$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/rghOBVn1sJFZ_JILCrjfBmrj3wU.roa File: rghOBVn1sJFZ_JILCrjfBmrj3wU.roa (raw, json) Hash identifier: bDtV0+7wsIOl/c7ovkRxP7Wn690xtw+Ke5M2Vhq83P0= Subject key identifier: AE:08:4E:05:59:F5:B0:91:59:FC:92:0B:0A:B8:DF:06:6A:E3:DF:05 Certificate issuer: /CN=6E181085902F896294602D8B121C1E2E22B58CE7 Certificate serial: 1185 Authority key identifier: 6E:18:10:85:90:2F:89:62:94:60:2D:8B:12:1C:1E:2E:22:B5:8C:E7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bhgQhZAviWKUYC2LEhweLiK1jOc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/rghOBVn1sJFZ_JILCrjfBmrj3wU.roa Signing time: Mon 10 Feb 2025 13:57:18 +0000 ROA not before: Mon 10 Feb 2025 13:57:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 16509 IP address blocks: 103.125.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/bhgQhZAviWKUYC2LEhweLiK1jOc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/bhgQhZAviWKUYC2LEhweLiK1jOc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/bhgQhZAviWKUYC2LEhweLiK1jOc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 17:36:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4485 (0x1185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E181085902F896294602D8B121C1E2E22B58CE7 Validity Not Before: Feb 10 13:57:18 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AE084E0559F5B09159FC920B0AB8DF066AE3DF05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:27:d7:93:8f:2c:d7:8b:d3:c0:52:91:9a:d7: 23:34:18:e2:07:3d:89:aa:ff:d2:94:0c:81:96:4b: a4:2e:14:01:54:37:15:73:d4:a1:bf:3e:3c:64:a8: 06:3b:60:6e:21:9c:b8:ef:b6:c7:45:96:1a:91:e4: a2:dc:61:41:84:1f:16:9b:e2:74:38:9e:f3:4e:05: 96:49:24:35:51:46:ba:05:f4:e2:bd:6d:23:ed:7d: aa:03:92:e1:b4:a1:73:f1:e6:b1:2b:08:e4:1e:a3: d4:a3:32:dd:fd:c5:f1:ab:cc:49:87:c0:de:e8:ce: 27:b2:61:6a:2b:7d:e4:86:61:79:b6:17:73:19:c8: 58:38:74:88:0f:b1:fc:e9:18:00:ed:22:a8:da:0c: 3d:2a:52:41:c2:fb:c8:27:0d:79:45:a8:57:a7:9c: 27:c1:a5:15:c7:3c:3d:ef:88:24:67:a2:d8:f8:fa: e6:f4:5a:83:f9:76:ce:01:68:eb:57:5b:40:50:3b: 06:bb:bf:a2:e8:69:db:33:28:5c:04:e0:68:71:6b: 77:ba:4c:10:cb:56:a1:d1:4c:26:28:a3:3a:f1:01: bf:78:c3:f1:40:1e:e3:d4:d0:e0:41:4c:e1:c5:4a: c2:e5:bf:ff:4a:88:7d:38:d3:5a:f6:16:f1:b7:b4: 65:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:08:4E:05:59:F5:B0:91:59:FC:92:0B:0A:B8:DF:06:6A:E3:DF:05 X509v3 Authority Key Identifier: keyid:6E:18:10:85:90:2F:89:62:94:60:2D:8B:12:1C:1E:2E:22:B5:8C:E7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/bhgQhZAviWKUYC2LEhweLiK1jOc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bhgQhZAviWKUYC2LEhweLiK1jOc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/rghOBVn1sJFZ_JILCrjfBmrj3wU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.125.225.