$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LEEMON/yx-GqAsc8DBL5hnk5uDfrcLVqSo.roa File: yx-GqAsc8DBL5hnk5uDfrcLVqSo.roa (raw, json) Hash identifier: TwQ/ClSmnncR/qm3ndB+OCt3SjQxGbf1ELZoWirmYA4= Subject key identifier: CB:1F:86:A8:0B:1C:F0:30:4B:E6:19:E4:E6:E0:DF:AD:C2:D5:A9:2A Certificate issuer: /CN=0486F1D511D2C22EC95994B123B3A24962C1E327 Certificate serial: 020C Authority key identifier: 04:86:F1:D5:11:D2:C2:2E:C9:59:94:B1:23:B3:A2:49:62:C1:E3:27 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BIbx1RHSwi7JWZSxI7OiSWLB4yc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/yx-GqAsc8DBL5hnk5uDfrcLVqSo.roa Signing time: Mon 10 Feb 2025 14:02:22 +0000 ROA not before: Mon 10 Feb 2025 14:02:22 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9915 IP address blocks: 103.67.160.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/BIbx1RHSwi7JWZSxI7OiSWLB4yc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/BIbx1RHSwi7JWZSxI7OiSWLB4yc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/BIbx1RHSwi7JWZSxI7OiSWLB4yc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 524 (0x20c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0486F1D511D2C22EC95994B123B3A24962C1E327 Validity Not Before: Feb 10 14:02:22 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CB1F86A80B1CF0304BE619E4E6E0DFADC2D5A92A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:87:87:af:3a:0b:79:48:14:53:38:03:5f:c3: 42:68:0a:58:ee:03:9c:ad:ff:a1:4f:2e:39:f5:1f: 7d:6f:0c:f9:ae:ae:93:72:c9:af:a7:8c:59:9d:68: 56:16:69:eb:59:38:35:39:32:a2:e2:fe:21:4e:b9: a6:bf:e1:85:8b:ee:49:db:3d:56:3b:85:f8:92:52: aa:3e:f2:22:37:77:2f:86:99:94:d9:59:79:cf:1e: f7:a7:78:d3:6b:01:2b:c4:dd:c7:5f:c4:3b:04:d1: 48:a4:2e:ea:3b:98:66:99:44:ac:b6:bb:c4:61:56: f3:0c:81:ad:01:16:e2:63:39:f6:51:e2:5a:6e:67: ed:9a:c1:c2:a1:1f:96:a7:b6:14:d4:a8:c5:6d:02: 5d:b0:7e:cd:4d:ec:36:48:28:f8:f2:49:c1:1e:3b: 1f:1b:da:6b:f8:88:f4:fe:ab:04:86:c5:ba:44:cc: 1f:30:4f:24:9a:ce:67:aa:ea:e2:0e:81:0c:a3:2a: e0:31:b8:9a:a9:8f:87:fb:14:c2:68:4a:fa:1d:b2: 60:25:b4:c1:d1:d2:e4:4f:38:a2:6c:ab:ce:05:9d: e7:7e:0d:72:ec:e7:2c:6f:af:62:c6:87:65:6d:45: 25:d3:9d:86:2e:b6:13:de:4b:88:18:a2:50:54:2a: c4:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:1F:86:A8:0B:1C:F0:30:4B:E6:19:E4:E6:E0:DF:AD:C2:D5:A9:2A X509v3 Authority Key Identifier: keyid:04:86:F1:D5:11:D2:C2:2E:C9:59:94:B1:23:B3:A2:49:62:C1:E3:27 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/BIbx1RHSwi7JWZSxI7OiSWLB4yc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BIbx1RHSwi7JWZSxI7OiSWLB4yc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/yx-GqAsc8DBL5hnk5uDfrcLVqSo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.67.160.