$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/_QhbEZcaGNzcLLfLIszvKpqMU_w.roa File: _QhbEZcaGNzcLLfLIszvKpqMU_w.roa (raw, json) Hash identifier: i4GoOoEOY6AP4mpNQmmGWx9JtNPj+tAIJiIwdfyWUZU= Subject key identifier: FD:08:5B:11:97:1A:18:DC:DC:2C:B7:CB:22:CC:EF:2A:9A:8C:53:FC Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1223 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/_QhbEZcaGNzcLLfLIszvKpqMU_w.roa Signing time: Mon 10 Feb 2025 14:28:06 +0000 ROA not before: Mon 10 Feb 2025 14:28:06 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9674 IP address blocks: 103.122.148.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4643 (0x1223) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Feb 10 14:28:06 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FD085B11971A18DCDC2CB7CB22CCEF2A9A8C53FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:db:83:49:78:77:0b:e7:4b:63:09:e6:35:88: d5:8c:6f:d2:d0:3c:35:14:51:f2:5f:bf:d8:c8:e4: a3:38:b7:20:54:6d:28:10:d7:d3:3f:f2:37:d8:0e: 9c:17:bb:66:d2:2a:5d:a9:7d:cc:94:3e:c6:66:7d: c4:95:28:0b:e9:b0:f9:36:a8:22:2e:34:ef:0b:f5: f3:e9:42:d6:11:75:ae:0f:0c:03:04:3c:ff:f5:32: 27:22:92:6b:ba:40:b1:5a:18:2e:ae:0d:14:9b:c4: 38:fa:8e:fa:38:24:32:6e:6a:31:3b:ab:7a:e7:99: 6d:05:ae:a5:f2:1b:1e:cd:da:11:e3:d7:50:22:bd: ac:09:eb:55:4a:ed:bc:47:26:ac:35:98:21:99:64: 82:77:3f:1e:9b:81:be:b8:af:b7:5b:25:9a:a1:5f: d1:ec:7c:62:10:e5:16:61:36:ff:65:74:d8:18:fd: bd:fe:8a:03:df:38:20:01:10:e4:af:36:f1:8c:fe: b1:f3:30:4e:a1:76:c1:e1:88:5b:3f:60:f0:9b:19: 9f:5e:68:5b:c9:6b:c2:94:04:d4:fb:6f:58:a7:f9: e5:53:dd:e2:ac:08:9e:4e:b1:3f:bb:9b:f1:4a:c7: 01:12:d4:89:76:55:f2:19:c1:0a:61:18:86:e9:b2: 57:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:08:5B:11:97:1A:18:DC:DC:2C:B7:CB:22:CC:EF:2A:9A:8C:53:FC X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/_QhbEZcaGNzcLLfLIszvKpqMU_w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.148.0/22 Signature Algorithm: sha256WithRSAEncryption 4e:82:7b:90:59:dd:2a:66:90:61:3d:e7:e7:06:17:cf:87:0b: a1:54:5b:00:0a:ff:ee:8c:88:6c:a0:2e:b8:ae:a5:eb:b6:30: be:e2:7b:4e:ca:16:86:4b:30:e1:e5:31:cb:92:f2:c0:62:6b: f1:13:ca:a6:6a:32:2f:3b:b8:55:a7:78:c6:fe:35:74:69:d1: 76:54:bc:04:94:6c:b6:4f:2e:29:f5:19:6d:b8:6d:73:ce:e3: fd:47:9a:82:c6:9f:4c:b5:d7:26:42:aa:3f:0f:d2:ef:37:52: b5:b3:a5:5e:33:b1:f7:3e:63:b8:0c:62:66:74:c6:15:b5:6f: fa:7d:5e:e4:d1:8e:57:54:4e:3a:58:21:6b:45:e9:d0:50:1c: f4:71:6c:04:c8:39:e1:cf:b3:70:ae:f1:9b:b1:a0:99:79:08: 92:02:b1:dc:5f:d4:6c:97:5e:bb:85:c2:53:f7:5f:22:66:b7: e2:2e:14:3c:f0:0e:f9:20:b2:7a:d7:82:1d:ba:be:1c:a9:be: 15:15:61:d7:21:91:61:45:76:ae:cb:91:13:26:01:77:41:b3: ec:d8:ed:b6:c1:d1:d8:b0:21:f3:5e:65:1e:b1:ed:ac:a0:e8: 2c:c8:f8:51:97:90:ca:b3:e6:37:88:52:5b:1b:91:06:e2:47: d5:2e:cc:f2 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEiMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx NDI4MDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZEMDg1QjExOTcxQTE4 RENEQzJDQjdDQjIyQ0NFRjJBOUE4QzUzRkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDq24NJeHcL50tjCeY1iNWMb9LQPDUUUfJfv9jI5KM4tyBUbSgQ 19M/8jfYDpwXu2bSKl2pfcyUPsZmfcSVKAvpsPk2qCIuNO8L9fPpQtYRda4PDAME PP/1Micikmu6QLFaGC6uDRSbxDj6jvo4JDJuajE7q3rnmW0FrqXyGx7N2hHj11Ai vawJ61VK7bxHJqw1mCGZZIJ3Px6bgb64r7dbJZqhX9HsfGIQ5RZhNv9ldNgY/b3+ igPfOCABEOSvNvGM/rHzME6hdsHhiFs/YPCbGZ9eaFvJa8KUBNT7b1in+eVT3eKs CJ5OsT+7m/FKxwES1Il2VfIZwQphGIbpslflAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU/QhbEZcaGNzcLLfLIszvKpqMU/wwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL19RaGJFWmNhR056Y0xMZkxJc3p2S3Bx TVVfdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnepQwDQYJ KoZIhvcNAQELBQADggEBAE6Ce5BZ3SpmkGE95+cGF8+HC6FUWwAK/+6MiGygLriu peu2ML7ie07KFoZLMOHlMcuS8sBia/ETyqZqMi87uFWneMb+NXRp0XZUvASUbLZP Lin1GW24bXPO4/1HmoLGn0y11yZCqj8P0u83UrWzpV4zsfc+Y7gMYmZ0xhW1b/p9 XuTRjldUTjpYIWtF6dBQHPRxbATIOeHPs3Cu8ZuxoJl5CJICsdxf1GyXXruFwlP3 XyJmt+IuFDzwDvkgsnrXgh26vhypvhUVYdchkWFFdq7LkRMmAXdBs+zY7bbB0diw IfNeZR6x7ayg6CzI+FGXkMqz5jeIUlsbkQbiR9UuzPI= -----END CERTIFICATE-----Generated at Mon Apr 7 20:54:21 2025 by rpki-client