$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EHHKY/jp7iUXs1QL-dq_O6g6LurfVUmwU.roa File: jp7iUXs1QL-dq_O6g6LurfVUmwU.roa (raw, json) Hash identifier: vf1owcSNZb8jbw6sYZS+tY/Tcb5V3XE2VHZCTaLbsh0= Subject key identifier: 8E:9E:E2:51:7B:35:40:BF:9D:AB:F3:BA:83:A2:EE:AD:F5:54:9B:05 Certificate issuer: /CN=8302DE193598EDC36222D929FAD6678367D62E21 Certificate serial: 12AC Authority key identifier: 83:02:DE:19:35:98:ED:C3:62:22:D9:29:FA:D6:67:83:67:D6:2E:21 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gwLeGTWY7cNiItkp-tZng2fWLiE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EHHKY/jp7iUXs1QL-dq_O6g6LurfVUmwU.roa Signing time: Mon 10 Feb 2025 14:09:57 +0000 ROA not before: Mon 10 Feb 2025 14:09:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131607 IP address blocks: 103.130.84.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EHHKY/gwLeGTWY7cNiItkp-tZng2fWLiE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EHHKY/gwLeGTWY7cNiItkp-tZng2fWLiE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gwLeGTWY7cNiItkp-tZng2fWLiE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 02:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4780 (0x12ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8302DE193598EDC36222D929FAD6678367D62E21 Validity Not Before: Feb 10 14:09:57 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8E9EE2517B3540BF9DABF3BA83A2EEADF5549B05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:10:2d:7d:1c:f4:db:04:b7:3d:7a:ea:fe:aa: 54:b9:57:4b:15:35:36:4f:66:6e:c2:d7:29:9b:c8: fc:8d:3e:21:64:f9:bc:7a:37:fa:1f:55:b7:60:24: 07:e4:7a:29:27:2f:dd:88:f5:a2:d1:8a:54:bf:17: 77:24:5b:3a:78:07:80:9c:64:e6:de:bf:68:e2:3c: f0:4b:77:09:c1:10:3b:3c:27:ad:31:43:8e:69:b8: 50:f9:62:da:3b:8e:c0:32:10:f5:4e:17:64:2b:69: 0f:82:9d:dd:08:5f:05:95:7b:a1:49:ed:c3:ff:cb: a0:b2:ee:d6:31:32:bc:3e:2f:78:aa:1f:30:7c:8e: 78:87:88:d2:01:fa:d7:7e:2b:53:eb:ca:cc:74:84: 46:53:78:d7:1a:22:ec:c7:56:29:3e:a2:6e:8b:54: d3:24:c1:e7:b0:1d:d9:87:ad:c1:12:1a:68:14:9b: 50:64:60:38:22:23:be:0f:6b:d4:53:ed:e7:99:1e: e2:20:02:85:ba:f1:a4:d8:03:1f:0e:04:be:ca:83: 5d:4f:18:e2:4a:42:6b:d6:90:63:6c:33:33:0c:2c: ca:48:15:57:05:a4:de:ff:7f:27:a5:20:a8:55:d4: 5f:b8:53:2f:96:f7:a9:74:91:64:b0:a2:a3:cb:c4: c1:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:9E:E2:51:7B:35:40:BF:9D:AB:F3:BA:83:A2:EE:AD:F5:54:9B:05 X509v3 Authority Key Identifier: keyid:83:02:DE:19:35:98:ED:C3:62:22:D9:29:FA:D6:67:83:67:D6:2E:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EHHKY/gwLeGTWY7cNiItkp-tZng2fWLiE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gwLeGTWY7cNiItkp-tZng2fWLiE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EHHKY/jp7iUXs1QL-dq_O6g6LurfVUmwU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.84.0/22 