$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NSS/hqA4gxpRMv_lTtCLjeN_iWsfyJM.roa File: hqA4gxpRMv_lTtCLjeN_iWsfyJM.roa (raw, json) Hash identifier: NtUcBNzA5nl1kq2FO803t55xtwXKpzf3VAQGxgxnn+M= Subject key identifier: 86:A0:38:83:1A:51:32:FF:E5:4E:D0:8B:8D:E3:7F:89:6B:1F:C8:93 Certificate issuer: /CN=7957076E29BFC1648EFF71A398BAAC4A9E886820 Certificate serial: 0C80 Authority key identifier: 79:57:07:6E:29:BF:C1:64:8E:FF:71:A3:98:BA:AC:4A:9E:88:68:20 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/eVcHbim_wWSO_3GjmLqsSp6IaCA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NSS/hqA4gxpRMv_lTtCLjeN_iWsfyJM.roa Signing time: Mon 10 Feb 2025 14:31:56 +0000 ROA not before: Mon 10 Feb 2025 14:31:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131626 IP address blocks: 103.118.24.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NSS/eVcHbim_wWSO_3GjmLqsSp6IaCA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NSS/eVcHbim_wWSO_3GjmLqsSp6IaCA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/eVcHbim_wWSO_3GjmLqsSp6IaCA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3200 (0xc80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7957076E29BFC1648EFF71A398BAAC4A9E886820 Validity Not Before: Feb 10 14:31:56 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=86A038831A5132FFE54ED08B8DE37F896B1FC893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b7:6c:99:db:16:7d:6d:50:00:e3:8f:34:b5: 33:c9:0a:52:f6:98:86:1d:ce:e8:9b:53:6d:e6:fe: a6:0a:b8:e9:d8:ac:c5:55:1d:84:da:86:b4:e0:38: 02:3d:58:86:79:22:3b:61:89:67:0a:b5:73:2e:40: 82:15:f6:58:c4:11:43:84:35:1c:03:a3:04:86:2d: 46:54:b1:82:d5:16:d5:de:00:90:c0:64:d3:37:f1: b2:f4:fb:4a:f3:24:62:0d:22:58:55:aa:a9:9f:c9: ec:53:8e:17:67:80:16:9d:1b:b5:bf:3a:9c:68:47: 64:e1:64:29:47:d6:6c:20:c4:bc:cb:ea:75:7e:6d: e8:47:7f:ec:1d:62:29:8f:06:b8:c5:cf:c1:6d:f8: 85:e0:3e:af:76:42:80:be:71:39:1c:64:a9:dd:2d: 42:42:32:ae:e1:50:ea:73:8b:10:0b:06:99:63:c8: 3d:b1:23:a4:c8:bd:be:fa:e2:71:3c:d6:60:e0:dd: f9:50:b7:49:34:75:8a:08:05:a6:9b:3b:0a:0d:0f: 61:a2:55:6b:c1:4a:c1:63:61:65:e7:1c:70:78:23: a4:a9:49:38:35:f0:2f:9c:1b:76:c3:57:68:6a:35: 7a:80:46:f9:ce:32:c7:e1:d6:85:52:fb:96:8d:18: 61:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:A0:38:83:1A:51:32:FF:E5:4E:D0:8B:8D:E3:7F:89:6B:1F:C8:93 X509v3 Authority Key Identifier: keyid:79:57:07:6E:29:BF:C1:64:8E:FF:71:A3:98:BA:AC:4A:9E:88:68:20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NSS/eVcHbim_wWSO_3GjmLqsSp6IaCA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/eVcHbim_wWSO_3GjmLqsSp6IaCA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NSS/hqA4gxpRMv_lTtCLjeN_iWsfyJM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.118.24.0/22 