b: 03:2c:57:d4 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAcAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA1MTMw NDEyMjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMwRkJDNDFENDRGOTk3 REZDQjE5RTQzOTRBNjcyQTg2QzBFMkU5NDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9l0y3tzWAnUwpr21QhA6f2OykrvkULgTvJC/eGbphQ2W9r4cx 3Qw8eubNd5q/uWCXoQu+YplOQk+dzXlQWUzKlcdm6K+HDyRogy2eJYEOMrY1+mmb ukiayE04sgmyxQ9A67cwMuAwwxOlm3G7auzkNWTJu/O+8Dip1pY9YPwGNw1WYDuK +T33GnsAaNtDKhCDcL4f3cVP+m1q0wz3AM464zSj4YZLOMv6yENOouSTT7imAjoS J1lSAJiq6HEDlWrUFyLahdpA8Dyg3qJLsBlB9iRT7Q3T0AgIhW38lWgOznQXvKQX PtsALNUe34yf1lHogT7UavFjGPdhCIUuH1N/AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUwPvEHUT5l9/LGeQ5SmcqhsDi6UgwHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvd1B2RUhVVDVsOV9MR2VRNVNtY3Fo c0RpNlVnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAJ0U+Bww DQYJKoZIhvcNAQELBQADggEBAGF5d2mIr+mBUTnP8KjlDZGOwnR8SxJppA0wRzn9 t5w8I5BJUaPXy8BWeSy4mVWaSWbiBfIcwD+DzDlgtwnVG84dCL3nexrqJcm2QkKg lN6YgocGfdyFSe1crQZD0tdXHDp9MqmVlNNCXh5zHvsH4c0e1nI2vEUGXrqPmHC6 INOqlgpX3+GeSqjnT+mQlaeCmXcYjxAQnLxFUgkV82GXoGkc+QwllqnbSWxiXxl/ /7MdlZMZf3IJyel3Lr4XjArCcrLDubip9aUMAgD4BbUkvJNzkaqUoF8myFl6+NlB j4086BmnAcHfr2zD0INPfk9ew/msrwqaw+z3KVIJKwMsV9Q= -----END CERTIFICATE-----Generated at Mon May 19 07:17:36 2025 by rpki-client