$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/nJ8c2cSw7aoupsvf271gYf7bsRE.roa File: nJ8c2cSw7aoupsvf271gYf7bsRE.roa (raw, json) Hash identifier: wjV/EkrJkAaGXOCykCGkgukKACAmpXiztxxVtK7TkrU= Subject key identifier: 9C:9F:1C:D9:C4:B0:ED:AA:2E:A6:CB:DF:DB:BD:60:61:FE:DB:B1:11 Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C Certificate serial: 0D30 Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/nJ8c2cSw7aoupsvf271gYf7bsRE.roa Signing time: Mon 10 Feb 2025 13:51:19 +0000 ROA not before: Mon 10 Feb 2025 13:51:19 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18042 IP address blocks: 61.67.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 21:23:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3376 (0xd30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C Validity Not Before: Feb 10 13:51:19 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9C9F1CD9C4B0EDAA2EA6CBDFDBBD6061FEDBB111 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:87:0a:f9:d3:8c:03:56:6d:76:2d:ec:a6:f0: c9:16:91:fa:4b:c5:2e:cd:8c:5e:b5:6e:8a:11:a7: f5:bd:4c:14:ff:d4:71:ee:60:bd:fe:b6:28:63:dc: f9:61:e4:19:c6:da:a6:aa:ce:64:92:e0:53:c1:da: c9:e8:d0:f7:f0:ff:75:31:0d:48:ab:19:7f:2a:6a: c6:93:07:2b:b6:b6:9d:e7:90:0b:89:2a:0c:1b:95: b4:24:b5:df:d3:5a:12:2c:cf:6b:b0:c5:c9:aa:f9: 63:84:94:02:36:67:46:93:73:b1:4a:10:3a:78:ba: 58:60:9c:8b:4f:b5:1c:cf:7c:41:9d:84:a2:7e:62: 7a:6e:f5:09:f8:d3:72:11:46:1f:d2:9b:c5:ed:6a: 30:77:cf:53:44:40:2b:bb:f3:e5:66:ba:39:9c:31: e3:fc:bf:04:53:34:2a:91:01:6e:ec:87:c9:77:fc: c5:97:33:a7:e1:b9:4c:65:42:b0:12:73:c9:40:aa: 10:4c:cd:46:23:db:49:e9:26:ba:00:71:b5:eb:8d: df:e8:bc:f8:6c:c9:3f:bf:51:ca:c8:c4:ac:e6:cc: 85:44:e8:6b:52:b6:8f:17:94:ac:0a:b4:eb:23:87: 5f:83:af:e1:88:c9:a9:08:f0:5a:37:f2:62:49:e1: 2b:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:9F:1C:D9:C4:B0:ED:AA:2E:A6:CB:DF:DB:BD:60:61:FE:DB:B1:11 X509v3 Authority Key Identifier: keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/nJ8c2cSw7aoupsvf271gYf7bsRE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.67.209.0/24 Signature Algorithm: sha256WithRSAEncryption b0:b0:bb:28:74:7d:c3:b7:3a:06:20:95:41:ca:93:82:b5:81: 16:6e:88:f3:4f:9a:39:10:07:95:2f:de:ea:26:25:32:c3:6e: d9:49:ac:8e:19:f8:16:1d:f7:f6:cf:2b:fe:2f:1b:18:df:d6: 69:9c:4c:0e:e9:85:76:6b:c7:99:84:2f:ed:3a:b5:05:d3:d7: f8:33:7c:ad:ec:85:9c:82:59:f6:6f:e5:61:a2:9f:5c:f8:f2: 21:18:c7:85:40:42:cd:26:13:ec:f7:a9:69:35:0c:9b:55:e4: 38:39:87:d0:83:f6:da:1e:20:eb:34:f3:a5:8a:a4:01:d0:63: fd:7d:fd:d1:14:9a:7b:69:eb:d8:db:f8:ce:59:b3:20:5d:45: fc:42:1e:81:e8:5c:cc:84:c5:8e:51:49:71:73:ba:af:c1:a4: 0f:e3:d5:05:e6:57:59:62:06:23:46:09:eb:f8:0f:f6:4c:f5: 57:25:ad:52:77:c0:4e:9d:bd:54:b6:b7:87:31:13:96:ff:33: b2:a6:b0:26:fc:c7:c6:c8:fb:cb:f6:e4:14:f5:89:ac:3b:30: 87:61:b1:50:0c:29:e8:ff:b5:3d:ea:c4:6f:b3:c1:f5:1d:82: 77:38:a5:5e:c3:9b:52:43:82:53:14:36:7a:a9:93:64:ba:80: cb:77:2b:87 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDTAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkRC RUQ3NTFEQThGMDE5MzA0MThFMkRFMjQzMkQwRDAzQTk3REE3QzAeFw0yNTAyMTAx MzUxMTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlDOUYxQ0Q5QzRCMEVE QUEyRUE2Q0JERkRCQkQ2MDYxRkVEQkIxMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4hwr504wDVm12Leym8MkWkfpLxS7NjF61booRp/W9TBT/1HHu YL3+tihj3Plh5BnG2qaqzmSS4FPB2sno0Pfw/3UxDUirGX8qasaTByu2tp3nkAuJ KgwblbQktd/TWhIsz2uwxcmq+WOElAI2Z0aTc7FKEDp4ulhgnItPtRzPfEGdhKJ+ Ynpu9Qn403IRRh/Sm8XtajB3z1NEQCu78+VmujmcMeP8vwRTNCqRAW7sh8l3/MWX M6fhuUxlQrASc8lAqhBMzUYj20npJroAcbXrjd/ovPhsyT+/UcrIxKzmzIVE6GtS to8XlKwKtOsjh1+Dr+GIyakI8Fo38mJJ4SvLAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUnJ8c2cSw7aoupsvf271gYf7bsREwHwYDVR0jBBgwFoAULb7XUdqPAZMEGOLe JDLQ0DqX2nwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0JUL0xi N1hVZHFQQVpNRUdPTGVKRExRMERxWDJudy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev TGI3WFVkcVBBWk1FR09MZUpETFEwRHFYMm53LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0JUL25KOGMyY1N3N2FvdXBzdmYyNzFnWWY3 YnNSRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9Q9EwDQYJ KoZIhvcNAQELBQADggEBALCwuyh0fcO3OgYglUHKk4K1gRZuiPNPmjkQB5Uv3uom JTLDbtlJrI4Z+BYd9/bPK/4vGxjf1mmcTA7phXZrx5mEL+06tQXT1/gzfK3shZyC WfZv5WGin1z48iEYx4VAQs0mE+z3qWk1DJtV5Dg5h9CD9toeIOs086WKpAHQY/19 /dEUmntp69jb+M5ZsyBdRfxCHoHoXMyExY5RSXFzuq/BpA/j1QXmV1liBiNGCev4 D/ZM9VclrVJ3wE6dvVS2t4cxE5b/M7KmsCb8x8bI+8v25BT1iaw7MIdhsVAMKej/ tT3qxG+zwfUdgnc4pV7Dm1JDglMUNnqpk2S6gMt3K4c= -----END CERTIFICATE-----Generated at Fri May 16 19:05:02 2025 by rpki-client