$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/wu_0SQvvr0Xapqh654Y10EzUX0w.roa File: wu_0SQvvr0Xapqh654Y10EzUX0w.roa (raw, json) Hash identifier: 9UO6hfwFwtN8mT5Irs7ztnjcToRtwAZhrBWyPsgh/98= Subject key identifier: C2:EF:F4:49:0B:EF:AF:45:DA:A6:A8:7A:E7:86:35:D0:4C:D4:5F:4C Certificate issuer: /CN=179C63DB1D6F3AB2FB0EE78E1A897B85BBD2A602 Certificate serial: 02C7 Authority key identifier: 17:9C:63:DB:1D:6F:3A:B2:FB:0E:E7:8E:1A:89:7B:85:BB:D2:A6:02 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/wu_0SQvvr0Xapqh654Y10EzUX0w.roa Signing time: Mon 10 Feb 2025 14:03:02 +0000 ROA not before: Mon 10 Feb 2025 14:03:02 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 63895 IP address blocks: 103.185.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 711 (0x2c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=179C63DB1D6F3AB2FB0EE78E1A897B85BBD2A602 Validity Not Before: Feb 10 14:03:02 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C2EFF4490BEFAF45DAA6A87AE78635D04CD45F4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:19:c3:1c:c1:38:67:b3:a2:d1:47:b3:7d:9d: 8b:08:9d:33:fa:ee:54:5e:fc:75:37:5c:22:e7:9a: 52:cf:e2:40:ad:36:ac:9c:40:3f:db:6b:30:09:15: a3:24:75:28:f4:ae:93:de:4d:c1:5a:25:8c:01:0a: 36:5b:c7:6a:41:d1:ad:c6:52:6b:57:d6:0d:f8:16: dc:7e:d7:4c:80:59:e3:4b:60:92:91:06:89:73:bf: 6f:e8:10:29:e9:ac:6a:64:af:8f:a1:0f:2f:41:2f: ae:d2:85:42:ae:a2:19:97:0f:e7:b0:b6:6d:ca:b3: ec:81:63:4e:09:ce:8e:f7:20:d1:ae:8d:b3:9e:0e: 1e:ec:79:df:61:40:0a:28:ae:27:1c:9d:11:a3:ae: c1:de:21:d0:28:ab:b2:c1:42:4c:e9:95:c1:fe:2e: 68:77:44:9a:f4:39:50:06:f0:67:06:19:cf:f1:91: 8b:1a:1e:d7:a1:ef:1b:bd:ed:a2:7e:01:66:d9:7e: e7:b1:a5:be:b3:e1:fc:5d:f6:95:71:a3:2e:f6:23: 42:3d:56:b4:3c:d7:2d:e6:d7:50:18:84:94:ab:45: fe:7b:d5:7e:23:b0:62:ca:e6:6e:5b:09:05:8a:d9: 57:ae:49:21:be:70:7f:6a:fd:66:c2:af:29:7f:5b: e8:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:EF:F4:49:0B:EF:AF:45:DA:A6:A8:7A:E7:86:35:D0:4C:D4:5F:4C X509v3 Authority Key Identifier: keyid:17:9C:63:DB:1D:6F:3A:B2:FB:0E:E7:8E:1A:89:7B:85:BB:D2:A6:02 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/wu_0SQvvr0Xapqh654Y10EzUX0w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.185.29.0/24 Signature Algorithm: sha256WithRSAEncryption b6:47:61:4e:70:0c:1f:4e:28:7c:6d:aa:1d:fe:92:f2:0c:33: