$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DQWL/3O5Gw6K1ouqYAhPeQ3-zdZ7vk0Y.roa File: 3O5Gw6K1ouqYAhPeQ3-zdZ7vk0Y.roa (raw, json) Hash identifier: KAtGlENphgHxmiCdQRD5q8mWKfDJxArT1xUfRQpS4Jk= Subject key identifier: DC:EE:46:C3:A2:B5:A2:EA:98:02:13:DE:43:7F:B3:75:9E:EF:93:46 Certificate issuer: /CN=7CBA374F4F7A0D1E6CB59F8A7B564066C67DD19D Certificate serial: 0887 Authority key identifier: 7C:BA:37:4F:4F:7A:0D:1E:6C:B5:9F:8A:7B:56:40:66:C6:7D:D1:9D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fLo3T096DR5stZ-Ke1ZAZsZ90Z0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DQWL/3O5Gw6K1ouqYAhPeQ3-zdZ7vk0Y.roa Signing time: Mon 10 Feb 2025 13:50:16 +0000 ROA not before: Mon 10 Feb 2025 13:50:16 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131678 IP address blocks: 103.149.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DQWL/fLo3T096DR5stZ-Ke1ZAZsZ90Z0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DQWL/fLo3T096DR5stZ-Ke1ZAZsZ90Z0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/fLo3T096DR5stZ-Ke1ZAZsZ90Z0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2183 (0x887) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CBA374F4F7A0D1E6CB59F8A7B564066C67DD19D Validity Not Before: Feb 10 13:50:16 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DCEE46C3A2B5A2EA980213DE437FB3759EEF9346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:91:6a:83:24:ef:bd:85:9c:3a:16:e0:3a:60: d6:2d:4c:26:22:d5:fd:35:1f:e0:c1:2e:e9:03:a1: ef:66:e6:c1:e6:6a:5e:d8:ba:ee:54:9c:cc:02:4a: 3a:55:9f:25:e3:bd:6a:fb:e6:5a:9b:da:53:0c:ed: 0a:28:e9:0b:fc:50:12:e1:a6:13:41:e6:8b:0f:d0: 13:8e:e6:00:b9:d7:9a:32:e3:4d:61:2f:85:b1:e2: a2:d5:55:b7:7d:75:bf:2e:57:91:f1:07:12:5d:b7: 94:5e:3e:03:76:6c:c9:5f:8d:e6:ec:d7:3b:d5:71: 32:81:24:fe:a1:37:75:ad:31:d1:49:8d:1c:ed:57: d8:ac:ce:c7:73:db:94:66:5f:28:57:c7:2d:34:c3: e9:ae:ca:40:4d:91:ab:a3:af:01:60:fa:1c:5b:14: 95:39:ad:26:fd:9c:c2:a7:f9:28:0f:9f:90:d8:d4: 5c:2f:69:ed:53:f1:05:51:83:d6:18:83:6c:73:28: 2c:b1:af:b5:c3:cc:11:81:1f:d1:74:59:b6:b9:d0: f3:0d:61:3f:78:3f:71:ff:03:20:06:a9:e3:98:b4: 70:da:df:2c:e1:f5:d7:74:88:5b:33:66:2e:cd:d4: 4d:f8:cf:f3:1e:55:da:da:a0:d6:58:0b:1a:73:8a: 0f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:EE:46:C3:A2:B5:A2:EA:98:02:13:DE:43:7F:B3:75:9E:EF:93:46 X509v3 Authority Key Identifier: keyid:7C:BA:37:4F:4F:7A:0D:1E:6C:B5:9F:8A:7B:56:40:66:C6:7D:D1:9D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DQWL/fLo3T096DR5stZ-Ke1ZAZsZ90Z0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fLo3T096DR5stZ-Ke1ZAZsZ90Z0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DQWL/3O5Gw6K1ouqYAhPeQ3-zdZ7vk0Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.149.66.0/24 