$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHIL/2vq7iHtshal3zRCFNCoUZkvTTs0.roa File: 2vq7iHtshal3zRCFNCoUZkvTTs0.roa (raw, json) Hash identifier: LS0AcaxU9O9qCAkM4KQPIFVmt2X78HdtIW3Ub88U+H8= Subject key identifier: DA:FA:BB:88:7B:6C:85:A9:77:CD:10:85:34:2A:14:66:4B:D3:4E:CD Certificate issuer: /CN=6E0114FCCE7E3C83FE495A451286BB5A9EE13BA7 Certificate serial: D0 Authority key identifier: 6E:01:14:FC:CE:7E:3C:83:FE:49:5A:45:12:86:BB:5A:9E:E1:3B:A7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bgEU_M5-PIP-SVpFEoa7Wp7hO6c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIL/2vq7iHtshal3zRCFNCoUZkvTTs0.roa Signing time: Mon 10 Feb 2025 13:44:06 +0000 ROA not before: Mon 10 Feb 2025 13:44:06 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7483 IP address blocks: 103.117.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIL/bgEU_M5-PIP-SVpFEoa7Wp7hO6c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIL/bgEU_M5-PIP-SVpFEoa7Wp7hO6c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/bgEU_M5-PIP-SVpFEoa7Wp7hO6c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E0114FCCE7E3C83FE495A451286BB5A9EE13BA7 Validity Not Before: Feb 10 13:44:06 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DAFABB887B6C85A977CD1085342A14664BD34ECD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:4d:c4:de:dc:4b:49:63:83:ef:d4:b1:e3:97: f4:00:ac:f5:4f:75:81:7b:6e:1c:68:37:f1:0a:a4: 52:ad:c0:eb:2a:3f:02:c4:4e:2c:64:be:18:c3:9c: ed:93:d2:56:53:f1:c8:c8:d2:6f:35:14:b1:c9:a1: 16:96:32:f9:98:e1:6e:f7:00:86:e5:5c:d7:63:29: ed:ef:22:af:1a:2a:3d:d5:fe:cc:8d:8d:e4:9f:42: f5:d7:c9:bc:9f:e9:5d:ad:7a:9c:96:31:a5:92:d6: cf:02:9f:91:f3:d8:82:a9:a1:f4:ec:1d:f8:24:98: f3:97:77:ba:62:c5:60:bf:d8:18:c0:94:7f:ac:9d: 77:bd:48:80:14:88:57:2d:45:ac:42:46:af:ec:1d: de:38:88:0d:35:89:ef:de:6b:a1:1f:07:4a:61:49: 06:c5:96:6f:8e:da:ba:3a:f5:8b:64:a6:cd:a0:4b: 7a:4d:eb:cc:5f:bd:02:72:07:d5:90:1e:5b:d9:89: f0:4a:8b:2d:3e:a3:1a:ff:b1:c8:dc:24:d6:10:db: a9:1c:a8:88:af:18:d1:21:ae:25:8a:e9:40:69:d4: 67:c6:1f:57:07:74:0c:23:41:4b:45:69:e4:90:7f: 8f:50:08:b7:de:f9:5d:f5:be:99:4b:ef:58:1b:99: fc:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:FA:BB:88:7B:6C:85:A9:77:CD:10:85:34:2A:14:66:4B:D3:4E:CD X509v3 Authority Key Identifier: keyid:6E:01:14:FC:CE:7E:3C:83:FE:49:5A:45:12:86:BB:5A:9E:E1:3B:A7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIL/bgEU_M5-PIP-SVpFEoa7Wp7hO6c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bgEU_M5-PIP-SVpFEoa7Wp7hO6c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIL/2vq7iHtshal3zRCFNCoUZkvTTs0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.117.134.0/23 