$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COLIN/IG70fLmJCcsXLBlXAKOVWYfnBME.roa File: IG70fLmJCcsXLBlXAKOVWYfnBME.roa (raw, json) Hash identifier: vSUZifJk2QVbZT7+wxQPycFvyadHbBYodfyFyc53K5I= Subject key identifier: 20:6E:F4:7C:B9:89:09:CB:17:2C:19:57:00:A3:95:59:87:E7:04:C1 Certificate issuer: /CN=9700C068EFA9A6B2E6879310C9AEA030DC8B2AD1 Certificate serial: 0181 Authority key identifier: 97:00:C0:68:EF:A9:A6:B2:E6:87:93:10:C9:AE:A0:30:DC:8B:2A:D1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lwDAaO-pprLmh5MQya6gMNyLKtE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COLIN/IG70fLmJCcsXLBlXAKOVWYfnBME.roa Signing time: Mon 10 Feb 2025 13:43:13 +0000 ROA not before: Mon 10 Feb 2025 13:43:13 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 150768 IP address blocks: 103.6.124.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/COLIN/lwDAaO-pprLmh5MQya6gMNyLKtE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/COLIN/lwDAaO-pprLmh5MQya6gMNyLKtE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/lwDAaO-pprLmh5MQya6gMNyLKtE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 385 (0x181) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9700C068EFA9A6B2E6879310C9AEA030DC8B2AD1 Validity Not Before: Feb 10 13:43:13 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=206EF47CB98909CB172C195700A3955987E704C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ef:3b:bc:db:39:72:2e:0d:09:5f:35:5a:2b: b0:10:39:79:dc:38:71:3d:fc:c2:d6:4f:8a:26:8a: c2:78:96:a9:ef:fb:62:f1:45:1b:4f:93:d1:ac:8a: c3:d5:fd:11:80:75:30:e4:1f:36:c6:fa:5e:ba:13: 3b:9b:99:b9:d5:1d:c5:0d:d6:b5:ff:ad:d0:ce:aa: e1:32:89:c2:cb:2d:1c:1b:d6:55:af:07:d9:61:6b: 09:3c:98:5e:ce:03:29:b8:49:c4:97:35:c6:10:0f: 94:29:c9:50:2a:dc:4c:2b:e8:48:6c:a5:12:69:ba: 33:75:95:92:ac:18:67:59:f9:d3:a5:14:39:9e:cf: 66:81:4a:7c:76:56:cc:5e:5e:e1:e6:25:79:ac:c7: 31:c6:3a:79:e9:10:d9:fc:63:6b:9e:94:99:86:fa: 13:e6:11:d6:75:d8:a3:8b:db:da:f3:f6:15:0b:b5: 6c:36:2b:85:62:0d:07:15:97:c8:5a:c7:9b:fa:e9: 26:3a:6f:99:b7:c4:b4:8b:7b:1b:9d:46:82:c5:48: 94:88:0a:85:ee:62:a5:c0:aa:76:f8:84:61:f7:79: fc:d4:eb:68:82:bc:c2:0a:2f:4b:50:f5:13:07:08: 7b:fa:0b:06:6c:66:2e:ef:d7:f3:22:01:76:7f:d1: 78:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:6E:F4:7C:B9:89:09:CB:17:2C:19:57:00:A3:95:59:87:E7:04:C1 X509v3 Authority Key Identifier: keyid:97:00:C0:68:EF:A9:A6:B2:E6:87:93:10:C9:AE:A0:30:DC:8B:2A:D1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COLIN/lwDAaO-pprLmh5MQya6gMNyLKtE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lwDAaO-pprLmh5MQya6gMNyLKtE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COLIN/IG70fLmJCcsXLBlXAKOVWYfnBME.