$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/qwuXNjgx2QGEsnZ0O8u2EjJ0CcQ.roa File: qwuXNjgx2QGEsnZ0O8u2EjJ0CcQ.roa (raw, json) Hash identifier: kPytXoqCCFxx2K2tirnZmihH4OdyhRvtCFqn9DUOzfc= Subject key identifier: AB:0B:97:36:38:31:D9:01:84:B2:76:74:3B:CB:B6:12:32:74:09:C4 Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA Certificate serial: 05D3 Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/qwuXNjgx2QGEsnZ0O8u2EjJ0CcQ.roa Signing time: Mon 10 Feb 2025 13:57:51 +0000 ROA not before: Mon 10 Feb 2025 13:57:51 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 945 IP address blocks: 103.156.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 05:38:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1491 (0x5d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA Validity Not Before: Feb 10 13:57:51 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AB0B97363831D90184B276743BCBB612327409C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2c:7c:6b:e4:40:4d:9a:58:21:ba:e2:f6:71: f0:59:3b:de:d4:93:49:be:0d:97:a0:7a:a2:48:d3: d3:94:0c:90:3a:83:e2:18:99:be:c6:1c:09:b4:f1: 3e:2c:fb:02:e6:73:e3:0f:36:52:8a:21:c4:8b:73: 3a:1a:0d:ed:6f:f1:b4:25:2b:9d:77:90:ba:a3:36: 18:7a:a9:ef:e5:c1:84:26:4e:ae:df:7d:d4:a1:8a: 2a:c4:e8:d5:ed:79:06:f0:ea:8f:6f:80:6b:90:4a: 43:77:bb:df:a2:35:01:e7:c3:d3:6d:b0:dc:d8:84: 1a:3a:02:88:ea:13:0b:bb:a8:a9:8a:53:4a:8d:8c: af:02:24:8b:1a:97:36:35:65:6e:e8:a4:10:2b:fc: 43:22:3f:1a:a5:c3:15:c0:b7:35:0a:27:71:57:0a: 30:57:25:b8:9a:c9:ee:b2:f5:1e:26:84:89:b8:26: 21:4e:d1:d2:59:8d:2e:e0:75:d4:cb:20:5d:14:b7: f3:1a:b6:dd:ed:c3:6e:a3:52:0c:b1:ef:b5:d4:d7: 0d:ca:70:75:cb:40:3d:92:1b:33:06:43:64:0f:4f: ce:aa:44:eb:9a:f6:2d:c1:fc:9e:9d:04:47:69:58: 28:bf:f6:4b:3b:bd:a9:95:24:17:be:84:30:ff:e6: 60:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:0B:97:36:38:31:D9:01:84:B2:76:74:3B:CB:B6:12:32:74:09:C4 X509v3 Authority Key Identifier: keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/qwuXNjgx2QGEsnZ0O8u2EjJ0CcQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.156.185.0/24 Signature Algorithm: sha256WithRSAEncryption 57:d5:5a:bb:23:20:84:b0:2c:10:99:d6:a6:ce:9b:07:43:d0: 21:e7:3e:30:e7:fa:81:54:e8:c9:cf:91:eb:d4:55:00:fa:60: 9e:12:da:65:d7:f0:0b:0f:5e:59:e4:b9:c6:e5:34:c6:e6:ce: 4c:dd:f3:90:64:80:61:93:03:e3:6f:a8:16:e3:a6:13:6c:ce: 1a:fb:75:b8:d1:32:03:f8:2a:da:97:fb:8c:85:73:48:68:da: de:5c:cd:eb:43:7f:bc:3a:26:5b:72:c7:3b:6b:96:dd:89:9c: 7c:7b:e7:a3:d5:15:a6:31:3d:4c:b0:87:df:67:42:5e:37:cd: 17:3b:91:c7:58:26:8c:b1:0f:01:c3:4d:dc:d3:d6:4b:22:89: 1b:4c:6e:18:78:68:31:00:a2:fb:0d:ad:ce:9e:d6:0f:47:d6: d2:1e:92:b2:31:49:02:6d:31:55:6b:71:cf:8a:ba:b1:b7:d2: 3c:7a:0d:9f:66:5c:3a:52:eb:63:10:d1:33:67:06:f6:bd:90: 76:8b:fc:c8:7c:c9:f0:c5:f7:83:6e:96:40:bd:b3:4b:8c:3c: 9e:8f:27:ca:9b:28:66:87:8f:b6:31:6e:08:93:83:40:2d:c6: 86:2c:05:c3:79:f2:e4:09:c6:e5:f3:bc:a7:e5:0e:7c:53:57: a5:bd:af:c2 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICBdMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTdB OTk0QkQ2MDU1NTE0NUNCNjQ1MkRDNkE5ODBGQzg1MTEzNkJEQTAeFw0yNTAyMTAx MzU3NTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFCMEI5NzM2MzgzMUQ5 MDE4NEIyNzY3NDNCQ0JCNjEyMzI3NDA5QzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFLHxr5EBNmlghuuL2cfBZO97Uk0m+DZegeqJI09OUDJA6g+IY mb7GHAm08T4s+wLmc+MPNlKKIcSLczoaDe1v8bQlK513kLqjNhh6qe/lwYQmTq7f fdShiirE6NXteQbw6o9vgGuQSkN3u9+iNQHnw9NtsNzYhBo6AojqEwu7qKmKU0qN jK8CJIsalzY1ZW7opBAr/EMiPxqlwxXAtzUKJ3FXCjBXJbiaye6y9R4mhIm4JiFO 0dJZjS7gddTLIF0Ut/Matt3tw26jUgyx77XU1w3KcHXLQD2SGzMGQ2QPT86qROua 9i3B/J6dBEdpWCi/9ks7vamVJBe+hDD/5mBjAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUqwuXNjgx2QGEsnZ0O8u2EjJ0CcQwHwYDVR0jBBgwFoAUV6mUvWBVUUXLZFLc apgPyFETa9owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQUxMUEFT Uy9WNm1VdldCVlVVWExaRkxjYXBnUHlGRVRhOW8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1Y2bVV2V0JWVVVYTFpGTGNhcGdQeUZFVGE5by5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0FMTFBBU1MvcXd1WE5qZ3gyUUdFc25a ME84dTJFakowQ2NRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGecuTANBgkqhkiG9w0BAQsFAAOCAQEAV9VauyMghLAsEJnWps6bB0PQIec+MOf6 gVToyc+R69RVAPpgnhLaZdfwCw9eWeS5xuU0xubOTN3zkGSAYZMD42+oFuOmE2zO Gvt1uNEyA/gq2pf7jIVzSGja3lzN60N/vDomW3LHO2uW3YmcfHvno9UVpjE9TLCH 32dCXjfNFzuRx1gmjLEPAcNN3NPWSyKJG0xuGHhoMQCi+w2tzp7WD0fW0h6SsjFJ Am0xVWtxz4q6sbfSPHoNn2ZcOlLrYxDRM2cG9r2Qdov8yHzJ8MX3g26WQL2zS4w8 no8nypsoZoePtjFuCJODQC3GhiwFw3ny5AnG5fO8p+UOfFNXpb2vwg== -----END CERTIFICATE-----Generated at Tue Apr 15 04:53:52 2025 by rpki-client