$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/jvH06dBlyvDGTBUs3ai_zp9MSUI.roa File: jvH06dBlyvDGTBUs3ai_zp9MSUI.roa (raw, json) Hash identifier: ASoMMpfkHEsUOqB0Xp8tJN0jmnyzFF7rUy96/Lp2t1U= Subject key identifier: 8E:F1:F4:E9:D0:65:CA:F0:C6:4C:15:2C:DD:A8:BF:CE:9F:4C:49:42 Certificate issuer: /CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7 Certificate serial: 02A9 Authority key identifier: 3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/jvH06dBlyvDGTBUs3ai_zp9MSUI.roa Signing time: Mon 10 Feb 2025 14:05:16 +0000 ROA not before: Mon 10 Feb 2025 14:05:16 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38136 IP address blocks: 103.160.180.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 17:36:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 681 (0x2a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7 Validity Not Before: Feb 10 14:05:16 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8EF1F4E9D065CAF0C64C152CDDA8BFCE9F4C4942 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fd:16:76:d7:c5:0e:78:ae:b7:98:bf:b7:1c: f9:9d:e5:68:1f:54:bd:1d:08:5b:a4:50:7d:d4:d0: 55:86:40:69:d5:72:13:e6:c6:95:75:f1:71:a6:09: b3:9d:ab:7d:bd:cd:11:09:85:59:b2:14:89:3b:6c: ad:26:20:9e:3b:0b:0e:bb:0c:97:04:20:19:d1:0b: 76:ab:32:62:15:96:0e:cf:8f:02:3a:d8:3c:0c:7d: 19:db:f7:0e:db:33:aa:bd:1c:23:93:e3:a3:65:b1: 8a:51:e5:63:39:7e:23:21:7f:b7:2a:db:2f:f0:9a: 5c:45:c6:7a:ab:59:d6:c5:3c:e6:e5:fc:31:39:c9: fa:c9:c7:10:cf:cf:83:9d:72:83:f4:e3:f1:c4:09: 51:0e:0e:a8:55:64:c7:64:77:e0:3d:a8:c5:4b:60: 1f:3a:14:53:ec:e7:ce:7d:ba:d7:5d:8f:88:2f:73: 8c:18:b4:c9:a0:36:a7:94:92:c5:c3:7f:51:32:3f: 60:36:87:a8:7e:2f:63:73:7e:81:2e:84:77:f5:d8: f1:f8:9f:59:5d:d2:30:83:9a:84:8c:61:4c:ac:41: 0c:ce:36:41:99:82:db:fb:76:c3:c9:82:5e:d9:58: 3c:95:a5:36:d1:b0:5d:1a:b0:2a:72:a8:5b:ec:a5: b9:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:F1:F4:E9:D0:65:CA:F0:C6:4C:15:2C:DD:A8:BF:CE:9F:4C:49:42 X509v3 Authority Key Identifier: keyid:3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/jvH06dBlyvDGTBUs3ai_zp9MSUI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.160.180.0/23 Signature Algorithm: sha256WithRSAEncryption 90:c6:dd:ce:cf:00:41:dc:89:80:bd:1e:0e:7f:72:2f:fa:14: 90:df:0e:22:07:4b:49:44:63:b3:c0:2c:9f:46:36:25:08:72: 1b:3a:57:75:c8:f2:ae:6c:c9:aa:cf:e1:c7:66:5e:41:8d:b2: 24:e5:26:62:4c:4b:a7:01:bf:30:7f:16:c7:68:88:8f:f0:61: 0c:4c:3f:10:84:85:6b:24:f3:0b:8c:8e:ac:84:3c:15:bf:e1: 3e:7c:0b:6c:69:c1:75:e7:58:a8:07:f3:2b:a9:63:d9:72:c1: 71:81:0b:b0:38:fa:c6:e7:1e:77:af:c4:f9:d3:af:e0:8c:28: 2e:92:dd:4e:4f:38:a7:49:1b:17:cb:69:92:1e:4f:2e:9a:8c: 65:43:0d:97:b3:d0:49:64:55:aa:c4:1f:39:30:a6:37:ba:12: fd:a1:89:7a:b8:b6:ed:ed:38:73:1b:51:03:19:f3:95:96:8b: 51:50:7d:59:16:9a:4b:c6:3e:6f:74:d2:bd:b0:48:6c:d6:a6: e7:e2:88:4c:51:56:ef:b0:bf:f6:83:a2:bf:27:1d:2a:e9:b8: 28:d8:e7:49:42:37:47:80:2a:36:a5:27:b3:8a:82:41:14:3c: 3e:a0:ff:f1:92:d5:7c:75:a2:6b:4e:19:7c:f4:9f:e9:3c:aa: 2b:d7:41:4b -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICAqkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JG NDQxQjU3Qzg2QkQ5RDE5MzQ1MUEwMDVEMjZDRTFBM0M2REVFNzAeFw0yNTAyMTAx NDA1MTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhFRjFGNEU5RDA2NUNB RjBDNjRDMTUyQ0REQThCRkNFOUY0QzQ5NDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9/RZ218UOeK63mL+3HPmd5WgfVL0dCFukUH3U0FWGQGnVchPm xpV18XGmCbOdq329zREJhVmyFIk7bK0mIJ47Cw67DJcEIBnRC3arMmIVlg7PjwI6 2DwMfRnb9w7bM6q9HCOT46NlsYpR5WM5fiMhf7cq2y/wmlxFxnqrWdbFPObl/DE5 yfrJxxDPz4OdcoP04/HECVEODqhVZMdkd+A9qMVLYB86FFPs5859utddj4gvc4wY tMmgNqeUksXDf1EyP2A2h6h+L2NzfoEuhHf12PH4n1ld0jCDmoSMYUysQQzONkGZ gtv7dsPJgl7ZWDyVpTbRsF0asCpyqFvspbkDAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUjvH06dBlyvDGTBUs3ai/zp9MSUIwHwYDVR0jBBgwFoAUO/RBtXyGvZ0ZNFGg BdJs4aPG3ucwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRVJBWUlO Rk8vT19SQnRYeUd2WjBaTkZHZ0JkSnM0YVBHM3VjLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9PX1JCdFh5R3ZaMFpORkdnQmRKczRhUEczdWMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FUkFZSU5GTy9qdkgwNmRCbHl2REdU QlVzM2FpX3pwOU1TVUkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ6C0MA0GCSqGSIb3DQEBCwUAA4IBAQCQxt3OzwBB3ImAvR4Of3Iv+hSQ3w4i B0tJRGOzwCyfRjYlCHIbOld1yPKubMmqz+HHZl5BjbIk5SZiTEunAb8wfxbHaIiP 8GEMTD8QhIVrJPMLjI6shDwVv+E+fAtsacF151ioB/MrqWPZcsFxgQuwOPrG5x53 r8T506/gjCgukt1OTzinSRsXy2mSHk8umoxlQw2Xs9BJZFWqxB85MKY3uhL9oYl6 uLbt7ThzG1EDGfOVlotRUH1ZFppLxj5vdNK9sEhs1qbn4ohMUVbvsL/2g6K/Jx0q 6bgo2OdJQjdHgCo2pSezioJBFDw+oP/xktV8daJrThl89J/pPKor10FL -----END CERTIFICATE-----Generated at Sat Apr 5 16:29:12 2025 by rpki-client