$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/42xYmChH-h2X7GbcBg0pkljW7p4.roa File: 42xYmChH-h2X7GbcBg0pkljW7p4.roa (raw, json) Hash identifier: uNDiFHNlmqLZH/S4er6TOJjC524vBH3Q2Z8yMvjCorE= Subject key identifier: E3:6C:58:98:28:47:FA:1D:97:EC:66:DC:06:0D:29:92:58:D6:EE:9E Certificate issuer: /CN=058662B8DA05E4029F3FA4D56A5121DD4BD68989 Certificate serial: 0C7A Authority key identifier: 05:86:62:B8:DA:05:E4:02:9F:3F:A4:D5:6A:51:21:DD:4B:D6:89:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BYZiuNoF5AKfP6TValEh3UvWiYk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/42xYmChH-h2X7GbcBg0pkljW7p4.roa Signing time: Mon 10 Feb 2025 14:24:03 +0000 ROA not before: Mon 10 Feb 2025 14:24:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38254 IP address blocks: 103.122.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/BYZiuNoF5AKfP6TValEh3UvWiYk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/BYZiuNoF5AKfP6TValEh3UvWiYk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/BYZiuNoF5AKfP6TValEh3UvWiYk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 02:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3194 (0xc7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=058662B8DA05E4029F3FA4D56A5121DD4BD68989 Validity Not Before: Feb 10 14:24:03 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E36C58982847FA1D97EC66DC060D299258D6EE9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a7:3c:97:b1:c1:38:64:0c:17:ad:fd:d7:9f: b3:c8:55:3c:2b:b8:9c:e2:bf:a7:28:5f:48:06:9c: 04:70:27:21:01:e6:7e:ed:a7:fe:09:7d:5d:9e:24: 07:a4:ca:a6:31:3e:04:cc:65:9b:03:b4:d0:89:de: bd:c3:25:76:b2:1e:1d:23:06:94:02:34:e2:ac:16: d5:75:49:90:7d:8a:b5:30:f4:ce:47:12:a4:13:da: 9f:17:b9:95:6b:25:19:cc:f9:e6:ce:8a:dc:4e:d6: 65:f4:4f:bb:77:c2:52:08:d5:92:40:09:9c:26:70: d2:23:dd:20:24:b8:5f:b3:9f:aa:00:6a:26:1c:43: 16:4d:d6:18:b1:b2:e3:98:07:a0:cb:7e:9d:e4:72: f7:b8:08:a9:ce:2c:73:94:d8:ec:25:3e:09:9e:df: 86:ae:8f:70:25:a0:a0:b3:1d:49:d6:b0:1f:ce:73: b1:7e:6c:06:1e:cb:20:6e:26:06:8d:f6:39:73:1a: 78:77:30:a2:02:ca:5d:fa:8e:91:a7:e3:44:84:10: 05:6a:95:a7:e4:98:11:80:16:1d:3f:eb:d3:d6:91: 96:b5:dd:da:40:f3:bd:d2:90:77:3e:8d:8f:ea:cd: 46:24:8b:90:15:a4:31:0c:16:39:0f:3a:b5:28:d8: 88:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:6C:58:98:28:47:FA:1D:97:EC:66:DC:06:0D:29:92:58:D6:EE:9E X509v3 Authority Key Identifier: keyid:05:86:62:B8:DA:05:E4:02:9F:3F:A4:D5:6A:51:21:DD:4B:D6:89:89 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/BYZiuNoF5AKfP6TValEh3UvWiYk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BYZiuNoF5AKfP6TValEh3UvWiYk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/42xYmChH-h2X7GbcBg0pkljW7p4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.119.