$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/-gPeU2ZoFCV-6bwfbZYYsT5w674.roa File: -gPeU2ZoFCV-6bwfbZYYsT5w674.roa (raw, json) Hash identifier: F9hViTjrqS0Sc3QtpOtOWfTMxzApE94xuegdx7iKi2M= Subject key identifier: FA:03:DE:53:66:68:14:25:7E:E9:BC:1F:6D:96:18:B1:3E:70:EB:BE Certificate issuer: /CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B Certificate serial: 0D52 Authority key identifier: 39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/-gPeU2ZoFCV-6bwfbZYYsT5w674.roa Signing time: Tue 11 Mar 2025 07:19:38 +0000 ROA not before: Tue 11 Mar 2025 07:19:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131627 IP address blocks: 103.124.42.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 17:36:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3410 (0xd52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B Validity Not Before: Mar 11 07:19:38 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FA03DE53666814257EE9BC1F6D9618B13E70EBBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:50:83:5a:42:3c:a2:bb:83:15:75:45:15:50: db:74:ab:4a:76:84:c3:b6:f1:5a:2b:fc:b8:eb:95: 9c:c9:7f:36:88:fd:6a:90:e5:db:e4:27:69:03:24: f6:85:65:fb:12:2e:a9:dd:f5:aa:8e:70:90:e8:b4: 5b:b4:f0:b4:e2:ba:c2:35:cc:8d:88:1c:69:81:8e: 96:f9:31:24:71:6b:ff:4d:40:af:ec:72:aa:b4:66: 1c:66:aa:63:90:1c:0f:2a:66:cb:62:22:d8:69:49: 86:fa:04:1a:17:5f:22:7a:97:9f:48:99:00:50:08: 4f:3d:a8:39:4e:f3:26:dd:3a:13:bb:f0:77:48:78: 88:11:08:31:38:e0:12:f7:1b:e8:9f:8e:94:1f:9b: 7a:ed:67:a9:7a:56:0e:7d:69:10:12:7d:91:c6:c2: 29:1a:96:04:ba:e8:f2:1e:ac:c0:6e:f7:55:7a:a2: f6:da:df:0d:9f:a3:7c:da:52:a1:04:8f:99:20:fd: fc:ee:2f:99:20:28:e6:89:94:7d:e0:c5:da:1d:93: f9:2e:c4:59:58:0a:bf:36:fd:55:3a:08:2e:9b:8d: ea:e7:5c:cc:ac:ad:cc:7f:6f:d6:65:0d:16:54:f9: 17:01:13:df:b0:da:28:09:1f:0c:ac:9d:d6:53:3b: c0:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:03:DE:53:66:68:14:25:7E:E9:BC:1F:6D:96:18:B1:3E:70:EB:BE X509v3 Authority Key Identifier: keyid:39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/-gPeU2ZoFCV-6bwfbZYYsT5w674.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.124.42.0/23 Signature Algorithm: sha256WithRSAEncryption 55:4a:bc:ce:c9:d2:4b:2a:e2:b8:4b:3b:19:90:2f:2f:a2:8f: 4e:8d:21:10:57:03:0c:0c:03:ab:03:49:b7:29:85:c8:03:b8: b4:1c:95:d5:4b:35:b8:ad:3a:1b:cc:0b:93:55:17:7e:9c:48: ea:58:b3:1c:a2:04:81:14:00:d5:93:a1:19:f7:3a:23:ba:82: e2:c0:a9:3d:e2:42:25:3e:8d:0d:60:e3:31:d4:ca:81:29:2e: 5a:d0:ca:01:f5:27:37:60:87:d6:c3:51:55:d7:31:1f:e9:b6: f6:90:ec:9d:5f:c5:de:8b:7a:eb:94:73:df:10:21:8e:5b:14: 1d:0f:b6:6e:34:ec:ba:0e:e4:7d:67:31:0c:c7:a3:ac:81:fa: 8c:af:82:62:34:9b:fe:0c:bd:9e:15:1c:89:64:49:50:a6:87: 51:d5:d4:db:5b:0f:ea:fa:e2:1d:d7:42:53:ac:e3:c1:47:f0: 00:80:2e:ab:dd:d3:94:fa:37:79:89:9a:22:59:2c:ea:29:23: 89:55:3e:50:c7:7a:61:26:ba:4c:05:41:f6:01:58:a9:b8:f7: ca:7c:30:cd:43:b9:a3:2b:2f:af:3f:38:f2:dc:80:0f:40:23: 49:b7:e6:32:61:61:fc:f3:fe:49:95:c9:98:1c:b0:0d:3b:d9: 02:01:aa:07 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDVIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzkw QTA0MTJGOEI1RUM0RjNGOUZEQkIzQTYxMjcwREJEMEVBOUU2QjAeFw0yNTAzMTEw NzE5MzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZBMDNERTUzNjY2ODE0 MjU3RUU5QkMxRjZEOTYxOEIxM0U3MEVCQkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzUINaQjyiu4MVdUUVUNt0q0p2hMO28Vor/LjrlZzJfzaI/WqQ 5dvkJ2kDJPaFZfsSLqnd9aqOcJDotFu08LTiusI1zI2IHGmBjpb5MSRxa/9NQK/s cqq0ZhxmqmOQHA8qZstiIthpSYb6BBoXXyJ6l59ImQBQCE89qDlO8ybdOhO78HdI eIgRCDE44BL3G+ifjpQfm3rtZ6l6Vg59aRASfZHGwikalgS66PIerMBu91V6ovba 3w2fo3zaUqEEj5kg/fzuL5kgKOaJlH3gxdodk/kuxFlYCr82/VU6CC6bjernXMys rcx/b9ZlDRZU+RcBE9+w2igJHwysndZTO8DRAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU+gPeU2ZoFCV+6bwfbZYYsT5w674wHwYDVR0jBBgwFoAUOQoEEvi17E8/n9uz phJw29DqnmswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVU5JR0FU RS9PUW9FRXZpMTdFOF9uOXV6cGhKdzI5RHFubXMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL09Rb0VFdmkxN0U4X245dXpwaEp3MjlEcW5tcy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1VOSUdBVEUvLWdQZVUyWm9GQ1YtNmJ3 ZmJaWVlzVDV3Njc0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWd8KjANBgkqhkiG9w0BAQsFAAOCAQEAVUq8zsnSSyriuEs7GZAvL6KPTo0hEFcD DAwDqwNJtymFyAO4tByV1Us1uK06G8wLk1UXfpxI6lizHKIEgRQA1ZOhGfc6I7qC 4sCpPeJCJT6NDWDjMdTKgSkuWtDKAfUnN2CH1sNRVdcxH+m29pDsnV/F3ot665Rz 3xAhjlsUHQ+2bjTsug7kfWcxDMejrIH6jK+CYjSb/gy9nhUciWRJUKaHUdXU21sP 6vriHddCU6zjwUfwAIAuq93TlPo3eYmaIlks6ikjiVU+UMd6YSa6TAVB9gFYqbj3 ynwwzUO5oysvrz848tyAD0AjSbfmMmFh/PP+SZXJmBywDTvZAgGqBw== -----END CERTIFICATE-----Generated at Sat Apr 5 16:36:19 2025 by rpki-client