$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/hnmeqck3ROeoHtqqdr3dBQD-6TA.roa File: hnmeqck3ROeoHtqqdr3dBQD-6TA.roa (raw, json) Hash identifier: e5BK8b9IqqrWuw3FClQj5CF+DLw0fzPXx5Vg/x65BUA= Subject key identifier: 86:79:9E:A9:C9:37:44:E7:A8:1E:DA:AA:76:BD:DD:05:00:FE:E9:30 Certificate issuer: /CN=52F9A727317A768DD89403B0D99CAAFA0BF7291F Certificate serial: 02A6 Authority key identifier: 52:F9:A7:27:31:7A:76:8D:D8:94:03:B0:D9:9C:AA:FA:0B:F7:29:1F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UvmnJzF6do3YlAOw2Zyq-gv3KR8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/hnmeqck3ROeoHtqqdr3dBQD-6TA.roa Signing time: Mon 10 Feb 2025 13:58:33 +0000 ROA not before: Mon 10 Feb 2025 13:58:33 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7483 IP address blocks: 103.188.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/UvmnJzF6do3YlAOw2Zyq-gv3KR8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/UvmnJzF6do3YlAOw2Zyq-gv3KR8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/UvmnJzF6do3YlAOw2Zyq-gv3KR8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 678 (0x2a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52F9A727317A768DD89403B0D99CAAFA0BF7291F Validity Not Before: Feb 10 13:58:33 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=86799EA9C93744E7A81EDAAA76BDDD0500FEE930 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4a:e2:2e:8d:48:e1:85:c2:c8:76:59:f3:09: 1c:c8:9b:39:e3:f7:83:b0:4e:24:44:db:a0:6c:4d: 0e:85:bd:14:ce:00:5c:e8:9a:38:03:05:6b:12:6b: 56:c0:15:d1:0a:d5:f0:34:be:16:c4:3e:89:0e:6d: 0c:71:e7:b4:6c:3f:b1:a1:bc:b8:0c:1d:ec:42:6a: 07:cd:5e:76:02:b7:d6:4b:4b:06:38:73:ca:8f:20: 0e:55:ae:a9:18:7c:7f:35:2a:ed:d3:7d:60:19:19: ef:b2:d3:ad:38:b3:7d:da:4b:a2:a7:fc:1c:57:64: 56:80:d5:6e:d3:33:d4:b8:90:a4:29:9a:ec:d3:a3: ea:4c:62:c7:69:04:52:ba:30:91:f3:3b:15:7e:1a: a6:78:a5:89:45:15:70:1c:96:8a:a9:e7:fc:dc:67: fd:a4:8a:b5:e8:e1:3a:62:b9:c7:e8:d3:d1:b0:57: 6b:85:31:cb:53:c6:c8:e6:3a:59:85:85:e3:a8:f7: 88:64:01:e2:b3:9f:6d:7f:f1:30:71:81:ce:fa:82: eb:fb:5e:b2:6e:23:4e:c1:d4:01:bd:78:bf:c4:d0: 5c:c9:b3:12:78:e4:ac:ae:91:ad:8b:c5:65:8d:a6: 4b:e9:1a:67:18:51:7e:b0:15:75:e0:fa:9e:44:1f: d6:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:79:9E:A9:C9:37:44:E7:A8:1E:DA:AA:76:BD:DD:05:00:FE:E9:30 X509v3 Authority Key Identifier: keyid:52:F9:A7:27:31:7A:76:8D:D8:94:03:B0:D9:9C:AA:FA:0B:F7:29:1F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/UvmnJzF6do3YlAOw2Zyq-gv3KR8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UvmnJzF6do3YlAOw2Zyq-gv3KR8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/hnmeqck3ROeoHtqqdr3dBQD-6TA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.188.120.0/23 