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:06:1b:ad:cf:e1:9a:55:31:b3:17:da:50:0c:0a:ae:cd:a3: 48:13:cd:9c:7f:94:83:2f:34:94:07:92:f1:6b:f2:60:d9:59: 12:20:fb:3d:05:37:fa:67:55:3b:8b:52:01:40:2d:e1:a0:b5: de:b8:12:68:f7:c2:f3:8d:94:63:6c:84:38:7b:04:d7:90:14: e8:38:31:2d:ac:b8:cb:19:45:c2:5e:20:68:1d:4e:bc:ac:20: 57:78:ca:29:e9:18:1a:8a:88:9b:f6:ef:ba:f4:a7:dc:50:92: 8c:23:61:53:c6:da:d4:3b:c7:1f:54:1d:96:a9:fa:80:ac:d8: 9b:ca:91:51:be:16:70:33:61:c1:5f:52:8c:e7:1f:c0:a7:d4: 6c:aa:d7:c1:8e:0c:49:90:e0:ac:fc:f9:9d:ef:86:49:b4:f2: 48:f8:e1:f8:c6:f6:81:0c:0b:15:a9:8f:15:30:12:82:66:e9: f3:e8:ac:11:ee:26:4a:7b:89:24:31:05:f8:3c:3a:4d:dc:e3: 92:13:4b:ca:f5:6e:bb:24:cc:f2:46:81:4b:39:83:bd:28:2c: 89:bf:31:b4:16:52:72:ec:47:91:f7:4e:ea:84:51:19:23:9c: 5a:97:c7:38:c4:3f:d7:ee:13:e2:50:84:88:eb:ee:1f:3d:cc: f9:b2:f9:b5 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEYUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkUx ODEwODU5MDJGODk2Mjk0NjAyRDhCMTIxQzFFMkUyMkI1OENFNzAeFw0yNTAyMTAx MzU3MThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFFMDg0RTA1NTlGNUIw OTE1OUZDOTIwQjBBQjhERjA2NkFFM0RGMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDiJ9eTjyzXi9PAUpGa1yM0GOIHPYmq/9KUDIGWS6QuFAFUNxVz 1KG/PjxkqAY7YG4hnLjvtsdFlhqR5KLcYUGEHxab4nQ4nvNOBZZJJDVRRroF9OK9 bSPtfaoDkuG0oXPx5rErCOQeo9SjMt39xfGrzEmHwN7ozieyYWorfeSGYXm2F3MZ yFg4dIgPsfzpGADtIqjaDD0qUkHC+8gnDXlFqFennCfBpRXHPD3viCRnotj4+ub0 WoP5ds4BaOtXW0BQOwa7v6LoadszKFwE4Ghxa3e6TBDLVqHRTCYoozrxAb94w/FA HuPU0OBBTOHFSsLlv/9KiH0401r2FvG3tGVhAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUrghOBVn1sJFZ/JILCrjfBmrj3wUwHwYDVR0jBBgwFoAUbhgQhZAviWKUYC2L EhweLiK1jOcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUxZVElD Uy9iaGdRaFpBdmlXS1VZQzJMRWh3ZUxpSzFqT2MuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2JoZ1FoWkF2aVdLVVlDMkxFaHdlTGlLMWpPYy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL01MWVRJQ1MvcmdoT0JWbjFzSkZaX0pJ TENyamZCbXJqM3dVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGd94TANBgkqhkiG9w0BAQsFAAOCAQEADAYbrc/hmlUxsxfaUAwKrs2jSBPNnH+U gy80lAeS8WvyYNlZEiD7PQU3+mdVO4tSAUAt4aC13rgSaPfC842UY2yEOHsE15AU 6DgxLay4yxlFwl4gaB1OvKwgV3jKKekYGoqIm/bvuvSn3FCSjCNhU8ba1DvHH1Qd lqn6gKzYm8qRUb4WcDNhwV9SjOcfwKfUbKrXwY4MSZDgrPz5ne+GSbTySPjh+Mb2 gQwLFamPFTASgmbp8+isEe4mSnuJJDEF+Dw6TdzjkhNLyvVuuyTM8kaBSzmDvSgs ib8xtBZScuxHkfdO6oRRGSOcWpfHOMQ/1+4T4lCEiOvuHz3M+bL5tQ== -----END CERTIFICATE-----Generated at Sat Apr 5 14:08:50 2025 by rpki-client