$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/yBgz_XZJEY3ExgFIqhOcvEGCU5w.roa File: yBgz_XZJEY3ExgFIqhOcvEGCU5w.roa (raw, json) Hash identifier: +U2HUjYHSKaHmWe1aK14KuguYPBl+wgmlW/WeWe7daI= Subject key identifier: C8:18:33:FD:76:49:11:8D:C4:C6:01:48:AA:13:9C:BC:41:82:53:9C Certificate issuer: /CN=179C63DB1D6F3AB2FB0EE78E1A897B85BBD2A602 Certificate serial: 02C8 Authority key identifier: 17:9C:63:DB:1D:6F:3A:B2:FB:0E:E7:8E:1A:89:7B:85:BB:D2:A6:02 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/yBgz_XZJEY3ExgFIqhOcvEGCU5w.roa Signing time: Mon 10 Feb 2025 14:03:02 +0000 ROA not before: Mon 10 Feb 2025 14:03:02 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 63895 IP address blocks: 103.185.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 712 (0x2c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=179C63DB1D6F3AB2FB0EE78E1A897B85BBD2A602 Validity Not Before: Feb 10 14:03:02 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C81833FD7649118DC4C60148AA139CBC4182539C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:04:8f:b0:5d:1c:c1:5e:9c:23:05:e7:33:c0: 94:6e:01:8c:15:8b:a3:cc:c8:e6:75:d5:81:ee:8a: 54:4f:67:70:33:60:8a:b6:9b:f0:bd:21:32:ba:de: cf:8f:93:6c:01:20:4b:ff:e2:df:db:74:d5:6a:bb: 7c:a4:9e:99:e5:c2:b5:03:fc:25:90:49:97:8b:4d: e8:fb:aa:8a:83:cc:bb:55:d7:5d:ae:e0:d0:53:67: c3:f4:77:55:1d:45:64:8c:4e:51:fd:3b:bc:47:be: 58:23:5d:28:81:6f:45:6a:f1:09:c3:8a:2b:c5:2e: 2f:f8:9d:b2:ab:c0:46:85:86:5e:60:11:83:2b:49: 58:c7:9e:ec:3f:d6:b7:ba:80:0a:cf:ed:d6:ec:8e: a4:d8:a5:31:67:1a:0c:07:f4:65:7b:ba:4d:6a:e2: 80:1a:31:e7:34:9a:76:60:7b:93:2e:e4:64:2c:42: 61:dd:be:64:f4:d1:19:e4:54:05:fe:c6:d0:ab:fd: 25:60:10:1c:03:f8:da:02:73:8a:b5:57:78:ff:f5: 06:d8:3c:ba:29:81:bc:c6:93:ae:fa:84:b5:fc:c2: dc:33:dc:a1:66:95:ef:93:a8:bb:36:7d:d0:cf:98: 33:99:a6:ba:88:e9:77:05:93:af:ab:e3:c8:3e:60: 90:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:18:33:FD:76:49:11:8D:C4:C6:01:48:AA:13:9C:BC:41:82:53:9C X509v3 Authority Key Identifier: keyid:17:9C:63:DB:1D:6F:3A:B2:FB:0E:E7:8E:1A:89:7B:85:BB:D2:A6:02 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/yBgz_XZJEY3ExgFIqhOcvEGCU5w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.185.28.0/24 Signature Algorithm: sha256WithRSAEncryption a7:4f:94:d2:5d:59:8d:b5:66:da:a6:6b:59:ed:b6:e7:01:01: