$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/5606VYTZZXvgr9lDUPBLA7-khVs.roa File: 5606VYTZZXvgr9lDUPBLA7-khVs.roa (raw, json) Hash identifier: kfmEnet9LhwcVV2SiQ1ex3sh9iXmKBum2tvhYcdqdMk= Subject key identifier: E7:AD:3A:55:84:D9:65:7B:E0:AF:D9:43:50:F0:4B:03:BF:A4:85:5B Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1256 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/5606VYTZZXvgr9lDUPBLA7-khVs.roa Signing time: Mon 10 Feb 2025 14:28:18 +0000 ROA not before: Mon 10 Feb 2025 14:28:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131591 IP address blocks: 103.231.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4694 (0x1256) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:28:18 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E7AD3A5584D9657BE0AFD94350F04B03BFA4855B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2d:e4:c3:2d:5d:d1:ab:8b:8d:70:56:b1:e2: f0:ea:60:4a:76:4a:33:a7:cb:03:53:1b:a7:35:c1: be:ed:2c:c6:0f:0a:07:61:35:c2:e5:fd:e9:57:48: 9a:71:4a:a2:b0:ea:d7:61:a9:2d:17:93:c3:98:7d: 07:29:eb:59:8d:3c:08:ab:c4:16:d5:75:fb:12:61: 22:67:9a:b9:70:4e:5b:04:ee:95:d1:cc:11:c6:3a: 01:ae:6a:e1:3a:43:01:31:e2:65:8c:7f:06:47:d7: 10:6a:be:f3:5f:ca:56:cc:44:c3:a0:d0:aa:65:c2: af:b1:cc:85:a1:43:fc:d6:94:99:1a:0d:ab:dd:68: 09:70:19:52:60:02:0a:4f:e3:0e:bd:85:50:7f:46: 2d:ca:68:e7:dc:18:9c:a9:a9:66:2e:41:10:25:d4: 0d:5c:08:22:46:ae:9c:44:9d:4e:2a:f7:72:f5:c1: db:ac:fd:8e:87:bb:b2:59:90:6f:a3:41:07:06:65: 80:49:18:59:3f:f4:f4:66:bd:f7:ec:b1:a3:45:3f: 15:0c:29:e8:cb:af:bf:a1:c9:6f:10:3f:5e:91:44: 4f:77:f1:81:6c:41:b4:48:0c:c7:5b:d0:e1:a2:e0: e4:e8:50:e5:de:a2:8f:fe:78:d5:71:c6:c0:a1:b4: 48:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:AD:3A:55:84:D9:65:7B:E0:AF:D9:43:50:F0:4B:03:BF:A4:85:5B X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/5606VYTZZXvgr9lDUPBLA7-khVs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.231.50.0/24 Signature Algorithm: sha256WithRSAEncryption ca:38:b2:d4:66:47:24:73:e4:77:04:ae:42:63:17:30:6a:33: af:32:92:ed:a3:38:a0:24:da:90:fb:5e:cf:10:2f:91:55:3e: 53:1d:b8:96:6f:eb:3d:ce:ff:e3:14:a9:56:27:67:0d:ea:50: 66:af:1b:1d:a0:e1:03:39:f9:79:44:94:54:88:c1:aa:05:a4: 24:86:36:ba:3b:9e:a5:83:a9:e0:9e:1e:9d:87:28:35:67:48: a5:c3:df:6a:72:02:79:30:c1:d9:e8:5c:67:04:c2:7f:9f:3f: 49:19:20:85:54:d2:21:25:2d:c1:f0:af:d8:84:50:8e:30:d0: 2d:91:32:2b:25:d7:a9:fa:28:f1:62:44:46:99:dd:d4:8a:a0: f5:64:47:f6:7c:ca:d9:03:cb:3d:0d:3e:e7:9b:64:a8:d7:60: d4:cd:9c:30:d9:bf:77:e3:7f:ff:70:91:62:ab:7b:9a:04:95: 80:d2:d3:8d:e1:3b:6d:e4:6a:41:14:d8:99:12:d0:64:11:46: cb:3b:4d:25:fe:d4:75:00:6b:16:51:e5:34:09:24:76:e3:03: 81:cc:79:03:40:d5:28:6c:ff:f7:f7:f4:93:9e:f1:73:2d:70: f3:5c:55:c2:3c:fa:b1:ff:bc:c2:13:cd:16:66:db:90:eb:8e: 6f:cc:b1:a0 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICElYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI4MThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU3QUQzQTU1ODREOTY1 N0JFMEFGRDk0MzUwRjA0QjAzQkZBNDg1NUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPLeTDLV3Rq4uNcFax4vDqYEp2SjOnywNTG6c1wb7tLMYPCgdh NcLl/elXSJpxSqKw6tdhqS0Xk8OYfQcp61mNPAirxBbVdfsSYSJnmrlwTlsE7pXR zBHGOgGuauE6QwEx4mWMfwZH1xBqvvNfylbMRMOg0Kplwq+xzIWhQ/zWlJkaDavd aAlwGVJgAgpP4w69hVB/Ri3KaOfcGJypqWYuQRAl1A1cCCJGrpxEnU4q93L1wdus /Y6Hu7JZkG+jQQcGZYBJGFk/9PRmvffssaNFPxUMKejLr7+hyW8QP16RRE938YFs QbRIDMdb0OGi4OToUOXeoo/+eNVxxsChtEizAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU5606VYTZZXvgr9lDUPBLA7+khVswHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzU2MDZWWVRaWlh2Z3I5bERVUEJMQTct a2hWcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn5zIwDQYJ KoZIhvcNAQELBQADggEBAMo4stRmRyRz5HcErkJjFzBqM68yku2jOKAk2pD7Xs8Q L5FVPlMduJZv6z3O/+MUqVYnZw3qUGavGx2g4QM5+XlElFSIwaoFpCSGNro7nqWD qeCeHp2HKDVnSKXD32pyAnkwwdnoXGcEwn+fP0kZIIVU0iElLcHwr9iEUI4w0C2R Misl16n6KPFiREaZ3dSKoPVkR/Z8ytkDyz0NPuebZKjXYNTNnDDZv3fjf/9wkWKr e5oElYDS043hO23kakEU2JkS0GQRRss7TSX+1HUAaxZR5TQJJHbjA4HMeQNA1Shs //f39JOe8XMtcPNcVcI8+rH/vMITzRZm25Drjm/MsaA= -----END CERTIFICATE-----Generated at Mon Apr 7 20:54:17 2025 by rpki-client