$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/INFORICH/HGVVXy8B8Z97Jg8qq2yACjaQFVQ.roa File: HGVVXy8B8Z97Jg8qq2yACjaQFVQ.roa (raw, json) Hash identifier: CR8geyRb8c3sBJ+eR39U+rjmNRwXIlYqsLSRRpB15ps= Subject key identifier: 1C:65:55:5F:2F:01:F1:9F:7B:26:0F:2A:AB:6C:80:0A:36:90:15:54 Certificate issuer: /CN=9197E979AFBB1BEC2EFC2647207560561BE900B6 Certificate serial: 0581 Authority key identifier: 91:97:E9:79:AF:BB:1B:EC:2E:FC:26:47:20:75:60:56:1B:E9:00:B6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/HGVVXy8B8Z97Jg8qq2yACjaQFVQ.roa Signing time: Mon 10 Feb 2025 13:46:38 +0000 ROA not before: Mon 10 Feb 2025 13:46:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131674 IP address blocks: 103.152.252.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/kZfpea-7G-wu_CZHIHVgVhvpALY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/kZfpea-7G-wu_CZHIHVgVhvpALY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 22:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1409 (0x581) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9197E979AFBB1BEC2EFC2647207560561BE900B6 Validity Not Before: Feb 10 13:46:38 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1C65555F2F01F19F7B260F2AAB6C800A36901554 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d3:e7:6a:e3:3c:48:7b:0f:19:2c:b1:cb:d9: e1:aa:92:53:27:e9:8e:5c:ff:be:d3:36:80:20:31: b7:fe:ca:f4:49:ef:18:25:4d:d2:85:6b:91:ac:ea: 96:03:42:cc:7d:76:aa:fd:53:6e:b6:a2:06:d0:a7: f9:2f:bd:46:23:40:18:65:87:87:33:ee:f5:3e:8d: cc:a5:e7:bf:18:fa:79:3d:d0:fa:16:00:54:f4:7b: 08:72:51:75:6f:6f:fc:e4:43:cd:86:04:59:f0:9c: 36:c9:2f:7a:18:d8:5e:25:c9:fe:c3:05:05:b9:48: c1:5c:da:0b:c9:c7:35:a4:2c:0f:0d:3d:6a:72:28: 3b:42:26:43:ec:f0:41:bf:9e:10:ed:be:26:08:69: 3c:24:d6:5c:c3:b5:c0:84:0e:6d:7c:11:7c:f4:55: 0b:3e:da:56:59:b3:4b:f3:4f:af:3f:ca:0e:31:3d: 0f:51:57:db:10:88:4b:24:a5:02:81:53:ba:fd:a4: ba:ab:2d:37:c3:a5:cb:ea:0c:1b:d5:f1:03:17:a6: 03:c3:bb:03:68:cb:f0:32:4f:d0:db:7e:9f:4c:89: f8:19:11:b3:17:ad:48:4f:d0:76:c4:bd:bf:d4:4d: 1e:88:e9:55:9a:b2:c2:d1:92:38:8b:d3:ef:ac:06: d5:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:65:55:5F:2F:01:F1:9F:7B:26:0F:2A:AB:6C:80:0A:36:90:15:54 X509v3 Authority Key Identifier: keyid:91:97:E9:79:AF:BB:1B:EC:2E:FC:26:47:20:75:60:56:1B:E9:00:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/kZfpea-7G-wu_CZHIHVgVhvpALY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/HGVVXy8B8Z97Jg8qq2yACjaQFVQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.152.252.0/23 