$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/VHfTRBfX5aF5XQdTXExAO0cCzpQ.roa File: VHfTRBfX5aF5XQdTXExAO0cCzpQ.roa (raw, json) Hash identifier: F/9XDKcRWQPgPuStPphkXI6NC4JKZvnVK4w3Ca3mhMA= Subject key identifier: 54:77:D3:44:17:D7:E5:A1:79:5D:07:53:5C:4C:40:3B:47:02:CE:94 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1247 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/VHfTRBfX5aF5XQdTXExAO0cCzpQ.roa Signing time: Mon 10 Feb 2025 14:28:15 +0000 ROA not before: Mon 10 Feb 2025 14:28:15 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 103.36.116.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4679 (0x1247) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:28:15 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5477D34417D7E5A1795D07535C4C403B4702CE94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:12:ad:11:07:6c:76:24:e0:a3:58:b2:44:8f: 58:fc:71:04:d0:a8:09:67:43:62:47:73:ed:a7:bb: 2c:41:ef:fd:e1:5d:cb:22:c9:ed:80:a2:db:93:96: c9:81:98:76:49:41:2b:f8:84:9c:64:31:df:d5:c2: f6:62:9a:83:09:65:e9:20:e9:8e:5c:cc:08:1c:62: 97:23:6b:f9:e7:52:53:c5:68:6a:f8:41:c2:82:da: c4:f3:8a:ba:6c:51:58:1a:91:8c:83:06:b8:aa:15: 2f:c8:56:f9:b1:b6:01:d6:2c:a8:e0:d5:e9:8c:1f: a9:ee:e0:9f:14:e2:ad:43:7b:ee:dc:3c:7a:71:32: 63:83:5f:ef:f7:db:2f:42:64:17:94:fa:15:f7:4b: c9:28:36:ed:98:f5:74:90:e6:41:03:cf:bb:21:10: 9c:b4:6a:60:4d:44:4a:36:30:aa:e0:8e:86:e8:c9: 46:44:11:89:48:3a:2f:73:0d:94:d8:f9:48:bf:dc: cc:98:80:0d:d5:8a:97:c9:c3:4a:0d:f2:c8:df:c3: 0c:13:03:20:5f:48:e6:36:83:d6:c4:60:3d:12:41: 6d:a0:bf:95:a2:6a:b1:d9:67:1c:18:83:61:02:c4: c6:7c:48:36:43:f9:8e:7c:d1:2d:75:25:68:8d:8f: a7:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:77:D3:44:17:D7:E5:A1:79:5D:07:53:5C:4C:40:3B:47:02:CE:94 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/VHfTRBfX5aF5XQdTXExAO0cCzpQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.36.116.0/22 Signature Algorithm: sha256WithRSAEncryption 8e:f1:45:48:66:16:d2:e7:25:b5:af:85:95:cd:23:5f:1f:5a: b3:ee:55:58:d3:92:fd:25:8f:71:8a:c7:1e:9e:be:e8:ce:47: 6e:01:4d:59:8e:af:1a:68:0c:16:a8:2b:a3:51:48:97:a0:53: 2d:3a:aa:a3:5a:0a:44:68:e7:3c:c7:c4:8b:e7:9a:d5:9a:99: ac:59:09:06:4a:43:74:c6:0e:ab:3b:9d:d1:fb:fb:11:73:74: ce:2e:c3:d2:5e:0d:dc:63:ff:9a:c7:c0:c7:d8:17:05:b9:9d: 25:74:f3:1c:b4:26:d0:9c:fc:c6:44:3f:2a:7b:95:76:ac:e1: b0:bc:45:45:01:31:6d:c9:06:65:18:36:57:f4:da:98:b2:0d: 30:a6:be:de:1e:eb:38:3c:f2:5d:f1:e7:bc:c1:b7:50:ae:ab: 53:a4:50:f4:36:81:5c:0a:63:3c:a2:56:38:b6:61:74:d7:30: 2a:0f:9c:dd:6d:e7:56:76:73:4e:ff:bd:bf:5f:64:24:fe:22: 58:42:48:f0:e9:c4:ee:87:fe:9c:5f:54:43:46:c2:86:74:ea: a4:c5:a3:c0:fe:4c:e6:73:e7:b8:65:a6:e3:61:e9:30:86:a8: 25:63:ef:ae:8f:01:67:07:5c:74:8b:fc:6f:88:2a:1c:71:c1: 86:4e:f2:73 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEkcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI4MTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU0NzdEMzQ0MTdEN0U1 QTE3OTVEMDc1MzVDNEM0MDNCNDcwMkNFOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrEq0RB2x2JOCjWLJEj1j8cQTQqAlnQ2JHc+2nuyxB7/3hXcsi ye2AotuTlsmBmHZJQSv4hJxkMd/VwvZimoMJZekg6Y5czAgcYpcja/nnUlPFaGr4 QcKC2sTzirpsUVgakYyDBriqFS/IVvmxtgHWLKjg1emMH6nu4J8U4q1De+7cPHpx MmODX+/32y9CZBeU+hX3S8koNu2Y9XSQ5kEDz7shEJy0amBNREo2MKrgjoboyUZE EYlIOi9zDZTY+Ui/3MyYgA3VipfJw0oN8sjfwwwTAyBfSOY2g9bEYD0SQW2gv5Wi arHZZxwYg2ECxMZ8SDZD+Y580S11JWiNj6cTAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUVHfTRBfX5aF5XQdTXExAO0cCzpQwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1ZIZlRSQmZYNWFGNVhRZFRYRXhBTzBj Q3pwUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnJHQwDQYJ KoZIhvcNAQELBQADggEBAI7xRUhmFtLnJbWvhZXNI18fWrPuVVjTkv0lj3GKxx6e vujOR24BTVmOrxpoDBaoK6NRSJegUy06qqNaCkRo5zzHxIvnmtWamaxZCQZKQ3TG Dqs7ndH7+xFzdM4uw9JeDdxj/5rHwMfYFwW5nSV08xy0JtCc/MZEPyp7lXas4bC8 RUUBMW3JBmUYNlf02piyDTCmvt4e6zg88l3x57zBt1Cuq1OkUPQ2gVwKYzyiVji2 YXTXMCoPnN1t51Z2c07/vb9fZCT+IlhCSPDpxO6H/pxfVENGwoZ06qTFo8D+TOZz 57hlpuNh6TCGqCVj766PAWcHXHSL/G+IKhxxwYZO8nM= -----END CERTIFICATE-----Generated at Mon Apr 7 20:49:19 2025 by rpki-client