Signature Algorithm: sha256WithRSAEncryption 86:49:60:0f:1f:1b:18:21:6c:66:eb:0d:0a:38:55:d3:fe:35: 16:3a:4c:86:a0:93:e9:1e:e7:90:8d:cf:90:2b:92:50:40:44: 94:f7:50:4a:d7:61:2c:bb:f9:ff:2e:e9:e6:01:95:a6:df:4b: 27:5d:f8:e8:b4:a7:fa:20:7e:44:6e:75:b3:d1:54:f0:47:b4: 55:f9:67:2c:c1:45:6c:2f:46:36:ae:46:1a:29:7e:63:61:40: dc:da:33:06:75:9a:2b:db:87:0b:12:a5:28:c7:28:29:5b:2f: 16:30:3b:37:84:7e:44:e6:c2:a7:3f:2e:60:9f:25:17:ef:25: 75:2c:7a:62:cd:9a:db:1e:37:3e:31:55:2f:c5:65:f2:79:19: 2a:9f:95:76:cd:4a:f1:63:ac:c3:3b:c6:e9:6e:92:ca:b8:a1: 3e:21:95:94:b3:e5:9a:cf:b9:48:2e:34:29:0d:9a:d1:31:ef: db:46:3c:ae:12:34:67:07:34:90:cb:c9:83:95:4f:08:74:c0: ba:a5:3c:d7:93:7e:1f:c1:c4:c3:ae:be:35:e9:a4:1d:d0:bf: 73:b9:75:82:f7:b1:53:91:dc:b4:2b:88:50:6e:a5:1a:31:d2: cc:87:27:f4:b0:05:4c:de:65:0f:ec:7f:ae:07:33:d6:68:5e: 36:48:1f:e0 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICCIcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0NC QTM3NEY0RjdBMEQxRTZDQjU5RjhBN0I1NjQwNjZDNjdERDE5RDAeFw0yNTAyMTAx MzUwMTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERDRUU0NkMzQTJCNUEy RUE5ODAyMTNERTQzN0ZCMzc1OUVFRjkzNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwkWqDJO+9hZw6FuA6YNYtTCYi1f01H+DBLukDoe9m5sHmal7Y uu5UnMwCSjpVnyXjvWr75lqb2lMM7Qoo6Qv8UBLhphNB5osP0BOO5gC515oy401h L4Wx4qLVVbd9db8uV5HxBxJdt5RePgN2bMlfjebs1zvVcTKBJP6hN3WtMdFJjRzt V9iszsdz25RmXyhXxy00w+muykBNkaujrwFg+hxbFJU5rSb9nMKn+SgPn5DY1Fwv ae1T8QVRg9YYg2xzKCyxr7XDzBGBH9F0Wba50PMNYT94P3H/AyAGqeOYtHDa3yzh 9dd0iFszZi7N1E34z/MeVdraoNZYCxpzig8vAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU3O5Gw6K1ouqYAhPeQ3+zdZ7vk0YwHwYDVR0jBBgwFoAUfLo3T096DR5stZ+K e1ZAZsZ90Z0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFFXTC9m TG8zVDA5NkRSNXN0Wi1LZTFaQVpzWjkwWjAuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2ZMbzNUMDk2RFI1c3RaLUtlMVpBWnNaOTBaMC5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0RRV0wvM081R3c2SzFvdXFZQWhQZVEzLXpk Wjd2azBZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeVQjAN BgkqhkiG9w0BAQsFAAOCAQEAhklgDx8bGCFsZusNCjhV0/41FjpMhqCT6R7nkI3P kCuSUEBElPdQStdhLLv5/y7p5gGVpt9LJ1346LSn+iB+RG51s9FU8Ee0VflnLMFF bC9GNq5GGil+Y2FA3NozBnWaK9uHCxKlKMcoKVsvFjA7N4R+RObCpz8uYJ8lF+8l dSx6Ys2a2x43PjFVL8Vl8nkZKp+Vds1K8WOswzvG6W6SyrihPiGVlLPlms+5SC40 KQ2a0THv20Y8rhI0Zwc0kMvJg5VPCHTAuqU815N+H8HEw66+NemkHdC/c7l1gvex U5HctCuIUG6lGjHSzIcn9LAFTN5lD+x/rgcz1mheNkgf4A== -----END CERTIFICATE-----Generated at Fri Apr 18 23:58:38 2025 by rpki-client