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:c3:23:72:d8:e4:7c:0b:30:ee:74:4d:fb:01:84:4a:26:8c: 78:11:28:dd:84:07:54:5a:25:37:5e:b4:58:d5:08:22:1c:fd: 07:6b:dd:f8:c9:27:0d:0f:8a:63:bd:02:92:90:c5:ad:bb:30: ee:0d:ca:07:fb:b8:55:13:0a:0a:e1:99:63:0c:30:ae:f3:e7: 6c:47:5b:fc:56:02:bc:57:16:fc:91:8f:57:84:d2:ff:da:3d: 8e:9c:cd:a2:ad:71:80:3c:47:f8:7a:4b:8d:fd:62:eb:3e:ac: c3:8e:8d:49:17:64:af:87:cf:43:0d:fc:3e:d3:a0:e3:a5:85: 7c:b9:b1:9a:bf:62:79:69:5d:f4:0c:f0:c7:68:ce:36:8b:22: 2b:f2:6b:6c:b7:06:71:ff:da:33:03:dd:71:34:5b:63:4c:87: 3d:e2:7c:bd:e2:5c:9b:08:30:7c:10:9f:c1:79:28:f2:bd:ba: 6b:ff:71:86:1d:38:ac:80:6e:86:43:e0:f1:01:1a:07:9d:73: 58:b4:ee:7e:11:7d:d3:4e:75:27:ae:48:dd:4e:56:33:66:4c: 78:5d:57:1a:94:20:c5:c7:a0:d5:eb:be:cc:be:40:ca:5b:26: b3:6b:a1:c7:cf:e7:0e:9f:e3:95:b8:7b:f6:07:25:03:3c:80: 5f:f3:e3:51 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDHowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDU4 NjYyQjhEQTA1RTQwMjlGM0ZBNEQ1NkE1MTIxREQ0QkQ2ODk4OTAeFw0yNTAyMTAx NDI0MDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEUzNkM1ODk4Mjg0N0ZB MUQ5N0VDNjZEQzA2MEQyOTkyNThENkVFOUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7pzyXscE4ZAwXrf3Xn7PIVTwruJziv6coX0gGnARwJyEB5n7t p/4JfV2eJAekyqYxPgTMZZsDtNCJ3r3DJXayHh0jBpQCNOKsFtV1SZB9irUw9M5H EqQT2p8XuZVrJRnM+ebOitxO1mX0T7t3wlII1ZJACZwmcNIj3SAkuF+zn6oAaiYc QxZN1hixsuOYB6DLfp3kcve4CKnOLHOU2OwlPgme34auj3AloKCzHUnWsB/Oc7F+ bAYeyyBuJgaN9jlzGnh3MKICyl36jpGn40SEEAVqlafkmBGAFh0/69PWkZa13dpA 873SkHc+jY/qzUYki5AVpDEMFjkPOrUo2IhPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU42xYmChH+h2X7GbcBg0pkljW7p4wHwYDVR0jBBgwFoAUBYZiuNoF5AKfP6TV alEh3UvWiYkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNTTUFV L0JZWml1Tm9GNUFLZlA2VFZhbEVoM1V2V2lZay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQllaaXVOb0Y1QUtmUDZUVmFsRWgzVXZXaVlrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNTTUFVLzQyeFltQ2hILWgyWDdHYmNC ZzBwa2xqVzdwNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn encwDQYJKoZIhvcNAQELBQADggEBAC3DI3LY5HwLMO50TfsBhEomjHgRKN2EB1Ra JTdetFjVCCIc/Qdr3fjJJw0PimO9ApKQxa27MO4Nygf7uFUTCgrhmWMMMK7z52xH W/xWArxXFvyRj1eE0v/aPY6czaKtcYA8R/h6S439Yus+rMOOjUkXZK+Hz0MN/D7T oOOlhXy5sZq/YnlpXfQM8MdozjaLIivya2y3BnH/2jMD3XE0W2NMhz3ifL3iXJsI MHwQn8F5KPK9umv/cYYdOKyAboZD4PEBGgedc1i07n4RfdNOdSeuSN1OVjNmTHhd VxqUIMXHoNXrvsy+QMpbJrNrocfP5w6f45W4e/YHJQM8gF/z41E= -----END CERTIFICATE-----Generated at Sat Apr 5 23:14:31 2025 by rpki-client