$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/kVp4R8VZA5dHUawQHwYJ2c3mP7w.roa File: kVp4R8VZA5dHUawQHwYJ2c3mP7w.roa (raw, json) Hash identifier: 3mJ8dW3+XenMk2XTVNqAKxZKa7+TExJaqw4B2ihld2U= Subject key identifier: 91:5A:78:47:C5:59:03:97:47:51:AC:10:1F:06:09:D9:CD:E6:3F:BC Certificate issuer: /CN=2B3B89AD32F3B95B7AF165F4C8A4CD08E754D5AB Certificate serial: 032A Authority key identifier: 2B:3B:89:AD:32:F3:B9:5B:7A:F1:65:F4:C8:A4:CD:08:E7:54:D5:AB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KzuJrTLzuVt68WX0yKTNCOdU1as.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/kVp4R8VZA5dHUawQHwYJ2c3mP7w.roa Signing time: Mon 10 Feb 2025 14:01:53 +0000 ROA not before: Mon 10 Feb 2025 14:01:53 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7483 IP address blocks: 103.175.194.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KzuJrTLzuVt68WX0yKTNCOdU1as.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 810 (0x32a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B3B89AD32F3B95B7AF165F4C8A4CD08E754D5AB Validity Not Before: Feb 10 14:01:53 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=915A7847C55903974751AC101F0609D9CDE63FBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:57:a1:d3:82:4d:d8:b2:d2:97:90:59:27:d6: b6:a1:c2:51:6e:40:c9:56:3b:54:0a:8b:d1:f8:5e: 82:ef:3a:81:09:8b:70:dd:38:1d:1c:de:a7:bb:f2: b7:05:ad:81:66:54:ae:4c:1c:9e:e0:1d:52:8a:51: f8:30:5a:51:76:07:b6:91:99:54:fe:f0:15:c0:a2: f0:d0:8d:ae:8f:9a:83:39:77:62:f3:16:76:b3:98: cc:e5:92:ea:2f:cc:7b:c8:42:10:fb:5f:af:b0:dc: 28:3a:87:26:f9:2f:9a:0f:45:8e:1c:93:bb:dd:78: 78:01:3f:38:bf:20:0e:6d:6f:cd:40:fa:98:5b:4e: 92:ae:46:ca:06:b0:0f:18:f8:1e:a5:b9:d9:5e:ce: 9c:9b:e5:41:fa:cd:ef:32:2b:75:a9:ff:b0:97:3d: 79:fc:7e:0a:88:85:32:3c:39:6c:65:c3:b9:94:5f: 49:e5:02:94:9a:26:84:65:04:20:e3:5c:96:e4:c2: 33:f2:5d:b5:c4:86:13:9d:47:00:20:ae:62:f0:94: 80:3b:19:c8:fb:f3:33:20:24:0c:7f:22:ed:14:17: a1:3c:ac:4b:3c:44:34:98:71:33:5e:c6:cc:6c:96: b4:b9:90:db:3b:f8:c6:b1:97:1c:24:20:f3:c9:bf: 63:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:5A:78:47:C5:59:03:97:47:51:AC:10:1F:06:09:D9:CD:E6:3F:BC X509v3 Authority Key Identifier: keyid:2B:3B:89:AD:32:F3:B9:5B:7A:F1:65:F4:C8:A4:CD:08:E7:54:D5:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KzuJrTLzuVt68WX0yKTNCOdU1as.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/kVp4R8VZA5dHUawQHwYJ2c3mP7w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.175.194.