$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DCC1223342/JsDTPWAf15qfLMItUrrUBq2jc64.roa File: JsDTPWAf15qfLMItUrrUBq2jc64.roa (raw, json) Hash identifier: xeaFz4La1PqyGNnwULTYlk/clEVFbYlmuZYjevOxFw4= Subject key identifier: 26:C0:D3:3D:60:1F:D7:9A:9F:2C:C2:2D:52:BA:D4:06:AD:A3:73:AE Certificate issuer: /CN=F72B8D549DE8BBC6DE02456C670D1B1A05AFE80E Certificate serial: 02ED Authority key identifier: F7:2B:8D:54:9D:E8:BB:C6:DE:02:45:6C:67:0D:1B:1A:05:AF:E8:0E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/9yuNVJ3ou8beAkVsZw0bGgWv6A4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DCC1223342/JsDTPWAf15qfLMItUrrUBq2jc64.roa Signing time: Mon 10 Feb 2025 13:46:28 +0000 ROA not before: Mon 10 Feb 2025 13:46:28 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 63893 IP address blocks: 103.180.18.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DCC1223342/9yuNVJ3ou8beAkVsZw0bGgWv6A4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DCC1223342/9yuNVJ3ou8beAkVsZw0bGgWv6A4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/9yuNVJ3ou8beAkVsZw0bGgWv6A4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 749 (0x2ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F72B8D549DE8BBC6DE02456C670D1B1A05AFE80E Validity Not Before: Feb 10 13:46:28 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=26C0D33D601FD79A9F2CC22D52BAD406ADA373AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:82:cc:94:49:b3:12:a5:09:28:e1:71:64:7b: 95:ec:45:9d:aa:7f:a4:08:29:93:b5:92:19:6a:02: 09:70:a5:c5:20:a6:a8:98:8e:c8:77:e3:7a:2d:2b: 6b:36:e0:10:84:3b:47:af:be:09:2c:b3:20:50:da: 7d:67:91:09:38:0b:dd:45:98:bf:e5:8e:cf:5b:69: 13:1f:ea:37:7a:3c:43:67:20:d8:a1:fd:d4:0b:fc: d7:ba:88:f3:13:46:5b:38:f0:cc:59:53:4b:47:4e: 68:e1:20:71:c5:03:93:94:2c:97:d2:9f:64:63:41: fc:b5:1c:cb:de:3a:4f:4e:b1:0a:17:f4:6b:07:64: 46:59:08:93:31:2e:50:de:28:19:89:97:d5:a7:58: 7a:1b:3e:f6:43:ef:fc:56:87:c0:dc:d6:93:7d:96: 80:4a:7a:0b:f6:2b:62:ac:ac:8b:72:de:dc:4b:bf: 2a:05:88:b1:ba:76:b0:7b:42:63:38:08:eb:38:c5: 7b:e6:52:64:55:53:8f:a9:81:c3:8c:41:15:a6:55: e5:14:37:2c:11:80:4b:0f:d4:3f:7f:52:24:87:4f: 61:48:b5:b2:75:53:8b:8f:53:a5:5f:5b:85:6b:ce: c2:07:3c:dd:d4:f6:1c:ad:78:34:75:7a:c0:5a:6c: 53:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:C0:D3:3D:60:1F:D7:9A:9F:2C:C2:2D:52:BA:D4:06:AD:A3:73:AE X509v3 Authority Key Identifier: keyid:F7:2B:8D:54:9D:E8:BB:C6:DE:02:45:6C:67:0D:1B:1A:05:AF:E8:0E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCC1223342/9yuNVJ3ou8beAkVsZw0bGgWv6A4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/9yuNVJ3ou8beAkVsZw0bGgWv6A4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCC1223342/JsDTPWAf15qfLMItUrrUBq2jc64.