$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYVC/hK_zgFqrICNDBZj4HzIdQuZgp-A.roa File: hK_zgFqrICNDBZj4HzIdQuZgp-A.roa (raw, json) Hash identifier: f+K6w2zNjXg/siGJ5JPyJqtCIIConMsLd4/mqFo2dBw= Subject key identifier: 84:AF:F3:80:5A:AB:20:23:43:05:98:F8:1F:32:1D:42:E6:60:A7:E0 Certificate issuer: /CN=370F3943433AD963E299A9BE9239D0F3E37A082A Certificate serial: 02D3 Authority key identifier: 37:0F:39:43:43:3A:D9:63:E2:99:A9:BE:92:39:D0:F3:E3:7A:08:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Nw85Q0M62WPimam-kjnQ8-N6CCo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYVC/hK_zgFqrICNDBZj4HzIdQuZgp-A.roa Signing time: Mon 10 Feb 2025 14:30:25 +0000 ROA not before: Mon 10 Feb 2025 14:30:25 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 45102 IP address blocks: 103.183.154.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYVC/Nw85Q0M62WPimam-kjnQ8-N6CCo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CYVC/Nw85Q0M62WPimam-kjnQ8-N6CCo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Nw85Q0M62WPimam-kjnQ8-N6CCo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 02:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 723 (0x2d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=370F3943433AD963E299A9BE9239D0F3E37A082A Validity Not Before: Feb 10 14:30:25 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=84AFF3805AAB2023430598F81F321D42E660A7E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:44:c7:57:19:5f:6f:4b:53:c2:3d:5b:d7:b1: 14:85:c5:96:37:f7:75:78:35:9e:84:37:dc:c5:1d: 0f:a3:ea:15:aa:55:c1:31:b4:88:08:f2:60:2a:a9: f6:4b:50:6e:e4:7b:50:47:cb:c3:77:1a:f9:2f:f4: b3:a2:ab:24:06:95:d6:ac:5e:a8:ef:9a:7c:e9:0e: 47:4f:22:1a:b0:a6:a7:47:0c:ca:89:34:e1:7d:aa: 85:31:37:94:be:5f:58:9f:87:22:c5:17:85:f4:66: 06:c9:ca:32:b4:4d:01:0c:e7:c1:f4:dc:6c:24:64: 97:67:b4:f2:ff:05:a8:c0:7c:ae:a0:02:41:ca:8f: a4:46:94:ad:68:ff:a7:13:9b:8b:83:9a:55:96:ed: 2a:05:cf:a5:60:ef:cf:4d:10:ac:4e:56:ac:ad:a7: f6:82:a3:d3:8c:83:d6:40:63:73:ce:8d:60:9b:d8: 41:02:80:91:8e:c9:2c:9f:4a:f8:64:44:56:ef:bf: 13:3c:3d:f6:d2:29:24:6e:a2:38:d1:68:1d:94:2c: 8c:98:b0:07:dd:06:bc:4e:f4:9b:1d:99:0b:7e:e5: 4b:53:7b:76:d3:ac:08:3b:c0:e9:a2:c2:e6:2c:ae: bc:b4:75:a8:42:67:d1:ed:df:de:be:9b:f7:9a:4e: 24:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:AF:F3:80:5A:AB:20:23:43:05:98:F8:1F:32:1D:42:E6:60:A7:E0 X509v3 Authority Key Identifier: keyid:37:0F:39:43:43:3A:D9:63:E2:99:A9:BE:92:39:D0:F3:E3:7A:08:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYVC/Nw85Q0M62WPimam-kjnQ8-N6CCo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Nw85Q0M62WPimam-kjnQ8-N6CCo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYVC/hK_zgFqrICNDBZj4HzIdQuZgp-A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.183.154.0/23 