$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/HOUxlA7g9L4bojO5UZkOMEIicOg.roa File: HOUxlA7g9L4bojO5UZkOMEIicOg.roa (raw, json) Hash identifier: rdP+V9McaIB+pX9vxV8z77FJkwvojlzU8L6jyJSoGV4= Subject key identifier: 1C:E5:31:94:0E:E0:F4:BE:1B:A2:33:B9:51:99:0E:30:42:22:70:E8 Certificate issuer: /CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2 Certificate serial: 0CD6 Authority key identifier: 0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/HOUxlA7g9L4bojO5UZkOMEIicOg.roa Signing time: Mon 10 Feb 2025 14:02:55 +0000 ROA not before: Mon 10 Feb 2025 14:02:55 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131593 IP address blocks: 43.251.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3286 (0xcd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2 Validity Not Before: Feb 10 14:02:55 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1CE531940EE0F4BE1BA233B951990E30422270E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:63:91:ae:ed:48:82:dc:6f:ef:9d:3b:54:f9: 26:3d:44:70:9c:43:a9:f9:3b:02:33:22:02:8e:d7: 5f:96:64:71:42:49:e9:b9:9d:dd:34:d9:c0:59:e4: 0a:04:eb:f7:f5:d6:0c:94:4b:be:79:7a:79:8d:a7: 6b:84:bc:79:cc:f4:5e:c2:ca:cb:66:1e:6e:5c:b4: ab:75:48:4b:ff:d3:ef:a7:c4:d7:f5:07:ed:5a:07: c5:8d:fc:e2:cb:0a:83:52:77:1a:ad:62:94:47:ec: 5c:03:27:93:60:10:0d:83:2d:bf:9f:ee:9f:f8:8f: 47:36:34:d9:db:a6:b8:6e:61:ae:ff:ca:8e:61:37: 39:27:98:e8:84:63:1f:18:06:de:37:06:7f:73:b6: e9:84:cf:b7:e6:93:7b:de:ec:3a:55:7c:c3:d6:dd: 46:2e:c3:a8:8d:e5:0f:65:09:f7:65:07:bf:d3:38: 80:7f:3d:20:7b:00:69:20:21:bb:13:1f:6a:ad:b8: 7c:1c:b7:1d:49:b6:91:14:33:8f:72:6a:82:b9:26: 81:30:51:9b:6d:56:a6:95:cb:fa:6c:bd:36:c8:e3: 85:49:8b:7f:31:f4:68:64:37:1b:94:88:5a:b6:47: a5:d7:1b:72:e0:45:6d:4b:f5:73:23:79:36:70:2d: 37:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:E5:31:94:0E:E0:F4:BE:1B:A2:33:B9:51:99:0E:30:42:22:70:E8 X509v3 Authority Key Identifier: keyid:0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/HOUxlA7g9L4bojO5UZkOMEIicOg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.251.61.0/24 Signature Algorithm: sha256WithRSAEncryption 21:41:31:be:9e:85:4c:5d:0c:f8:02:40:db:be:9e:ba:b4:8c: e5:ac:8f:da:8b:38:7a:7e:db:60:29:c0:5b:2e:05:2a:81:5f: 01:71:3f:f4:dc:bb:86:6a:76:24:74:fd:24:a4:bf:dc:f4:ce: 1e:cb:f0:1d:59:d5:1c:26:ee:c2:68:3b:a9:80:cd:35:7c:77: ca:1d:70:43:77:63:88:2e:0d:1f:ed:68:d4:10:2a:47:f8:73: b9:01:f5:c6:a0:09:37:57:9d:9f:24:e2:91:4e:fe:43:1b:a7: 91:1b:eb:c6:b9:00:12:6a:a0:c6:fc:85:b7:25:ab:02:15:4f: 08:fc:bf:11:49:25:d1:50:80:7e:9d:ad:1c:16:de:7d:7a:df: fd:fe:4b:b7:7c:bb:ce:5b:72:03:e0:0b:7f:7c:90:1d:3c:18: dd:0b:a7:37:71:db:7f:89:07:77:43:9e:74:38:b4:13:f2:2f: 58:6d:2c:9a:54:64:6a:9b:bf:b8:6f:d4:ca:4d:f2:5c:e3:98: 1c:8d:9a:25:ed:b7:d5:a4:5f:67:a9:2b:8d:bc:b6:f4:32:fb: c8:0e:30:44:04:5e:65:8c:f0:d3:01:81:b0:22:7c:62:e9:4d: 43:04:35:1d:84:de:1a:9f:48:d8:b9:50:40:1b:17:6c:03:0c: f4:84:73:09 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDNYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMERG OTRBQjA3MjhDN0EzOEM1MEYwRDYxNTU0RDQ5RDY1MUYzM0FBMjAeFw0yNTAyMTAx NDAyNTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFDRTUzMTk0MEVFMEY0 QkUxQkEyMzNCOTUxOTkwRTMwNDIyMjcwRTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMY5Gu7UiC3G/vnTtU+SY9RHCcQ6n5OwIzIgKO11+WZHFCSem5 nd002cBZ5AoE6/f11gyUS755enmNp2uEvHnM9F7CystmHm5ctKt1SEv/0++nxNf1 B+1aB8WN/OLLCoNSdxqtYpRH7FwDJ5NgEA2DLb+f7p/4j0c2NNnbprhuYa7/yo5h NzknmOiEYx8YBt43Bn9ztumEz7fmk3ve7DpVfMPW3UYuw6iN5Q9lCfdlB7/TOIB/ PSB7AGkgIbsTH2qtuHwctx1JtpEUM49yaoK5JoEwUZttVqaVy/psvTbI44VJi38x 9GhkNxuUiFq2R6XXG3LgRW1L9XMjeTZwLTdnAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUHOUxlA7g9L4bojO5UZkOMEIicOgwHwYDVR0jBBgwFoAUDflKsHKMejjFDw1h VU1J1lHzOqIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEVHQVRS T04vRGZsS3NIS01lampGRHcxaFZVMUoxbEh6T3FJLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9EZmxLc0hLTWVqakZEdzFoVlUxSjFsSHpPcUkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QRUdBVFJPTi9IT1V4bEE3ZzlMNGJv ak81VVprT01FSWljT2cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAK/s9MA0GCSqGSIb3DQEBCwUAA4IBAQAhQTG+noVMXQz4AkDbvp66tIzlrI/a izh6fttgKcBbLgUqgV8BcT/03LuGanYkdP0kpL/c9M4ey/AdWdUcJu7CaDupgM01 fHfKHXBDd2OILg0f7WjUECpH+HO5AfXGoAk3V52fJOKRTv5DG6eRG+vGuQASaqDG /IW3JasCFU8I/L8RSSXRUIB+na0cFt59et/9/ku3fLvOW3ID4At/fJAdPBjdC6c3 cdt/iQd3Q550OLQT8i9YbSyaVGRqm7+4b9TKTfJc45gcjZol7bfVpF9nqSuNvLb0 MvvIDjBEBF5ljPDTAYGwInxi6U1DBDUdhN4an0jYuVBAGxdsAwz0hHMJ -----END CERTIFICATE-----Generated at Fri Apr 18 23:57:40 2025 by rpki-client