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:d1:bb:01:05:e7:db:69:33:b3:04:76:42:19:1d:1a:c8:95: b8:ad:c6:73:90:ee:d0:c6:38:68:93:ba:91:ed:32:8c:64:0c: 3a:82:d5:1d:bc:3a:98:38:59:0f:75:ff:94:27:f5:c4:11:63: 1e:55:94:0b:4f:fb:03:92:f2:52:48:e7:1e:7c:61:0f:32:33: 11:4b:55:80:b1:23:bf:e9:d5:cc:22:ad:ce:0e:a4:4a:41:d9: 78:52:1b:32:3b:76:94:58:11:a5:99:7c:ce:a7:f6:93:c9:d3: bf:c7:8d:05:a4:51:b0:c3:2e:6a:83:6a:30:0e:e7:ca:6a:a7: c4:e1:ac:0b:8a:d9:a4:00:2b:37:1f:91:90:bb:27:53:e1:a7: f7:85:ea:4e:87:a1:b7:e5:de:99:69:b5:b4:84:af:10:32:60: 1b:ed:d3:55:aa:49:6d:6a:37:e7:56:d1:4d:b1:89:bc:08:bc: 5a:73:1d:f2:82:a2:13:39:27:fd:8c:13:86:28:9e:57:03:e3: 81:92:f5:7a:04:0d:e7:bf:a4:c4:ba:29:71:b2:33:91:9d:dc: 63:0d:40:5d:06:77:38:06:38:df:0f:4c:18:65:9d:c6:d4:88: 71:55:bf:78:f1:cb:b6:6f:e3:c1:ec:2d:34:a9:33:58:45:79: 08:fd:a8:59 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICAyowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIz Qjg5QUQzMkYzQjk1QjdBRjE2NUY0QzhBNENEMDhFNzU0RDVBQjAeFw0yNTAyMTAx NDAxNTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDkxNUE3ODQ3QzU1OTAz OTc0NzUxQUMxMDFGMDYwOUQ5Q0RFNjNGQkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDxV6HTgk3YstKXkFkn1rahwlFuQMlWO1QKi9H4XoLvOoEJi3Dd OB0c3qe78rcFrYFmVK5MHJ7gHVKKUfgwWlF2B7aRmVT+8BXAovDQja6PmoM5d2Lz FnazmMzlkuovzHvIQhD7X6+w3Cg6hyb5L5oPRY4ck7vdeHgBPzi/IA5tb81A+phb TpKuRsoGsA8Y+B6ludlezpyb5UH6ze8yK3Wp/7CXPXn8fgqIhTI8OWxlw7mUX0nl ApSaJoRlBCDjXJbkwjPyXbXEhhOdRwAgrmLwlIA7Gcj78zMgJAx/Iu0UF6E8rEs8 RDSYcTNexsxslrS5kNs7+MaxlxwkIPPJv2PzAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUkVp4R8VZA5dHUawQHwYJ2c3mP7wwHwYDVR0jBBgwFoAUKzuJrTLzuVt68WX0 yKTNCOdU1aswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUFHSUND VUJFL0t6dUpyVEx6dVZ0NjhXWDB5S1ROQ09kVTFhcy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvS3p1SnJUTHp1VnQ2OFdYMHlLVE5DT2RVMWFzLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUFHSUNDVUJFL2tWcDRSOFZaQTVk SFVhd1FId1lKMmMzbVA3dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFnr8IwDQYJKoZIhvcNAQELBQADggEBAA7RuwEF59tpM7MEdkIZHRrIlbit xnOQ7tDGOGiTupHtMoxkDDqC1R28Opg4WQ91/5Qn9cQRYx5VlAtP+wOS8lJI5x58 YQ8yMxFLVYCxI7/p1cwirc4OpEpB2XhSGzI7dpRYEaWZfM6n9pPJ07/HjQWkUbDD LmqDajAO58pqp8ThrAuK2aQAKzcfkZC7J1Php/eF6k6Hobfl3plptbSErxAyYBvt 01WqSW1qN+dW0U2xibwIvFpzHfKCohM5J/2ME4YonlcD44GS9XoEDee/pMS6KXGy M5Gd3GMNQF0GdzgGON8PTBhlncbUiHFVv3jxy7Zv48HsLTSpM1hFeQj9qFk= -----END CERTIFICATE-----Generated at Fri Apr 18 23:56:35 2025 by rpki-client