a1:97:ef:a0:87:d8:79:ca:f0:02:31:36:cb:1b:a3:b0:93:ca: d4:aa:f0:a9:0e:f3:48:c2:cc:41:ca:1f:c7:a9:e1:15:87:a5: 77:ea:b8:bd:56:21:5f:c2:44:b9:a8:90:d7:c4:38:d7:3b:38: 76:e6:ea:c0:ca:3a:94:51:1b:11:40:53:70:b0:5f:d5:dd:16: 62:e3:2d:2c:73:70:af:e9:2d:bf:1e:33:27:80:61:87:b2:a3: ce:75:b9:2d:49:b3:5d:e4:60:73:36:91:bd:5c:1d:d7:03:4c: 9c:dd:c7:42:61:df:ce:13:a3:a4:87:74:ae:06:d7:60:97:ac: 20:db:b7:fd:c3:67:24:fc:e5:fc:35:c7:b0:78:1f:3b:e9:64: 42:0f:f9:ac:6d:e5:34:d2:e2:1b:77:9a:72:7b:6d:8c:7d:0e: 57:6b:b0:ec:23:de:1d:de:20:ff:17:c4:34:80:e8:50:e0:2a: 48:2e:c7:1e:c7:40:6d:89:9c:a6:2d:f1:15:82:d9:0c:6f:1c: c7:3a:44:2d:1d:45:85:44:0a:30:c4:b3:d9:8b:55:37:bd:f1: 0f:0d:0b:db:a7:e8:82:38:9a:44:33:36:15:57:57:4d:b0:cf: 2f:4c:22:f5 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICAscwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTc5 QzYzREIxRDZGM0FCMkZCMEVFNzhFMUE4OTdCODVCQkQyQTYwMjAeFw0yNTAyMTAx NDAzMDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMyRUZGNDQ5MEJFRkFG NDVEQUE2QTg3QUU3ODYzNUQwNENENDVGNEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5GcMcwThns6LRR7N9nYsInTP67lRe/HU3XCLnmlLP4kCtNqyc QD/bazAJFaMkdSj0rpPeTcFaJYwBCjZbx2pB0a3GUmtX1g34Ftx+10yAWeNLYJKR Bolzv2/oECnprGpkr4+hDy9BL67ShUKuohmXD+ewtm3Ks+yBY04Jzo73INGujbOe Dh7sed9hQAooriccnRGjrsHeIdAoq7LBQkzplcH+Lmh3RJr0OVAG8GcGGc/xkYsa Hteh7xu97aJ+AWbZfuexpb6z4fxd9pVxoy72I0I9VrQ81y3m11AYhJSrRf571X4j sGLK5m5bCQWK2VeuSSG+cH9q/WbCryl/W+gLAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUwu/0SQvvr0Xapqh654Y10EzUX0wwHwYDVR0jBBgwFoAUF5xj2x1vOrL7DueO Gol7hbvSpgIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hBUk1X QVkvRjV4ajJ4MXZPckw3RHVlT0dvbDdoYnZTcGdJLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9GNXhqMngxdk9yTDdEdWVPR29sN2hidlNwZ0kuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSEFSTVdBWS93dV8wU1F2dnIwWGFw cWg2NTRZMTBFelVYMHcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ7kdMA0GCSqGSIb3DQEBCwUAA4IBAQC2R2FOcAwfTih8baod/pLyDDOhl++g h9h5yvACMTbLG6Owk8rUqvCpDvNIwsxByh/HqeEVh6V36ri9ViFfwkS5qJDXxDjX Ozh25urAyjqUURsRQFNwsF/V3RZi4y0sc3Cv6S2/HjMngGGHsqPOdbktSbNd5GBz NpG9XB3XA0yc3cdCYd/OE6Okh3SuBtdgl6wg27f9w2ck/OX8NceweB876WRCD/ms beU00uIbd5pye22MfQ5Xa7DsI94d3iD/F8Q0gOhQ4CpILscex0BtiZymLfEVgtkM bxzHOkQtHUWFRAowxLPZi1U3vfEPDQvbp+iCOJpEMzYVV1dNsM8vTCL1 -----END CERTIFICATE-----Generated at Fri Apr 18 23:58:29 2025 by rpki-client