$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIH/dtggyWl0G_D8QQFxRJiGCa5swpg.roa File: dtggyWl0G_D8QQFxRJiGCa5swpg.roa (raw, json) Hash identifier: MSYhMq1IPuXNaOC2QhN9A0vMPZLw0WkC7jiduw+m5kI= Subject key identifier: 76:D8:20:C9:69:74:1B:F0:FC:41:01:71:44:98:86:09:AE:6C:C2:98 Certificate issuer: /CN=2D7204617354D70523B6F65A270712B6B19D815E Certificate serial: 0CD8 Authority key identifier: 2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/dtggyWl0G_D8QQFxRJiGCa5swpg.roa Signing time: Mon 10 Feb 2025 13:49:22 +0000 ROA not before: Mon 10 Feb 2025 13:49:22 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38254 IP address blocks: 103.129.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 02:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3288 (0xcd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D7204617354D70523B6F65A270712B6B19D815E Validity Not Before: Feb 10 13:49:22 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=76D820C969741BF0FC41017144988609AE6CC298 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:5e:85:b4:45:99:6c:e0:23:8f:c8:d3:29:4a: f6:2c:6f:69:07:be:31:47:a6:b1:31:e3:31:c9:86: 2b:32:01:bd:54:ff:a7:11:4c:4e:98:6c:fd:90:d7: 56:4d:cd:26:ac:ff:2b:ca:b1:dd:4f:fd:2d:a8:6a: e1:4d:41:1d:ec:9b:73:ed:88:fb:c1:d8:bc:d6:d7: ea:38:ae:1e:99:f5:a3:e8:f1:a2:fd:76:8c:05:4b: e2:0e:72:ab:21:5e:f0:94:ba:27:7a:72:a1:9e:dd: 29:94:2c:1e:5b:e4:cf:94:2c:62:b0:85:bf:22:7f: d2:05:5b:6e:4a:c7:59:f3:9a:65:c5:ae:3b:c8:64: ab:ee:85:30:bb:4d:ed:08:a0:b5:29:11:08:c2:f7: f9:7e:f0:d2:f4:84:8c:92:86:ac:df:14:63:cb:23: 87:a8:19:a3:4d:46:1c:42:dc:d4:f3:45:67:1b:82: cc:c7:c5:d3:1c:48:cd:7f:24:29:4a:78:ad:79:cb: 96:18:5a:a4:49:c1:e3:31:7f:56:6b:94:d2:a1:0a: e6:1d:17:a4:99:42:66:10:fc:a9:8e:94:37:b1:08: f8:91:84:13:b8:f4:ff:03:ea:93:8a:a4:76:13:48: de:ed:0a:03:e3:05:88:ab:52:19:6a:af:ef:45:3b: c3:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:D8:20:C9:69:74:1B:F0:FC:41:01:71:44:98:86:09:AE:6C:C2:98 X509v3 Authority Key Identifier: keyid:2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/dtggyWl0G_D8QQFxRJiGCa5swpg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.129.145.0/24 Signature Algorithm: sha256WithRSAEncryption 98:b5:60:3d:71:93:85:2e:13:5a:12:a8:a1:8c:18:c8:75:24: ea:56:e5:ba:9d:08:8f:c0:eb:ea:42:77:b9:75:9d:51:c1:de: b6:71:08:13:ed:11:3e:07:d9:e9:3e:62:ee:5b:30:52:50:e6: 18:10:b3:87:ed:d1:7d:a5:17:20:a3:5b:fc:96:b9:91:99:e5: 89:19:e0:45:96:04:00:53:b5:c6:0d:eb:5c:ed:dd:34:12:72: a1:90:ff:6f:47:c1:79:ff:c4:40:98:f8:be:33:89:43:f9:1c: ea:a7:c4:e7:10:a7:bf:99:ef:5e:cf:fa:f1:9f:95:9e:a8:9e: b6:85:6c:d0:c4:97:67:6d:70:e1:c0:06:bf:b7:97:d9:5b:44: a8:75:82:18:88:4b:8c:63:42:b0:88:f2:c9:ad:3f:55:86:56: 53:b1:eb:35:c6:2c:5b:e4:44:3f:42:cc:d9:0b:27:44:60:44: 96:0d:b6:a9:a3:ff:81:9a:cc:f9:b4:a3:f6:5c:1f:2a:e5:62: 8e:7e:c1:23:f5:71:37:79:4a:b7:bd:83:59:c6:d0:bf:b6:e8: d2:bd:05:78:e4:b0:ef:02:1f:2e:b0:73:8c:d2:ba:06:6b:a9: 09:63:cf:ab:84:e1:0d:75:ad:86:03:1d:54:fc:d8:27:b2:be: fb:48:11:3b -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDNgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkQ3 MjA0NjE3MzU0RDcwNTIzQjZGNjVBMjcwNzEyQjZCMTlEODE1RTAeFw0yNTAyMTAx MzQ5MjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc2RDgyMEM5Njk3NDFC RjBGQzQxMDE3MTQ0OTg4NjA5QUU2Q0MyOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrXoW0RZls4COPyNMpSvYsb2kHvjFHprEx4zHJhisyAb1U/6cR TE6YbP2Q11ZNzSas/yvKsd1P/S2oauFNQR3sm3PtiPvB2LzW1+o4rh6Z9aPo8aL9 dowFS+IOcqshXvCUuid6cqGe3SmULB5b5M+ULGKwhb8if9IFW25Kx1nzmmXFrjvI ZKvuhTC7Te0IoLUpEQjC9/l+8NL0hIyShqzfFGPLI4eoGaNNRhxC3NTzRWcbgszH xdMcSM1/JClKeK15y5YYWqRJweMxf1ZrlNKhCuYdF6SZQmYQ/KmOlDexCPiRhBO4 9P8D6pOKpHYTSN7tCgPjBYirUhlqr+9FO8OtAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUdtggyWl0G/D8QQFxRJiGCa5swpgwHwYDVR0jBBgwFoAULXIEYXNU1wUjtvZa JwcStrGdgV4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElIL0xY SUVZWE5VMXdVanR2WmFKd2NTdHJHZGdWNC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev TFhJRVlYTlUxd1VqdHZaYUp3Y1N0ckdkZ1Y0LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVElIL2R0Z2d5V2wwR19EOFFRRnhSSmlHQ2E1 c3dwZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABngZEwDQYJ KoZIhvcNAQELBQADggEBAJi1YD1xk4UuE1oSqKGMGMh1JOpW5bqdCI/A6+pCd7l1 nVHB3rZxCBPtET4H2ek+Yu5bMFJQ5hgQs4ft0X2lFyCjW/yWuZGZ5YkZ4EWWBABT tcYN61zt3TQScqGQ/29HwXn/xECY+L4ziUP5HOqnxOcQp7+Z717P+vGflZ6onraF bNDEl2dtcOHABr+3l9lbRKh1ghiIS4xjQrCI8smtP1WGVlOx6zXGLFvkRD9CzNkL J0RgRJYNtqmj/4GazPm0o/ZcHyrlYo5+wSP1cTd5Sre9g1nG0L+26NK9BXjksO8C Hy6wc4zSugZrqQljz6uE4Q11rYYDHVT82CeyvvtIETs= -----END CERTIFICATE-----Generated at Sat Apr 5 23:14:27 2025 by rpki-client