$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LIBO/5LqqS4C5poUmdpGs_macdZQ229Y.roa File: 5LqqS4C5poUmdpGs_macdZQ229Y.roa (raw, json) Hash identifier: qzwgOZa0Sehf3KN6a/Mw4ZxJuX306iF0ZzzBLl9mMk4= Subject key identifier: E4:BA:AA:4B:80:B9:A6:85:26:76:91:AC:FE:66:9C:75:94:36:DB:D6 Certificate issuer: /CN=6D0EDF410C499A7FC419BB4BB09219673E74614B Certificate serial: 0193 Authority key identifier: 6D:0E:DF:41:0C:49:9A:7F:C4:19:BB:4B:B0:92:19:67:3E:74:61:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bQ7fQQxJmn_EGbtLsJIZZz50YUs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIBO/5LqqS4C5poUmdpGs_macdZQ229Y.roa Signing time: Mon 10 Feb 2025 13:42:24 +0000 ROA not before: Mon 10 Feb 2025 13:42:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131149 IP address blocks: 103.237.48.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIBO/bQ7fQQxJmn_EGbtLsJIZZz50YUs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LIBO/bQ7fQQxJmn_EGbtLsJIZZz50YUs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/bQ7fQQxJmn_EGbtLsJIZZz50YUs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 403 (0x193) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D0EDF410C499A7FC419BB4BB09219673E74614B Validity Not Before: Feb 10 13:42:24 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E4BAAA4B80B9A685267691ACFE669C759436DBD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:99:71:51:70:23:d4:03:d0:c6:5a:db:e0:7f: b5:44:3b:b2:96:c3:e8:a4:37:37:50:6a:13:2e:aa: de:7a:6b:30:a0:99:32:6b:7a:30:a4:43:a1:66:dd: 74:92:81:9e:e4:af:a1:9a:49:92:a2:02:5b:6b:2a: 24:21:c5:18:ad:fe:d9:3a:24:1d:26:4c:aa:5c:07: f3:65:98:26:1e:44:f0:d6:94:b0:0a:fe:7c:6a:f7: e7:5c:bb:3e:73:41:ae:e9:cd:26:77:f2:2c:36:ba: 27:d6:c2:be:a5:84:87:fe:16:07:4e:bc:71:82:d7: 2d:f6:dc:ff:47:24:fa:ee:8f:ba:ad:94:29:d7:68: 43:19:6d:81:4d:4d:44:58:44:0c:c3:57:f0:bc:31: 8f:3a:24:15:27:f9:d1:c0:d8:02:34:2c:f8:16:3a: d4:7c:b2:0d:b3:b9:44:18:c9:d9:2f:03:31:b0:9b: f3:1a:5b:eb:51:d1:62:94:41:16:0a:7f:9c:dc:0f: 97:e1:42:29:d9:fd:e3:68:bb:d1:1b:c0:fc:05:aa: b3:f5:78:47:c2:e0:1a:da:e1:ba:03:28:b5:17:69: d8:d6:8c:04:a2:d1:4d:19:84:17:aa:a7:78:13:0e: 93:88:a7:c3:50:e8:b1:4f:28:43:0f:dd:18:7d:ff: 34:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:BA:AA:4B:80:B9:A6:85:26:76:91:AC:FE:66:9C:75:94:36:DB:D6 X509v3 Authority Key Identifier: keyid:6D:0E:DF:41:0C:49:9A:7F:C4:19:BB:4B:B0:92:19:67:3E:74:61:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIBO/bQ7fQQxJmn_EGbtLsJIZZz50YUs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bQ7fQQxJmn_EGbtLsJIZZz50YUs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIBO/5LqqS4C5poUmdpGs_macdZQ229Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.237.48.0/23 