$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NSSIT/EIUOAppEtzu-8IhyeeJh0g5LMqU.roa File: EIUOAppEtzu-8IhyeeJh0g5LMqU.roa (raw, json) Hash identifier: V2JzU3U5f4OoarF+sfDywbm5BNEOgLAssLPeklJen90= Subject key identifier: 10:85:0E:02:9A:44:B7:3B:BE:F0:88:72:79:E2:61:D2:0E:4B:32:A5 Certificate issuer: /CN=AA11250A67BB9825B6EA1FA9A124A1FEC96701DA Certificate serial: 09F0 Authority key identifier: AA:11:25:0A:67:BB:98:25:B6:EA:1F:A9:A1:24:A1:FE:C9:67:01:DA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/qhElCme7mCW26h-poSSh_slnAdo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/EIUOAppEtzu-8IhyeeJh0g5LMqU.roa Signing time: Mon 10 Feb 2025 14:32:24 +0000 ROA not before: Mon 10 Feb 2025 14:32:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131626 IP address blocks: 103.144.32.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/qhElCme7mCW26h-poSSh_slnAdo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/qhElCme7mCW26h-poSSh_slnAdo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/qhElCme7mCW26h-poSSh_slnAdo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2544 (0x9f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA11250A67BB9825B6EA1FA9A124A1FEC96701DA Validity Not Before: Feb 10 14:32:24 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=10850E029A44B73BBEF0887279E261D20E4B32A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:9f:9f:9a:5b:47:d3:c3:2a:a8:33:07:1f:a4: a2:47:64:93:df:0f:9a:6b:0e:f3:fd:64:d8:cc:a1: 6d:f4:bc:a5:f8:b8:51:6e:83:34:50:95:c6:a4:c5: f0:60:9f:ba:79:10:ef:c5:2a:8f:24:0e:c1:41:33: 47:e4:b8:3c:6e:d1:9c:78:3c:08:f8:47:be:44:1e: ac:01:96:a9:62:42:0b:29:76:e9:76:81:b4:26:cc: 4d:1a:11:6b:27:7f:a3:f1:c3:01:c3:2c:21:53:57: 4e:4a:56:b7:f3:91:4a:3e:d0:0f:89:14:f0:23:1f: de:1d:62:f9:47:9f:bd:d2:01:0b:05:04:cb:53:02: 68:71:56:c5:9e:ae:4e:d7:35:dd:aa:ff:bc:78:6c: a1:01:6e:84:7b:db:47:83:7c:3c:fc:23:2c:13:67: 4f:d4:b9:b1:fc:53:2f:6d:83:0d:57:3c:6f:ae:29: 03:57:1a:9e:93:83:39:f5:b8:5c:50:a6:23:a3:26: 1c:9e:a6:57:c7:5d:f6:32:2e:f8:25:01:52:a7:54: 57:33:bf:56:09:a4:c9:2f:a0:cf:01:e3:50:f2:73: 98:8d:b7:c5:8c:79:79:5d:dc:0a:8b:64:12:77:6d: 3f:0c:01:75:1e:4f:2b:b8:0f:c2:1b:3e:e3:d9:34: 6d:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:85:0E:02:9A:44:B7:3B:BE:F0:88:72:79:E2:61:D2:0E:4B:32:A5 X509v3 Authority Key Identifier: keyid:AA:11:25:0A:67:BB:98:25:B6:EA:1F:A9:A1:24:A1:FE:C9:67:01:DA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/qhElCme7mCW26h-poSSh_slnAdo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/qhElCme7mCW26h-poSSh_slnAdo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/EIUOAppEtzu-8IhyeeJh0g5LMqU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.144.32.0/23 