$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/qMbeSyjhHXyD4w6cTf56vM7mnYM.roa File: qMbeSyjhHXyD4w6cTf56vM7mnYM.roa (raw, json) Hash identifier: m0IIzcScgG69zmN5STDBCX9SqtewkoDgoRQbLSowxe8= Subject key identifier: A8:C6:DE:4B:28:E1:1D:7C:83:E3:0E:9C:4D:FE:7A:BC:CE:E6:9D:83 Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A Certificate serial: 0CC2 Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/qMbeSyjhHXyD4w6cTf56vM7mnYM.roa Signing time: Mon 10 Feb 2025 14:29:50 +0000 ROA not before: Mon 10 Feb 2025 14:29:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9264 IP address blocks: 117.103.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3266 (0xcc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A Validity Not Before: Feb 10 14:29:50 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A8C6DE4B28E11D7C83E30E9C4DFE7ABCCEE69D83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fa:2b:61:fa:33:b9:65:83:b4:95:8b:e6:a2: c0:fd:18:43:84:15:eb:ed:f0:db:16:c9:ee:31:c3: d5:b0:2f:67:23:4e:2b:d7:53:de:03:ed:7c:40:cd: c3:b3:e7:51:82:40:eb:2b:41:82:1c:66:28:30:de: 2d:f0:23:e8:e1:20:55:db:28:07:3c:f2:c5:9e:c8: 4b:98:f6:19:1c:3d:1e:4a:1f:15:46:59:08:6c:61: 34:4c:a7:78:74:23:d7:6a:1b:49:1c:7c:ac:ed:d5: a2:bc:b9:18:0e:e2:34:6e:3b:8d:a4:bc:eb:9a:06: ac:ec:e6:fe:b8:b6:65:ba:98:1d:19:75:0e:9c:66: b3:6c:6f:fe:e4:63:bf:f8:d5:96:d9:df:cd:cb:0e: 01:4c:57:e0:6d:4e:f9:9b:61:27:db:e9:3c:3d:db: 80:ac:8a:2a:d3:28:cc:7b:00:9a:9d:71:29:86:56: a3:d3:e1:7e:4d:a4:db:7a:0e:a3:9f:0f:5c:d7:26: a3:cb:39:ee:f3:de:38:6c:20:57:19:24:63:10:22: e0:e8:40:b0:99:35:1a:2b:d3:6a:0c:75:36:3c:16: 64:53:7a:49:ad:2b:a2:1b:53:fb:dd:4b:2c:e9:bb: 14:9c:69:da:3f:f9:af:0b:98:4e:83:f9:04:d2:2e: 9f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:C6:DE:4B:28:E1:1D:7C:83:E3:0E:9C:4D:FE:7A:BC:CE:E6:9D:83 X509v3 Authority Key Identifier: keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/qMbeSyjhHXyD4w6cTf56vM7mnYM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 117.103.96.0/20 Signature Algorithm: sha256WithRSAEncryption 0c:ef:df:cf:25:61:6a:7c:78:13:24:d2:05:ea:eb:a7:36:8c: a9:86:b6:05:ed:9c:b0:ca:af:ce:43:4c:36:dd:91:34:d0:fe: e8:32:70:cb:4e:c4:53:72:11:6e:60:ed:6b:04:99:73:b9:25: c9:6a:92:c4:91:7e:c0:f3:4c:4d:11:8b:59:30:f0:e9:9b:98: a3:bd:c3:1b:f0:e5:1c:fc:6b:3f:2c:92:20:b7:5b:d7:86:94: 3e:8f:a4:ca:f8:97:59:1b:5a:bb:42:3e:45:b6:d3:e8:0e:8f: 7c:5f:f1:f3:f2:4c:c1:b6:91:28:cc:3a:e1:74:aa:f6:e2:d4: 40:fc:a7:3f:88:0a:2f:4c:c3:5e:e6:26:5d:7c:03:3c:b2:16: b4:21:f5:98:2c:05:3f:e8:a2:32:f4:14:b4:3b:11:ba:52:5c: c8:2c:01:f0:7a:87:e6:a3:61:0a:d1:e8:c2:f0:3d:10:0d:e2: df:ab:5a:5f:bf:71:a0:89:34:a8:bf:a9:43:4c:f0:21:87:eb: 3c:56:c5:41:f0:11:de:74:e2:fa:05:dd:99:03:45:aa:a5:97: de:d3:4f:d6:48:2c:29:d0:9f:ec:c3:9a:05:b2:d2:72:f3:f3: d0:a1:24:22:34:cb:61:08:e5:31:d2:88:81:ea:de:3c:79:43: f4:2a:f4:e1 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDMIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzA5 ODRGMDA4Q0EyOEY2NDc1REI0MjYzNTNCRkQxQzQzM0Q4QkMxQTAeFw0yNTAyMTAx NDI5NTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE4QzZERTRCMjhFMTFE N0M4M0UzMEU5QzRERkU3QUJDQ0VFNjlEODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9+ith+jO5ZYO0lYvmosD9GEOEFevt8NsWye4xw9WwL2cjTivX U94D7XxAzcOz51GCQOsrQYIcZigw3i3wI+jhIFXbKAc88sWeyEuY9hkcPR5KHxVG WQhsYTRMp3h0I9dqG0kcfKzt1aK8uRgO4jRuO42kvOuaBqzs5v64tmW6mB0ZdQ6c ZrNsb/7kY7/41ZbZ383LDgFMV+BtTvmbYSfb6Tw924CsiirTKMx7AJqdcSmGVqPT 4X5NpNt6DqOfD1zXJqPLOe7z3jhsIFcZJGMQIuDoQLCZNRor02oMdTY8FmRTekmt K6IbU/vdSyzpuxScado/+a8LmE6D+QTSLp+tAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUqMbeSyjhHXyD4w6cTf56vM7mnYMwHwYDVR0jBBgwFoAUcJhPAIyij2R120Jj U7/RxDPYvBowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNORVQv Y0poUEFJeWlqMlIxMjBKalU3X1J4RFBZdkJvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9jSmhQQUl5aWoyUjEyMEpqVTdfUnhEUFl2Qm8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BU05FVC9xTWJlU3lqaEhYeUQ0dzZjVGY1 NnZNN21uWU0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEdWdg MA0GCSqGSIb3DQEBCwUAA4IBAQAM79/PJWFqfHgTJNIF6uunNoyphrYF7Zywyq/O Q0w23ZE00P7oMnDLTsRTchFuYO1rBJlzuSXJapLEkX7A80xNEYtZMPDpm5ijvcMb 8OUc/Gs/LJIgt1vXhpQ+j6TK+JdZG1q7Qj5FttPoDo98X/Hz8kzBtpEozDrhdKr2 4tRA/Kc/iAovTMNe5iZdfAM8sha0IfWYLAU/6KIy9BS0OxG6UlzILAHweofmo2EK 0ejC8D0QDeLfq1pfv3GgiTSov6lDTPAhh+s8VsVB8BHedOL6Bd2ZA0WqpZfe00/W SCwp0J/sw5oFstJy8/PQoSQiNMthCOUx0oiB6t48eUP0KvTh -----END CERTIFICATE-----Generated at Fri Apr 18 15:04:59 2025 by rpki-client