$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/MURZChphFatFjZPjHd6pDevZjWo.roa File: MURZChphFatFjZPjHd6pDevZjWo.roa (raw, json) Hash identifier: Wf1vVEwPZz2BKcRdIHRq7bMq6r4n/fpCJsoL1dKBg7o= Subject key identifier: 31:44:59:0A:1A:61:15:AB:45:8D:93:E3:1D:DE:A9:0D:EB:D9:8D:6A Certificate issuer: /CN=A2FB739525B742A28A743315C6C88E766A7E0DC3 Certificate serial: 0EC2 Authority key identifier: A2:FB:73:95:25:B7:42:A2:8A:74:33:15:C6:C8:8E:76:6A:7E:0D:C3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ovtzlSW3QqKKdDMVxsiOdmp-DcM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/MURZChphFatFjZPjHd6pDevZjWo.roa Signing time: Mon 10 Feb 2025 14:02:45 +0000 ROA not before: Mon 10 Feb 2025 14:02:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131618 IP address blocks: 103.135.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/ovtzlSW3QqKKdDMVxsiOdmp-DcM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/ovtzlSW3QqKKdDMVxsiOdmp-DcM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ovtzlSW3QqKKdDMVxsiOdmp-DcM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 22:26:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3778 (0xec2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A2FB739525B742A28A743315C6C88E766A7E0DC3 Validity Not Before: Feb 10 14:02:45 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3144590A1A6115AB458D93E31DDEA90DEBD98D6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2e:d7:44:4a:cf:5e:8e:58:55:d4:14:2f:b8: f9:78:1d:92:65:d4:5f:8f:a6:27:f9:f9:41:df:87: c6:93:8f:69:42:d1:90:2a:e2:37:1e:06:5a:8b:59: 02:dc:a1:7e:57:cd:30:82:19:f6:90:5a:df:a8:7b: 79:df:66:7b:4b:46:83:a6:d9:2e:a3:97:0c:40:a2: 3e:9b:9b:38:01:c0:a6:d5:e6:e6:f4:14:ab:fb:6d: 1a:16:9b:99:96:b0:70:c1:6d:a8:77:25:5a:a5:43: 3a:aa:e0:43:31:45:9f:a8:ea:6d:74:8a:36:64:81: 69:93:b3:89:ae:63:a6:80:dc:08:f8:08:df:95:31: ca:86:87:7b:6d:b7:10:fe:a7:ef:d8:9c:59:da:99: 5d:31:a6:78:43:96:3e:4c:88:be:87:71:75:7c:77: 61:da:10:4f:71:c7:5a:93:b8:8b:8a:b8:8d:30:09: ca:65:c5:31:d4:65:0d:6b:d4:5d:3c:ab:a7:b8:ac: bb:98:df:36:4e:ba:24:56:31:15:d0:42:cd:6e:e7: 26:cb:01:de:d7:5e:3d:ab:fa:02:1f:06:31:01:87: 9e:a2:44:08:39:6a:ba:6f:58:3c:cc:41:b8:b4:a2: 60:e1:78:6d:83:c1:8a:f2:fe:a4:5e:c7:54:95:a3: d9:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:44:59:0A:1A:61:15:AB:45:8D:93:E3:1D:DE:A9:0D:EB:D9:8D:6A X509v3 Authority Key Identifier: keyid:A2:FB:73:95:25:B7:42:A2:8A:74:33:15:C6:C8:8E:76:6A:7E:0D:C3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/ovtzlSW3QqKKdDMVxsiOdmp-DcM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ovtzlSW3QqKKdDMVxsiOdmp-DcM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/MURZChphFatFjZPjHd6pDevZjWo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.135.119.0/24 