Signature Algorithm: sha256WithRSAEncryption 90:fa:0f:22:f4:03:16:21:ef:6b:d6:8a:6f:3e:8c:18:96:c6: 3d:98:2c:f3:43:32:58:4a:d7:3b:28:c5:b4:a3:b6:75:77:cb: ca:34:17:27:8f:b5:4e:83:17:c9:5b:11:3d:d3:a8:74:ef:e6: 1a:08:63:e7:52:14:9a:e5:c7:53:a6:de:24:fb:06:b0:6f:da: 95:bb:71:19:3d:ec:37:89:ad:a7:03:a6:e8:1a:8e:0e:df:29: 21:d0:ca:db:b8:aa:e3:48:43:ab:62:8c:e5:d0:0b:8b:5d:3f: d9:cc:5d:d9:28:dc:e0:3b:cb:62:38:d2:cd:97:52:5c:2a:a5: f8:25:4b:7b:cc:3a:91:de:82:ba:97:27:7f:1e:88:86:a3:b5: b0:09:cb:3f:bf:35:62:11:56:09:f8:c9:6f:12:33:94:02:26: 88:58:77:c9:e8:42:ba:a1:eb:8f:ef:7a:f6:a2:0a:e2:a0:d5: a0:74:01:43:e7:4d:f3:32:52:d9:04:a5:38:f6:98:dc:42:da: 06:02:59:6b:e7:e0:16:9b:d0:f5:2a:60:0e:5f:bd:cf:1b:94: 65:3b:2e:52:83:45:da:01:3c:5c:3d:a0:c7:e6:a1:8b:91:45: 21:f9:85:ec:11:df:58:f9:e5:19:f8:ea:2a:bd:58:29:df:46: d8:15:49:6d -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICCfAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUEx MTI1MEE2N0JCOTgyNUI2RUExRkE5QTEyNEExRkVDOTY3MDFEQTAeFw0yNTAyMTAx NDMyMjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDEwODUwRTAyOUE0NEI3 M0JCRUYwODg3Mjc5RTI2MUQyMEU0QjMyQTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxn5+aW0fTwyqoMwcfpKJHZJPfD5prDvP9ZNjMoW30vKX4uFFu gzRQlcakxfBgn7p5EO/FKo8kDsFBM0fkuDxu0Zx4PAj4R75EHqwBlqliQgspdul2 gbQmzE0aEWsnf6PxwwHDLCFTV05KVrfzkUo+0A+JFPAjH94dYvlHn73SAQsFBMtT AmhxVsWerk7XNd2q/7x4bKEBboR720eDfDz8IywTZ0/UubH8Uy9tgw1XPG+uKQNX Gp6Tgzn1uFxQpiOjJhyeplfHXfYyLvglAVKnVFczv1YJpMkvoM8B41Dyc5iNt8WM eXld3AqLZBJ3bT8MAXUeTyu4D8IbPuPZNG1DAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUEIUOAppEtzu+8IhyeeJh0g5LMqUwHwYDVR0jBBgwFoAUqhElCme7mCW26h+p oSSh/slnAdowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTlNTSVQv cWhFbENtZTdtQ1cyNmgtcG9TU2hfc2xuQWRvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9xaEVsQ21lN21DVzI2aC1wb1NTaF9zbG5BZG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9OU1NJVC9FSVVPQXBwRXR6dS04SWh5ZWVK aDBnNUxNcVUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5Ag MA0GCSqGSIb3DQEBCwUAA4IBAQCQ+g8i9AMWIe9r1opvPowYlsY9mCzzQzJYStc7 KMW0o7Z1d8vKNBcnj7VOgxfJWxE906h07+YaCGPnUhSa5cdTpt4k+wawb9qVu3EZ Pew3ia2nA6boGo4O3ykh0MrbuKrjSEOrYozl0AuLXT/ZzF3ZKNzgO8tiONLNl1Jc KqX4JUt7zDqR3oK6lyd/HoiGo7WwCcs/vzViEVYJ+MlvEjOUAiaIWHfJ6EK6oeuP 73r2ogrioNWgdAFD503zMlLZBKU49pjcQtoGAllr5+AWm9D1KmAOX73PG5RlOy5S g0XaATxcPaDH5qGLkUUh+YXsEd9Y+eUZ+OoqvVgp30bYFUlt -----END CERTIFICATE-----Generated at Fri Apr 18 23:46:47 2025 by rpki-client