$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MOMOKA/pCpMyMGeAYSWe3dcKUCLQxD_YZc.roa File: pCpMyMGeAYSWe3dcKUCLQxD_YZc.roa (raw, json) Hash identifier: 1mG9G/P5YkVyNcBMsXOFomqyAFIpxoSbMkfh+BjEzWU= Subject key identifier: A4:2A:4C:C8:C1:9E:01:84:96:7B:77:5C:29:40:8B:43:10:FF:61:97 Certificate issuer: /CN=32D2C54082FCCEBB5BA954EDA20608AA4C633B6E Certificate serial: 02E3 Authority key identifier: 32:D2:C5:40:82:FC:CE:BB:5B:A9:54:ED:A2:06:08:AA:4C:63:3B:6E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MtLFQIL8zrtbqVTtogYIqkxjO24.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MOMOKA/pCpMyMGeAYSWe3dcKUCLQxD_YZc.roa Signing time: Mon 10 Feb 2025 14:02:50 +0000 ROA not before: Mon 10 Feb 2025 14:02:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 208137 IP address blocks: 103.179.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MOMOKA/MtLFQIL8zrtbqVTtogYIqkxjO24.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MOMOKA/MtLFQIL8zrtbqVTtogYIqkxjO24.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/MtLFQIL8zrtbqVTtogYIqkxjO24.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 739 (0x2e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32D2C54082FCCEBB5BA954EDA20608AA4C633B6E Validity Not Before: Feb 10 14:02:50 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A42A4CC8C19E0184967B775C29408B4310FF6197 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:5c:e2:4a:b0:05:06:ed:81:15:2f:5b:20:2f: 5b:a9:9c:de:c4:2a:6b:b7:ba:b7:d6:d3:5a:39:2a: 9d:97:c0:24:7e:0a:78:30:02:2e:51:30:7a:5b:fa: a3:5e:2e:84:89:15:2f:c1:90:cb:a0:dc:06:00:0b: 8e:d8:60:8f:6a:43:7a:97:a1:2a:b0:f7:9d:86:f6: 7e:aa:6e:af:96:1e:83:48:5d:8b:35:c0:fb:37:55: 37:e9:78:f0:47:b8:d8:e2:10:2a:90:17:72:74:1e: 52:b8:ba:83:50:19:1d:10:8d:b6:82:f0:52:41:a7: a1:b5:fe:9a:f2:be:7f:d5:3c:ad:df:0a:be:c9:bb: 7a:4a:b3:c3:b0:c7:be:c6:37:f6:27:dd:3f:2e:84: 68:6c:cc:4b:c5:c4:db:2a:d3:c8:8b:ff:98:1b:d6: 9e:ab:bc:ca:90:b8:90:16:2c:b1:bb:5e:b9:d4:f7: fd:6b:82:c7:e2:ef:fe:7f:37:60:19:ec:24:14:84: 80:10:b8:0a:9b:08:81:ab:be:d2:61:0e:6d:3a:ba: 9f:4d:64:34:fb:af:f0:2a:47:58:7f:6f:4c:8a:47: ad:bb:be:c8:fc:b3:97:49:32:b5:41:02:3a:67:24: 3f:36:cb:b7:50:cb:e1:6a:aa:9c:e8:b7:97:ca:36: e1:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:2A:4C:C8:C1:9E:01:84:96:7B:77:5C:29:40:8B:43:10:FF:61:97 X509v3 Authority Key Identifier: keyid:32:D2:C5:40:82:FC:CE:BB:5B:A9:54:ED:A2:06:08:AA:4C:63:3B:6E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MOMOKA/MtLFQIL8zrtbqVTtogYIqkxjO24.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MtLFQIL8zrtbqVTtogYIqkxjO24.