Signature Algorithm: sha256WithRSAEncryption 65:e1:f5:07:c2:43:de:44:3e:29:bf:6a:03:74:fa:08:84:c5: f5:ec:0e:65:de:4f:a2:5d:7a:11:f1:98:e2:16:dc:9f:80:b5: 1e:41:b0:44:85:d3:b9:41:75:d5:17:7b:3e:fb:15:a8:4b:9b: a0:b3:22:a0:3c:9c:7f:db:09:fe:d7:65:9b:b6:b7:b9:de:f0: 50:a0:09:9d:fa:9c:10:b2:1b:6d:11:29:7d:c6:62:d5:10:83: 5d:42:d6:96:88:ce:af:1d:12:33:42:6d:64:1d:a7:35:47:c9: ac:32:89:61:db:bf:7f:b9:39:05:e4:c4:c8:c4:58:41:5b:3e: 20:80:c2:50:b5:40:2d:be:d0:2e:5e:25:b7:46:49:63:8e:cf: dd:71:70:d6:75:2f:3a:71:e5:64:3d:29:8f:99:26:a3:c0:b0: 05:df:07:f8:38:12:7c:b5:2d:7f:d3:3b:e2:c8:71:1c:68:52: 68:ae:06:ab:53:d2:fb:d8:7c:36:e1:1a:40:a7:72:aa:6b:6e: 8f:6d:51:1d:5c:9d:80:19:77:0c:78:d9:aa:1c:40:83:fd:58: 60:9b:e2:ea:f5:01:57:27:f7:4b:92:33:f7:5e:2c:a1:15:65: 25:98:72:4a:5c:f8:92:7f:82:25:fd:99:1b:79:53:37:a5:f3: be:e7:08:66 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICAqYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTJG OUE3MjczMTdBNzY4REQ4OTQwM0IwRDk5Q0FBRkEwQkY3MjkxRjAeFw0yNTAyMTAx MzU4MzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg2Nzk5RUE5QzkzNzQ0 RTdBODFFREFBQTc2QkRERDA1MDBGRUU5MzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHSuIujUjhhcLIdlnzCRzImznj94OwTiRE26BsTQ6FvRTOAFzo mjgDBWsSa1bAFdEK1fA0vhbEPokObQxx57RsP7GhvLgMHexCagfNXnYCt9ZLSwY4 c8qPIA5VrqkYfH81Ku3TfWAZGe+y0604s33aS6Kn/BxXZFaA1W7TM9S4kKQpmuzT o+pMYsdpBFK6MJHzOxV+GqZ4pYlFFXAcloqp5/zcZ/2kirXo4Tpiucfo09GwV2uF MctTxsjmOlmFheOo94hkAeKzn21/8TBxgc76guv7XrJuI07B1AG9eL/E0FzJsxJ4 5Kyuka2LxWWNpkvpGmcYUX6wFXXg+p5EH9aVAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUhnmeqck3ROeoHtqqdr3dBQD+6TAwHwYDVR0jBBgwFoAUUvmnJzF6do3YlAOw 2Zyq+gv3KR8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUFJRkVO Ry9Vdm1uSnpGNmRvM1lsQU93Mlp5cS1ndjNLUjguY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1V2bW5KekY2ZG8zWWxBT3cyWnlxLWd2M0tSOC5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL01BSUZFTkcvaG5tZXFjazNST2VvSHRx cWRyM2RCUUQtNlRBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWe8eDANBgkqhkiG9w0BAQsFAAOCAQEAZeH1B8JD3kQ+Kb9qA3T6CITF9ewOZd5P ol16EfGY4hbcn4C1HkGwRIXTuUF11Rd7PvsVqEuboLMioDycf9sJ/tdlm7a3ud7w UKAJnfqcELIbbREpfcZi1RCDXULWlojOrx0SM0JtZB2nNUfJrDKJYdu/f7k5BeTE yMRYQVs+IIDCULVALb7QLl4lt0ZJY47P3XFw1nUvOnHlZD0pj5kmo8CwBd8H+DgS fLUtf9M74shxHGhSaK4Gq1PS+9h8NuEaQKdyqmtuj21RHVydgBl3DHjZqhxAg/1Y YJvi6vUBVyf3S5Iz914soRVlJZhySlz4kn+CJf2ZG3lTN6XzvucIZg== -----END CERTIFICATE-----Generated at Fri Apr 18 23:44:45 2025 by rpki-client