$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/INFORICH/VQ1IuuCh6FoZGnuOOyo5Ml-T-mI.roa File: VQ1IuuCh6FoZGnuOOyo5Ml-T-mI.roa (raw, json) Hash identifier: nfEyUtLqG7JenRuc02N72s9nzVjnSP138odfah3iIQk= Subject key identifier: 55:0D:48:BA:E0:A1:E8:5A:19:1A:7B:8E:3B:2A:39:32:5F:93:FA:62 Certificate issuer: /CN=9197E979AFBB1BEC2EFC2647207560561BE900B6 Certificate serial: 0580 Authority key identifier: 91:97:E9:79:AF:BB:1B:EC:2E:FC:26:47:20:75:60:56:1B:E9:00:B6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/VQ1IuuCh6FoZGnuOOyo5Ml-T-mI.roa Signing time: Mon 10 Feb 2025 13:46:38 +0000 ROA not before: Mon 10 Feb 2025 13:46:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131677 IP address blocks: 103.152.252.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/kZfpea-7G-wu_CZHIHVgVhvpALY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/kZfpea-7G-wu_CZHIHVgVhvpALY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 22:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1408 (0x580) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9197E979AFBB1BEC2EFC2647207560561BE900B6 Validity Not Before: Feb 10 13:46:38 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=550D48BAE0A1E85A191A7B8E3B2A39325F93FA62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:7c:30:8d:2e:80:e9:fd:c1:e6:31:ec:2d:35: d2:c9:0b:04:6e:23:2e:23:94:68:48:ab:c3:9d:50: 3f:cc:b1:54:ad:88:2d:ae:73:3b:b2:72:21:62:eb: b3:70:f6:06:4a:90:10:62:6a:cf:e1:78:d4:ba:02: 3b:4a:e7:98:97:12:b7:ee:20:45:3f:8c:67:40:f9: 9a:6f:e9:78:2b:a6:08:12:43:8b:00:4a:63:6f:7f: ed:2c:df:f3:4b:61:78:06:3a:dc:12:a8:29:7f:3a: 53:87:47:f0:02:e5:b9:c4:2e:e5:e0:68:7d:3c:d2: 1b:8f:65:d4:a0:0e:7d:6c:b8:15:bc:3e:c5:7c:46: 5a:f5:fc:ec:8f:4e:e0:33:b2:b0:29:7d:39:c7:6b: 40:df:20:e7:ec:3f:9b:ed:8c:3e:45:71:99:cf:c6: 7c:91:fb:f5:6a:06:d3:34:79:66:68:c6:9d:52:6e: 5e:fc:da:6a:7d:fa:6f:ce:05:ed:da:af:11:73:49: 34:d7:93:42:1d:7b:7e:19:02:87:55:d4:ab:a5:0e: ac:f8:33:ed:07:7e:6b:37:2b:73:37:9d:bb:c3:8a: 09:74:08:ef:dd:08:90:cc:57:34:e2:92:83:c5:24: fe:3a:e9:94:fc:26:a5:a1:21:97:2f:6d:cc:cc:da: 0c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:0D:48:BA:E0:A1:E8:5A:19:1A:7B:8E:3B:2A:39:32:5F:93:FA:62 X509v3 Authority Key Identifier: keyid:91:97:E9:79:AF:BB:1B:EC:2E:FC:26:47:20:75:60:56:1B:E9:00:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/kZfpea-7G-wu_CZHIHVgVhvpALY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/VQ1IuuCh6FoZGnuOOyo5Ml-T-mI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.152.252.