$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYBERLINK/n0iMKSC2yZ_w7_Io0KvNrVw2Q5o.roa File: n0iMKSC2yZ_w7_Io0KvNrVw2Q5o.roa (raw, json) Hash identifier: aKYtw/dexViFSRE+epmoE7fQLW5SmHN8+DnasVasWWY= Subject key identifier: 9F:48:8C:29:20:B6:C9:9F:F0:EF:F2:28:D0:AB:CD:AD:5C:36:43:9A Certificate issuer: /CN=8C508B7DDA024FB2C9EF7FBBF4FBD02B9F43191D Certificate serial: 038E Authority key identifier: 8C:50:8B:7D:DA:02:4F:B2:C9:EF:7F:BB:F4:FB:D0:2B:9F:43:19:1D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/jFCLfdoCT7LJ73-79PvQK59DGR0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYBERLINK/n0iMKSC2yZ_w7_Io0KvNrVw2Q5o.roa Signing time: Mon 10 Feb 2025 14:21:03 +0000 ROA not before: Mon 10 Feb 2025 14:21:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 16509 IP address blocks: 103.168.156.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYBERLINK/jFCLfdoCT7LJ73-79PvQK59DGR0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CYBERLINK/jFCLfdoCT7LJ73-79PvQK59DGR0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/jFCLfdoCT7LJ73-79PvQK59DGR0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 17:36:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 910 (0x38e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C508B7DDA024FB2C9EF7FBBF4FBD02B9F43191D Validity Not Before: Feb 10 14:21:03 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9F488C2920B6C99FF0EFF228D0ABCDAD5C36439A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:42:b8:0b:80:76:6b:db:e2:59:64:e9:91:a1: d6:40:22:fd:5f:00:7b:b2:f9:8c:06:6a:16:af:c0: b8:c6:ed:62:68:e2:49:1d:e9:f4:ee:18:d8:45:c9: 1b:e2:65:e3:d5:e6:40:1e:9c:53:1e:03:6b:67:68: 4f:8c:7f:bd:03:eb:98:82:cb:69:28:d6:d2:d6:88: 07:af:60:f1:b5:34:02:cc:f0:6a:16:37:33:0d:f3: 7f:be:85:c1:34:4b:39:9a:52:f6:3f:83:fa:a6:06: 9f:9c:41:21:aa:93:b1:7c:e7:15:0d:4e:ee:d6:33: 32:f6:3a:c2:58:04:a8:be:09:55:37:2d:18:97:e9: 3f:30:b4:15:80:d2:fc:00:f6:16:6e:61:7d:2b:15: 61:7d:f2:47:f1:ea:b1:42:c3:d2:55:df:2c:48:b8: 8d:83:60:79:82:75:68:ce:2b:9d:bb:c6:44:33:02: 1a:9d:40:42:06:43:47:a6:56:01:04:7e:7f:ec:5a: 2c:c7:84:81:52:a9:db:ea:7c:b2:43:ef:8d:29:c3: 17:74:55:2e:c2:f2:2f:9a:f4:e3:79:d8:60:ff:b6: 3c:71:0d:1e:68:19:09:ad:b8:64:a3:4a:fc:0d:bc: 98:c1:4a:47:b1:6f:25:00:b5:d8:60:9c:4f:cf:58: d6:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:48:8C:29:20:B6:C9:9F:F0:EF:F2:28:D0:AB:CD:AD:5C:36:43:9A X509v3 Authority Key Identifier: keyid:8C:50:8B:7D:DA:02:4F:B2:C9:EF:7F:BB:F4:FB:D0:2B:9F:43:19:1D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYBERLINK/jFCLfdoCT7LJ73-79PvQK59DGR0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/jFCLfdoCT7LJ73-79PvQK59DGR0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYBERLINK/n0iMKSC2yZ_w7_Io0KvNrVw2Q5o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.168.156.0/23 