$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FISC/9tWUgJtO8DwoECN7kHFf2LxIgQc.roa File: 9tWUgJtO8DwoECN7kHFf2LxIgQc.roa (raw, json) Hash identifier: +ztxoDQLEEFpNXPeM6ge6lSpbcfWv6IKLsn8NR85v2Y= Subject key identifier: F6:D5:94:80:9B:4E:F0:3C:28:10:23:7B:90:71:5F:D8:BC:48:81:07 Certificate issuer: /CN=F0CE10BD7C2B39A03A70C302BA2B08652C0807D2 Certificate serial: 0CA8 Authority key identifier: F0:CE:10:BD:7C:2B:39:A0:3A:70:C3:02:BA:2B:08:65:2C:08:07:D2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8M4QvXwrOaA6cMMCuisIZSwIB9I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/9tWUgJtO8DwoECN7kHFf2LxIgQc.roa Signing time: Mon 10 Feb 2025 14:26:47 +0000 ROA not before: Mon 10 Feb 2025 14:26:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131588 IP address blocks: 103.229.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/8M4QvXwrOaA6cMMCuisIZSwIB9I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/8M4QvXwrOaA6cMMCuisIZSwIB9I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8M4QvXwrOaA6cMMCuisIZSwIB9I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 22:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3240 (0xca8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F0CE10BD7C2B39A03A70C302BA2B08652C0807D2 Validity Not Before: Feb 10 14:26:47 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F6D594809B4EF03C2810237B90715FD8BC488107 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1f:18:92:f6:b0:dc:55:d4:d6:4e:89:33:7b: 71:5b:e4:41:6c:f2:92:dd:49:bb:19:4c:1f:84:ba: 20:5c:e6:6c:f6:f9:e5:d4:b7:64:22:aa:98:d8:49: 85:3d:47:7d:43:36:c4:bb:57:c6:13:58:e7:e4:c5: ac:68:49:39:20:f6:ce:f9:c2:b1:b9:1c:73:92:22: 3a:a2:58:38:e0:19:60:83:99:b5:43:6c:b9:02:68: f0:21:71:15:ad:ff:f3:9d:dd:32:f8:36:60:7c:cf: db:f0:cd:55:c9:db:9a:48:5e:91:24:7f:6a:83:70: d5:e2:ce:5a:a0:e5:17:5a:db:7d:bf:b7:ab:f7:d8: 35:d7:31:3e:26:d2:28:80:d0:24:a0:26:ee:bd:9a: 2a:bd:f1:2b:c4:0f:b0:74:d2:ea:48:7b:af:70:7b: 89:6e:e9:dd:ca:e0:b5:ae:14:18:7e:be:bd:5a:dc: 99:09:f4:14:1d:3c:3a:97:ae:64:07:4b:68:22:d2: 06:7b:a8:4a:b5:b4:3d:d5:5b:66:3c:b5:e8:71:b3: 8d:e1:db:ba:0f:76:b9:c1:87:f9:86:8b:02:74:30: a4:06:2c:a6:74:f2:17:fd:21:a5:b0:1e:22:96:cb: 2a:09:39:c4:8d:31:0b:ea:cd:1f:52:1a:1e:bf:12: 4f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:D5:94:80:9B:4E:F0:3C:28:10:23:7B:90:71:5F:D8:BC:48:81:07 X509v3 Authority Key Identifier: keyid:F0:CE:10:BD:7C:2B:39:A0:3A:70:C3:02:BA:2B:08:65:2C:08:07:D2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/8M4QvXwrOaA6cMMCuisIZSwIB9I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8M4QvXwrOaA6cMMCuisIZSwIB9I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/9tWUgJtO8DwoECN7kHFf2LxIgQc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.229.134.0/24 