$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/XLl7_HLgwi_t5yRPjb2ZzvpBKCw.roa File: XLl7_HLgwi_t5yRPjb2ZzvpBKCw.roa (raw, json) Hash identifier: O6/Nch0JFEoUu5Yyit5yZjOPapM2PQdASxH5ppRsgFs= Subject key identifier: 5C:B9:7B:FC:72:E0:C2:2F:ED:E7:24:4F:8D:BD:99:CE:FA:41:28:2C Certificate issuer: /CN=9E454EA69C0249FFAB072242AEDD882821269838 Certificate serial: 012A Authority key identifier: 9E:45:4E:A6:9C:02:49:FF:AB:07:22:42:AE:DD:88:28:21:26:98:38 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/nkVOppwCSf-rByJCrt2IKCEmmDg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/XLl7_HLgwi_t5yRPjb2ZzvpBKCw.roa Signing time: Mon 10 Feb 2025 13:44:24 +0000 ROA not before: Mon 10 Feb 2025 13:44:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 150756 IP address blocks: 203.99.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/nkVOppwCSf-rByJCrt2IKCEmmDg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/nkVOppwCSf-rByJCrt2IKCEmmDg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/nkVOppwCSf-rByJCrt2IKCEmmDg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E454EA69C0249FFAB072242AEDD882821269838 Validity Not Before: Feb 10 13:44:24 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5CB97BFC72E0C22FEDE7244F8DBD99CEFA41282C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:f5:7a:7f:c6:4b:15:fe:a0:3d:5e:ac:a9:08: 45:cf:81:20:a0:19:b8:02:0e:3b:de:93:f1:ae:a2: cf:22:03:25:9f:95:36:bf:8e:00:47:e9:30:c9:b3: 03:8b:94:17:e3:da:d1:bd:7e:37:73:68:1f:fc:b4: c3:03:19:e6:a7:74:fe:9c:6f:e3:5c:ed:75:05:de: ce:87:36:28:f8:7a:2b:8b:02:70:59:90:0d:ec:b3: 1b:37:7b:17:91:d3:09:9b:64:5a:75:0e:75:9f:ea: c5:14:c0:2c:72:67:bf:92:3d:36:10:60:04:3b:d1: d4:96:25:9f:07:24:e8:2e:03:8c:d9:ef:9f:9d:d9: 4c:2f:5f:04:a2:48:04:d6:c4:2a:b6:cd:6c:28:b9: a0:e4:7c:1b:8e:34:f3:6d:b3:f8:c9:ac:93:2c:fa: 04:e2:75:ea:f9:86:52:97:cc:0f:9e:91:9e:42:4e: f5:fa:e1:a7:6d:9f:75:f4:1e:17:09:6b:49:aa:81: 1e:94:58:d3:2d:f6:bc:97:2e:80:85:f0:77:3a:f8: 18:4f:b0:c4:cb:af:06:0c:77:18:2e:c2:0a:cf:a0: c2:a8:b7:d4:70:9d:17:40:bf:e4:1e:df:24:8b:2a: 08:61:a3:bb:57:0f:a7:df:aa:d5:fb:61:46:cf:09: c3:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:B9:7B:FC:72:E0:C2:2F:ED:E7:24:4F:8D:BD:99:CE:FA:41:28:2C X509v3 Authority Key Identifier: keyid:9E:45:4E:A6:9C:02:49:FF:AB:07:22:42:AE:DD:88:28:21:26:98:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/nkVOppwCSf-rByJCrt2IKCEmmDg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/nkVOppwCSf-rByJCrt2IKCEmmDg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/XLl7_HLgwi_t5yRPjb2ZzvpBKCw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.99.146.0/23 