$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISTVC/ayZAPIqCokgFXlsJe2e1klMKKB4.roa File: ayZAPIqCokgFXlsJe2e1klMKKB4.roa (raw, json) Hash identifier: vuBG+a8vj1YjT7bf1e4N2QG1o5Bfg0pNPoMvX+qITVA= Subject key identifier: 6B:26:40:3C:8A:82:A2:48:05:5E:5B:09:7B:67:B5:92:53:0A:28:1E Certificate issuer: /CN=6887985DB19E5FD82F962B420ECC0FC4ED730D02 Certificate serial: 0331 Authority key identifier: 68:87:98:5D:B1:9E:5F:D8:2F:96:2B:42:0E:CC:0F:C4:ED:73:0D:02 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/ayZAPIqCokgFXlsJe2e1klMKKB4.roa Signing time: Mon 10 Feb 2025 14:26:52 +0000 ROA not before: Mon 10 Feb 2025 14:26:52 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9920 IP address blocks: 103.173.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 817 (0x331) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6887985DB19E5FD82F962B420ECC0FC4ED730D02 Validity Not Before: Feb 10 14:26:52 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6B26403C8A82A248055E5B097B67B592530A281E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:3d:ae:e4:fb:5d:a7:e9:d4:a5:38:b7:0b:b0: 93:8b:5e:eb:03:86:38:fe:5e:e1:1a:36:79:ec:ab: b2:55:40:0c:8e:26:cc:1a:82:f1:ac:f4:38:6e:16: 35:15:0c:e0:8b:bc:0c:e4:d9:92:4a:37:03:a6:ac: d5:3d:11:5d:52:f4:46:e9:c2:d0:94:73:13:bf:58: 8a:20:6c:c5:7b:02:13:45:bc:ce:67:35:96:62:2e: da:16:5a:da:f9:80:c5:d0:7c:54:15:c1:26:fd:bf: 8c:64:ff:6b:4a:a1:9c:4b:61:f2:b2:2d:a7:b9:cf: cf:82:05:3d:b1:51:64:e9:c0:f4:91:b5:fa:29:50: 18:75:eb:57:38:a7:85:32:50:2e:11:fd:33:15:dc: 70:0e:f1:23:0d:29:e4:45:84:6f:0b:15:4a:c6:11: fb:90:59:d5:d9:5f:aa:f7:9d:4b:e3:28:e9:a8:35: 61:90:12:25:68:e5:f5:04:69:20:18:f7:ee:de:0f: c3:20:24:bc:9e:29:1f:8a:f6:95:e8:2f:b6:46:ab: e5:c8:db:6b:f8:0a:ef:dd:9d:bf:ac:c9:75:88:6f: 07:3b:d7:1b:fc:45:da:08:6a:18:13:44:ae:60:63: ae:41:75:f9:fe:25:51:29:10:85:c2:6a:db:d0:3d: 3b:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:26:40:3C:8A:82:A2:48:05:5E:5B:09:7B:67:B5:92:53:0A:28:1E X509v3 Authority Key Identifier: keyid:68:87:98:5D:B1:9E:5F:D8:2F:96:2B:42:0E:CC:0F:C4:ED:73:0D:02 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/ayZAPIqCokgFXlsJe2e1klMKKB4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.173.94.0/24 Signature Algorithm: sha256WithRSAEncryption bc:22:7d:f0:3c:ae:95:9f:24:f3:5c:69:c3:6b:9b:48:49:bb: 76:f1:ad:b9:1a:00:44:36:41:c6:4e:f6:ea:6f:53:69:ad:db: bb:99:fe:d6:1d:0e:04:3d:18:df:b5:5f:90:c2:55:1c:cc:c0: 8c:46:91:ab:35:3e:c8:f0:81:96:09:97:47:3e:3a:6e:a8:62: 3e:b6:71:e1:a9:9f:e5:5a:2b:1e:49:f6:f3:74:24:34:f0:9b: b0:41:e3:28:38:0c:14:d5:1e:f9:5c:14:a3:fa:8d:3c:d4:87: e0:73:e9:03:40:10:50:50:f4:ba:76:37:59:26:ad:f1:ff:dc: 57:b9:5d:27:13:ca:0d:4f:f8:ad:e9:32:33:b8:22:70:0e:01: 8f:4d:0a:56:b5:14:b2:a7:a1:93:6c:6c:02:eb:e2:32:9d:24: 79:01:c8:60:54:cd:80:8a:0f:61:79:bb:19:05:51:78:2e:8e: 3e:66:ef:72:0d:ee:32:4a:6a:5e:d4:ea:9b:32:a8:d7:c9:d2: ee:2f:b4:d1:82:05:3d:23:55:a9:0d:95:13:a6:3c:43:5a:19: be:0c:2d:75:1d:68:d1:49:3a:82:43:f7:64:67:ba:68:83:25: fa:47:29:4c:f4:a9:e0:5d:6a:ac:e3:a2:c6:22:64:a8:c3:09: 38:2c:d8:a1 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAzEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjg4 Nzk4NURCMTlFNUZEODJGOTYyQjQyMEVDQzBGQzRFRDczMEQwMjAeFw0yNTAyMTAx NDI2NTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZCMjY0MDNDOEE4MkEy NDgwNTVFNUIwOTdCNjdCNTkyNTMwQTI4MUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXPa7k+12n6dSlOLcLsJOLXusDhjj+XuEaNnnsq7JVQAyOJswa gvGs9DhuFjUVDOCLvAzk2ZJKNwOmrNU9EV1S9EbpwtCUcxO/WIogbMV7AhNFvM5n NZZiLtoWWtr5gMXQfFQVwSb9v4xk/2tKoZxLYfKyLae5z8+CBT2xUWTpwPSRtfop UBh161c4p4UyUC4R/TMV3HAO8SMNKeRFhG8LFUrGEfuQWdXZX6r3nUvjKOmoNWGQ EiVo5fUEaSAY9+7eD8MgJLyeKR+K9pXoL7ZGq+XI22v4Cu/dnb+syXWIbwc71xv8 RdoIahgTRK5gY65Bdfn+JVEpEIXCatvQPTvZAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUayZAPIqCokgFXlsJe2e1klMKKB4wHwYDVR0jBBgwFoAUaIeYXbGeX9gvlitC DswPxO1zDQIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNUVkMv YUllWVhiR2VYOWd2bGl0Q0Rzd1B4TzF6RFFJLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9hSWVZWGJHZVg5Z3ZsaXRDRHN3UHhPMXpEUUkuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JU1RWQy9heVpBUElxQ29rZ0ZYbHNKZTJl MWtsTUtLQjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ61e MA0GCSqGSIb3DQEBCwUAA4IBAQC8In3wPK6VnyTzXGnDa5tISbt28a25GgBENkHG Tvbqb1Nprdu7mf7WHQ4EPRjftV+QwlUczMCMRpGrNT7I8IGWCZdHPjpuqGI+tnHh qZ/lWiseSfbzdCQ08JuwQeMoOAwU1R75XBSj+o081Ifgc+kDQBBQUPS6djdZJq3x /9xXuV0nE8oNT/it6TIzuCJwDgGPTQpWtRSyp6GTbGwC6+IynSR5AchgVM2Aig9h ebsZBVF4Lo4+Zu9yDe4ySmpe1OqbMqjXydLuL7TRggU9I1WpDZUTpjxDWhm+DC11 HWjRSTqCQ/dkZ7pogyX6RylM9KngXWqs46LGImSowwk4LNih -----END CERTIFICATE-----Generated at Fri Apr 18 23:40:17 2025 by rpki-client