$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/y3oP7rnzSDHbvaCd6s1aqAIJBJs.roa File: y3oP7rnzSDHbvaCd6s1aqAIJBJs.roa (raw, json) Hash identifier: Udr7ihlAgoDMlgUSFmNc2j7ibIPgZKQ5bvhGfjXw988= Subject key identifier: CB:7A:0F:EE:B9:F3:48:31:DB:BD:A0:9D:EA:CD:5A:A8:02:09:04:9B Certificate issuer: /CN=578183A0FE5DA4A0F3C0546FB6EC26CBD1232F99 Certificate serial: 02E8 Authority key identifier: 57:81:83:A0:FE:5D:A4:A0:F3:C0:54:6F:B6:EC:26:CB:D1:23:2F:99 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V4GDoP5dpKDzwFRvtuwmy9EjL5k.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/y3oP7rnzSDHbvaCd6s1aqAIJBJs.roa Signing time: Mon 10 Feb 2025 14:00:39 +0000 ROA not before: Mon 10 Feb 2025 14:00:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 63893 IP address blocks: 103.180.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/V4GDoP5dpKDzwFRvtuwmy9EjL5k.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/V4GDoP5dpKDzwFRvtuwmy9EjL5k.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/V4GDoP5dpKDzwFRvtuwmy9EjL5k.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 22:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 744 (0x2e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=578183A0FE5DA4A0F3C0546FB6EC26CBD1232F99 Validity Not Before: Feb 10 14:00:39 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CB7A0FEEB9F34831DBBDA09DEACD5AA80209049B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:31:c2:0b:f5:ba:00:91:e6:59:87:89:0e:d0: 37:7e:02:bc:0f:52:26:01:21:00:7a:68:e6:b7:f2: db:16:e3:dc:bd:7b:41:c8:39:8a:7d:8c:4d:56:bf: be:68:47:0d:5c:69:48:f1:c2:fc:06:45:a1:96:ad: 3e:79:d3:cf:b6:74:c8:f1:2a:8a:4b:f5:56:33:bc: df:6f:dc:33:32:44:bd:42:e3:90:f3:01:c7:08:63: b9:f4:c7:53:96:9d:21:ae:30:e2:ed:7f:b9:b6:ef: a8:78:41:93:3b:f9:5c:0a:61:75:bd:4b:c7:08:cd: a1:a0:30:12:83:df:4c:de:08:23:73:8f:5b:e7:cc: 37:2b:65:f7:d7:5f:af:33:be:ac:48:5f:3f:09:cf: f0:7f:ef:4a:b1:a2:1c:be:5f:0a:b8:84:7f:cc:0f: 3e:5e:cd:0f:3e:6f:f4:df:28:99:85:f4:00:90:0c: 8b:bf:c5:d0:fa:e7:37:28:96:64:ca:ae:4f:5b:fe: 0a:be:f9:2e:99:66:59:6e:13:46:c7:8d:02:79:0b: f5:98:d5:89:f7:e8:33:d6:36:78:dd:72:7d:e5:3d: 0e:8d:4e:86:0b:f1:ef:76:09:99:e9:b5:89:27:77: a8:75:3a:f1:f6:d2:54:05:8b:cc:e3:38:8a:02:80: 12:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:7A:0F:EE:B9:F3:48:31:DB:BD:A0:9D:EA:CD:5A:A8:02:09:04:9B X509v3 Authority Key Identifier: keyid:57:81:83:A0:FE:5D:A4:A0:F3:C0:54:6F:B6:EC:26:CB:D1:23:2F:99 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/V4GDoP5dpKDzwFRvtuwmy9EjL5k.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V4GDoP5dpKDzwFRvtuwmy9EjL5k.