Signature Algorithm: sha256WithRSAEncryption 0b:a7:5e:78:81:70:7b:45:e1:07:7e:2e:53:ef:5a:cd:a5:ba: f1:90:5e:bf:69:70:a4:25:01:01:92:f8:83:54:9d:86:75:2a: 50:44:a4:e4:42:59:4b:bc:a7:90:ea:64:63:25:8a:3e:84:1f: 98:ca:88:33:d9:7b:28:83:d0:47:0d:b6:42:6b:2d:03:4d:27: fb:20:01:b4:7c:ff:9d:20:75:4a:2c:7a:0f:47:95:8f:a0:c7: 3c:a5:d1:5a:f3:5e:df:39:30:c7:c2:93:cb:cd:91:24:36:4e: 93:de:5f:75:bc:26:75:52:fa:1a:36:6b:f0:86:8c:53:07:14: 9e:4e:97:4a:9d:0e:7e:82:c9:26:80:bd:8c:55:45:a5:00:fe: 2e:6a:ba:81:c9:bf:81:71:e2:e4:ab:e8:a2:d9:ec:f5:8f:1a: d3:c1:88:72:cc:e2:f1:d3:dd:74:8c:26:c1:67:6c:bf:ea:0c: e2:14:4f:51:f8:40:c3:98:af:0a:48:f4:14:90:33:6d:f4:bd: ef:c7:ef:1d:4b:2c:f5:bd:6b:bb:46:68:58:c1:f7:e0:15:20: c6:b1:d4:32:6a:91:fc:95:40:56:66:62:b1:b9:e5:96:13:e5: 8b:b6:a8:26:1b:08:43:a4:0f:3f:f8:64:1a:6a:d0:f2:6f:3a: 16:63:e4:a4 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICAZMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkQw RURGNDEwQzQ5OUE3RkM0MTlCQjRCQjA5MjE5NjczRTc0NjE0QjAeFw0yNTAyMTAx MzQyMjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU0QkFBQTRCODBCOUE2 ODUyNjc2OTFBQ0ZFNjY5Qzc1OTQzNkRCRDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHmXFRcCPUA9DGWtvgf7VEO7KWw+ikNzdQahMuqt56azCgmTJr ejCkQ6Fm3XSSgZ7kr6GaSZKiAltrKiQhxRit/tk6JB0mTKpcB/NlmCYeRPDWlLAK /nxq9+dcuz5zQa7pzSZ38iw2uifWwr6lhIf+FgdOvHGC1y323P9HJPruj7qtlCnX aEMZbYFNTURYRAzDV/C8MY86JBUn+dHA2AI0LPgWOtR8sg2zuUQYydkvAzGwm/Ma W+tR0WKUQRYKf5zcD5fhQinZ/eNou9EbwPwFqrP1eEfC4Bra4boDKLUXadjWjASi 0U0ZhBeqp3gTDpOIp8NQ6LFPKEMP3Rh9/zSbAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU5LqqS4C5poUmdpGs/macdZQ229YwHwYDVR0jBBgwFoAUbQ7fQQxJmn/EGbtL sJIZZz50YUswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTElCTy9i UTdmUVF4Sm1uX0VHYnRMc0pJWlp6NTBZVXMuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2JRN2ZRUXhKbW5fRUdidExzSklaWno1MFlVcy5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0xJQk8vNUxxcVM0QzVwb1VtZHBHc19tYWNk WlEyMjlZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWftMDAN BgkqhkiG9w0BAQsFAAOCAQEAC6deeIFwe0XhB34uU+9azaW68ZBev2lwpCUBAZL4 g1SdhnUqUESk5EJZS7ynkOpkYyWKPoQfmMqIM9l7KIPQRw22QmstA00n+yABtHz/ nSB1Six6D0eVj6DHPKXRWvNe3zkwx8KTy82RJDZOk95fdbwmdVL6GjZr8IaMUwcU nk6XSp0OfoLJJoC9jFVFpQD+Lmq6gcm/gXHi5Kvootns9Y8a08GIcszi8dPddIwm wWdsv+oM4hRPUfhAw5ivCkj0FJAzbfS978fvHUss9b1ru0ZoWMH34BUgxrHUMmqR /JVAVmZisbnllhPli7aoJhsIQ6QPP/hkGmrQ8m86FmPkpA== -----END CERTIFICATE-----Generated at Fri Apr 18 23:58:38 2025 by rpki-client