Signature Algorithm: sha256WithRSAEncryption a7:f5:78:a4:2f:4b:2b:70:d5:48:97:a5:f0:48:df:e8:33:94: 47:65:94:31:88:1c:25:00:e4:b7:cf:53:1b:77:cd:41:26:3d: 47:b0:17:23:03:2e:99:7c:d9:8f:d0:ed:35:21:31:52:fe:91: ed:a8:86:07:7c:5e:dc:26:89:46:08:47:1b:9a:4d:2b:99:79: 77:5e:21:97:10:cb:0a:0a:1f:bc:e1:dc:57:8a:ce:ee:40:c6: a8:62:6a:c9:69:24:37:dc:36:7d:c9:ec:ae:7e:6f:fe:8f:74: a9:7d:d8:13:bb:02:a8:9c:14:3a:18:06:f2:30:a1:4c:d4:9d: 7c:ae:50:70:c2:1c:d0:b9:c2:6b:f0:f9:c0:55:99:9d:a1:40: f3:c9:3c:4b:71:2c:35:f9:26:b5:31:6a:c2:ec:93:a4:ae:f3: 61:a8:d2:cc:45:f4:27:7b:37:22:dd:2a:a6:b0:56:b2:c1:10: b3:cc:6e:a8:76:5e:36:da:d9:ca:b1:e2:67:0d:4e:59:44:a0: 20:3e:a4:32:44:43:09:d3:99:c9:0f:4d:17:31:43:42:74:bd: ea:21:e7:59:fa:82:dc:1d:3b:2a:bc:d8:a8:2b:f9:99:dc:22: cf:ac:b3:f0:ef:17:f9:26:58:96:70:c7:69:51:5c:fe:ae:f5: 37:88:83:73 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICANAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkUw MTE0RkNDRTdFM0M4M0ZFNDk1QTQ1MTI4NkJCNUE5RUUxM0JBNzAeFw0yNTAyMTAx MzQ0MDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERBRkFCQjg4N0I2Qzg1 QTk3N0NEMTA4NTM0MkExNDY2NEJEMzRFQ0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwTcTe3EtJY4Pv1LHjl/QArPVPdYF7bhxoN/EKpFKtwOsqPwLE TixkvhjDnO2T0lZT8cjI0m81FLHJoRaWMvmY4W73AIblXNdjKe3vIq8aKj3V/syN jeSfQvXXybyf6V2tepyWMaWS1s8Cn5Hz2IKpofTsHfgkmPOXd7pixWC/2BjAlH+s nXe9SIAUiFctRaxCRq/sHd44iA01ie/ea6EfB0phSQbFlm+O2ro69Ytkps2gS3pN 68xfvQJyB9WQHlvZifBKiy0+oxr/scjcJNYQ26kcqIivGNEhriWK6UBp1GfGH1cH dAwjQUtFaeSQf49QCLfe+V31vplL71gbmfwLAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU2vq7iHtshal3zRCFNCoUZkvTTs0wHwYDVR0jBBgwFoAUbgEU/M5+PIP+SVpF Eoa7Wp7hO6cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTC9i Z0VVX001LVBJUC1TVnBGRW9hN1dwN2hPNmMuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2JnRVVfTTUtUElQLVNWcEZFb2E3V3A3aE82Yy5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1NISUwvMnZxN2lIdHNoYWwzelJDRk5Db1Va a3ZUVHMwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWd1hjAN BgkqhkiG9w0BAQsFAAOCAQEAp/V4pC9LK3DVSJel8Ejf6DOUR2WUMYgcJQDkt89T G3fNQSY9R7AXIwMumXzZj9DtNSExUv6R7aiGB3xe3CaJRghHG5pNK5l5d14hlxDL CgofvOHcV4rO7kDGqGJqyWkkN9w2fcnsrn5v/o90qX3YE7sCqJwUOhgG8jChTNSd fK5QcMIc0LnCa/D5wFWZnaFA88k8S3EsNfkmtTFqwuyTpK7zYajSzEX0J3s3It0q prBWssEQs8xuqHZeNtrZyrHiZw1OWUSgID6kMkRDCdOZyQ9NFzFDQnS96iHnWfqC 3B07KrzYqCv5mdwiz6yz8O8X+SZYlnDHaVFc/q71N4iDcw== -----END CERTIFICATE-----Generated at Fri Apr 18 23:43:55 2025 by rpki-client