$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/MgDnjCGOFvtEcO0y3pd3Im8tLU0.roa File: MgDnjCGOFvtEcO0y3pd3Im8tLU0.roa (raw, json) Hash identifier: Y0bBJoarcgNmefhq3MRx0oQMzsyliYT4TLa5skCKM7g= Subject key identifier: 32:00:E7:8C:21:8E:16:FB:44:70:ED:32:DE:97:77:22:6F:2D:2D:4D Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA Certificate serial: 05D5 Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/MgDnjCGOFvtEcO0y3pd3Im8tLU0.roa Signing time: Mon 10 Feb 2025 13:57:52 +0000 ROA not before: Mon 10 Feb 2025 13:57:52 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7480 IP address blocks: 103.156.184.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1493 (0x5d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA Validity Not Before: Feb 10 13:57:52 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3200E78C218E16FB4470ED32DE9777226F2D2D4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:60:57:e5:de:a4:e4:06:f1:c1:e6:24:df:01: 26:9d:ba:7b:14:c2:d0:0e:6d:19:7e:24:09:33:95: a2:b2:ec:f5:c1:c0:33:29:18:f3:b1:c3:6e:45:f8: 2e:f2:58:4f:99:4b:b8:29:0e:7e:7b:f0:68:43:09: 23:c7:f8:5f:b6:0a:c3:5f:e8:36:6f:07:68:6f:2a: 27:fd:b8:aa:73:f3:2f:f8:e9:88:18:80:21:45:be: d1:fe:f4:45:55:26:30:56:03:31:d3:9d:f1:13:1c: 53:0d:49:34:0f:65:0c:22:5d:24:28:86:d2:1f:e9: 8f:40:96:b0:08:12:4c:c9:23:ab:c3:9b:b6:0d:bf: e3:f9:b1:07:ab:86:7e:ef:85:96:3c:11:41:e8:e8: b1:be:9c:b8:c0:7a:80:2b:7f:2e:7b:26:a7:ba:d4: de:ad:05:ee:3c:17:81:b4:c9:cb:01:f2:09:cf:f3: 3a:3b:65:2b:2b:a3:ee:56:65:0c:42:44:8c:20:7d: 58:22:e8:9f:f4:24:4c:66:32:90:5e:11:04:2e:8a: 99:f9:33:70:74:11:2e:67:2a:ba:c2:fd:86:e0:9c: 89:e6:ca:10:82:e1:7a:2e:b5:99:eb:78:b6:69:40: f4:0d:40:44:15:14:de:ef:47:ce:83:e0:26:31:24: bd:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:00:E7:8C:21:8E:16:FB:44:70:ED:32:DE:97:77:22:6F:2D:2D:4D X509v3 Authority Key Identifier: keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/MgDnjCGOFvtEcO0y3pd3Im8tLU0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.156.184.0/23 Signature Algorithm: sha256WithRSAEncryption b9:df:66:78:df:89:11:7e:1e:7a:05:46:27:f8:99:71:c5:a1: 5c:ea:14:fd:5e:55:25:7d:a1:85:71:d2:69:4e:0b:40:84:5b: 75:90:fd:da:07:21:cb:d0:59:05:89:c2:a1:e0:dd:be:ba:45: 97:66:12:21:59:cd:ad:8c:77:ba:13:f8:0c:3f:f2:e7:da:c5: 7f:e6:a6:c1:d0:b3:5d:43:c7:1c:95:4e:eb:0f:11:ae:34:12: 8f:55:d1:ba:70:4a:1b:3e:09:15:38:c3:08:f8:4b:7a:b6:63: 5a:d4:32:57:9f:03:91:67:30:8d:a5:41:29:42:1b:84:e6:12: 37:4c:56:8d:ca:8d:47:3e:6c:12:3e:92:0b:de:87:a0:c9:8d: 1d:c6:85:b6:e0:4e:a4:d2:90:d0:9f:b7:a8:a3:31:32:55:26: 8c:d0:1a:70:b6:9e:6c:dc:13:fe:ce:00:3f:1c:5c:bc:96:41: 1a:71:d3:ca:98:86:5b:23:1b:ee:da:36:78:c3:12:7d:e0:f6: 9c:a0:e8:80:3b:db:45:82:02:47:a1:13:49:f2:d3:f0:cf:b9: 36:f0:27:fd:ef:5f:bf:46:2a:e6:dc:a0:1b:66:ac:78:d8:32: 04:bb:69:71:4d:cb:54:2d:bf:2b:08:8c:49:26:bd:a6:69:8f: 77:e8:9c:00 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICBdUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTdB OTk0QkQ2MDU1NTE0NUNCNjQ1MkRDNkE5ODBGQzg1MTEzNkJEQTAeFw0yNTAyMTAx MzU3NTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMyMDBFNzhDMjE4RTE2 RkI0NDcwRUQzMkRFOTc3NzIyNkYyRDJENEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5YFfl3qTkBvHB5iTfASadunsUwtAObRl+JAkzlaKy7PXBwDMp GPOxw25F+C7yWE+ZS7gpDn578GhDCSPH+F+2CsNf6DZvB2hvKif9uKpz8y/46YgY gCFFvtH+9EVVJjBWAzHTnfETHFMNSTQPZQwiXSQohtIf6Y9AlrAIEkzJI6vDm7YN v+P5sQerhn7vhZY8EUHo6LG+nLjAeoArfy57Jqe61N6tBe48F4G0ycsB8gnP8zo7 ZSsro+5WZQxCRIwgfVgi6J/0JExmMpBeEQQuipn5M3B0ES5nKrrC/YbgnInmyhCC 4XoutZnreLZpQPQNQEQVFN7vR86D4CYxJL1lAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUMgDnjCGOFvtEcO0y3pd3Im8tLU0wHwYDVR0jBBgwFoAUV6mUvWBVUUXLZFLc apgPyFETa9owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQUxMUEFT Uy9WNm1VdldCVlVVWExaRkxjYXBnUHlGRVRhOW8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1Y2bVV2V0JWVVVYTFpGTGNhcGdQeUZFVGE5by5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0FMTFBBU1MvTWdEbmpDR09GdnRFY08w eTNwZDNJbTh0TFUwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWecuDANBgkqhkiG9w0BAQsFAAOCAQEAud9meN+JEX4eegVGJ/iZccWhXOoU/V5V JX2hhXHSaU4LQIRbdZD92gchy9BZBYnCoeDdvrpFl2YSIVnNrYx3uhP4DD/y59rF f+amwdCzXUPHHJVO6w8RrjQSj1XRunBKGz4JFTjDCPhLerZjWtQyV58DkWcwjaVB KUIbhOYSN0xWjcqNRz5sEj6SC96HoMmNHcaFtuBOpNKQ0J+3qKMxMlUmjNAacLae bNwT/s4APxxcvJZBGnHTypiGWyMb7to2eMMSfeD2nKDogDvbRYICR6ETSfLT8M+5 NvAn/e9fv0Yq5tygG2aseNgyBLtpcU3LVC2/KwiMSSa9pmmPd+icAA== -----END CERTIFICATE-----Generated at Thu Apr 17 20:38:21 2025 by rpki-client