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.180.18.0/23 Signature Algorithm: sha256WithRSAEncryption 70:32:bc:0e:66:e9:b9:fd:59:ac:e3:d6:4a:fd:63:fa:5c:2a: bb:e8:e3:57:26:5b:3e:41:a9:c1:f5:36:de:92:5c:0a:28:e6: 95:d4:84:4e:dd:88:10:f7:45:54:a6:83:27:9b:c5:0a:07:6b: 9b:e8:80:70:bc:70:ad:24:69:7d:11:85:52:78:a3:aa:e6:88: 0c:8b:73:54:f3:15:2e:45:25:37:be:a7:97:10:6a:5d:62:06: d7:b4:09:87:16:48:c4:8a:e1:41:b4:92:af:3d:8b:f8:87:1d: 52:67:fb:72:1c:d7:79:ef:a1:dc:4b:5f:6f:0d:04:91:96:13: b2:03:58:ea:89:57:b1:6f:d2:5e:d8:69:0d:12:1a:cb:6b:dc: fa:03:78:15:d4:74:39:5b:72:f0:e7:4b:c7:07:b9:ae:17:db: f9:fb:8c:92:02:38:3f:78:9e:88:4a:3b:76:48:f9:b4:f1:04: ff:8b:60:cd:84:38:e4:f0:f2:cb:2b:74:72:82:74:62:81:69: ad:30:24:58:31:8e:0f:53:ae:62:fb:30:91:5b:01:cf:01:be: 69:15:07:25:2f:76:11:0c:3a:24:96:8e:85:9f:dc:99:c8:15: b4:7c:71:be:d6:3e:ea:04:6b:6c:b3:05:3a:5f:46:c9:ad:09: b6:b6:e4:77 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICAu0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjcy QjhENTQ5REU4QkJDNkRFMDI0NTZDNjcwRDFCMUEwNUFGRTgwRTAeFw0yNTAyMTAx MzQ2MjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI2QzBEMzNENjAxRkQ3 OUE5RjJDQzIyRDUyQkFENDA2QURBMzczQUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHgsyUSbMSpQko4XFke5XsRZ2qf6QIKZO1khlqAglwpcUgpqiY jsh343otK2s24BCEO0evvgkssyBQ2n1nkQk4C91FmL/ljs9baRMf6jd6PENnINih /dQL/Ne6iPMTRls48MxZU0tHTmjhIHHFA5OULJfSn2RjQfy1HMveOk9OsQoX9GsH ZEZZCJMxLlDeKBmJl9WnWHobPvZD7/xWh8Dc1pN9loBKegv2K2KsrIty3txLvyoF iLG6drB7QmM4COs4xXvmUmRVU4+pgcOMQRWmVeUUNywRgEsP1D9/UiSHT2FItbJ1 U4uPU6VfW4VrzsIHPN3U9hyteDR1esBabFPFAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUJsDTPWAf15qfLMItUrrUBq2jc64wHwYDVR0jBBgwFoAU9yuNVJ3ou8beAkVs Zw0bGgWv6A4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRENDMTIy MzM0Mi85eXVOVkozb3U4YmVBa1ZzWncwYkdnV3Y2QTQuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBLzl5dU5WSjNvdThiZUFrVnNadzBiR2dXdjZBNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RDQzEyMjMzNDIvSnNEVFBXQWYx NXFmTE1JdFVyclVCcTJqYzY0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAWe0EjANBgkqhkiG9w0BAQsFAAOCAQEAcDK8Dmbpuf1ZrOPWSv1j+lwq u+jjVyZbPkGpwfU23pJcCijmldSETt2IEPdFVKaDJ5vFCgdrm+iAcLxwrSRpfRGF UnijquaIDItzVPMVLkUlN76nlxBqXWIG17QJhxZIxIrhQbSSrz2L+IcdUmf7chzX ee+h3Etfbw0EkZYTsgNY6olXsW/SXthpDRIay2vc+gN4FdR0OVty8OdLxwe5rhfb +fuMkgI4P3ieiEo7dkj5tPEE/4tgzYQ45PDyyyt0coJ0YoFprTAkWDGOD1OuYvsw kVsBzwG+aRUHJS92EQw6JJaOhZ/cmcgVtHxxvtY+6gRrbLMFOl9Gya0Jtrbkdw== -----END CERTIFICATE-----Generated at Fri Apr 18 23:44:47 2025 by rpki-client