Signature Algorithm: sha256WithRSAEncryption a9:a6:bd:dd:5d:95:26:1b:3f:28:30:96:cd:5b:98:d4:d7:10: 24:00:69:e2:00:b9:cf:51:51:2e:d4:c0:9e:4a:57:02:ac:73: 0c:60:a8:f4:39:06:b4:24:60:2a:6d:b7:74:59:18:47:7e:b8: 83:50:f8:45:e7:c9:fc:6f:bd:9d:e7:38:b9:93:ff:43:db:d0: 48:c8:3b:f9:b3:72:64:83:9a:33:c3:86:1c:f7:90:d0:bd:49: 59:0f:97:5c:1c:33:83:26:e7:59:49:6b:cd:83:42:a6:b4:b6: 52:59:db:ee:dc:b2:dc:16:ac:11:b9:fa:2c:a4:2f:6c:6c:ff: d4:75:fa:68:02:65:18:79:38:77:f1:56:7d:3b:59:e6:a1:2c: 89:b4:77:5a:a6:fb:69:2a:2f:ed:e0:0d:d9:c3:61:6b:b0:d9: 5d:54:51:af:c4:7d:be:37:31:b8:85:78:e5:37:a2:9e:bc:e8: c7:d6:73:52:8d:34:4e:5e:e8:d5:75:4a:d4:56:31:01:71:72: 6b:cd:be:dd:76:7f:3c:71:aa:f8:42:3b:6a:23:f1:70:64:b0: 81:31:59:90:fe:2b:1c:d8:ab:6f:ad:00:01:2e:f5:2f:bf:34: 66:cb:8d:35:da:eb:5b:96:2a:6e:2f:7e:e1:02:09:2e:38:c6: 0b:8f:be:e1 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICBYEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTE5 N0U5NzlBRkJCMUJFQzJFRkMyNjQ3MjA3NTYwNTYxQkU5MDBCNjAeFw0yNTAyMTAx MzQ2MzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFDNjU1NTVGMkYwMUYx OUY3QjI2MEYyQUFCNkM4MDBBMzY5MDE1NTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC80+dq4zxIew8ZLLHL2eGqklMn6Y5c/77TNoAgMbf+yvRJ7xgl TdKFa5Gs6pYDQsx9dqr9U262ogbQp/kvvUYjQBhlh4cz7vU+jcyl578Y+nk90PoW AFT0ewhyUXVvb/zkQ82GBFnwnDbJL3oY2F4lyf7DBQW5SMFc2gvJxzWkLA8NPWpy KDtCJkPs8EG/nhDtviYIaTwk1lzDtcCEDm18EXz0VQs+2lZZs0vzT68/yg4xPQ9R V9sQiEskpQKBU7r9pLqrLTfDpcvqDBvV8QMXpgPDuwNoy/AyT9Dbfp9MifgZEbMX rUhP0HbEvb/UTR6I6VWassLRkjiL0++sBtWbAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUHGVVXy8B8Z97Jg8qq2yACjaQFVQwHwYDVR0jBBgwFoAUkZfpea+7G+wu/CZH IHVgVhvpALYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU5GT1JJ Q0gva1pmcGVhLTdHLXd1X0NaSElIVmdWaHZwQUxZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9rWmZwZWEtN0ctd3VfQ1pISUhWZ1ZodnBBTFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JTkZPUklDSC9IR1ZWWHk4QjhaOTdK ZzhxcTJ5QUNqYVFGVlEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ5j8MA0GCSqGSIb3DQEBCwUAA4IBAQCppr3dXZUmGz8oMJbNW5jU1xAkAGni ALnPUVEu1MCeSlcCrHMMYKj0OQa0JGAqbbd0WRhHfriDUPhF58n8b72d5zi5k/9D 29BIyDv5s3Jkg5ozw4Yc95DQvUlZD5dcHDODJudZSWvNg0KmtLZSWdvu3LLcFqwR ufospC9sbP/UdfpoAmUYeTh38VZ9O1nmoSyJtHdapvtpKi/t4A3Zw2FrsNldVFGv xH2+NzG4hXjlN6KevOjH1nNSjTROXujVdUrUVjEBcXJrzb7ddn88car4QjtqI/Fw ZLCBMVmQ/isc2KtvrQABLvUvvzRmy4012utblipuL37hAgkuOMYLj77h -----END CERTIFICATE-----Generated at Fri Apr 18 22:16:46 2025 by rpki-client