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MOMOKA/pCpMyMGeAYSWe3dcKUCLQxD_YZc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.179.29.0/24 Signature Algorithm: sha256WithRSAEncryption 09:94:8c:fa:10:d8:32:4e:a4:cd:c5:38:b4:d2:c5:db:ff:21: 86:55:f9:8a:a7:9b:4d:d8:85:f6:1d:af:d3:c9:f5:18:2c:3e: b8:18:7e:cb:fe:da:00:cc:85:15:af:71:f9:cd:02:af:d3:0e: 0b:33:35:b5:43:1b:7f:45:89:7e:d4:4f:ac:73:8a:d2:7f:87: cb:89:dd:78:14:c4:80:9a:55:e5:42:49:a3:50:79:8c:6e:fe: 1f:df:46:95:0f:01:90:5f:a9:83:62:e4:05:72:6f:45:b8:f4: bf:fc:57:c1:bd:7e:58:57:9a:5e:74:a9:b6:27:84:5f:5f:36: 39:c1:8e:ff:4c:88:21:63:6b:74:a0:7f:82:c4:ed:a3:23:b1: 65:09:70:49:75:de:ae:5b:f2:8e:ab:23:ac:ed:34:5d:43:76: 8f:12:e7:84:04:ce:4f:14:a5:2c:f5:98:c0:bf:78:78:0d:44: b8:36:67:6f:de:8f:c3:ac:cb:42:5f:a3:56:85:40:61:e8:f8: 8f:cf:2a:cb:f8:f0:a7:87:8e:ce:88:ee:20:18:2c:7d:68:bd: 76:07:0d:0a:2e:91:c1:67:d5:76:5e:53:48:a9:79:80:e1:ab: fc:c9:64:b4:1c:b6:10:50:10:68:cb:1f:b4:04:37:a0:0c:10: 4b:8f:d1:22 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICAuMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzJE MkM1NDA4MkZDQ0VCQjVCQTk1NEVEQTIwNjA4QUE0QzYzM0I2RTAeFw0yNTAyMTAx NDAyNTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE0MkE0Q0M4QzE5RTAx ODQ5NjdCNzc1QzI5NDA4QjQzMTBGRjYxOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNXOJKsAUG7YEVL1sgL1upnN7EKmu3urfW01o5Kp2XwCR+Cngw Ai5RMHpb+qNeLoSJFS/BkMug3AYAC47YYI9qQ3qXoSqw952G9n6qbq+WHoNIXYs1 wPs3VTfpePBHuNjiECqQF3J0HlK4uoNQGR0QjbaC8FJBp6G1/pryvn/VPK3fCr7J u3pKs8Owx77GN/Yn3T8uhGhszEvFxNsq08iL/5gb1p6rvMqQuJAWLLG7XrnU9/1r gsfi7/5/N2AZ7CQUhIAQuAqbCIGrvtJhDm06up9NZDT7r/AqR1h/b0yKR627vsj8 s5dJMrVBAjpnJD82y7dQy+Fqqpzot5fKNuHBAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUpCpMyMGeAYSWe3dcKUCLQxD/YZcwHwYDVR0jBBgwFoAUMtLFQIL8zrtbqVTt ogYIqkxjO24wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTU9NT0tB L010TEZRSUw4enJ0YnFWVHRvZ1lJcWt4ak8yNC5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvTXRMRlFJTDh6cnRicVZUdG9nWUlxa3hqTzI0LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvTU9NT0tBL3BDcE15TUdlQVlTV2UzZGNL VUNMUXhEX1laYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn sx0wDQYJKoZIhvcNAQELBQADggEBAAmUjPoQ2DJOpM3FOLTSxdv/IYZV+Yqnm03Y hfYdr9PJ9RgsPrgYfsv+2gDMhRWvcfnNAq/TDgszNbVDG39FiX7UT6xzitJ/h8uJ 3XgUxICaVeVCSaNQeYxu/h/fRpUPAZBfqYNi5AVyb0W49L/8V8G9flhXml50qbYn hF9fNjnBjv9MiCFja3Sgf4LE7aMjsWUJcEl13q5b8o6rI6ztNF1Ddo8S54QEzk8U pSz1mMC/eHgNRLg2Z2/ej8Osy0Jfo1aFQGHo+I/PKsv48KeHjs6I7iAYLH1ovXYH DQoukcFn1XZeU0ipeYDhq/zJZLQcthBQEGjLH7QEN6AMEEuP0SI= -----END CERTIFICATE-----Generated at Fri Apr 18 23:41:24 2025 by rpki-client