$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FISC/YxmCwpA1Iz7bTM5FQjPc-A6hXuY.roa File: YxmCwpA1Iz7bTM5FQjPc-A6hXuY.roa (raw, json) Hash identifier: Vu7kgZIjk8L037sG7tgWXMwQhyFascGhgVg2q6dKG5I= Subject key identifier: 63:19:82:C2:90:35:23:3E:DB:4C:CE:45:42:33:DC:F8:0E:A1:5E:E6 Certificate issuer: /CN=F0CE10BD7C2B39A03A70C302BA2B08652C0807D2 Certificate serial: 0CAA Authority key identifier: F0:CE:10:BD:7C:2B:39:A0:3A:70:C3:02:BA:2B:08:65:2C:08:07:D2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8M4QvXwrOaA6cMMCuisIZSwIB9I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/YxmCwpA1Iz7bTM5FQjPc-A6hXuY.roa Signing time: Mon 10 Feb 2025 14:26:47 +0000 ROA not before: Mon 10 Feb 2025 14:26:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131588 IP address blocks: 103.229.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/8M4QvXwrOaA6cMMCuisIZSwIB9I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/8M4QvXwrOaA6cMMCuisIZSwIB9I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8M4QvXwrOaA6cMMCuisIZSwIB9I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 22:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3242 (0xcaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F0CE10BD7C2B39A03A70C302BA2B08652C0807D2 Validity Not Before: Feb 10 14:26:47 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=631982C29035233EDB4CCE454233DCF80EA15EE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:31:b0:3a:22:2a:c5:6e:e9:51:72:af:a2:70: af:ba:eb:f0:3b:9f:40:17:1c:34:2d:09:9e:1e:e6: ec:ef:09:09:9a:58:4b:dd:a5:81:d2:4c:21:ca:4a: c2:3b:c5:e5:7b:d5:8a:45:ba:d4:3d:b3:24:ba:5f: 12:0c:7b:0f:f9:ff:6f:81:ec:52:e7:5f:b5:9f:0b: f3:47:0d:fc:d5:82:02:4d:e4:e5:8f:78:8c:0e:d9: 29:e0:d6:92:21:91:f0:59:a9:d3:dd:d9:f4:47:7e: 03:22:1a:1a:66:73:bc:95:3f:93:63:6d:f7:d9:18: 5c:b7:bd:6f:7e:ca:30:16:5c:b1:26:d8:58:cb:4f: 4d:d0:bc:f9:28:a7:6d:81:07:cb:50:d5:47:dd:4f: ae:3b:0e:d2:ff:95:e9:1e:8e:26:fb:34:be:75:3a: e4:80:23:ad:4e:c1:a2:0c:bb:34:23:74:a4:43:b3: 7e:f8:60:bf:aa:cb:46:ee:3a:d2:3a:12:d4:d9:66: 40:9f:d3:92:d3:10:42:bb:a2:ae:5e:3c:b1:e5:6d: ef:40:64:df:38:a3:32:7d:7f:2d:5a:1b:e6:5f:e0: 6e:3a:8e:65:5b:85:4d:3c:b6:03:88:b9:4f:f8:d5: bf:bc:0d:29:4a:d6:a2:97:c8:b2:77:45:e8:bc:98: f1:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:19:82:C2:90:35:23:3E:DB:4C:CE:45:42:33:DC:F8:0E:A1:5E:E6 X509v3 Authority Key Identifier: keyid:F0:CE:10:BD:7C:2B:39:A0:3A:70:C3:02:BA:2B:08:65:2C:08:07:D2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/8M4QvXwrOaA6cMMCuisIZSwIB9I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8M4QvXwrOaA6cMMCuisIZSwIB9I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/YxmCwpA1Iz7bTM5FQjPc-A6hXuY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.229.135.0/24 