$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/qgPderFvMtC8xgv2j31eaFQXadQ.roa File: qgPderFvMtC8xgv2j31eaFQXadQ.roa (raw, json) Hash identifier: 2ERQBzdG2DHxFL6HzQd2ct0pQ+HNmcR8ByKQCokdztI= Subject key identifier: AA:03:DD:7A:B1:6F:32:D0:BC:C6:0B:F6:8F:7D:5E:68:54:17:69:D4 Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A Certificate serial: 0CBC Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/qgPderFvMtC8xgv2j31eaFQXadQ.roa Signing time: Mon 10 Feb 2025 14:29:48 +0000 ROA not before: Mon 10 Feb 2025 14:29:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9264 IP address blocks: 202.140.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3260 (0xcbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A Validity Not Before: Feb 10 14:29:48 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AA03DD7AB16F32D0BCC60BF68F7D5E68541769D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1e:13:94:25:8b:ce:c0:24:e8:17:96:00:52: d2:3d:53:ac:16:96:bb:4d:7c:29:b2:18:ec:2c:0c: 8c:9a:0a:7f:12:0f:4b:7f:dc:29:a0:ed:32:81:ac: 2b:90:c4:46:0a:c0:c6:e6:1f:da:d7:3c:26:bf:4e: a4:3c:fd:46:8c:a7:19:9c:d7:42:79:3f:b4:44:e7: 9b:cd:2b:e0:1a:10:56:05:ef:72:d5:f2:d3:47:0e: 18:0b:df:a4:49:b8:40:ab:27:64:32:eb:d2:22:1d: 85:7b:db:68:f8:fe:59:60:2f:00:1c:4d:87:f3:4e: 3e:b3:cf:da:c4:70:a4:79:0a:a9:8c:5d:4f:e2:95: 7d:aa:d0:75:68:1d:ff:a6:2e:06:70:db:0b:32:94: c6:c9:d7:b0:c7:c7:24:c3:fd:a5:83:2d:e4:c7:09: 2c:57:a3:27:09:0a:2d:b0:df:d5:ea:3d:f2:e5:9f: 66:26:42:b3:7a:27:79:94:7c:68:e5:3f:b4:7a:09: b1:08:52:69:a6:ad:6e:52:a5:98:36:ab:f7:d4:03: 19:06:d3:61:0b:d9:fd:e4:8c:9a:48:a1:f1:2c:b0: 0e:ac:9a:9d:2f:ce:33:40:ff:de:21:85:44:48:d7: cf:2d:41:5e:57:93:c2:86:f2:45:90:85:4f:19:a7: e9:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:03:DD:7A:B1:6F:32:D0:BC:C6:0B:F6:8F:7D:5E:68:54:17:69:D4 X509v3 Authority Key Identifier: keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/qgPderFvMtC8xgv2j31eaFQXadQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.140.160.0/19 Signature Algorithm: sha256WithRSAEncryption 12:08:fe:b6:e7:89:06:23:1b:3c:ad:5e:22:f0:61:33:75:d4: 34:6c:2f:f3:b7:dd:8d:21:05:67:57:78:c9:ea:42:07:a4:43: 59:e2:b3:31:cf:b6:a5:c7:90:80:ca:a6:67:d3:a5:e0:ab:6a: 64:33:cf:6b:0f:b6:24:15:ad:e7:39:9a:c9:eb:ec:52:71:28: e9:62:c3:fc:49:d9:42:79:06:c9:08:38:15:f9:63:d4:e6:82: e7:e3:ff:ef:fb:eb:85:b2:2b:83:b8:a0:00:d7:4f:ab:b4:fa: 8c:7b:e7:d7:76:4b:94:94:52:76:3a:f1:ed:6a:25:1b:4a:02: 1a:b4:f5:03:3b:38:d3:ee:4f:79:6b:3b:67:f2:ad:16:f7:5f: 9f:27:63:31:2b:8c:de:41:ac:d2:ab:59:d8:de:9f:6d:29:35: c5:61:f5:19:b8:7b:a9:1e:b8:af:08:50:6d:f8:db:29:09:f2: 4c:b0:bb:d0:71:ad:40:2e:75:65:60:7c:dd:7a:86:d4:1b:85: 2f:23:bd:2c:a6:b2:0f:93:50:ce:e3:bb:c0:73:10:78:07:66: 8b:a9:4c:04:da:93:d8:5a:ad:0a:31:01:2f:72:a1:aa:21:1b: 8f:18:6b:26:d6:e1:1f:f9:47:16:8e:b3:8d:3c:97:a9:97:b5: ed:90:0d:64 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDLwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzA5 ODRGMDA4Q0EyOEY2NDc1REI0MjYzNTNCRkQxQzQzM0Q4QkMxQTAeFw0yNTAyMTAx NDI5NDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFBMDNERDdBQjE2RjMy RDBCQ0M2MEJGNjhGN0Q1RTY4NTQxNzY5RDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvHhOUJYvOwCToF5YAUtI9U6wWlrtNfCmyGOwsDIyaCn8SD0t/ 3Cmg7TKBrCuQxEYKwMbmH9rXPCa/TqQ8/UaMpxmc10J5P7RE55vNK+AaEFYF73LV 8tNHDhgL36RJuECrJ2Qy69IiHYV722j4/llgLwAcTYfzTj6zz9rEcKR5CqmMXU/i lX2q0HVoHf+mLgZw2wsylMbJ17DHxyTD/aWDLeTHCSxXoycJCi2w39XqPfLln2Ym QrN6J3mUfGjlP7R6CbEIUmmmrW5SpZg2q/fUAxkG02EL2f3kjJpIofEssA6smp0v zjNA/94hhURI188tQV5Xk8KG8kWQhU8Zp+ktAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUqgPderFvMtC8xgv2j31eaFQXadQwHwYDVR0jBBgwFoAUcJhPAIyij2R120Jj U7/RxDPYvBowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNORVQv Y0poUEFJeWlqMlIxMjBKalU3X1J4RFBZdkJvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9jSmhQQUl5aWoyUjEyMEpqVTdfUnhEUFl2Qm8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BU05FVC9xZ1BkZXJGdk10Qzh4Z3YyajMx ZWFGUVhhZFEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFyoyg MA0GCSqGSIb3DQEBCwUAA4IBAQASCP6254kGIxs8rV4i8GEzddQ0bC/zt92NIQVn V3jJ6kIHpENZ4rMxz7alx5CAyqZn06Xgq2pkM89rD7YkFa3nOZrJ6+xScSjpYsP8 SdlCeQbJCDgV+WPU5oLn4//v++uFsiuDuKAA10+rtPqMe+fXdkuUlFJ2OvHtaiUb SgIatPUDOzjT7k95aztn8q0W91+fJ2MxK4zeQazSq1nY3p9tKTXFYfUZuHupHriv CFBt+NspCfJMsLvQca1ALnVlYHzdeobUG4UvI70sprIPk1DO47vAcxB4B2aLqUwE 2pPYWq0KMQEvcqGqIRuPGGsm1uEf+UcWjrONPJepl7XtkA1k -----END CERTIFICATE-----Generated at Fri Apr 18 15:44:37 2025 by rpki-client