Signature Algorithm: sha256WithRSAEncryption ad:2c:c6:68:dd:6b:f7:a9:34:9d:24:97:47:01:f3:f0:ba:51: 30:a4:3e:72:fb:e0:b3:e8:af:67:6c:12:d9:67:83:58:e9:75: 96:c9:0b:9e:2c:8b:6b:da:d4:d8:7a:97:89:ee:6d:7d:c0:ce: ae:8a:fc:2c:c3:94:77:5d:06:9a:2d:05:f5:0f:11:9c:1b:ea: 07:f4:26:ad:76:54:7e:a1:81:c4:7b:b9:b6:3b:8f:f9:5c:24: e1:51:98:1e:8e:48:fc:d6:2b:e2:5d:c5:91:b9:95:30:66:86: 8e:c6:2e:bc:83:b2:fa:c1:a0:cb:0b:92:04:29:c2:8a:a1:0f: 90:39:53:59:c6:1e:72:db:71:66:69:8b:54:8f:c0:5d:59:9c: cb:29:56:db:d2:7e:81:41:e3:03:99:7e:35:c0:e9:a5:3d:26: 98:a5:ee:0c:fb:8b:b5:e9:c7:34:df:bf:f8:6d:18:98:32:cd: d7:2a:92:90:41:e0:f2:93:5c:c6:95:3d:ca:fb:03:59:3e:f0: 13:34:0d:31:1a:7a:e5:51:2d:a7:68:a6:b3:5f:5c:70:61:7f: 73:1d:3e:a7:d0:9e:60:60:35:08:49:3d:a1:11:ab:f5:58:dc: 1f:1f:41:41:45:93:53:ce:e4:a0:fb:99:7a:cd:b1:a7:fa:94: a1:7d:2c:cd -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICAtMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzcw RjM5NDM0MzNBRDk2M0UyOTlBOUJFOTIzOUQwRjNFMzdBMDgyQTAeFw0yNTAyMTAx NDMwMjVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg0QUZGMzgwNUFBQjIw MjM0MzA1OThGODFGMzIxRDQyRTY2MEE3RTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqRMdXGV9vS1PCPVvXsRSFxZY393V4NZ6EN9zFHQ+j6hWqVcEx tIgI8mAqqfZLUG7ke1BHy8N3Gvkv9LOiqyQGldasXqjvmnzpDkdPIhqwpqdHDMqJ NOF9qoUxN5S+X1ifhyLFF4X0ZgbJyjK0TQEM58H03GwkZJdntPL/BajAfK6gAkHK j6RGlK1o/6cTm4uDmlWW7SoFz6Vg789NEKxOVqytp/aCo9OMg9ZAY3POjWCb2EEC gJGOySyfSvhkRFbvvxM8PfbSKSRuojjRaB2ULIyYsAfdBrxO9JsdmQt+5UtTe3bT rAg7wOmiwuYsrry0dahCZ9Ht396+m/eaTiRnAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUhK/zgFqrICNDBZj4HzIdQuZgp+AwHwYDVR0jBBgwFoAUNw85Q0M62WPimam+ kjnQ8+N6CCowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lWQy9O dzg1UTBNNjJXUGltYW0ta2puUTgtTjZDQ28uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L053ODVRME02MldQaW1hbS1ram5ROC1ONkNDby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0NZVkMvaEtfemdGcXJJQ05EQlpqNEh6SWRR dVpncC1BLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWe3mjAN BgkqhkiG9w0BAQsFAAOCAQEArSzGaN1r96k0nSSXRwHz8LpRMKQ+cvvgs+ivZ2wS 2WeDWOl1lskLniyLa9rU2HqXie5tfcDOror8LMOUd10Gmi0F9Q8RnBvqB/QmrXZU fqGBxHu5tjuP+Vwk4VGYHo5I/NYr4l3FkbmVMGaGjsYuvIOy+sGgywuSBCnCiqEP kDlTWcYecttxZmmLVI/AXVmcyylW29J+gUHjA5l+NcDppT0mmKXuDPuLtenHNN+/ +G0YmDLN1yqSkEHg8pNcxpU9yvsDWT7wEzQNMRp65VEtp2ims19ccGF/cx0+p9Ce YGA1CEk9oRGr9VjcHx9BQUWTU87koPuZes2xp/qUoX0szQ== -----END CERTIFICATE-----Generated at Sat Apr 5 23:52:24 2025 by rpki-client