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:72:6d:7c:e9:1f:c5:a4:14:99:aa:e1:35:50:6b:de:2a:80: f2:e5:b7:1f:98:f7:83:81:6d:ec:0a:03:46:bb:6e:71:10:8c: 47:34:58:1a:8b:08:d8:d9:b1:c0:05:da:54:b1:7b:24:4a:49: 66:4c:2d:6c:8e:ca:d3:98:7a:fb:d4:ac:78:91:3a:ed:61:58: 70:c8:54:fd:81:a6:91:73:ea:16:a6:6e:2e:8e:0c:e8:74:61: 38:a7:d3:c5:88:1c:3b:b2:5a:25:69:95:de:81:7b:a1:34:8d: 86:3e:8a:d3:29:4d:6f:b1:ad:8e:6c:9b:cd:2e:ef:93:49:b6: b3:b3:6c:65:83:07:bf:de:ea:33:40:a9:f3:fb:2e:a7:8b:97: 3f:29:d3:69:e2:05:dc:e0:de:34:ea:aa:a6:53:39:70:27:ed: 24:0f:40:61:0f:01:7b:12:e0:1e:55:73:ef:ec:94:73:cf:90: 55:e4:3a:97:7a:01:a9:34:67:31:19:d0:89:18:b3:10:5b:4f: b7:90:95:e6:ac:fe:9a:75:9f:be:c5:a7:b0:10:cb:b2:ec:dc: 25:bd:48:14:88:12:3c:48:3c:17:5d:74:ef:50:86:a8:16:4c: 7b:79:e7:08:9f:61:44:4b:3d:09:cb:c1:12:11:35:96:44:ca: fb:3d:a8:0d -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICBYAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTE5 N0U5NzlBRkJCMUJFQzJFRkMyNjQ3MjA3NTYwNTYxQkU5MDBCNjAeFw0yNTAyMTAx MzQ2MzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU1MEQ0OEJBRTBBMUU4 NUExOTFBN0I4RTNCMkEzOTMyNUY5M0ZBNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlfDCNLoDp/cHmMewtNdLJCwRuIy4jlGhIq8OdUD/MsVStiC2u czuyciFi67Nw9gZKkBBias/heNS6AjtK55iXErfuIEU/jGdA+Zpv6XgrpggSQ4sA SmNvf+0s3/NLYXgGOtwSqCl/OlOHR/AC5bnELuXgaH080huPZdSgDn1suBW8PsV8 Rlr1/OyPTuAzsrApfTnHa0DfIOfsP5vtjD5FcZnPxnyR+/VqBtM0eWZoxp1Sbl78 2mp9+m/OBe3arxFzSTTXk0Ide34ZAodV1KulDqz4M+0Hfms3K3M3nbvDigl0CO/d CJDMVzTikoPFJP466ZT8JqWhIZcvbczM2gwpAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUVQ1IuuCh6FoZGnuOOyo5Ml+T+mIwHwYDVR0jBBgwFoAUkZfpea+7G+wu/CZH IHVgVhvpALYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU5GT1JJ Q0gva1pmcGVhLTdHLXd1X0NaSElIVmdWaHZwQUxZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9rWmZwZWEtN0ctd3VfQ1pISUhWZ1ZodnBBTFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JTkZPUklDSC9WUTFJdXVDaDZGb1pH bnVPT3lvNU1sLVQtbUkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ5j8MA0GCSqGSIb3DQEBCwUAA4IBAQBecm186R/FpBSZquE1UGveKoDy5bcf mPeDgW3sCgNGu25xEIxHNFgaiwjY2bHABdpUsXskSklmTC1sjsrTmHr71Kx4kTrt YVhwyFT9gaaRc+oWpm4ujgzodGE4p9PFiBw7slolaZXegXuhNI2GPorTKU1vsa2O bJvNLu+TSbazs2xlgwe/3uozQKnz+y6ni5c/KdNp4gXc4N406qqmUzlwJ+0kD0Bh DwF7EuAeVXPv7JRzz5BV5DqXegGpNGcxGdCJGLMQW0+3kJXmrP6adZ++xaewEMuy 7NwlvUgUiBI8SDwXXXTvUIaoFkx7eecIn2FESz0Jy8ESETWWRMr7PagN -----END CERTIFICATE-----Generated at Fri Apr 18 21:17:56 2025 by rpki-client