$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/mgJrv8mZitz_bDQJylHrfyYmubY.roa File: mgJrv8mZitz_bDQJylHrfyYmubY.roa (raw, json) Hash identifier: HMnXmGPnBHBDvtSyqPWLvSYQxDm0zIVXqJlaLnBziT4= Subject key identifier: 9A:02:6B:BF:C9:99:8A:DC:FF:6C:34:09:CA:51:EB:7F:26:26:B9:B6 Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0D12 Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/mgJrv8mZitz_bDQJylHrfyYmubY.roa Signing time: Mon 10 Feb 2025 14:02:29 +0000 ROA not before: Mon 10 Feb 2025 14:02:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18182 IP address blocks: 219.85.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 10:48:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3346 (0xd12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Feb 10 14:02:29 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9A026BBFC9998ADCFF6C3409CA51EB7F2626B9B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3f:02:ea:ca:c7:89:bb:80:ff:53:df:d3:ec: f8:42:70:cb:c9:bb:2a:c3:95:29:f3:fc:c0:0e:f8: ec:42:de:c9:a9:4b:a2:c8:48:21:86:b0:ea:b0:64: ed:69:b9:5a:d3:15:fa:49:1a:08:8b:65:eb:e5:e9: a5:29:cf:57:99:d2:77:8d:cf:41:ab:f1:85:59:70: 74:94:0d:5d:03:13:2c:d8:73:4c:17:0a:7e:f5:fe: 7a:8b:3e:64:dd:2d:b6:5d:c3:9c:a0:c3:ed:28:bf: 9b:48:b1:33:b0:a9:c0:4a:85:1f:bd:0e:ef:12:9c: 10:83:3f:4f:73:91:12:69:0d:7a:2b:18:19:69:a2: 1c:aa:6a:b8:0e:a5:25:32:e1:81:d5:7d:61:f9:fd: d6:f1:72:c5:49:3d:a4:e6:30:cb:e5:d6:d3:a1:f1: 5b:99:de:ad:48:75:e9:5f:ca:38:66:81:37:c5:b5: 52:4f:f5:2e:d6:b0:eb:ed:9b:98:cf:54:46:26:05: b6:fe:90:e0:6a:1d:05:91:cc:c5:62:2f:b1:91:48: cd:e2:fb:37:8c:4c:77:df:d4:12:14:9e:c5:7b:ee: b9:c7:4f:3d:f9:24:33:8d:d6:55:2c:3d:74:bf:2d: 36:bd:80:14:05:8e:9b:57:14:7a:2d:a8:d3:92:fc: 59:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:02:6B:BF:C9:99:8A:DC:FF:6C:34:09:CA:51:EB:7F:26:26:B9:B6 X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/mgJrv8mZitz_bDQJylHrfyYmubY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 219.85.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1a:9a:96:01:b0:27:dd:14:8d:a7:97:35:ae:82:49:4e:7a:51: 21:d4:49:1b:70:3b:8a:74:2d:01:18:58:0f:cb:38:b8:23:f0: 40:9b:f1:46:32:0c:b0:72:91:b1:10:24:75:50:ac:30:58:33: 79:ef:8c:87:6b:b0:5d:7c:65:4f:e3:48:06:0f:25:59:ea:63: 4f:eb:5d:67:1a:14:d9:20:f4:20:00:50:f4:88:b6:33:17:5f: d8:0c:9c:00:ad:47:70:a2:e8:d2:e5:af:6d:30:ce:a9:83:08: e2:96:3c:a6:f7:c3:66:af:b8:aa:93:8d:1c:5d:fd:ba:de:89: f8:ae:94:cd:37:13:d0:e0:79:21:6b:a7:56:a4:ef:92:72:d1: 8e:2f:11:a5:6f:77:45:94:dc:07:eb:81:10:2c:ea:98:2c:3c: 09:04:f4:43:69:30:ab:8a:17:1b:a8:8f:89:3d:0d:8f:f0:2a: c9:a7:33:8f:7b:fa:84:cd:62:48:76:af:19:fc:66:97:3d:25: 88:20:59:a7:17:99:6f:34:d6:cf:42:3a:04:3e:1e:4d:a5:ed: d5:c7:8c:65:9c:dd:2a:47:40:e0:57:fc:3a:79:b4:06:26:b3: 3c:90:7c:98:48:72:1b:c8:1f:90:a2:65:b5:b3:9c:22:0b:0d: 27:a6:10:8a -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDRIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yNTAyMTAx NDAyMjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlBMDI2QkJGQzk5OThB RENGRjZDMzQwOUNBNTFFQjdGMjYyNkI5QjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmPwLqyseJu4D/U9/T7PhCcMvJuyrDlSnz/MAO+OxC3smpS6LI SCGGsOqwZO1puVrTFfpJGgiLZevl6aUpz1eZ0neNz0Gr8YVZcHSUDV0DEyzYc0wX Cn71/nqLPmTdLbZdw5ygw+0ov5tIsTOwqcBKhR+9Du8SnBCDP09zkRJpDXorGBlp ohyqargOpSUy4YHVfWH5/dbxcsVJPaTmMMvl1tOh8VuZ3q1IdelfyjhmgTfFtVJP 9S7WsOvtm5jPVEYmBbb+kOBqHQWRzMViL7GRSM3i+zeMTHff1BIUnsV77rnHTz35 JDON1lUsPXS/LTa9gBQFjptXFHotqNOS/Fn3AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUmgJrv8mZitz/bDQJylHrfyYmubYwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9tZ0pydjhtWml0el9iRFFKeWxI cmZ5WW11Ylkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA21Uw DQYJKoZIhvcNAQELBQADggEBABqalgGwJ90UjaeXNa6CSU56USHUSRtwO4p0LQEY WA/LOLgj8ECb8UYyDLBykbEQJHVQrDBYM3nvjIdrsF18ZU/jSAYPJVnqY0/rXWca FNkg9CAAUPSItjMXX9gMnACtR3Ci6NLlr20wzqmDCOKWPKb3w2avuKqTjRxd/bre ifiulM03E9DgeSFrp1ak75Jy0Y4vEaVvd0WU3AfrgRAs6pgsPAkE9ENpMKuKFxuo j4k9DY/wKsmnM497+oTNYkh2rxn8Zpc9JYggWacXmW801s9COgQ+Hk2l7dXHjGWc 3SpHQOBX/Dp5tAYmszyQfJhIchvIH5CiZbWznCILDSemEIo= -----END CERTIFICATE-----Generated at Wed Apr 23 09:00:35 2025 by rpki-client