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.6.124.0/23 Signature Algorithm: sha256WithRSAEncryption 11:e9:f8:95:42:fe:a5:e4:f4:8f:cb:15:a2:9c:5e:e7:85:b5: 27:f6:0b:e1:f0:e3:91:98:48:52:0e:4f:b6:05:0a:fa:b0:d7: 5a:aa:9c:86:f6:d9:bf:1f:48:07:ee:23:09:51:28:90:4b:04: 63:33:ea:93:86:44:74:7c:a7:57:8c:a4:f6:c2:2f:57:53:69: 5b:c7:37:1f:f7:bf:68:bf:fa:ba:83:3f:43:5e:69:35:c8:0a: c8:42:67:1a:81:a6:97:06:94:0d:b5:ec:16:9b:50:4f:ed:ba: c9:9d:18:0d:62:4c:7d:11:11:d1:f7:de:42:c5:4d:5b:e0:ed: 27:d7:45:e4:08:c7:92:94:51:ea:ec:f1:00:c7:6d:f6:38:fb: 48:03:05:2d:3e:97:a1:33:1a:45:a8:ba:82:09:5b:2e:4e:34: b5:ba:e2:cd:af:eb:02:b6:95:c4:d2:e2:61:1e:20:ed:2e:95: f3:66:73:48:13:d5:ba:ad:49:3f:60:24:38:4a:2d:a6:aa:30: d8:6b:9b:64:13:0a:85:e2:97:43:87:3b:a6:dd:24:4a:7d:d9: e8:08:db:20:5c:7e:8c:0c:f6:59:68:09:cc:b2:f1:b8:ac:29: 5c:0c:27:70:08:2b:a2:36:d2:54:41:04:48:4c:5a:63:fb:0d: 0b:35:92:98 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAYEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTcw MEMwNjhFRkE5QTZCMkU2ODc5MzEwQzlBRUEwMzBEQzhCMkFEMTAeFw0yNTAyMTAx MzQzMTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIwNkVGNDdDQjk4OTA5 Q0IxNzJDMTk1NzAwQTM5NTU5ODdFNzA0QzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDC7zu82zlyLg0JXzVaK7AQOXncOHE9/MLWT4omisJ4lqnv+2Lx RRtPk9GsisPV/RGAdTDkHzbG+l66EzubmbnVHcUN1rX/rdDOquEyicLLLRwb1lWv B9lhawk8mF7OAym4ScSXNcYQD5QpyVAq3Ewr6EhspRJpujN1lZKsGGdZ+dOlFDme z2aBSnx2VsxeXuHmJXmsxzHGOnnpENn8Y2uelJmG+hPmEdZ12KOL29rz9hULtWw2 K4ViDQcVl8hax5v66SY6b5m3xLSLexudRoLFSJSICoXuYqXAqnb4hGH3efzU62iC vMIKL0tQ9RMHCHv6CwZsZi7v1/MiAXZ/0XiNAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUIG70fLmJCcsXLBlXAKOVWYfnBMEwHwYDVR0jBBgwFoAUlwDAaO+pprLmh5MQ ya6gMNyLKtEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09MSU4v bHdEQWFPLXBwckxtaDVNUXlhNmdNTnlMS3RFLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9sd0RBYU8tcHByTG1oNU1ReWE2Z01OeUxLdEUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DT0xJTi9JRzcwZkxtSkNjc1hMQmxYQUtP VldZZm5CTUUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZwZ8 MA0GCSqGSIb3DQEBCwUAA4IBAQAR6fiVQv6l5PSPyxWinF7nhbUn9gvh8OORmEhS Dk+2BQr6sNdaqpyG9tm/H0gH7iMJUSiQSwRjM+qThkR0fKdXjKT2wi9XU2lbxzcf 979ov/q6gz9DXmk1yArIQmcagaaXBpQNtewWm1BP7brJnRgNYkx9ERHR995CxU1b 4O0n10XkCMeSlFHq7PEAx232OPtIAwUtPpehMxpFqLqCCVsuTjS1uuLNr+sCtpXE 0uJhHiDtLpXzZnNIE9W6rUk/YCQ4Si2mqjDYa5tkEwqF4pdDhzum3SRKfdnoCNsg XH6MDPZZaAnMsvG4rClcDCdwCCuiNtJUQQRITFpj+w0LNZKY -----END CERTIFICATE-----Generated at Fri Apr 18 23:52:40 2025 by rpki-client