Signature Algorithm: sha256WithRSAEncryption 50:79:9b:89:db:2a:f1:95:de:d6:d8:e9:34:b7:2a:78:85:c3: c0:a3:ca:df:e8:7f:59:fd:ca:02:89:12:f5:c9:47:64:f6:60: 9a:8c:be:cc:f2:a4:d7:2e:6a:34:8b:6a:da:ab:31:87:0e:4b: e8:55:ff:ca:fe:a8:57:2a:57:3e:71:4f:a8:2f:1c:d9:87:bc: 8e:bb:93:c4:82:4c:42:75:22:a1:9b:fd:1b:05:b5:a8:b7:d5: 50:0f:61:92:60:56:ea:19:87:0a:29:77:0e:27:b3:e0:c8:cb: 58:28:72:1e:31:3a:35:ec:8f:32:22:17:93:18:5f:f8:4c:4b: 59:c7:ca:d6:7b:0e:d7:85:45:30:f0:b9:45:e4:70:f7:be:44: 28:de:f2:71:d8:7b:8b:4e:9f:71:b2:af:0f:55:4b:08:ed:c3: 4e:42:57:14:40:0d:87:9c:27:29:e3:d7:9e:7c:d9:90:00:6f: 73:be:fd:3d:8d:c1:09:28:cf:e6:a5:15:45:61:23:97:6c:2c: 06:d6:e1:14:bf:64:29:18:12:72:91:b9:c2:12:36:9a:dc:95: 10:3b:8d:27:b3:12:4b:d9:c5:27:ec:4f:02:dc:74:a1:de:b8: d0:78:b1:25:fb:a8:73:72:0d:7d:c9:9a:13:e0:46:28:ac:87: 15:d0:58:e5 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDIAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzk1 NzA3NkUyOUJGQzE2NDhFRkY3MUEzOThCQUFDNEE5RTg4NjgyMDAeFw0yNTAyMTAx NDMxNTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg2QTAzODgzMUE1MTMy RkZFNTRFRDA4QjhERTM3Rjg5NkIxRkM4OTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9t2yZ2xZ9bVAA4480tTPJClL2mIYdzuibU23m/qYKuOnYrMVV HYTahrTgOAI9WIZ5IjthiWcKtXMuQIIV9ljEEUOENRwDowSGLUZUsYLVFtXeAJDA ZNM38bL0+0rzJGINIlhVqqmfyexTjhdngBadG7W/OpxoR2ThZClH1mwgxLzL6nV+ behHf+wdYimPBrjFz8Ft+IXgPq92QoC+cTkcZKndLUJCMq7hUOpzixALBpljyD2x I6TIvb764nE81mDg3flQt0k0dYoIBaabOwoND2GiVWvBSsFjYWXnHHB4I6SpSTg1 8C+cG3bDV2hqNXqARvnOMsfh1oVS+5aNGGEJAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUhqA4gxpRMv/lTtCLjeN/iWsfyJMwHwYDVR0jBBgwFoAUeVcHbim/wWSO/3Gj mLqsSp6IaCAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTlNTL2VW Y0hiaW1fd1dTT18zR2ptTHFzU3A2SWFDQS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZVZjSGJpbV93V1NPXzNHam1McXNTcDZJYUNBLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvTlNTL2hxQTRneHBSTXZfbFR0Q0xqZU5faVdz ZnlKTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJndhgwDQYJ KoZIhvcNAQELBQADggEBAFB5m4nbKvGV3tbY6TS3KniFw8Cjyt/of1n9ygKJEvXJ R2T2YJqMvszypNcuajSLatqrMYcOS+hV/8r+qFcqVz5xT6gvHNmHvI67k8SCTEJ1 IqGb/RsFtai31VAPYZJgVuoZhwopdw4ns+DIy1goch4xOjXsjzIiF5MYX/hMS1nH ytZ7DteFRTDwuUXkcPe+RCje8nHYe4tOn3Gyrw9VSwjtw05CVxRADYecJynj1558 2ZAAb3O+/T2NwQkoz+alFUVhI5dsLAbW4RS/ZCkYEnKRucISNprclRA7jSezEkvZ xSfsTwLcdKHeuNB4sSX7qHNyDX3JmhPgRiishxXQWOU= -----END CERTIFICATE-----Generated at Fri Apr 18 23:46:51 2025 by rpki-client