$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/xW4rwY07p2Tz7PsgEXL20MBb_XI.roa File: xW4rwY07p2Tz7PsgEXL20MBb_XI.roa (raw, json) Hash identifier: QhUdUvz1AHOeVY1rSog3bhY6Hni+bNkjvzmbdJraB7g= Subject key identifier: C5:6E:2B:C1:8D:3B:A7:64:F3:EC:FB:20:11:72:F6:D0:C0:5B:FD:72 Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 01F4 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/xW4rwY07p2Tz7PsgEXL20MBb_XI.roa Signing time: Wed 14 May 2025 03:10:46 +0000 ROA not before: Wed 14 May 2025 03:10:46 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152609 IP address blocks: 157.20.248.96/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 08:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 500 (0x1f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: May 14 03:10:46 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C56E2BC18D3BA764F3ECFB201172F6D0C05BFD72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:32:93:3d:30:e3:07:8d:40:05:9d:df:d2:74: b0:9d:a4:af:f2:79:ed:a8:d6:ad:89:ef:ba:c4:02: d9:76:d1:d9:4f:2a:53:ab:dc:c6:c5:c2:31:f9:03: 9c:39:15:92:6b:c2:03:0a:91:d3:37:46:de:80:ec: a2:ce:b7:e2:b5:68:de:d3:2a:43:2a:ab:ef:3f:3c: 6b:42:9b:32:6b:36:92:b1:ec:d9:58:6a:4f:74:61: dc:dd:7b:6a:39:cf:20:8f:a2:a8:97:02:87:4e:9a: 4e:5f:ca:92:7a:b8:95:f4:e8:b5:b0:3f:cf:2f:1b: 0e:59:4b:3a:bd:e2:ac:e1:f6:42:a6:f6:ed:0c:10: 02:10:86:fa:f7:b4:fe:39:0f:fa:94:1a:0b:5e:e2: 63:93:36:49:ba:fa:01:f4:1f:0f:50:95:6f:5d:a3: 05:0a:df:6d:0b:5f:0b:f1:35:45:e8:68:0b:ea:3f: 26:66:f8:65:27:8f:a5:71:53:dc:39:67:73:a8:32: ef:d0:a0:72:15:06:fc:90:49:1e:7e:05:c5:a0:37: dd:06:f3:da:67:04:6b:b1:84:26:4c:36:7e:99:c1: 16:77:c1:3b:a9:b7:53:9c:80:c7:e0:e3:8c:04:fc: 0b:b3:17:46:ec:16:f4:66:38:10:cb:c1:e1:0a:d0: 6a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:6E:2B:C1:8D:3B:A7:64:F3:EC:FB:20:11:72:F6:D0:C0:5B:FD:72 X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/xW4rwY07p2Tz7PsgEXL20MBb_XI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.248.96/32 Signature Algorithm: sha256WithRSAEncryption 88:cc:5d:ba:14:4e:bc:bb:9c:d0:c3:4b:1a:fc:58:55:3d:13: a7:d8:07:c9:90:aa:30:85:88:4e:c2:1a:ab:f0:a9:fe:29:6c: 50:eb:bb:c9:eb:d2:e6:01:b0:71:94:4e:6b:80:73:18:04:06: 1f:e5:44:ed:56:dc:df:e0:27:07:4d:4c:d2:79:63:a2:c1:83: 9f:27:6e:77:c4:9b:2e:ef:af:d3:52:1d:e5:70:9b:e8:28:e4: 75:f7:39:c1:02:24:da:c5:f8:64:15:16:12:f5:98:dc:2d:fb: af:0c:b1:2d:c0:be:f5:c6:48:d1:a9:71:03:4e:8e:c0:bb:6a: 6e:2d:78:4a:03:3e:3d:47:2b:c5:ce:9a:86:ae:3e:9b:00:02: 16:68:44:c2:b1:14:44:b7:6b:e9:4b:85:dc:df:03:ff:21:09: a0:0d:f6:e7:e7:cc:5c:d4:74:6b:f7:a3:66:21:95:fc:65:7e: 04:bb:cd:a3:e7:0b:02:c4:53:da:cc:d5:b1:0b:a7:83:f9:fd: 68:f8:49:e8:94:23:6c:2a:b1:4f:29:d1:55:91:81:2e:b6:ac: a9:3f:52:01:e3:60:9d:2c:da:69:81:bc:a0:ea:66:64:d8:a0: a7:12:86:9a:31:f4:58:4d:cf:10:17:b9:86:c1:f1:9f:26:c5: 6e:ff:cd:a4 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAfQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA1MTQw MzEwNDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM1NkUyQkMxOEQzQkE3 NjRGM0VDRkIyMDExNzJGNkQwQzA1QkZENzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0MpM9MOMHjUAFnd/SdLCdpK/yee2o1q2J77rEAtl20dlPKlOr 3MbFwjH5A5w5FZJrwgMKkdM3Rt6A7KLOt+K1aN7TKkMqq+8/PGtCmzJrNpKx7NlY ak90Ydzde2o5zyCPoqiXAodOmk5fypJ6uJX06LWwP88vGw5ZSzq94qzh9kKm9u0M EAIQhvr3tP45D/qUGgte4mOTNkm6+gH0Hw9QlW9dowUK320LXwvxNUXoaAvqPyZm +GUnj6VxU9w5Z3OoMu/QoHIVBvyQSR5+BcWgN90G89pnBGuxhCZMNn6ZwRZ3wTup t1OcgMfg44wE/AuzF0bsFvRmOBDLweEK0GqfAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUxW4rwY07p2Tz7PsgEXL20MBb/XIwHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQveFc0cndZMDdwMlR6N1BzZ0VYTDIw TUJiX1hJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAJ0U+GAw DQYJKoZIhvcNAQELBQADggEBAIjMXboUTry7nNDDSxr8WFU9E6fYB8mQqjCFiE7C Gqvwqf4pbFDru8nr0uYBsHGUTmuAcxgEBh/lRO1W3N/gJwdNTNJ5Y6LBg58nbnfE my7vr9NSHeVwm+go5HX3OcECJNrF+GQVFhL1mNwt+68MsS3AvvXGSNGpcQNOjsC7 am4teEoDPj1HK8XOmoauPpsAAhZoRMKxFES3a+lLhdzfA/8hCaAN9ufnzFzUdGv3 o2YhlfxlfgS7zaPnCwLEU9rM1bELp4P5/Wj4SeiUI2wqsU8p0VWRgS62rKk/UgHj YJ0s2mmBvKDqZmTYoKcShpox9FhNzxAXuYbB8Z8mxW7/zaQ= -----END CERTIFICATE-----Generated at Mon May 19 07:06:15 2025 by rpki-client