$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/cPXxuhOdvwQPXXbR1Wv8iPc55Kg.roa File: cPXxuhOdvwQPXXbR1Wv8iPc55Kg.roa (raw, json) Hash identifier: 4AHCu1yQuQh+Dm5YkasjNoRstu+XKu7pAnxZv4dfcwU= Subject key identifier: 70:F5:F1:BA:13:9D:BF:04:0F:5D:76:D1:D5:6B:FC:88:F7:39:E4:A8 Certificate issuer: /CN=602CBCE32DD76D0BB39F5A706324248869119435 Certificate serial: 0C96 Authority key identifier: 60:2C:BC:E3:2D:D7:6D:0B:B3:9F:5A:70:63:24:24:88:69:11:94:35 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/cPXxuhOdvwQPXXbR1Wv8iPc55Kg.roa Signing time: Mon 10 Feb 2025 14:16:37 +0000 ROA not before: Mon 10 Feb 2025 14:16:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131587 IP address blocks: 103.228.216.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3222 (0xc96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=602CBCE32DD76D0BB39F5A706324248869119435 Validity Not Before: Feb 10 14:16:37 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=70F5F1BA139DBF040F5D76D1D56BFC88F739E4A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b7:5f:f9:4a:60:dd:21:d5:d1:49:a4:18:c6: 83:af:48:5b:a5:09:42:e2:8c:d9:4b:a6:a6:10:03: bd:f2:d4:a4:ba:c8:03:75:0e:bf:93:ca:a9:77:ef: 11:d3:95:9d:57:51:71:6c:e3:b9:10:e7:10:91:05: 4c:49:2e:2c:d4:41:64:6e:1d:50:c0:61:2b:0f:f1: c1:61:42:62:39:9f:b0:cd:30:f7:1b:8d:c4:a4:8d: 41:5f:a4:fd:45:4f:6b:77:2a:48:36:e8:0c:58:de: 5a:2a:a4:dc:f6:31:0e:f0:55:6d:b8:cf:f3:0d:9a: 1e:e6:c3:a2:92:f7:b4:9d:96:82:63:07:a6:ba:80: 55:42:98:58:f0:7e:fd:a2:14:c4:d2:58:a5:49:6c: ab:31:a2:8f:9c:f2:be:ca:1e:b1:42:a5:fa:13:75: b4:39:d5:04:70:4d:21:cf:63:10:f6:4e:1e:34:cf: 3f:2a:b4:90:df:1f:e5:fa:d3:a1:04:0a:4d:ba:62: 16:f4:6b:66:eb:b0:f5:48:3a:9d:84:02:70:fe:17: a2:b7:f5:80:5b:c7:ba:8c:19:c8:b8:27:a7:5d:95: fb:09:b1:4f:9d:13:3a:b3:4e:e9:71:b9:d5:f4:c6: e6:2a:a6:3d:9c:13:2f:4b:c3:fc:06:43:25:74:61: f9:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:F5:F1:BA:13:9D:BF:04:0F:5D:76:D1:D5:6B:FC:88:F7:39:E4:A8 X509v3 Authority Key Identifier: keyid:60:2C:BC:E3:2D:D7:6D:0B:B3:9F:5A:70:63:24:24:88:69:11:94:35 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/cPXxuhOdvwQPXXbR1Wv8iPc55Kg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.228.216.0/22 Signature Algorithm: sha256WithRSAEncryption 61:9a:06:13:03:e4:3c:12:db:a6:cb:e1:34:f8:70:79:95:37: