$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/OCMEZ3yMWeFWs9VjsoU6Vh7qz9k.roa File: OCMEZ3yMWeFWs9VjsoU6Vh7qz9k.roa (raw, json) Hash identifier: tMRR6LRommOdK0FUdvxqDOUOOAAyiyufq4LdgMtyVyE= Subject key identifier: 38:23:04:67:7C:8C:59:E1:56:B3:D5:63:B2:85:3A:56:1E:EA:CF:D9 Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Certificate serial: 0CFB Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/OCMEZ3yMWeFWs9VjsoU6Vh7qz9k.roa Signing time: Mon 10 Feb 2025 14:01:03 +0000 ROA not before: Mon 10 Feb 2025 14:01:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131149 IP address blocks: 103.123.192.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 15:37:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3323 (0xcfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Validity Not Before: Feb 10 14:01:03 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=382304677C8C59E156B3D563B2853A561EEACFD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:02:5d:fd:1e:b9:d5:02:a8:58:2b:d5:85:c4: 9e:9c:25:8a:f7:17:49:01:78:5f:af:ee:f5:97:1c: 23:fc:b2:09:be:ce:8c:a6:ed:51:0d:3a:4e:04:b6: 7a:ac:92:87:8e:bb:32:63:7e:a3:12:86:59:11:b3: 44:94:6a:70:36:fd:6c:8b:60:16:03:a6:2e:fd:75: 02:16:7c:c8:2d:2a:b3:cb:e1:63:b6:7f:2d:ba:4e: 43:61:69:e2:26:2e:98:7b:4e:d8:5d:0b:f7:13:70: 51:f8:95:53:d7:17:16:b0:2b:14:49:2d:aa:13:7e: 0f:75:4f:9a:6d:41:8a:f8:a9:d1:70:07:90:df:a8: 74:51:7e:cf:a1:91:f9:d3:b2:ee:33:a0:fe:8b:d1: 04:db:13:4d:28:9f:48:82:d5:0c:88:68:d9:b1:43: 48:00:15:6a:c6:be:29:d3:5e:d0:60:e3:11:9e:51: ce:f8:88:a7:76:7e:f3:f9:25:7f:5c:e3:21:b3:8f: 40:f0:5a:f9:c3:0b:bc:8b:da:ac:ed:ea:d8:64:fe: 8f:e6:95:e6:cf:0d:a9:e7:55:c8:01:f5:62:42:89: 04:c4:f3:97:40:a5:3d:ec:a2:46:72:a4:91:9c:7b: f1:9c:7b:cb:df:54:d3:1e:7a:fc:50:d6:78:2d:d3: 69:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:23:04:67:7C:8C:59:E1:56:B3:D5:63:B2:85:3A:56:1E:EA:CF:D9 X509v3 Authority Key Identifier: keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/OCMEZ3yMWeFWs9VjsoU6Vh7qz9k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.192.0/22 Signature Algorithm: sha256WithRSAEncryption 01:a7:56:ec:17:48:cb:5b:28:70:78:6f:80:9b:43:d7:85:84: 51:d9:78:6a:2d:4c:9c:e2:28:a2:96:5b:92:85:b3:0d:29:92: dc:40:98:ea:69:0c:de:b7:15:66:50:92:81:64:be:6d:20:9e: 19:2c:12:a9:21:23:a3:ff:f1:0d:80:7b:85:f9:19:b6:03:fa: dc:44:f4:66:79:a2:d9:73:c1:64:28:5b:0d:01:6f:3a:4c:0f: 4c:2c:92:20:49:a6:5d:c8:60:4e:7f:2c:40:f0:19:a9:2b:0a: 71:83:c6:f4:a8:c0:b6:d8:05:3d:c7:bd:7f:62:4b:0c:04:5b: f6:b9:32:71:43:47:b2:38:a1:56:54:33:8c:c9:b8:76:8d:d9: aa:28:d5:3b:78:c8:6e:d8:64:55:05:3d:e0:3d:0e:98:38:58: ff:39:71:23:e1:66:89:16:a8:21:2a:51:81:a6:d0:46:f1:4a: 7a:0e:bc:f7:b4:8c:27:c2:e9:a6:af:a7:d8:1c:66:3b:26:22: ea:48:ca:c1:38:bf:d9:89:44:77:36:6f:a4:8b:be:b0:52:c6: 5e:5d:f1:0b:d5:94:7e:b8:f4:a3:f3:94:56:c6:1d:1e:c0:20: 84:2a:59:7a:ff:12:e1:fa:83:ed:de:26:c5:22:3f:31:81:dc: 49:a7:08:15 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDPswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODdB NEFGRDlFN0ZDMUZFRDRGOTU0NURFNDFDRTQ0MTNEQUNCMEUwNTAeFw0yNTAyMTAx NDAxMDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM4MjMwNDY3N0M4QzU5 RTE1NkIzRDU2M0IyODUzQTU2MUVFQUNGRDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGAl39HrnVAqhYK9WFxJ6cJYr3F0kBeF+v7vWXHCP8sgm+zoym 7VENOk4EtnqskoeOuzJjfqMShlkRs0SUanA2/WyLYBYDpi79dQIWfMgtKrPL4WO2 fy26TkNhaeImLph7TthdC/cTcFH4lVPXFxawKxRJLaoTfg91T5ptQYr4qdFwB5Df qHRRfs+hkfnTsu4zoP6L0QTbE00on0iC1QyIaNmxQ0gAFWrGvinTXtBg4xGeUc74 iKd2fvP5JX9c4yGzj0DwWvnDC7yL2qzt6thk/o/mlebPDannVcgB9WJCiQTE85dA pT3sokZypJGce/Gce8vfVNMeevxQ1ngt02lNAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUOCMEZ3yMWeFWs9VjsoU6Vh7qz9kwHwYDVR0jBBgwFoAUh6Sv2ef8H+1PlUXe Qc5EE9rLDgUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWVVBTkpI RU4vaDZTdjJlZjhILTFQbFVYZVFjNUVFOXJMRGdVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9oNlN2MmVmOEgtMVBsVVhlUWM1RUU5ckxEZ1UuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ZVUFOSkhFTi9PQ01FWjN5TVdlRldz OVZqc29VNlZoN3F6OWsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ3vAMA0GCSqGSIb3DQEBCwUAA4IBAQABp1bsF0jLWyhweG+Am0PXhYRR2Xhq LUyc4iiilluShbMNKZLcQJjqaQzetxVmUJKBZL5tIJ4ZLBKpISOj//ENgHuF+Rm2 A/rcRPRmeaLZc8FkKFsNAW86TA9MLJIgSaZdyGBOfyxA8BmpKwpxg8b0qMC22AU9 x71/YksMBFv2uTJxQ0eyOKFWVDOMybh2jdmqKNU7eMhu2GRVBT3gPQ6YOFj/OXEj 4WaJFqghKlGBptBG8Up6Drz3tIwnwummr6fYHGY7JiLqSMrBOL/ZiUR3Nm+ki76w UsZeXfEL1ZR+uPSj85RWxh0ewCCEKll6/xLh+oPt3ibFIj8xgdxJpwgV -----END CERTIFICATE-----Generated at Wed Apr 9 11:16:48 2025 by rpki-client