Signature Algorithm: sha256WithRSAEncryption 49:5a:4a:d8:97:76:d2:02:bc:7d:89:02:f4:87:51:1d:84:37: 5e:de:7c:ca:28:7d:c8:24:87:75:82:47:fb:9d:c5:fc:76:b7: a9:ca:c9:30:01:74:26:9d:2f:0f:4d:60:bc:f0:bb:09:c6:39: 7c:04:63:d7:62:e5:b3:6a:d2:30:16:91:18:d2:01:1e:9f:69: b8:d4:07:c7:4a:44:9b:d9:57:e6:25:ea:43:bc:c3:38:e1:fe: 6d:e3:ce:ff:71:0c:c3:b0:03:ad:67:bc:c5:96:a5:fe:fb:03: 44:7c:f6:f1:a4:fe:30:a5:c2:a0:95:4e:6e:59:9c:4f:a0:b9: be:c8:e3:68:08:f5:09:a7:20:09:80:fa:68:97:09:91:da:16: 19:43:fc:8c:22:c1:82:13:0a:87:66:ee:09:49:2f:a8:65:bb: 7b:51:8c:1a:33:9a:8c:ef:9f:f0:86:d9:1f:bb:78:1c:eb:f9: a7:70:40:a0:77:fc:cb:44:04:7a:19:99:8e:d0:ef:15:39:38: 02:4b:f8:5c:46:d0:79:1a:54:0a:9c:7e:c6:cd:a4:50:3b:74: a9:a7:2e:d5:4a:be:0f:e2:e1:45:53:96:c6:f6:08:19:c3:c6: 8d:f1:e5:a5:9d:d6:40:48:a3:7d:58:bd:f3:65:a1:44:67:03: 2c:c3:30:df -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICASowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUU0 NTRFQTY5QzAyNDlGRkFCMDcyMjQyQUVERDg4MjgyMTI2OTgzODAeFw0yNTAyMTAx MzQ0MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVDQjk3QkZDNzJFMEMy MkZFREU3MjQ0RjhEQkQ5OUNFRkE0MTI4MkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDg9Xp/xksV/qA9XqypCEXPgSCgGbgCDjvek/Guos8iAyWflTa/ jgBH6TDJswOLlBfj2tG9fjdzaB/8tMMDGeandP6cb+Nc7XUF3s6HNij4eiuLAnBZ kA3ssxs3exeR0wmbZFp1DnWf6sUUwCxyZ7+SPTYQYAQ70dSWJZ8HJOguA4zZ75+d 2UwvXwSiSATWxCq2zWwouaDkfBuONPNts/jJrJMs+gTider5hlKXzA+ekZ5CTvX6 4adtn3X0HhcJa0mqgR6UWNMt9ryXLoCF8Hc6+BhPsMTLrwYMdxguwgrPoMKot9Rw nRdAv+Qe3ySLKghho7tXD6ffqtX7YUbPCcMZAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUXLl7/HLgwi/t5yRPjb2ZzvpBKCwwHwYDVR0jBBgwFoAUnkVOppwCSf+rByJC rt2IKCEmmDgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkxPUFBZ L25rVk9wcHdDU2YtckJ5SkNydDJJS0NFbW1EZy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbmtWT3Bwd0NTZi1yQnlKQ3J0MklLQ0VtbURnLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkxPUFBZL1hMbDdfSExnd2lfdDV5UlBq YjJaenZwQktDdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHL Y5IwDQYJKoZIhvcNAQELBQADggEBAElaStiXdtICvH2JAvSHUR2EN17efMoofcgk h3WCR/udxfx2t6nKyTABdCadLw9NYLzwuwnGOXwEY9di5bNq0jAWkRjSAR6fabjU B8dKRJvZV+Yl6kO8wzjh/m3jzv9xDMOwA61nvMWWpf77A0R89vGk/jClwqCVTm5Z nE+gub7I42gI9QmnIAmA+miXCZHaFhlD/IwiwYITCodm7glJL6hlu3tRjBozmozv n/CG2R+7eBzr+adwQKB3/MtEBHoZmY7Q7xU5OAJL+FxG0HkaVAqcfsbNpFA7dKmn LtVKvg/i4UVTlsb2CBnDxo3x5aWd1kBIo31YvfNloURnAyzDMN8= -----END CERTIFICATE-----Generated at Fri Apr 18 23:43:57 2025 by rpki-client