c4:d5:70:b6:2f:4a:43:70:9a:9a:fa:66:e4:f1:47:33:f0:13: e5:86:18:cd:12:c8:e5:bd:69:38:72:9c:f7:a2:f7:b6:a0:07: b5:34:8a:71:7d:d2:5c:87:9e:de:f6:bd:8c:f7:29:ca:41:55: 37:d8:6d:60:dd:7e:e7:90:e8:a2:7b:8a:87:3d:c1:4f:fe:a0: 16:e8:93:d4:6e:e0:21:95:e7:f4:b7:a2:6f:0c:65:a0:9f:65: 30:96:ce:06:4e:96:61:ab:0c:af:8d:66:b1:1c:e7:03:3f:51: 27:50:9f:ce:50:12:78:0a:e9:13:32:8d:3b:54:12:cf:c1:3f: 32:2f:b4:3d:8f:ef:12:4f:bc:d5:f9:4a:59:f5:5f:f3:e1:16: 2e:29:f1:3b:11:dc:46:df:27:a8:8d:e3:72:80:2a:b2:97:c2: 0e:0b:ca:93:b7:e3:dd:56:89:32:e8:ae:78:ab:69:f2:d7:47: 53:5f:48:11:e9:3d:62:58:82:b4:a9:fe:02:6e:80:56:1e:67: 33:93:80:23:0e:e9:ea:f8:22:ed:f9:a8:b8:63:e7:38:46:92: 2e:63:0f:df:ce:9d:a0:44:3d:30:8c:5b:8f:b1:b7:ad:3f:42: de:44:72:ac -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDJYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjAy Q0JDRTMyREQ3NkQwQkIzOUY1QTcwNjMyNDI0ODg2OTExOTQzNTAeFw0yNTAyMTAx NDE2MzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDcwRjVGMUJBMTM5REJG MDQwRjVENzZEMUQ1NkJGQzg4RjczOUU0QTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNt1/5SmDdIdXRSaQYxoOvSFulCULijNlLpqYQA73y1KS6yAN1 Dr+Tyql37xHTlZ1XUXFs47kQ5xCRBUxJLizUQWRuHVDAYSsP8cFhQmI5n7DNMPcb jcSkjUFfpP1FT2t3Kkg26AxY3loqpNz2MQ7wVW24z/MNmh7mw6KS97SdloJjB6a6 gFVCmFjwfv2iFMTSWKVJbKsxoo+c8r7KHrFCpfoTdbQ51QRwTSHPYxD2Th40zz8q tJDfH+X606EECk26Yhb0a2brsPVIOp2EAnD+F6K39YBbx7qMGci4J6ddlfsJsU+d EzqzTulxudX0xuYqpj2cEy9Lw/wGQyV0YfkPAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUcPXxuhOdvwQPXXbR1Wv8iPc55KgwHwYDVR0jBBgwFoAUYCy84y3XbQuzn1pw YyQkiGkRlDUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUVHQUlD QkMvWUN5ODR5M1hiUXV6bjFwd1l5UWtpR2tSbERVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9ZQ3k4NHkzWGJRdXpuMXB3WXlRa2lHa1JsRFUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NRUdBSUNCQy9jUFh4dWhPZHZ3UVBY WGJSMVd2OGlQYzU1S2cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ+TYMA0GCSqGSIb3DQEBCwUAA4IBAQBhmgYTA+Q8Etumy+E0+HB5lTfE1XC2 L0pDcJqa+mbk8Ucz8BPlhhjNEsjlvWk4cpz3ove2oAe1NIpxfdJch57e9r2M9ynK QVU32G1g3X7nkOiie4qHPcFP/qAW6JPUbuAhlef0t6JvDGWgn2Uwls4GTpZhqwyv jWaxHOcDP1EnUJ/OUBJ4CukTMo07VBLPwT8yL7Q9j+8ST7zV+UpZ9V/z4RYuKfE7 EdxG3yeojeNygCqyl8IOC8qTt+PdVoky6K54q2ny10dTX0gR6T1iWIK0qf4CboBW Hmczk4AjDunq+CLt+ai4Y+c4RpIuYw/fzp2gRD0wjFuPsbetP0LeRHKs -----END CERTIFICATE-----Generated at Fri Apr 18 23:46:44 2025 by rpki-client