a8:46:dd:7d:63:d3:0e:f2:33:27:8d:88:7d:be:a6:d7:75:b6: ed:e9:26:7f:b1:f0:f7:68:dc:1d:66:3e:2a:70:da:d0:df:a2: dc:62:2d:a3:b2:d5:9a:45:68:61:04:6c:fe:97:a3:ea:27:bc: a1:e3:6f:df:29:a1:04:37:58:f1:0f:c9:e7:e1:de:e7:20:66: d4:98:d6:d0:8a:c1:b6:d0:1d:6c:47:98:4b:40:20:d2:b3:fb: 07:e7:2a:22:dc:ec:dc:05:2c:7f:95:c5:83:83:38:af:fd:1e: 93:77:e6:86:f6:80:e2:d2:7f:9e:f8:dc:5f:a8:8a:63:32:c6: c7:90:e7:17:5f:55:dc:8b:97:05:55:29:85:7b:a7:1d:80:09: 82:70:25:2c:41:82:be:07:ef:27:d5:e0:55:39:8d:ba:a4:56: 8c:cc:bb:9d:20:90:59:20:fc:d8:93:3d:93:c9:9a:f8:e1:80: 2b:82:8e:43:18:ad:35:1c:df:f0:d6:de:f3:b2:08:1b:4f:79: df:a6:d3:bd:98:7a:9a:42:c9:8c:21:f1:ac:b5:57:c0:ae:d0: bb:3d:20:31:be:c5:df:27:cb:0d:46:46:45:54:23:af:21:f3: 4c:24:63:8f -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICAsgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTc5 QzYzREIxRDZGM0FCMkZCMEVFNzhFMUE4OTdCODVCQkQyQTYwMjAeFw0yNTAyMTAx NDAzMDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM4MTgzM0ZENzY0OTEx OERDNEM2MDE0OEFBMTM5Q0JDNDE4MjUzOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDcBI+wXRzBXpwjBeczwJRuAYwVi6PMyOZ11YHuilRPZ3AzYIq2 m/C9ITK63s+Pk2wBIEv/4t/bdNVqu3yknpnlwrUD/CWQSZeLTej7qoqDzLtV112u 4NBTZ8P0d1UdRWSMTlH9O7xHvlgjXSiBb0Vq8QnDiivFLi/4nbKrwEaFhl5gEYMr SVjHnuw/1re6gArP7dbsjqTYpTFnGgwH9GV7uk1q4oAaMec0mnZge5Mu5GQsQmHd vmT00RnkVAX+xtCr/SVgEBwD+NoCc4q1V3j/9QbYPLopgbzGk676hLX8wtwz3KFm le+TqLs2fdDPmDOZprqI6XcFk6+r48g+YJAdAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUyBgz/XZJEY3ExgFIqhOcvEGCU5wwHwYDVR0jBBgwFoAUF5xj2x1vOrL7DueO Gol7hbvSpgIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hBUk1X QVkvRjV4ajJ4MXZPckw3RHVlT0dvbDdoYnZTcGdJLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9GNXhqMngxdk9yTDdEdWVPR29sN2hidlNwZ0kuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSEFSTVdBWS95Qmd6X1haSkVZM0V4 Z0ZJcWhPY3ZFR0NVNXcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ7kcMA0GCSqGSIb3DQEBCwUAA4IBAQCnT5TSXVmNtWbapmtZ7bbnAQGoRt19 Y9MO8jMnjYh9vqbXdbbt6SZ/sfD3aNwdZj4qcNrQ36LcYi2jstWaRWhhBGz+l6Pq J7yh42/fKaEEN1jxD8nn4d7nIGbUmNbQisG20B1sR5hLQCDSs/sH5yoi3OzcBSx/ lcWDgziv/R6Td+aG9oDi0n+e+NxfqIpjMsbHkOcXX1Xci5cFVSmFe6cdgAmCcCUs QYK+B+8n1eBVOY26pFaMzLudIJBZIPzYkz2TyZr44YArgo5DGK01HN/w1t7zsggb T3nfptO9mHqaQsmMIfGstVfArtC7PSAxvsXfJ8sNRkZFVCOvIfNMJGOP -----END CERTIFICATE-----Generated at Fri Apr 18 23:53:43 2025 by rpki-client