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/y3oP7rnzSDHbvaCd6s1aqAIJBJs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.180.14.0/23 Signature Algorithm: sha256WithRSAEncryption 1f:19:7e:61:0e:97:6d:85:93:95:05:2e:c3:3a:4d:41:bd:b7: f8:f2:d8:aa:6e:cd:c5:be:7a:0b:ee:17:d1:91:33:77:57:7a: 66:d2:5d:e5:f4:13:d5:46:9f:53:ac:ec:f0:d9:05:40:cb:cf: 00:1d:bc:00:8b:55:09:c5:f3:32:a4:4f:bf:11:5d:9f:20:bd: 64:d7:02:37:02:8e:3f:cc:89:88:d8:49:7b:5c:76:8a:2f:ab: 14:53:79:31:3c:be:74:11:05:e7:d5:08:2e:5d:2b:f7:3b:80: fe:59:99:ef:c5:93:a9:0a:33:28:aa:40:85:d5:97:b1:5d:0e: 3f:04:5a:7d:f2:a0:37:9b:13:9e:ba:2a:e8:66:09:4a:d9:bb: 16:a7:f6:cb:64:54:b0:91:ee:61:36:f1:fa:9d:c5:b5:d0:40: 48:a4:ae:49:ac:d5:35:37:56:e4:57:48:88:09:f6:03:7e:c2: 64:a8:95:5b:50:89:19:f3:3b:35:22:2e:50:8d:72:b2:23:72: 35:49:25:c4:39:ad:ca:32:57:05:c5:40:fe:f5:c1:76:fe:c4: a6:9a:92:6e:89:ca:37:9f:20:61:e5:e3:68:2c:cb:2b:f6:3c: 02:ae:62:78:a5:eb:99:5a:d5:88:07:35:7b:18:e5:a1:ab:c0: 70:e9:69:c8 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICAugwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTc4 MTgzQTBGRTVEQTRBMEYzQzA1NDZGQjZFQzI2Q0JEMTIzMkY5OTAeFw0yNTAyMTAx NDAwMzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENCN0EwRkVFQjlGMzQ4 MzFEQkJEQTA5REVBQ0Q1QUE4MDIwOTA0OUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxMcIL9boAkeZZh4kO0Dd+ArwPUiYBIQB6aOa38tsW49y9e0HI OYp9jE1Wv75oRw1caUjxwvwGRaGWrT5508+2dMjxKopL9VYzvN9v3DMyRL1C45Dz AccIY7n0x1OWnSGuMOLtf7m276h4QZM7+VwKYXW9S8cIzaGgMBKD30zeCCNzj1vn zDcrZffXX68zvqxIXz8Jz/B/70qxohy+Xwq4hH/MDz5ezQ8+b/TfKJmF9ACQDIu/ xdD65zcolmTKrk9b/gq++S6ZZlluE0bHjQJ5C/WY1Yn36DPWNnjdcn3lPQ6NToYL 8e92CZnptYknd6h1OvH20lQFi8zjOIoCgBJdAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUy3oP7rnzSDHbvaCd6s1aqAIJBJswHwYDVR0jBBgwFoAUV4GDoP5dpKDzwFRv tuwmy9EjL5kwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0NQMTEz ODQ3MC9WNEdEb1A1ZHBLRHp3RlJ2dHV3bXk5RWpMNWsuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL1Y0R0RvUDVkcEtEendGUnZ0dXdteTlFakw1ay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NDUDExMzg0NzAveTNvUDdybnpT REhidmFDZDZzMWFxQUlKQkpzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAWe0DjANBgkqhkiG9w0BAQsFAAOCAQEAHxl+YQ6XbYWTlQUuwzpNQb23 +PLYqm7Nxb56C+4X0ZEzd1d6ZtJd5fQT1UafU6zs8NkFQMvPAB28AItVCcXzMqRP vxFdnyC9ZNcCNwKOP8yJiNhJe1x2ii+rFFN5MTy+dBEF59UILl0r9zuA/lmZ78WT qQozKKpAhdWXsV0OPwRaffKgN5sTnroq6GYJStm7Fqf2y2RUsJHuYTbx+p3FtdBA SKSuSazVNTdW5FdIiAn2A37CZKiVW1CJGfM7NSIuUI1ysiNyNUklxDmtyjJXBcVA /vXBdv7EppqSbonKN58gYeXjaCzLK/Y8Aq5ieKXrmVrViAc1exjloavAcOlpyA== -----END CERTIFICATE-----Generated at Fri Apr 18 22:39:24 2025 by rpki-client