Signature Algorithm: sha256WithRSAEncryption 31:50:77:d1:fc:b1:d7:f1:b6:97:8c:a1:85:0a:75:b1:19:60: 1e:3f:dd:8f:b4:0e:68:f8:12:7d:92:a8:11:73:83:15:f1:11: 64:72:2d:eb:69:d2:5a:2e:6f:7a:a3:a3:80:bf:df:15:26:18: 32:97:75:d4:85:d4:5f:f3:be:f2:3b:98:9a:ec:73:cd:00:43: 04:6c:dc:4d:06:e8:f0:43:a9:d1:56:12:fa:26:30:a4:2f:38: 23:d8:45:3a:8f:87:13:22:c9:c5:77:0c:32:6e:82:83:9f:26: 21:62:4e:cc:dc:85:3a:12:2e:43:a7:38:6c:52:2d:d6:b3:97: 9c:23:ac:4a:ee:5c:0c:0d:c0:4b:59:77:41:8b:3b:ae:0f:07: 25:e3:f0:11:da:93:9f:6f:ed:ae:dc:e2:78:c7:3a:eb:1f:95: a4:de:3e:ce:71:78:da:bb:30:36:20:fe:d4:a2:e1:5b:05:6a: 9d:95:11:50:6f:b2:4a:17:9c:41:d7:b4:42:69:07:2c:72:34: a7:54:6f:b6:16:5c:cd:66:c3:bb:e2:8b:f0:e2:50:d0:40:13: 01:cc:4b:64:87:ef:f1:27:ac:43:f7:86:9e:01:a4:af:97:b1: 2c:f8:dc:ed:15:d2:74:b6:56:55:f7:94:b1:7f:e3:4b:9f:db: 39:80:df:16 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDKowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjBD RTEwQkQ3QzJCMzlBMDNBNzBDMzAyQkEyQjA4NjUyQzA4MDdEMjAeFw0yNTAyMTAx NDI2NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDYzMTk4MkMyOTAzNTIz M0VEQjRDQ0U0NTQyMzNEQ0Y4MEVBMTVFRTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9MbA6IirFbulRcq+icK+66/A7n0AXHDQtCZ4e5uzvCQmaWEvd pYHSTCHKSsI7xeV71YpFutQ9syS6XxIMew/5/2+B7FLnX7WfC/NHDfzVggJN5OWP eIwO2Sng1pIhkfBZqdPd2fRHfgMiGhpmc7yVP5NjbffZGFy3vW9+yjAWXLEm2FjL T03QvPkop22BB8tQ1UfdT647DtL/lekejib7NL51OuSAI61OwaIMuzQjdKRDs374 YL+qy0buOtI6EtTZZkCf05LTEEK7oq5ePLHlbe9AZN84ozJ9fy1aG+Zf4G46jmVb hU08tgOIuU/41b+8DSlK1qKXyLJ3Rei8mPFdAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUYxmCwpA1Iz7bTM5FQjPc+A6hXuYwHwYDVR0jBBgwFoAU8M4QvXwrOaA6cMMC uisIZSwIB9IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRklTQy84 TTRRdlh3ck9hQTZjTU1DdWlzSVpTd0lCOUkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzhNNFF2WHdyT2FBNmNNTUN1aXNJWlN3SUI5SS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0ZJU0MvWXhtQ3dwQTFJejdiVE01RlFqUGMt QTZoWHVZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGflhzAN BgkqhkiG9w0BAQsFAAOCAQEAMVB30fyx1/G2l4yhhQp1sRlgHj/dj7QOaPgSfZKo EXODFfERZHIt62nSWi5veqOjgL/fFSYYMpd11IXUX/O+8juYmuxzzQBDBGzcTQbo 8EOp0VYS+iYwpC84I9hFOo+HEyLJxXcMMm6Cg58mIWJOzNyFOhIuQ6c4bFIt1rOX nCOsSu5cDA3AS1l3QYs7rg8HJePwEdqTn2/trtzieMc66x+VpN4+znF42rswNiD+ 1KLhWwVqnZURUG+yShecQde0QmkHLHI0p1RvthZczWbDu+KL8OJQ0EATAcxLZIfv 8SesQ/eGngGkr5exLPjc7RXSdLZWVfeUsX/jS5/bOYDfFg== -----END CERTIFICATE-----Generated at Fri Apr 18 21:17:58 2025 by rpki-client