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:c7:38:78:a9:0d:a5:ea:c2:e2:68:57:59:10:13:05:74:51: 30:6d:23:14:7a:cb:41:97:ff:28:1a:28:2c:61:94:51:48:38: 8f:37:15:bb:12:ea:f7:eb:1e:9b:ff:44:8a:4b:7f:d8:c8:1a: ad:90:9d:78:91:fa:9e:4f:a4:10:3e:b5:15:27:3f:be:b6:6d: 3a:d3:99:f2:8f:90:65:c7:6f:6e:ac:24:f7:05:fa:8c:ea:56: 7c:62:8e:b0:6d:4f:92:92:b1:a9:15:97:a1:c5:a4:e2:d5:ea: be:13:9c:05:21:f6:cc:95:54:11:e0:ba:05:f3:ce:50:c3:14: 96:32:e4:a0:ae:29:64:48:21:3e:b3:c8:ed:8c:be:67:55:f6: e0:6b:ac:fe:93:a4:8c:c2:41:7f:31:0e:28:f9:e2:81:af:dc: b6:b5:5e:f8:04:5e:c1:00:87:7e:1f:a7:45:97:e2:9e:2f:d3: 6d:70:ab:26:e3:52:b9:14:dd:29:03:2f:13:f8:f6:9e:46:99: b3:33:71:a9:04:f9:26:b4:fb:fa:0f:e5:8e:9c:05:9d:40:90: 54:f4:e5:42:bf:04:3c:65:8c:7f:db:a6:79:f0:27:56:38:5d: d9:65:9e:46:d2:68:1a:b0:76:d9:f7:79:f5:09:0d:0b:8e:1c: 3d:73:59:0e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICAgwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDQ4 NkYxRDUxMUQyQzIyRUM5NTk5NEIxMjNCM0EyNDk2MkMxRTMyNzAeFw0yNTAyMTAx NDAyMjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENCMUY4NkE4MEIxQ0Yw MzA0QkU2MTlFNEU2RTBERkFEQzJENUE5MkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXh4evOgt5SBRTOANfw0JoCljuA5yt/6FPLjn1H31vDPmurpNy ya+njFmdaFYWaetZODU5MqLi/iFOuaa/4YWL7knbPVY7hfiSUqo+8iI3dy+GmZTZ WXnPHveneNNrASvE3cdfxDsE0UikLuo7mGaZRKy2u8RhVvMMga0BFuJjOfZR4lpu Z+2awcKhH5anthTUqMVtAl2wfs1N7DZIKPjyScEeOx8b2mv4iPT+qwSGxbpEzB8w TySazmeq6uIOgQyjKuAxuJqpj4f7FMJoSvodsmAltMHR0uRPOKJsq84Fned+DXLs 5yxvr2LGh2VtRSXTnYYuthPeS4gYolBUKsRLAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUyx+GqAsc8DBL5hnk5uDfrcLVqSowHwYDVR0jBBgwFoAUBIbx1RHSwi7JWZSx I7OiSWLB4ycwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTEVFTU9O L0JJYngxUkhTd2k3SldaU3hJN09pU1dMQjR5Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQklieDFSSFN3aTdKV1pTeEk3T2lTV0xCNHljLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvTEVFTU9OL3l4LUdxQXNjOERCTDVobms1 dURmcmNMVnFTby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn Q6AwDQYJKoZIhvcNAQELBQADggEBAI/HOHipDaXqwuJoV1kQEwV0UTBtIxR6y0GX /ygaKCxhlFFIOI83FbsS6vfrHpv/RIpLf9jIGq2QnXiR+p5PpBA+tRUnP762bTrT mfKPkGXHb26sJPcF+ozqVnxijrBtT5KSsakVl6HFpOLV6r4TnAUh9syVVBHgugXz zlDDFJYy5KCuKWRIIT6zyO2MvmdV9uBrrP6TpIzCQX8xDij54oGv3La1XvgEXsEA h34fp0WX4p4v021wqybjUrkU3SkDLxP49p5GmbMzcakE+Sa0+/oP5Y6cBZ1AkFT0 5UK/BDxljH/bpnnwJ1Y4XdllnkbSaBqwdtn3efUJDQuOHD1zWQ4= -----END CERTIFICATE-----Generated at Fri Apr 18 23:51:58 2025 by rpki-client