Signature Algorithm: sha256WithRSAEncryption 48:a4:57:0d:6b:1d:5c:bc:bf:a5:89:aa:6a:19:69:70:3c:0b: a4:73:63:3c:65:fa:eb:9e:ed:98:a0:56:4e:9e:71:8a:b5:27: 60:50:f2:1a:f7:9e:8c:ec:30:7f:1e:56:92:14:40:5e:55:d2: 29:77:a7:fd:03:6b:99:54:37:7a:5e:ab:52:2b:9b:7f:cf:8c: 1d:4a:b5:20:e5:ea:b5:77:15:c0:3b:47:19:5a:c3:c6:dc:98: 15:bc:30:65:2d:46:24:c8:6c:53:4c:25:8a:7b:89:22:62:21: 16:cf:06:c4:e8:fd:cd:55:72:e0:e6:b9:ce:42:e1:c8:5c:14: c9:0d:2a:89:09:08:e5:08:03:74:b6:fa:28:c0:15:ee:08:14: 39:f6:91:75:f1:31:ca:fb:13:7e:4b:d3:85:c8:55:e0:21:8c: bb:9b:d5:c0:13:d3:64:4c:46:85:64:cc:21:dc:9c:ce:f9:96: 61:cd:6a:bf:93:3c:44:22:ff:88:5d:2a:5a:58:48:39:f6:28: 92:16:e6:8e:41:95:42:45:ae:d5:7c:2c:4c:da:68:a5:f2:f9: 4d:eb:48:5b:59:01:9c:a1:34:6a:ae:6d:98:6c:c3:ca:1a:c9: 7a:6b:1c:7e:a5:5a:09:d3:69:4b:02:e6:b1:c8:c1:82:06:07: d0:65:5d:45 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDsIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTJG QjczOTUyNUI3NDJBMjhBNzQzMzE1QzZDODhFNzY2QTdFMERDMzAeFw0yNTAyMTAx NDAyNDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMxNDQ1OTBBMUE2MTE1 QUI0NThEOTNFMzFEREVBOTBERUJEOThENkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+LtdESs9ejlhV1BQvuPl4HZJl1F+Ppif5+UHfh8aTj2lC0ZAq 4jceBlqLWQLcoX5XzTCCGfaQWt+oe3nfZntLRoOm2S6jlwxAoj6bmzgBwKbV5ub0 FKv7bRoWm5mWsHDBbah3JVqlQzqq4EMxRZ+o6m10ijZkgWmTs4muY6aA3Aj4CN+V McqGh3tttxD+p+/YnFnamV0xpnhDlj5MiL6HcXV8d2HaEE9xx1qTuIuKuI0wCcpl xTHUZQ1r1F08q6e4rLuY3zZOuiRWMRXQQs1u5ybLAd7XXj2r+gIfBjEBh56iRAg5 arpvWDzMQbi0omDheG2DwYry/qRex1SVo9nbAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUMURZChphFatFjZPjHd6pDevZjWowHwYDVR0jBBgwFoAUovtzlSW3QqKKdDMV xsiOdmp+DcMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNJQUNM T1VEL292dHpsU1czUXFLS2RETVZ4c2lPZG1wLURjTS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0Evb3Z0emxTVzNRcUtLZERNVnhzaU9kbXAtRGNNLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNJQUNMT1VEL01VUlpDaHBoRmF0 RmpaUGpIZDZwRGV2WmpXby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABnh3cwDQYJKoZIhvcNAQELBQADggEBAEikVw1rHVy8v6WJqmoZaXA8C6Rz Yzxl+uue7ZigVk6ecYq1J2BQ8hr3nozsMH8eVpIUQF5V0il3p/0Da5lUN3peq1Ir m3/PjB1KtSDl6rV3FcA7Rxlaw8bcmBW8MGUtRiTIbFNMJYp7iSJiIRbPBsTo/c1V cuDmuc5C4chcFMkNKokJCOUIA3S2+ijAFe4IFDn2kXXxMcr7E35L04XIVeAhjLub 1cAT02RMRoVkzCHcnM75lmHNar+TPEQi/4hdKlpYSDn2KJIW5o5BlUJFrtV8LEza aKXy+U3rSFtZAZyhNGqubZhsw8oayXprHH6lWgnTaUsC5rHIwYIGB9BlXUU= -----END CERTIFICATE-----Generated at Wed Feb 19 22:04:25 2025 by rpki-client