$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLARK/iZz3TgAK8_Ju7MyS42n4NVyylwI.roa File: iZz3TgAK8_Ju7MyS42n4NVyylwI.roa (raw, json) Hash identifier: LYzJphGnq9HJKkjD6vGryLpEhwuIp2C5R3E+VeNIl5w= Subject key identifier: 89:9C:F7:4E:00:0A:F3:F2:6E:EC:CC:92:E3:69:F8:35:5C:B2:97:02 Certificate issuer: /CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C Certificate serial: 01DF Authority key identifier: 74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/iZz3TgAK8_Ju7MyS42n4NVyylwI.roa Signing time: Mon 10 Feb 2025 14:22:39 +0000 ROA not before: Mon 10 Feb 2025 14:22:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 63910 IP address blocks: 103.130.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 479 (0x1df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C Validity Not Before: Feb 10 14:22:39 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=899CF74E000AF3F26EECCC92E369F8355CB29702 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:99:63:54:1d:30:e0:c0:83:fb:b4:31:d0:a3: da:74:55:cd:23:56:56:97:93:62:3f:e1:fa:81:33: d9:97:2e:2d:c3:53:9e:df:59:4b:d5:c9:12:ac:f0: d9:c7:26:5f:68:d1:01:4f:71:ac:8a:ee:64:d5:bd: 87:7b:bd:bd:03:0e:3f:5b:4e:16:a7:d0:29:31:f3: 34:3d:49:92:5d:59:d7:ab:dd:95:30:89:6a:8b:3a: 83:1a:2a:6b:9b:26:75:fe:b6:92:d7:1e:1e:2d:86: 64:e9:5c:4f:fd:fa:bc:dd:bb:d9:6f:c3:59:17:7a: 29:8d:fb:65:82:62:f9:8c:e0:45:46:70:3b:b0:58: 34:95:f5:ef:b4:e6:36:21:33:33:94:94:8a:52:28: 1a:60:3f:16:d1:98:e7:f0:8f:73:a7:e4:c4:87:4c: 8f:61:12:f2:08:1a:3f:45:af:f4:a6:db:4e:bc:53: 3a:ca:24:cd:44:a4:e1:a2:20:f4:ee:2d:14:3a:3a: ef:93:bc:a8:53:d8:c0:49:c7:16:55:cd:94:5e:f7: 97:d2:c9:10:72:7a:bd:53:6d:76:24:33:b8:bc:31: b1:dd:dd:b3:35:70:0d:e3:95:ed:aa:37:bb:07:0f: ba:51:93:50:5b:78:98:83:63:64:a5:07:06:be:3c: 7e:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:9C:F7:4E:00:0A:F3:F2:6E:EC:CC:92:E3:69:F8:35:5C:B2:97:02 X509v3 Authority Key Identifier: keyid:74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/iZz3TgAK8_Ju7MyS42n4NVyylwI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.236.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:03:08:af:94:8f:64:0c:64:b2:63:53:da:bc:b4:01:e6:3b: 08:37:2d:76:09:ca:cd:1a:62:8c:9e:fe:7e:38:29:e7:d4:49: 5d:e9:ee:3a:27:6a:52:fa:aa:0e:31:04:df:31:02:eb:c5:5f: 6d:69:80:d3:b6:b3:c3:cb:c0:07:6d:1d:4b:c1:eb:d5:60:91: 4b:e7:32:df:cb:df:f7:60:78:53:f2:54:3b:81:9a:4c:a7:48: 77:44:42:82:70:a6:b7:f1:78:f4:b2:42:4e:bf:e3:a6:3c:22: bf:c4:92:cd:16:86:72:f3:12:c6:c7:6f:8b:3a:8d:56:52:c9: e8:11:75:c0:eb:28:04:89:e3:c9:a5:0c:68:5b:cc:69:02:49: 9c:3b:95:4a:c6:b9:75:8e:1a:fa:f2:0b:95:c9:65:7d:e1:a0: f9:f6:c8:a9:69:51:52:b6:4a:e7:af:b6:2a:2e:ad:be:e4:cc: d6:5a:88:60:14:db:5f:e2:92:c1:f8:f6:32:51:25:0a:19:7b: b8:79:ee:76:2f:8d:96:4f:36:b7:e4:de:37:e5:75:ad:be:df: 83:e6:b4:73:eb:1c:0c:77:8e:03:54:26:f2:42:9c:d4:5e:19: 38:6b:bc:c2:cb:5b:8c:a0:09:96:b4:a6:4c:41:7d:73:7b:2d: f7:84:c7:34 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAd8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzRB RjA0MDJGRUY1NkMzNEExOTJEMUQyMTg1RTZGQjU0NkFBNzAyQzAeFw0yNTAyMTAx NDIyMzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg5OUNGNzRFMDAwQUYz RjI2RUVDQ0M5MkUzNjlGODM1NUNCMjk3MDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwmWNUHTDgwIP7tDHQo9p0Vc0jVlaXk2I/4fqBM9mXLi3DU57f WUvVyRKs8NnHJl9o0QFPcayK7mTVvYd7vb0DDj9bThan0Ckx8zQ9SZJdWder3ZUw iWqLOoMaKmubJnX+tpLXHh4thmTpXE/9+rzdu9lvw1kXeimN+2WCYvmM4EVGcDuw WDSV9e+05jYhMzOUlIpSKBpgPxbRmOfwj3On5MSHTI9hEvIIGj9Fr/Sm2068UzrK JM1EpOGiIPTuLRQ6Ou+TvKhT2MBJxxZVzZRe95fSyRByer1TbXYkM7i8MbHd3bM1 cA3jle2qN7sHD7pRk1BbeJiDY2SlBwa+PH49AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUiZz3TgAK8/Ju7MyS42n4NVyylwIwHwYDVR0jBBgwFoAUdK8EAv71bDShktHS GF5vtUaqcCwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xBUksv ZEs4RUF2NzFiRFNoa3RIU0dGNXZ0VWFxY0N3LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9kSzhFQXY3MWJEU2hrdEhTR0Y1dnRVYXFjQ3cuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DTEFSSy9pWnozVGdBSzhfSnU3TXlTNDJu NE5WeXlsd0kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4Ls MA0GCSqGSIb3DQEBCwUAA4IBAQAMAwivlI9kDGSyY1PavLQB5jsINy12CcrNGmKM nv5+OCnn1Eld6e46J2pS+qoOMQTfMQLrxV9taYDTtrPDy8AHbR1LwevVYJFL5zLf y9/3YHhT8lQ7gZpMp0h3REKCcKa38Xj0skJOv+OmPCK/xJLNFoZy8xLGx2+LOo1W UsnoEXXA6ygEiePJpQxoW8xpAkmcO5VKxrl1jhr68guVyWV94aD59sipaVFStkrn r7YqLq2+5MzWWohgFNtf4pLB+PYyUSUKGXu4ee52L42WTza35N435XWtvt+D5rRz 6xwMd44DVCbyQpzUXhk4a7zCy1uMoAmWtKZMQX1zey33hMc0 -----END CERTIFICATE-----Generated at Fri Apr 18 23:46:51 2025 by rpki-client