Signature Algorithm: sha256WithRSAEncryption a9:e1:85:6c:1c:82:32:dc:e5:95:0b:01:55:fe:f7:6f:67:55: da:e7:ff:3b:92:06:57:b3:33:ce:4f:2c:8d:21:c0:1d:e2:04: 01:1d:c4:62:f8:fa:bf:9a:5f:c7:56:fc:68:47:c4:fc:78:d4: ef:10:de:29:dd:08:9b:98:21:20:9c:65:5b:2d:ea:8e:da:94: 91:4b:4d:c4:ff:7d:c7:c3:5e:15:fb:6d:26:4e:b8:3f:4e:1f: b9:f0:a7:4d:63:b4:cc:9c:a1:d2:99:76:4d:71:d6:e1:5c:8d: 81:99:27:af:26:bc:9b:30:2a:39:3c:c7:6e:7b:24:f4:eb:1f: 0f:1b:97:01:5b:c8:df:ac:a5:ca:24:16:75:04:56:9a:45:48: 44:9d:c3:71:c0:5e:2e:97:47:83:fb:66:b6:d6:fb:82:49:03: 0b:88:af:9e:88:83:1f:5d:27:ed:f5:45:69:5d:2a:ee:8a:cf: 9d:ff:ec:64:e6:7a:91:5f:1d:21:bc:6d:ba:1d:5d:c0:cd:e2: 2b:80:3b:5b:86:2f:59:b4:a1:0d:ab:f1:a5:68:8b:b3:aa:2d: 67:81:a6:e6:7e:dd:d2:fa:f6:49:16:19:a9:94:de:76:72:a3: ca:fd:7f:1d:a4:92:b3:08:88:ee:6f:76:f3:4d:56:30:27:d7: 3e:f2:ad:15 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICA44wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEM1 MDhCN0REQTAyNEZCMkM5RUY3RkJCRjRGQkQwMkI5RjQzMTkxRDAeFw0yNTAyMTAx NDIxMDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlGNDg4QzI5MjBCNkM5 OUZGMEVGRjIyOEQwQUJDREFENUMzNjQzOUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCaQrgLgHZr2+JZZOmRodZAIv1fAHuy+YwGahavwLjG7WJo4kkd 6fTuGNhFyRviZePV5kAenFMeA2tnaE+Mf70D65iCy2ko1tLWiAevYPG1NALM8GoW NzMN83++hcE0SzmaUvY/g/qmBp+cQSGqk7F85xUNTu7WMzL2OsJYBKi+CVU3LRiX 6T8wtBWA0vwA9hZuYX0rFWF98kfx6rFCw9JV3yxIuI2DYHmCdWjOK527xkQzAhqd QEIGQ0emVgEEfn/sWizHhIFSqdvqfLJD740pwxd0VS7C8i+a9ON52GD/tjxxDR5o GQmtuGSjSvwNvJjBSkexbyUAtdhgnE/PWNZFAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUn0iMKSC2yZ/w7/Io0KvNrVw2Q5owHwYDVR0jBBgwFoAUjFCLfdoCT7LJ73+7 9PvQK59DGR0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lCRVJM SU5LL2pGQ0xmZG9DVDdMSjczLTc5UHZRSzU5REdSMC5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvakZDTGZkb0NUN0xKNzMtNzlQdlFLNTlER1IwLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lCRVJMSU5LL24waU1LU0MyeVpf dzdfSW8wS3ZOclZ3MlE1by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFnqJwwDQYJKoZIhvcNAQELBQADggEBAKnhhWwcgjLc5ZULAVX+929nVdrn /zuSBlezM85PLI0hwB3iBAEdxGL4+r+aX8dW/GhHxPx41O8Q3indCJuYISCcZVst 6o7alJFLTcT/fcfDXhX7bSZOuD9OH7nwp01jtMycodKZdk1x1uFcjYGZJ68mvJsw Kjk8x257JPTrHw8blwFbyN+spcokFnUEVppFSESdw3HAXi6XR4P7ZrbW+4JJAwuI r56Igx9dJ+31RWldKu6Kz53/7GTmepFfHSG8bbodXcDN4iuAO1uGL1m0oQ2r8aVo i7OqLWeBpuZ+3dL69kkWGamU3nZyo8r9fx2kkrMIiO5vdvNNVjAn1z7yrRU= -----END CERTIFICATE-----Generated at Sat Apr 5 13:48:30 2025 by rpki-client