Signature Algorithm: sha256WithRSAEncryption a4:2b:0d:85:3d:f5:eb:f4:06:cb:a4:d1:94:40:55:9e:4d:d1: e5:76:0f:a6:57:c8:a0:cb:e0:9a:4a:44:08:f3:c5:c9:00:7b: a3:a4:9d:53:bb:88:e4:5f:7a:58:51:c2:66:f6:6c:c3:7b:f9: f3:bf:29:01:0d:20:0c:df:e6:72:50:dc:8e:5b:27:af:e1:ba: 4e:f6:30:97:81:ef:79:8b:2f:64:fc:93:a9:08:6e:0c:ac:8c: 8d:c1:ca:30:bc:88:04:e6:0d:81:cc:cd:53:64:60:26:c6:f8: 1e:b3:63:bd:69:59:a0:1c:fc:70:79:c1:39:48:35:83:46:57: 79:cd:ad:8b:95:2b:66:7e:9e:0e:a6:bf:8e:e8:42:1b:04:f7: 3f:1b:66:e1:7f:37:f2:6b:fe:e3:a4:e1:43:be:9f:1c:b2:11: df:7e:8c:c5:69:f2:a0:6d:38:d8:ed:b1:7d:f5:a2:b1:30:bc: d6:5c:b0:41:2d:2b:80:df:92:81:01:67:c6:da:28:1d:ab:a8: e1:7f:e5:93:b1:00:5f:ff:aa:02:73:db:33:75:2e:c0:a1:e7: 02:02:ec:6f:3b:fb:51:c1:09:11:2a:1f:f6:8d:1e:95:6e:0a: c0:d5:cd:19:eb:fa:5b:40:cc:e5:f1:6a:1e:63:64:38:5d:6e: e3:df:79:54 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEqwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMw MkRFMTkzNTk4RURDMzYyMjJEOTI5RkFENjY3ODM2N0Q2MkUyMTAeFw0yNTAyMTAx NDA5NTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhFOUVFMjUxN0IzNTQw QkY5REFCRjNCQTgzQTJFRUFERjU1NDlCMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAEC19HPTbBLc9eur+qlS5V0sVNTZPZm7C1ymbyPyNPiFk+bx6 N/ofVbdgJAfkeiknL92I9aLRilS/F3ckWzp4B4CcZObev2jiPPBLdwnBEDs8J60x Q45puFD5Yto7jsAyEPVOF2QraQ+Cnd0IXwWVe6FJ7cP/y6Cy7tYxMrw+L3iqHzB8 jniHiNIB+td+K1Prysx0hEZTeNcaIuzHVik+om6LVNMkweewHdmHrcESGmgUm1Bk YDgiI74Pa9RT7eeZHuIgAoW68aTYAx8OBL7Kg11PGOJKQmvWkGNsMzMMLMpIFVcF pN7/fyelIKhV1F+4Uy+W96l0kWSwoqPLxMFDAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUjp7iUXs1QL+dq/O6g6LurfVUmwUwHwYDVR0jBBgwFoAUgwLeGTWY7cNiItkp +tZng2fWLiEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRUhIS1kv Z3dMZUdUV1k3Y05pSXRrcC10Wm5nMmZXTGlFLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9nd0xlR1RXWTdjTmlJdGtwLXRabmcyZldMaUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FSEhLWS9qcDdpVVhzMVFMLWRxX082ZzZM dXJmVlVtd1Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ4JU MA0GCSqGSIb3DQEBCwUAA4IBAQCkKw2FPfXr9AbLpNGUQFWeTdHldg+mV8igy+Ca SkQI88XJAHujpJ1Tu4jkX3pYUcJm9mzDe/nzvykBDSAM3+ZyUNyOWyev4bpO9jCX ge95iy9k/JOpCG4MrIyNwcowvIgE5g2BzM1TZGAmxvges2O9aVmgHPxwecE5SDWD Rld5za2LlStmfp4Opr+O6EIbBPc/G2bhfzfya/7jpOFDvp8cshHffozFafKgbTjY 7bF99aKxMLzWXLBBLSuA35KBAWfG2igdq6jhf+WTsQBf/6oCc9szdS7AoecCAuxv O/tRwQkRKh/2jR6VbgrA1c0Z6/pbQMzl8WoeY2Q4XW7j33lU -----END CERTIFICATE-----Generated at Sat Apr 5 23:14:26 2025 by rpki-client