Signature Algorithm: sha256WithRSAEncryption 09:71:c9:6c:63:04:10:85:f5:4f:fb:df:93:89:68:95:b9:83: da:d1:90:5c:2d:c1:6b:7b:fa:4b:25:95:55:5a:53:16:cb:ec: f1:17:03:37:80:f4:38:16:06:43:b4:d1:34:de:5e:d3:5e:b8: b1:11:8d:13:c1:d9:4f:99:04:b7:b0:77:32:26:38:de:53:3a: a9:dc:9b:16:75:ca:ec:5d:2e:82:9f:96:66:b4:e8:c4:e2:90: f0:ca:c7:cc:5d:d8:95:77:b3:c7:4e:2c:d9:f3:2d:e9:47:ab: 6d:48:4e:4d:32:b5:af:47:8f:d6:9b:1d:73:d7:95:97:09:3f: 0b:a3:6c:22:98:ad:f8:d8:f6:44:3f:b5:a9:1e:c3:99:92:90: ec:31:24:7d:08:0a:16:16:f6:9f:0d:51:f8:8d:0e:81:d4:75: e7:58:8f:f8:5d:8b:60:b1:0a:da:72:fb:7f:31:03:47:18:3d: 37:28:41:3a:30:96:3d:49:23:c6:bd:0a:f3:ef:67:02:a6:61: fe:7c:bb:46:1c:ed:e6:81:c3:fc:90:fa:ad:ea:bb:70:14:dc: 5e:11:d6:71:1e:64:56:5a:05:34:30:15:e5:9a:ae:3d:08:c5: bc:e2:4f:ad:86:8a:06:4f:2c:7d:e7:ef:21:3c:cd:66:47:30: 9d:88:11:65 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDKgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjBD RTEwQkQ3QzJCMzlBMDNBNzBDMzAyQkEyQjA4NjUyQzA4MDdEMjAeFw0yNTAyMTAx NDI2NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY2RDU5NDgwOUI0RUYw M0MyODEwMjM3QjkwNzE1RkQ4QkM0ODgxMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+HxiS9rDcVdTWTokze3Fb5EFs8pLdSbsZTB+EuiBc5mz2+eXU t2QiqpjYSYU9R31DNsS7V8YTWOfkxaxoSTkg9s75wrG5HHOSIjqiWDjgGWCDmbVD bLkCaPAhcRWt//Od3TL4NmB8z9vwzVXJ25pIXpEkf2qDcNXizlqg5Rda232/t6v3 2DXXMT4m0iiA0CSgJu69miq98SvED7B00upIe69we4lu6d3K4LWuFBh+vr1a3JkJ 9BQdPDqXrmQHS2gi0gZ7qEq1tD3VW2Y8tehxs43h27oPdrnBh/mGiwJ0MKQGLKZ0 8hf9IaWwHiKWyyoJOcSNMQvqzR9SGh6/Ek8zAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU9tWUgJtO8DwoECN7kHFf2LxIgQcwHwYDVR0jBBgwFoAU8M4QvXwrOaA6cMMC uisIZSwIB9IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRklTQy84 TTRRdlh3ck9hQTZjTU1DdWlzSVpTd0lCOUkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzhNNFF2WHdyT2FBNmNNTUN1aXNJWlN3SUI5SS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0ZJU0MvOXRXVWdKdE84RHdvRUNON2tIRmYy THhJZ1FjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGflhjAN BgkqhkiG9w0BAQsFAAOCAQEACXHJbGMEEIX1T/vfk4lolbmD2tGQXC3Ba3v6SyWV VVpTFsvs8RcDN4D0OBYGQ7TRNN5e0164sRGNE8HZT5kEt7B3MiY43lM6qdybFnXK 7F0ugp+WZrToxOKQ8MrHzF3YlXezx04s2fMt6UerbUhOTTK1r0eP1psdc9eVlwk/ C6NsIpit+Nj2RD+1qR7DmZKQ7DEkfQgKFhb2nw1R+I0OgdR151iP+F2LYLEK2nL7 fzEDRxg9NyhBOjCWPUkjxr0K8+9nAqZh/ny7Rhzt5oHD/JD6req7cBTcXhHWcR5k VloFNDAV5ZquPQjFvOJPrYaKBk8sfefvITzNZkcwnYgRZQ== -----END CERTIFICATE-----Generated at Fri Apr 18 21:38:28 2025 by rpki-client